On ForgeRock Access Management Under a realm we have a OUD Identity store, when searching identities getting “Internal Server Error” along with seeing below error message in logs.
What you can do with this is if as an example you get a 500 back, then with Message Debug enabled on AM, check your Audit logs. From there the Audit log will have a transaction ID for that request , then check your debug logs for that transaction, this will be all of the request that caused that failure.
What you may see is something like “no operation connections to datastore exist” which means AM can’t connect to DS-Userstore. There could be other issues, like This request ask for ALL users, by default you may only allow say 1000 results.
What’s nice about the transactionid as well is the SAME id will also be in your DS audit logs as well if you need to find out more if it’s a failed search.
If you need help understanding where Audit and debug logs are see: