Hello,

Cause

This issue can be caused by more than one issue:

• The user requesting the clone does not have the admin or clone_admin roles.
• The user on the target instance who is used for authentication does not have the admin role.
• The system property glide.soap.require_ws_security is set to true.

Resolution

• Make sure that the user who requests the clone on the source instance has the admin or clone_admin role, and that the user on the target instance who is used for authentication has the admin role. See here for more information about configuring target instances.
• If the system property glide.soap.require_ws_security is set to true you will need to enable the 'Internal Integration User' flag for the clone user as per the documentation:

"When WS-Security is enabled, authentication is required for all SOAP requests including internal integration communications such as the MID Server, ODBC Driver, Remote Update Sets, and high availability cloning. SOAP requests for these internal integration communications cannot implement WS-Security due to technical implications. If your instance uses these SOAP interfaces, you can allow them to bypass the WS-Security authentication requirement by marking their user accounts as internal integration users."

Please refer the below support article if you have not read already.

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0681148

Please mark answer/correct/helpful based on Impact.