OID-OIM reconciliation hassle-HELP

hi
i was able to reconcile from OID to OIM.
but now when i am trying to do so (without doing any changes) it gives the following error:
13:20:43,094 ERROR [OID] tcUtilLDAPOperations: NamingException: Unable to search
LDAP[LDAP: error code 53 - Function Not Implemented]
13:20:43,094 ERROR [OID] Exception at the end in OID:tcTskOIDUserReconciliation:
processChange(): tcUtilLDAPOperations: NamingException : Unable to search LDAP [
[LDAP: error code 53 - Function Not Implemented]]

OIM search is using a attribute that is NOT indexed in OID.
Check the OID connector doc at:
http://download.oracle.com/docs/cd/E11223_01/doc.904/e10436/deploy.htm#BIHHGCBC

Similar Messages

  • AD- OIM Reconciliation with Manager as Approver of Resources

    Hi, I'm trying to setup the following scenario:
    AD->OIM Reconciliation with user's manager information. Setup the manager as the user's approver for every resource available in OIM.
    When a user gets added to the AD, he is reconciled into OIM and I have made 2 user defined fields, one to store his managers distinguished name and another to store the users - "usr_udf_man_dn" and "usr_udf_dn". This is working fine, both columns get populated on reconciliation.
    What I would like to do is assign the manager as the approver for all the resources that are requested by the user. I am thinking of populating the usr_manager_key through an sql query, by matching "usr_udf_man_dn" with "usr_udf_dn" and getting the managers "usr_key", then storing it in usr_manager_key of the user. The query is not my real problem.
    As I'm new to OIM, I don't yet know how to build the 'logic' of this process. How and where to I make the query? I'm assuming these fields can only be populated after the user has been reconciled (because there won't be any fields to do an sql query on before that). Do I use an adapter? How do I setup the approval process?
    Any feedback will be greatly appreciated :)
    Message was edited by:
    user638778

    This is very simple and infact there are 2 ways to do it:
    # 1) Create a User Process Trigger that adds on Change Event of your Manager UDF Field. This will kick in as soon as a value is put into the Manager UDF field (doesn't matter - via Recon or by hand). Then create an adapter that looks up a User in AD with the DN (your manager) and returns back a SamAccountName. Based on this returned SamAccountName, get the update the user with manager key. Attach this adapter to your process task event in Xellerate User Process Definition.
    # 2) Create an Entity adapter that does the same operation as written in #1. Attach this entity adapter to Xellerate User Update event. This is simpler. Drawback of this is that anytime you update the user (for anything - like last name change , org change etc.) - it will repeat this process of updating the user with its manager key. so any change on employee will trigger the manager update. #1 is more efficient.
    As far as the approval processes are concerned, there are 2 ways to achieve that also:
    # 1) Attach approval in the standard task and assign it to User's Manager for approval. Limitation is that you can not get rid of this in future once you go production with such a setup. You can but you might not want to.
    # 2) Individually on each approval process of each resource object, attach the approval task and assign it to User's Manager. That should do it.
    Hope this helps.
    rajnishbhatia19
    For Additional Code Snippets, you may refer to my Blog site:
    http://rajnishbhatia19.blogspot.com
    Add RSS feed to your portals (google / yahoo / whichever:)
    http://rajnishbhatia19.blogspot.com/feeds/posts/default
    Connect to me:
    http://www.linkedin.com/in/rajnishbhatia19

  • OID & OIM integration

    Hi ,
    I am using OID version 10.1.4.0.1 and OIM 9.1.0.1 on Weblogic 10.3. with connector version 9041.
    But after following all the steps of configuration of OID & OIM integration when i tried to provision a user in OID then i got error in Create User task of OID User as Response: Target Unavailable Error
    Response Description: Target server not available
    although i am able to talk to the OID server machine through my OIM server machine.Both are on Windows 2K3 Server OS.
    Can you help me why i am getting this error? Have i missed any configuratoin step or what might be the error i should look for?
    Thanks

    I am assuming the OID server over here is up and running.
    After that, I would suggest you to check 1 thing -
    Resource parameters provided by you are correct or not ? what about the root dn ?
    Can you change your log level to debug and provide the adminserver.log details ?
    Thanks!
    - oidm

  • OID Trusted reconciliation failed

    Hi,
    I am trying to do trusted reconciliation from OID. Reconciliation task is failed and following are the error logs found:
    ERROR QuartzWorkerThread-1 XL_INTG.OID - ====================================================
    ERROR QuartzWorkerThread-1 XL_INTG.OID - Exception at com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliationprocessBatch(): [B cannot be cast to java.lang.String
    ERROR QuartzWorkerThread-1 XL_INTG.OID - ====================================================
    I am trying to reconcile the OOTB fields (cn,sn,givenName,userPassword) and 2 user defined fields (text based).
    Can anyone let us know when this casting exception will be thrown?
    - Kalyan Mutya                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

    Yep mappings are poor, I created an entity adapter for the EMP_TYPE & USR_TYPE, users are reconciling.
    There is still an issue with the reconciliation.
    I can provision all attributes on the OIM user account to their coresponding OID attributes, but when I reconcile I process all attributes, but the xellerate user only links the default ones
    LastName
    Organization
    First Name
    User ID
    Xellerate Type
    Email
    Role
    I have checked and rechecked the mappings, This is on 9.0.3.1672 using the 9.0.4.1 connector.
    Any ideas?

  • OIM Reconciliation

    Hi All,
    OIM is provisioned to AD and Exchange, and I can able to see the resource information in user's resource info thru OIM web console. There, it shown two resources as provisioned. But after reconciliation, one more Exchane resource row has displayed info in user's resource info page. (I think, OIM established one more link to Exchane for the same user). How ever, Exchane Recon rule is UserLogin=samAccountName
    But in this case, userlogin=1234 and samAccountName=i1234(both are not equal). Then how come its getting reconciled and establishing the link with the same user.
    Please suggest me. I have to stop building this one more exchage resource for the same user.
    regards,
    Ravi G.

    Kevin, Thanks for your help. I have worked in SUN IDM, I am new to OIM. Please do let me know, if I miss any basic things here.
    After exchange provisioning, OIM is displaying the obejectGUID value, when we view the exchange form in User's resource info. you meant to say, from target, this value is comming as null. thats why its going towards entity match. Entity recon action rule is also "establish link' in my case. So process match is not matched with any user and Entity match is matched with the same OIM user, thats why its established link with the user and displayed in user's resource info page.
    But for Exchange resource "allowMultiple" is unchecked in my case.
    How ever, How can I get the objectGUID value here to match the process match.
    FYR, In OIm Reconciliation Manager, I am able to see the objectGUID value and the status for recon event is "Event Linked". I am not understood, if its event linked, Then Why OIM is displaying two resources for excahnge, in User's resource info page.
    Thanks.

  • OIM: Reconciliation with Database Application Tables Connector

    Hi!
    I'm trying to use Database Application Tables connector 9.1.0.5.0 in OIM 11g to reconcile accounts from my target system: MySQL 5.1.37. I followed the steps in connector's guide to create and configure it and to configure my target system as a trusted source.
    The problem is that user accounts are not being created in OIM, despite of this, I know the connector is retrieving the information of each user because I can see it in the log's messages generated when I execute the reconciliation job, so I supossed the problem may be in the "Modify Connector configuration page" or in some step after this.
    Aditionally, I don't know if it's important but I can't see "User Type" field in "OIM user account data set" from "Modify Connector Configuration Page".
    Did I forget to do something in configuration or there is something I got to do besides the steps in guide?
    Thanks in advance!
    Edited by: user10857411 on Jan 11, 2011 4:10 PM
    Edited by: user10857411 on Jan 11, 2011 4:12 PM

    SUN IDM is better than OIM,
    Reconciliation process in Sun IDM (oracle waveset) is easier to implement than OIM (worst identity solution)
    Saludos Cordiales Zam

  • OIM OID PROVISIONING-RECONCILIATION

    hi
    i m using OIM with OID for provisioning and reconciliation
    while i reconcile from OID to OIM changes are reflected in OIM user profile
    while provisioning from OIM to OID ,when i make some changes in user profile, it does not get reflected in process form. i need to make the changes again in process form ,then only it gets reflected in OID.
    the process becomes very cumbersome. how this can be resolved ?

    Well for that you need to configure proper Change Field type process tasks which will actually transfer information from User Profile to process form.
    Refer look up USR_PROCESS_TRIGGERS for more details. You might also have a look at similar threads like following.
    Re: Password Update Task for OID Process form
    Thanks
    Sunny

  • OVD/OID group reconciliation in OIM 11g with LDAP sync

    Hi All!
    Is it possible to reconcile OID groups to OIM using LDAP sync? How to achieve such configuration?
    I have OIM with LDAP sync and user and roles provisining to OVD is working.
    best
    mp

    Hi,
    I want to Integrate OIM and OID. Can you guide me in doing so?. The platform I will use is Windows 2003 Server, OIM version is 9.1. Also please tell me which version of OID i should use.
    Note: I am new to OID and OIM.
    Thanks in advance.
    Regards,
    Kazmi

  • OID OIM 11g reconciliation

    Hello,
    I am looking in the design console at the OID User Resource Object (11g), and in the previous version for 'Reconcilation Action Rules' we had 'assign to group' for 'No user found' rule condition, however, this no longer seems to exist in 11g.
    Where can this condition and action be found (note: I have tried adding a rule, but still can't see the condition)

    You'll need to identify an AD Recon then. This is from the Reconciliation Insert task. This event is inserted on every creation through a recon. Next, you'll need to identify on the user profile when this happens because you'll need to integrate it into your access policy. I would suggest a user defined field as a checkbox. In your group membership rule that adds the user to a group for OID provisioning, add an AND rule into it that requires the checkbox = 0. When the reconciliation insert happens, trigger a task that updates the UDF on the user profile to make the checkbox = 1. Now when the user is reconciled and the Reconciliation Insert event happens, it will update the User Profile, and the user will no longer qualify for the OID access policy. If you have it configured to revoke if no longer applies, OID will get revoked.
    -Kevin

  • OIM Reconciliation - Help understand something...

    Hi everyone-
    Can someone help me understand if this is possible. Can you REVOKE resources based on Reconciliation?
    I am doing a flat file recon for a resource called "Application X". Provisioning works perfectly fine. Is it possible to Revoke "Application X" from users who have it but are NOT in the file? So if my file only contains 1 record, but 100 people have it, I want all but the 1 to be revoked.
    Is this doable?
    Thank much
    Alex

    You need to manually figure out what resources (target accounts) that needs to be deleted.
    Then you can just raise delete recon events for the resources that you want to remove.
    API: createDeleteReconciliationEvent (http://otndnld.oracle.co.jp/document/products/id_mgmt/idm_904/doc_cd/javadocs/operations/Thor/API/Operations/tcReconciliationOperationsIntf.html#createDeleteReconciliationEvent(java.lang.String, java.util.Map))
    Not the most elegant way to solve this but it works fine.
    Best regards
    /Martin

  • ODSEE to OIM Reconciliation issue - Invalid number of users

    Hi All,
    I'm trying to run an iPlanet User Trusted Recon Task job (Create users in OIM from ODSEE).
    I've added Recon fields for the "Xellerate User" Resource Object in OIM Design Console. I've setup all the reconciliation mappings in the Process Definition - Recon Field Mappings. Added code key/decode for Lookup.iPlanet.Configuration under Lookup Definition and Created Reconciliation Rule.
    When I click the "Create Reconciliation Profile" button under Object Resource -> Object Reconciliation -> Reconciliation fields. I get the following error:
    <Mar 17, 2011 2:25:50 PM EST> <Error> <oracle.iam.platform.auth.impl> <IAM-0060010> <Error while loading mapping plugin
    oracle.iam.platform.utils.userpreferences.UserDetailsException: Invalid number of users 0 entries returned for user ID <WLS KERNEL>.
    at oracle.iam.identity.usermgmt.impl.UserDetailsProviderImpl.getUserDetails(UserDetailsProviderImpl.java:135)
    at oracle.iam.platform.auth.impl.util.AuthenticationContextUtilForEJB.setUserPreferences(AuthenticationContextUtilForEJB.java:137)
    at oracle.iam.platform.auth.impl.util.AuthenticationContextUtilForEJB.setAuthenticationContextInEJB(AuthenticationContextUtilForEJB.java:93)
    at oracle.iam.conf.api.SystemConfigurationServiceEJB.getSystemPropertyx(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor773.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
    at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
    at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy295.getSystemPropertyx(Unknown Source)
    at oracle.iam.conf.api.SystemConfigurationService_nzipi9_SystemConfigurationServiceRemoteImpl.getSystemPropertyx(SystemConfigurationService_nzipi9_SystemConfigurationServiceRemoteImpl.java:139)
    at sun.reflect.GeneratedMethodAccessor1753.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:84)
    at $Proxy128.getSystemPropertyx(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor774.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
    at $Proxy306.getSystemPropertyx(Unknown Source)
    at oracle.iam.conf.api.SystemConfigurationServiceDelegate.getSystemProperty(Unknown Source)
    at oracle.iam.reconciliation.utils.Sys.getProperty(Sys.java:63)
    at oracle.iam.reconciliation.impl.config.Profile.initSystemProperties(Profile.java:97)
    at oracle.iam.reconciliation.impl.config.Profile.<init>(Profile.java:71)
    at oracle.iam.reconciliation.impl.config.ProfileXML.getProfileFromXMLObject(ProfileXML.java:210)
    at oracle.iam.reconciliation.impl.config.ProfileManager.readProfileFromXML(ProfileManager.java:301)
    at oracle.iam.reconciliation.impl.config.ProfileManager.metadataObjectChanged(ProfileManager.java:115)
    at oracle.mds.internal.notifications.EventNotificationManager$1.run(EventNotificationManager.java:615)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.mds.internal.notifications.EventNotificationManager.fireMOChangeEvent(EventNotificationManager.java:611)
    at oracle.mds.internal.notifications.EventNotificationManager.fireMOChangeEvents(EventNotificationManager.java:538)
    at oracle.mds.internal.notifications.EventDispatcherThread.run(EventDispatcherThread.java:72)
    >
    oracle.iam.platform.auth.exception.AuthenticationException: oracle.iam.platform.utils.userpreferences.UserDetailsException: Invalid number of users 0 entries returned for user ID <WLS KERNEL>.
    at oracle.iam.platform.auth.impl.util.AuthenticationContextUtilForEJB.setAuthenticationContextInEJB(AuthenticationContextUtilForEJB.java:103)
    at oracle.iam.conf.api.SystemConfigurationServiceEJB.getSystemPropertyx(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor773.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
    at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
    at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy295.getSystemPropertyx(Unknown Source)
    at oracle.iam.conf.api.SystemConfigurationService_nzipi9_SystemConfigurationServiceRemoteImpl.getSystemPropertyx(SystemConfigurationService_nzipi9_SystemConfigurationServiceRemoteImpl.java:139)
    at sun.reflect.GeneratedMethodAccessor1753.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:84)
    at $Proxy128.getSystemPropertyx(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor774.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
    at $Proxy306.getSystemPropertyx(Unknown Source)
    at oracle.iam.conf.api.SystemConfigurationServiceDelegate.getSystemProperty(Unknown Source)
    at oracle.iam.reconciliation.utils.Sys.getProperty(Sys.java:63)
    at oracle.iam.reconciliation.impl.config.Profile.initSystemProperties(Profile.java:97)
    at oracle.iam.reconciliation.impl.config.Profile.<init>(Profile.java:71)
    at oracle.iam.reconciliation.impl.config.ProfileXML.getProfileFromXMLObject(ProfileXML.java:210)
    at oracle.iam.reconciliation.impl.config.ProfileManager.readProfileFromXML(ProfileManager.java:301)
    at oracle.iam.reconciliation.impl.config.ProfileManager.metadataObjectChanged(ProfileManager.java:115)
    at oracle.mds.internal.notifications.EventNotificationManager$1.run(EventNotificationManager.java:615)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.mds.internal.notifications.EventNotificationManager.fireMOChangeEvent(EventNotificationManager.java:611)
    at oracle.mds.internal.notifications.EventNotificationManager.fireMOChangeEvents(EventNotificationManager.java:538)
    at oracle.mds.internal.notifications.EventDispatcherThread.run(EventDispatcherThread.java:72)
    Caused by: oracle.iam.platform.utils.userpreferences.UserDetailsException: Invalid number of users 0 entries returned for user ID <WLS KERNEL>.
    at oracle.iam.identity.usermgmt.impl.UserDetailsProviderImpl.getUserDetails(UserDetailsProviderImpl.java:135)
    at oracle.iam.platform.auth.impl.util.AuthenticationContextUtilForEJB.setUserPreferences(AuthenticationContextUtilForEJB.java:137)
    at oracle.iam.platform.auth.impl.util.AuthenticationContextUtilForEJB.setAuthenticationContextInEJB(AuthenticationContextUtilForEJB.java:93)
    ... 45 more
    Result Size = 1 PACKAGE STATUS = VALID
    Recompiling packages - RDBMS
    I run the iPlanet User Trusted Recon Task and nothing happens, no log gets produced in the oim_server1.log and users don't get created.
    Any help is appreciated. Thanks

    I get the same error when installing connectors. Installed both the SUN DSE and MS AD Base connector now and see this error several times during installation.
    Installation says is succeeds though.
    Will move on to creating the IT resources now to see if they actually work.

  • Any idea on Integrating mentioned application with OIM 11g :Need Help

    Hi,
    I wanted to integrated below target application to OIM11g. (to manage user life cycle, we also have role management(OIA))
    The 7 applications have their own repository, e.g SIPORT uses oracle database tables, PBX uses ms-sql, Lync is AD and other uses file. Employees will need to be provisioned into these application repositories via OIM connectors to provide them with access.
    Any approach/help/question would be appreciated.
    OfficeNet
    SIPORT
    MediaTechnology (Gingco)
    PBX
    Lync
    Campus App
    Sicherheitsleitzentrale
    Edited by: IgnitedMind on Apr 22, 2013 8:00 AM

    We are trying to achieve "single sign-on" to windows workstation and then to oracle database in the following way:
    - user logs in to his WinXP workstation through Active Directory
    - user connects to Oracle 10.2 database (SQL*Plus as " conn / ") without having to type his database password and the user is authenticated by Oracle Internet Directory (user is created in the database as identified globally)
    Can we achieve this if AD is integrated with OID and the user's password is the same in both directories?
    OID is configured for "password authentication", not for SSL/Kerberos.
    Thanks!

  • OID target reconciliation error

    hi all.
    i am able to provision the USER to OID, even Trusted Reconciliation is working properly.But when i run Target reconciliation i am getting the following error please help me
    DEBUG,13 Apr 2011 13:32:19,062,[XELLERATE.DATABASE],select UD_OID_GR_key from UD_OID_GR where UD_OID_GRP_GROUP_NAME =? and UD_OID_USR_key=2407
    ERROR,13 Apr 2011 13:32:19,066,[XELLERATE.SERVER],Class/Method: tcReconciliationUtil/evaluateEvent encounter some problems: {1}
    com.thortech.xl.orb.dataaccess.tcDataAccessException
    at com.thortech.xl.dataaccess.tcDataAccessExceptionUtil.createException(Unknown Source)
    at com.thortech.xl.dataaccess.tcDataBase.createException(Unknown Source)
    at com.thortech.xl.dataaccess.tcDataBase.readPartialPreparedStatement(Unknown Source)
    at com.thortech.xl.dataaccess.tcDataBase.readPreparedStatement(Unknown Source)
    at com.thortech.xl.dataobj.PreparedStatementUtil.execute(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.matchChildTableData(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.matchChildTableData(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.getProcessMatches(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.evaluateEvent(Unknown Source)
    at com.thortech.xl.dataobj.tcRCE.checkDataSorted(Unknown Source)
    at com.thortech.xl.dataobj.tcRCE.eventPostUpdate(Unknown Source)
    at com.thortech.xl.dataobj.tcDataObj.update(Unknown Source)
    at com.thortech.xl.dataobj.tcDataObj.save(Unknown Source)
    at com.thortech.xl.dataobj.tcTableDataObj.save(Unknown Source)
    at com.thortech.xl.dataobj.tcRCE.finishDataReceived(Unknown Source)
    at com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages.finishReconciliationEvent(Unknown Source)
    at com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages.execute(Unknown Source)
    at com.thortech.xl.schedule.jms.messagehandler.MessageProcessUtil.processMessage(Unknown Source)
    at com.thortech.xl.schedule.jms.messagehandler.ReconMessageHandlerMDB.onMessage(Unknown Source)
    at weblogic.ejb.container.internal.MDListener.execute(MDListener.java:466)
    at weblogic.ejb.container.internal.MDListener.transactionalOnMessage(MDListener.java:371)
    at weblogic.ejb.container.internal.MDListener.onMessage(MDListener.java:327)
    at weblogic.jms.client.JMSSession.onMessage(JMSSession.java:4659)
    at weblogic.jms.client.JMSSession.execute(JMSSession.java:4345)
    at weblogic.jms.client.JMSSession.executeMessage(JMSSession.java:3821)
    at weblogic.jms.client.JMSSession.access$000(JMSSession.java:115)
    at weblogic.jms.client.JMSSession$UseForRunnable.run(JMSSession.java:5170)
    at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
    at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
    at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    Caused by [Nested Exception]:
    java.sql.SQLSyntaxErrorException: ORA-00904: "UD_OID_USR_KEY": invalid identifier
    at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:91)
    at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:133)
    at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:206)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:455)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:413)
    at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1035)
    at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:194)
    at oracle.jdbc.driver.T4CPreparedStatement.executeForDescribe(T4CPreparedStatement.java:791)
    at oracle.jdbc.driver.T4CPreparedStatement.executeMaybeDescribe(T4CPreparedStatement.java:866)
    at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1188)
    at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3386)
    at oracle.jdbc.driver.OraclePreparedStatement.executeQuery(OraclePreparedStatement.java:3430)
    at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeQuery(OraclePreparedStatementWrapper.java:1491)
    at weblogic.jdbc.wrapper.PreparedStatement.executeQuery(PreparedStatement.java:135)
    at com.thortech.xl.dataaccess.tcDataBase.readPartialPreparedStatement(Unknown Source)
    at com.thortech.xl.dataaccess.tcDataBase.readPreparedStatement(Unknown Source)
    at com.thortech.xl.dataobj.PreparedStatementUtil.execute(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.matchChildTableData(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.matchChildTableData(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.getProcessMatches(Unknown Source)
    at com.thortech.xl.dataobj.util.tcReconciliationUtil.evaluateEvent(Unknown Source)
    at com.thortech.xl.dataobj.tcRCE.checkDataSorted(Unknown Source)
    at com.thortech.xl.dataobj.tcRCE.eventPostUpdate(Unknown Source)
    at com.thortech.xl.dataobj.tcDataObj.update(Unknown Source)
    at com.thortech.xl.dataobj.tcDataObj.save(Unknown Source)
    at com.thortech.xl.dataobj.tcTableDataObj.save(Unknown Source)
    at com.thortech.xl.dataobj.tcRCE.finishDataReceived(Unknown Source)
    at com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages.finishReconciliationEvent(Unknown Source)
    at com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages.execute(Unknown Source)
    at com.thortech.xl.schedule.jms.messagehandler.MessageProcessUtil.processMessage(Unknown Source)
    at com.thortech.xl.schedule.jms.messagehandler.ReconMessageHandlerMDB.onMessage(Unknown Source)
    at weblogic.ejb.container.internal.MDListener.execute(MDListener.java:466)
    at weblogic.ejb.container.internal.MDListener.transactionalOnMessage(MDListener.java:371)
    at weblogic.ejb.container.internal.MDListener.onMessage(MDListener.java:327)
    at weblogic.jms.client.JMSSession.onMessage(JMSSession.java:4659)
    at weblogic.jms.client.JMSSession.execute(JMSSession.java:4345)
    at weblogic.jms.client.JMSSession.executeMessage(JMSSession.java:3821)
    at weblogic.jms.client.JMSSession.access$000(JMSSession.java:115)
    at weblogic.jms.client.JMSSession$UseForRunnable.run(JMSSession.java:5170)
    at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
    at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
    at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    DEBUG,13 Apr 2011 13:32:19,067,[XELLERATE.SERVER],Class/Method: tcDataBase/getError entered.
    thank you

    Hi,
    Were you able to solve this?

  • EDirectory to OIM reconciliation - Password

    Hi
    We are replacing Novelll IDM with OIM. Existing user repository is eDirectory. The password field in eDirectory is write only. so i will not be able to export it.
    Can I use the eDirectory connector and configure the reconciliation to bring the password from eDirectory to OIM and then provision it to new target system.
    The AD password synchronisation connector will do it for AD. In the same way does the eDirectory connector can do for eDirectory.
    Any help will be really appreciated.
    Thanks
    Narendar

    I get the same error when installing connectors. Installed both the SUN DSE and MS AD Base connector now and see this error several times during installation.
    Installation says is succeeds though.
    Will move on to creating the IT resources now to see if they actually work.

  • OIM 9.1 Help on Internationalization

    I am new to OIM 9.1 and I am trying add a new User Defined Field via OIM Design console.
    Its getting reflected on OIM UI, but if I change the language to Japanese I am still seeing in English fonts for user defined fields but OOB fields are getting displayed in Japanses.
    Below are the steps which I followed.
    Added the following in the folder OIM_HOME/server/xellerate/customResources/ customResources_ja
    global.udf.USR-UDF-DEPARTMENT=Department
    global.udf.USR-UDF-CITY=City
    global.udf.USR-UDF-STATE=Statetest
    global.udf.USR-UDF-DISTRICT=DistrictTest
    global.udf.USR-UDF-COUNTRY=Country
    global.udf.USR_UDF_POSTAL=Postal Code
    global.udf.USR_UDF-TELEPHONE=Telephone Number
    If someone can send me the correct steps ie the files to be modified inorder to reflect the Internationalization
    that would be of great help.

    WLS 10.3.2 was just certified for OIM 9.1.0.2 BP5
    for more info
    OIM 9.1.0.1 in oracle database 11g release 2
    http://www.oracle.com/technology/software/products/ias/files/idm_certification_101401.html
    regards
    VM

Maybe you are looking for

  • Can I use home sharing if the other computer is off?

    I have a Mac Book Pro and my husband has Dell Desk Top PC...can he use home sharing to hear my music if my Mac is not on? Also can he permanently put my library on his computer using home sharing?

  • Idoc custom qualifier to pexr2002

    Hi, In a pexr2002 type idoc  I'm trying to add E1IDB02 segment with a custom qualifier while generating the idoc in an  exit(ZXF08U04). There are couple of other entries existing for E1IDB02 and when i try to add another entry with the custom qualifi

  • Itunes u app side bar (landscape)

    Does anyone know how to control the side bar that appears in the iTunes U app in landscape mode? Can you hide it? If not - how do you control what it shows? On my iPad the side bar only shows posts from one course, which is not the course I have sele

  • Class WritableRaster setPixels

    i read the explanations give in the docs for setPixels in WritableRaster class i could not understand iArray? what is the use of it? public void setPixels(int x,                       int y,                       int w,                       int h,  

  • Failed user login attempts

    hi can u say  in which failed user login attempts will be stored.