OIM LDAP connector for internal WebLogic LDAP?
Has anyone ever used OIM to manage internal LDAP for WebLogic? I'm considering it for compliance reasons.
Interesting thought, but how is the authentication realm configured in WLS for you? If it's just the default authentication provider in your security realm then you got only 3-4 odd users to manage (an overkill to use connector?). Make sure that you manage those account as service accounts from OIM, you don't want to corrupt out our domain by accident.
-Bikash
Similar Messages
-
LDAP connector for Customer masters With SAP..........
Hi Experts ,
Our requirement is we have certain applications which are integrated
with SAP Portal.
For these applications Data sources are maintained in two different
LDAPS.
One LDAP (enterprise directory) is for USER data and the other LDAP for
Customer data(in this senario customer data is nothing but business
partner role oragnization).
MY task is to build an interface for Customer data with LDAP sync.
So here the question is, Can we use SAP standard LDAP connectors to
make connectivity to the enterprise directory(LDAP)and push business
partners data from CRM to the enterprise directory.
In Standard SAP system which are standard LDAP connectors support
this functionality?
Please advice me and also let me know if we have any SAP notes for this
senario.
Best Regards
PrasadThank you very much for the useful link Martin. Anyway, there are some things that I cannot find for NX Unigraphics integration:
In the wiki you can find
You can download the CAD-Integration-Software from http://service.sap.com/swdc and then goto
Installations and Upgrades > Supplementary Components for Cross Industry Solutions > Life-Cycle Data Management > SAP PLM Integrations > select the desired integration
But that path does not exist in SAP download software page.
Also, in the availability matrix I can find integration with several systems (catia, solid edge, autocad...) but not unigraphics.
Could you please provide some more information on the topic?
Thanks a lot.
Neil -
Use of Lotus LDAP server for WLP 7 - LDAP experts ?
Hi,
I'm looking for someone who has used the Lotus LDAP server for WLP7
authentication.
I connect my portal to the Domino LDAP, User and Groups are working
fine, but the membership of a user to a group is not.
I assume that it's related to the parameters I use (especially the
membership.filter ?):
"user.filter=(&(uid=%u)(objectclass=person));
user.dn=O=Apac;
membership.filter=(&(uniquemember=%M)(objectclass=groupOfNames));
group.filter=(&(cn=%g)(objectclass=groupOfNames));
server.host=jpgal01.apac.bea.com;
group.dn="
Any help would be appreciate, because I just don't where to look for.
JP"JP" <[email protected]> wrote in message news:[email protected]..
Hi,
I'm looking for someone who has used the Lotus LDAP server for WLP7
authentication.
I connect my portal to the Domino LDAP, User and Groups are working
fine, but the membership of a user to a group is not.
I assume that it's related to the parameters I use (especially the
membership.filter ?):
"user.filter=(&(uid=%u)(objectclass=person));
user.dn=O=Apac;
membership.filter=(&(uniquemember=%M)(objectclass=groupOfNames));
group.filter=(&(cn=%g)(objectclass=groupOfNames));
server.host=jpgal01.apac.bea.com;
group.dn="
Any help would be appreciate, because I just don't where to look for.
Try setting the com.netscape.ldap.trace property.
\* When -D command line option is used, defining the property with
* no value will send the trace output to the standard error. If the
* value is defined, it is assumed to be the name of an output file.
* If the file name is prefixed with a '+' character, the file is
* opened in append mode.
This will create a ldap trace file of the requests that WLS is making on the
LDAP server. You can then see
where the filters are not returning the correct value for the group
membership. -
Use of Lotus LDAP server for WLP 7 - LDAP experts required
Hi,
I'm looking for someone who has used the Lotus LDAP server for WLP7
authentication.
User and Groups are working fine, the membership of a user to a group is
not.
I assume that it's related to the parameters I use (especially the
membership.filter ?):
user.filter=(&(uid=%u)(objectclass=person));
user.dn=O=Apac;
membership.filter=(&(uniquemember=%M)(objectclass=groupOfNames));
group.filter=(&(cn=%g)(objectclass=groupOfNames));
server.host=jpgal01.apac.bea.com;
group.dn=
I know that this LDAP server supported, but id it could work at least
for some time, that would be great !
thanks for your help,
JP"JP" <[email protected]> wrote in message news:[email protected]..
Hi,
I'm looking for someone who has used the Lotus LDAP server for WLP7
authentication.
I connect my portal to the Domino LDAP, User and Groups are working
fine, but the membership of a user to a group is not.
I assume that it's related to the parameters I use (especially the
membership.filter ?):
"user.filter=(&(uid=%u)(objectclass=person));
user.dn=O=Apac;
membership.filter=(&(uniquemember=%M)(objectclass=groupOfNames));
group.filter=(&(cn=%g)(objectclass=groupOfNames));
server.host=jpgal01.apac.bea.com;
group.dn="
Any help would be appreciate, because I just don't where to look for.
Try setting the com.netscape.ldap.trace property.
\* When -D command line option is used, defining the property with
* no value will send the trace output to the standard error. If the
* value is defined, it is assumed to be the name of an output file.
* If the file name is prefixed with a '+' character, the file is
* opened in append mode.
This will create a ldap trace file of the requests that WLS is making on the
LDAP server. You can then see
where the filters are not returning the correct value for the group
membership. -
Receive Connectors for Internal Relays - Before & After 2007-2013 Co-existence
I have just completed the process of migrating from Exchange 2007 Standard SP3 RP10 to Exchange 2013 Standard. I now have Exchange 2013 Standard CU3 installed on two Server 2012 Standard systems. The two new exchange servers are members of a DAG.
With Exchange 2007, I had to include the IP addresses of multi-function devices (MFDs) with scan to e-mail capability in a receive connector in order for the scan to e-mail to work.
Five of the MFDs were on the same subnet as our Exchange 2007 servers, and one MFD was not.
It is on the same subnet as our Exchange 2013 servers.
I created new Receive connectors on our Exchange 2013 servers for this purpose.
The one MFD on the same subnet as the Exchange 2013 servers was mistakenly excluded from a receive connector.
Much to my surprise, it is able to relay mail.
I removed the IP address of one of the other MFDs to see if the fact that it is on a different subnet than the Exchange 2013 servers made a difference.
I replicated our domain controllers to help ensure that a lack of AD replication would not be an issue with this test.
The excluded MFD is still able to relay items.
I have an application on a server. The application relays messages, but the IP address of the server it is on is not included in any receive connectors.
By searching through the SMTPreceive log, I found the IP address of the MFDs I did my scan to e-mail tests from in the log.
I also found the IP address and relayed messages from the application server.
The log indicates that the Default Frontend connector is handling this traffic.
Does Exchange 2013, by default, relay messages from all internal IP addresses?
Does this mean that I don’t need receive connectors for any internal devices (MFDs, servers, etc.).
Our Exchange 2007 servers have been decommissioned. Would I have needed connectors while we were still in a co-existence situation?
Am I likely to need them when we have our next co-existence situation in a few years?Hi Cara. Thank you for the response.
If I understand you correctly, you are saying that the MFDs are able to relay because the Default Frontend connector allows them to.
That makes sense for the one MFD that was not included in the customised connector I created.
Thank you for helping me sort that out.
By analysing the Front End Transport logs at the following location on my server, I determined that the included MFDs were using the customised connector I had created.
C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\FrontEnd\ProtocolLog\SmtpReceive
If I removed the IP address for one of those MFDs, it was still able to relay, but it was doing that through the Default Frontend connector.
That makes sense. As explained near the end of the following article, Exchange uses the most specific connector.
http://exchangeserverpro.com/exchange-2013-configure-smtp-relay-connector/
The one that includes the specific IP address of the MFD will be used, but if the IP address is not specified in any connectors, The Default Frontend connector will automatically be used by
the device.
I believe that I now understand how the have the relaying from MFDs is taking place, but I am not certain how some applications are completing their relaying.
Another department in my organisation has their own network.
I have a customised receive connector that includes the IP addresses of two application servers on their network.
Applications on these servers relay messages through the Exchange server on my network.
The headers on the relayed messages suggest that the messages are being relayed by the Default Frontend connector.
The logs for that connector, however, do not contain any entries for the two IP address.
The message tracking logs suggest that the Default <servername> connector is relaying for these applications.
If the most specific connector is supposed to handle the relaying, why is that not happening in this case?
Also, two other application servers from this network are not included in any customised connectors I have created.
The logs show that they are relaying mail through the Default Frontend connector.
If I understand you correctly, you are saying that this should not be happening, as applications and external users require a customised connector, rather than a built-in connector.
If I have mis-understood you, please clarify this for me.
Thanks!! -
OIM - Which connector for AD sync?
Hi,
what are the differences between "Microsoft Active Directory User Management (activedirectory-11.1.1.5.0.zip)" and "Microsoft Windows (MSFT_Win2k_9.0.4.12.zip)" connectors?
I need a connector which sync users from AD to OIM.
Which one of them do i need?Certain bugs has been fixed. Internal architecture is modified for connector server. Rest things at high level are same.
regards,
GP -
Hello,
Does the Unix connector (or any other connector) supports provisioning and reconciliation to / from NIS based Unix deployments ?
Thanks !I'm also interested if someone has any recommendation as for how to implement such a feature. Anyone has any ideas?
-
Compatible connectors for OIM 9.1.0
I am using OIM 9.1.0 but the problem is most of the connectors available for download are for the prior versions like 9.0.4 or before. And these connectors do not work with OIM 9.1.0 (Does not show in OIM Interface for Installation when copied to ConnectorDefaultDirectory).
Any idea where can i get a connector for Sun One LDAP which can work with OIM 9.1.0You can install the connectors of connector pack 9.0.4 as described in their documentation. They will work also with OIM 9.1it's just more work to do than just clicking install.
-
Hello,
we use LDAP connector for synchronization of SAP users and users in Active Directory. It works fine except of 3 user accounts. There is 3 users in our R/3 system for that the synchronization doesn't work. I used LDAPLOG transaction to display logs and there are 3 records - one record for each of the users:
Error while writing object <UserID> to the directory. Message no. LDAPSYNC013
Do you have any idea where could be problem? Why it occures just for 3 users? Is any possibility to find some detailed logs?
Thanks in advance for every advice!
Regards,
ZbynekHi
Please try these options:
LDAPSYNC013
User names in upper case during LDAP synchronisation
All the users names are in upper case in WebAS and in the Directory Server.
(https://websmp104.sap-ag.de/~form/sapnet?_FRAME=C ONTAINER&_OBJECT 2006153200000351502003E)
LDAPACCESS103
RSLDAPSYNC_USER : Detailed LDAP errors in the log
The Support Package proposed is the Basis SP1. It is installed on my SAP Server.
(https://websmp104.sap-ag.de/~form/sapnet?_FRAME=C ONTAINER&_OBJECT 1000358700000658142002E)
LDAPRC065
Error messages from message class LDAPRC
I extended the schema with the file proposed by WebAS (transaction SE38, report RSLDAPSCHEMAEXT). All the attributs and classes are in the Directory Server. The attribut in transaction LDAPMAP are the same as those of the Directory Server
(https://websmp104.sap-ag.de/~form/sapnet?_FRAME=C ONTAINER&_OBJECT 2006153200000083782002E)
LDAP BROWSER
Have you try to browse the directory with an ldap browser like www.ldapbrowser.com with the same settings as in TX LDAP -
OIM connector for db table--unable to Reconciliation data to OIM database
HI everyone
I installed OIM and Connector for Database Application Tables 9.1.03
I want to only Reconciliation one table in the target db,organization table.
when I build a GTC-connector though the administratoe console ,and run the task
nothing can Reconciliation into OIM db which map to a table
when look log .I find data has already into hashmap,but unable to insert Oimdb
only error msg is : Processing Reconciliation Message with ID -1 failed.
ER],Class/Method: tcDataBase/readPartialStatement entered.
INFO,21 Jul 2010 10:31:28,065,[XELLERATE.DATABASE],DB read: select rce_key, obj_key, rce_status, rce_delete_event, rce_rowver from rce where rce_key=-1
DEBUG,21 Jul 2010 10:31:28,065,[XELLERATE.DATABASE],select rce_key, obj_key, rce_status, rce_delete_event, rce_rowver from rce where rce_key=-1
INFO,21 Jul 2010 10:31:28,066,[XELLERATE.PERFORMANCE],Query: DB: 0, LOAD: 1, TOTAL: 1
ERROR,21 Jul 2010 10:31:28,066,[XELLERATE.JMS],The Reconciliation Event with key -1 does not exist
INFO,21 Jul 2010 10:31:28,066,[XELLERATE.PERFORMANCE],Message Process: com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages : 1011
DEBUG,21 Jul 2010 10:31:28,066,[XELLERATE.AUDITOR],Class/Method: AuditEngine/getAuditEngine entered.
ERROR,21 Jul 2010 10:31:28,066,[XELLERATE.JMS],Processing Reconciliation Message with ID -1 failed.
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.JMS],Class/Method: ProcessOfflineReconMessages/execute entered.
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.JMS],Class/Method: ProcessOfflineReconMessages/execute - Data: reconId - Value: -1
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.JMS],Class/Method: ProcessOfflineReconMessages/execute left.
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.JMS],Class/Method: ProcessOfflineReconMessages/finishReconciliationEvent entered.
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.JMS],Class/Method: ProcessOfflineReconMessages/finishReconciliationEvent - Data: plReconciliationEventKey - Value: -1
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.SERVER],Class/Method: tcDataBase/readPartialStatement entered.
INFO,21 Jul 2010 10:31:28,116,[XELLERATE.DATABASE],DB read: select rce_key, obj_key, rce_status, rce_delete_event, rce_rowver from rce where rce_key=-1
DEBUG,21 Jul 2010 10:31:28,116,[XELLERATE.DATABASE],select rce_key, obj_key, rce_status, rce_delete_event, rce_rowver from rce where rce_key=-1
INFO,21 Jul 2010 10:31:28,117,[XELLERATE.PERFORMANCE],Query: DB: 0, LOAD: 1, TOTAL: 1
ERROR,21 Jul 2010 10:31:28,117,[XELLERATE.JMS],The Reconciliation Event with key -1 does not exist
INFO,21 Jul 2010 10:31:28,117,[XELLERATE.PERFORMANCE],Message Process: com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages : 1006
DEBUG,21 Jul 2010 10:31:28,117,[XELLERATE.AUDITOR],Class/Method: AuditEngine/getAuditEngine entered.
ERROR,21 Jul 2010 10:31:28,117,[XELLERATE.JMS],Processing Reconciliation Message with ID -1 failed.
DEBUG,21 Jul 2010 10:31:32,328,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage entered.
DEBUG,21 Jul 2010 10:31:32,328,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage: Received new nessage
DEBUG,21 Jul 2010 10:31:32,328,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage: mdb message name ReconOfflineMessage message handler task com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages
DEBUG,21 Jul 2010 10:31:32,328,[XELLERATE.SERVER],Class/Method: tcDataBase/readPartialStatement entered.
INFO,21 Jul 2010 10:31:32,328,[XELLERATE.DATABASE],DB read: select usr_login from usr where USR_KEY=1
DEBUG,21 Jul 2010 10:31:32,328,[XELLERATE.DATABASE],select usr_login from usr where USR_KEY=1
INFO,21 Jul 2010 10:31:32,329,[XELLERATE.PERFORMANCE],Query: DB: 1, LOAD: 0, TOTAL: 1
INFO,21 Jul 2010 10:31:32,329,[XELLERATE.DATABASE],dbLogger
DEBUG,21 Jul 2010 10:31:32,329,[XELLERATE.SERVER],Class/Method: tcDataBase/eventPreInsert entered.
DEBUG,21 Jul 2010 10:31:32,329,[XELLERATE.SERVER],Class/Method: tcDataBase/tcDataBase left.
DEBUG,21 Jul 2010 10:31:32,329,[XELLERATE.AUDITOR],Class/Method: AuditEngine/getAuditEngine entered.
DEBUG,21 Jul 2010 10:31:33,069,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage left.
DEBUG,21 Jul 2010 10:31:33,076,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage entered.
DEBUG,21 Jul 2010 10:31:33,076,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage: Received new nessage
DEBUG,21 Jul 2010 10:31:33,076,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage: mdb message name ReconOfflineMessage message handler task com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages
DEBUG,21 Jul 2010 10:31:33,076,[XELLERATE.SERVER],Class/Method: tcDataBase/readPartialStatement entered.
INFO,21 Jul 2010 10:31:33,077,[XELLERATE.DATABASE],DB read: select usr_login from usr where USR_KEY=1
DEBUG,21 Jul 2010 10:31:33,077,[XELLERATE.DATABASE],select usr_login from usr where USR_KEY=1
INFO,21 Jul 2010 10:31:33,077,[XELLERATE.PERFORMANCE],Query: DB: 0, LOAD: 0, TOTAL: 0
INFO,21 Jul 2010 10:31:33,078,[XELLERATE.DATABASE],dbLogger
DEBUG,21 Jul 2010 10:31:33,078,[XELLERATE.SERVER],Class/Method: tcDataBase/eventPreInsert entered.
DEBUG,21 Jul 2010 10:31:33,078,[XELLERATE.SERVER],Class/Method: tcDataBase/tcDataBase left.
DEBUG,21 Jul 2010 10:31:33,078,[XELLERATE.AUDITOR],Class/Method: AuditEngine/getAuditEngine entered.
DEBUG,21 Jul 2010 10:31:33,119,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage left.
DEBUG,21 Jul 2010 10:31:33,121,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage entered.
DEBUG,21 Jul 2010 10:31:33,121,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage: Received new nessage
DEBUG,21 Jul 2010 10:31:33,121,[XELLERATE.JMS],Class/Method: MessageHandlerMDB/onMessage: mdb message name ReconOfflineMessage message handler task com.thortech.xl.schedule.jms.reconOffline.ProcessOfflineReconMessages
DEBUG,21 Jul 2010 10:31:33,121,[XELLERATE.SERVER],Class/Method: tcDataBase/readPartialStatement entered.
INFO,21 Jul 2010 10:31:33,121,[XELLERATE.DATABASE],DB read: select usr_login from usr where USR_KEY=1
DEBUG,21 Jul 2010 10:31:33,121,[XELLERATE.DATABASE],select usr_login from usr where USR_KEY=1
INFO,21 Jul 2010 10:31:33,122,[XELLERATE.PERFORMANCE],Query: DB: 1, LOAD: 0, TOTAL: 1
INFO,21 Jul 2010 10:31:33,122,[XELLERATE.DATABASE],dbLogger
DEBUG,21 Jul 2010 10:31:33,122,[XELLERATE.SERVER],Class/Method: tcDataBase/eventPreInsert entered.log :
, classname:com.thortech.xl.gc.impl.transform.Translation, name:Translation
parameterList is following /nname: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
name: lookup, datatype: String, encrypted: false, type: Runtime.
validValueList is following
, classname:com.thortech.xl.gc.impl.transform.Concatenation, name:Concatenation
parameterList is following /nname: input1, datatype: String, encrypted: false, type: Runtime.
validValueList is following
name: input2, datatype: String, encrypted: false, type: Runtime.
validValueList is following
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProvider......2
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],transformProviderclassname:com.thortech.xl.gc.impl.transform.OnetoOne, name:OnetoOne
parameterList is following /nname: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],nameOnetoOne
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],come in transformationName.equalsIgnoreCase(name)
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName. ..found transformation provider.....
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName. ..found transformation provider.....
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName....provider class name = ..com.thortech.xl.gc.impl.transform.OnetoOne
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION], provider nameOnetoOne
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION], provider def attribnull
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION], provider parm, list[name: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION], provider resp codes{ONETOONE_CLASS_CAST=Attempted to cast an object to a subclass of which it is not an instance, ONETOONE_INPUTSTR_MISSING=Input String is Missing}
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName. ..found transformation provider.....com.thortech.xl.gc.impl.transform.OnetoOne
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],classname--->com.thortech.xl.gc.impl.transform.OnetoOne
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.ADAPTERS],Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.ADAPTERS],Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDERREGISTRATION],Loading Provider Class -->com.thortech.xl.gc.impl.transform.OnetoOne
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],output--->
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],Doing transfornmation for parentData--->com.thortech.xl.gc.vo.designtime.AttributeWithSource@a82b22
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],field--->ATTRIBUTE9
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],transformParams--->{input=com.thortech.xl.gc.vo.designtime.SourceValue@a7e343}
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],key--->input
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],not literal--->
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],inputField--->ATTRIBUTE9
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],input--->{ATTRIBUTE9=, ATTRIBUTE8=, ATTRIBUTE7=, ATTRIBUTE6=, CREATED_DATE=, ATTRIBUTE5=, ATTRIBUTE4=, IS_QUOTE=, ATTRIBUTE3=, ATTRIBUTE2=, CREATE_BY=, ATTRIBUTE1=, UPDATED_DATE=, UPDATE_BY=, ATTRIBUTE10=, IS_ASK=, ORGANIZATION_ID=5, UPPER_ORGANIZATION_ID=, ORGANIZATION_NAME=淇℃伅璧勬簮閮?, ORGANIZATION_CODE=5}
DEBUG,21 Jul 2010 10:31:27,228,[XELLERATE.GC.PROVIDER.TRANSFORMATION],sourceData--->TargetFields
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDER.TRANSFORMATION],inputFieldValue--->
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDER.TRANSFORMATION],transformationName--->OnetoOne
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],transformType--->OnetoOne
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName......
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],getProviderClassName--->
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],transformationProviders[classname:com.thortech.xl.gc.impl.transform.OnetoOne, name:OnetoOne
parameterList is following /nname: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
, classname:com.thortech.xl.gc.impl.transform.Translation, name:Translation
parameterList is following /nname: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
name: lookup, datatype: String, encrypted: false, type: Runtime.
validValueList is following
, classname:com.thortech.xl.gc.impl.transform.Concatenation, name:Concatenation
parameterList is following /nname: input1, datatype: String, encrypted: false, type: Runtime.
validValueList is following
name: input2, datatype: String, encrypted: false, type: Runtime.
validValueList is following
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProvider......2
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],transformProviderclassname:com.thortech.xl.gc.impl.transform.OnetoOne, name:OnetoOne
parameterList is following /nname: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],nameOnetoOne
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],come in transformationName.equalsIgnoreCase(name)
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName. ..found transformation provider.....
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName. ..found transformation provider.....
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName....provider class name = ..com.thortech.xl.gc.impl.transform.OnetoOne
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION], provider nameOnetoOne
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION], provider def attribnull
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION], provider parm, list[name: input, datatype: String, encrypted: false, type: Runtime.
validValueList is following
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION], provider resp codes{ONETOONE_CLASS_CAST=Attempted to cast an object to a subclass of which it is not an instance, ONETOONE_INPUTSTR_MISSING=Input String is Missing}
DEBUG,21 Jul 2010 10:31:27,229,[XELLERATE.GC.PROVIDERREGISTRATION],inside getProviderClassName. ..found transformation provider.....com.thortech.xl.gc.impl.transform.OnetoOne
I -
Does OIM Connector for AS400 support provisioning of "Information Systems"?
A customer is asking to configure OIM’s connector for AS/400 with the set of attributes natively supported (a.k.a. documented) by our connector, plus another one, named, in Italian, “Sistemi Informativi” (“Information Systems”).
As far as I can understand from the Customer, and by reading some documents downloaded from the Internet, an “Information System” is a set of AS/400 libraries that the End-User Administrator can enable for the user.
The possibility to configure one or more “Information Systems” seems to be enabled by the installation of a (quite popular, according to my Customer) AS/400 module named “Modulo Base” (“Base Module” in English”).
Does anyone have any experience about this feature?
Regards,
Angelo CarugatiIt is a separate connector.
Talk to your Oracle sales person to get more information about the licensing. -
Hi All,
I have instlalled the OIM DBUM connector for Oracle databse. I have provided all the parametrs except connectionproperties column while configuring the itresource for the connector.when trying to run the schedulers OOTB to populate lookups synchronized with target iam getting the following error.please help me out.
oracle.iam.connectors.icfcommon.exceptions.OIMException: Thor.API.Exceptions.tcAPIException: Row index out of bounds
thanks.Hi Ketan,
I have installed DBUM *11.1.1.6* on OIM *11.1.1.5* locally.
in the connector guide i followed below steps.
1. Sec:2.2.1 Installing the Connector in Oracle Identity Manager
2. Sec:2.3 Postinstallation
Section 2.3.1, "Postinstallation on Oracle Identity Manager"
Section 2.3.1.1, "Configuring the Target System As a Trusted Source"-notdone
Section 2.3.1.2, "Changing to the Required Input Locale" -----left it with default values
Section 2.3.1.3, "Clearing Content Related to Connector Resource Bundles from the
Server Cache"
Section 2.3.1.4, "Creating the Administrator Account on Oracle Database Vault"-----not done
Section 2.3.1.5, "Setting up the Lookup Definition for Connection Pooling"---not done
Section 2.3.1.6, "Enabling Logging for Oracle Identity Manager"
Section 2.3.2 Configuring the IT Resource for the Target System
In this we have a parameter text field called Connection Properties ----I left it blank and dont know what needs to be filled.
Remaining parameters are set
Database Name-IP of DB machine
DB Type
JDBC Driver
JDBC URL
Login Password
Login User
I could see connector installation success message. But when I am trying to run the scheduled jobs configured to populate the lookups , getting the above mentioned error.
Thanks.
Section 2.3.2, "Configuring the IT Resource for the Target System"
Section 2.3.3, "Configuring the Connector to Support Multiple Versions of the
Target System"------------------->not done
Edited by: Powerlad on Sep 2, 2012 11:55 PM -
Hi All,
I am installing OIM - PeopleSoft connector for Employee Reeconciliation. As part of Target System Configuration for Full Reconciliation(Trusted Source) i performed all the steps specified in Connector documentation on Target System. Summary of the steps is Full publish of Person Data in PeopleSoft as xml files and feeding these xml as initial data load to OIM. After running the process scheduler for Data Publish of PERSON_BASIC_FULLSYNC message i dont see any xml files being generated. Rather it only gives me one log file and a .trc file. The log file says the process has ran successfully. But no expected out.
Any one who previously performed these steps successfully please share your experience and pointer would be appreciated
PeopleSoft HRMS 8.8
People Tools : 8.9.26
OIM 11g.
Connector : 9.1.1.6
Connector Documnetation Followed : http://download.oracle.com/docs/cd/E11223_01/doc.910/e11205/deploy.htm#BIHFHICC
Regards,
Ashoki'm face the same problem, have u soloved this problem . can u share me with it ?
-
OIM 11g high availability - is LDAP required for Weblogic credential store
Hi all,
Trying to understand whether we need an LDAP in an HA architecture with [OIM/SOA] - [OIM/SOA/Admin]?
The HA guide: http://docs.oracle.com/cd/E14571_01/core.1111/e10106/imha.htm#CDEFECJF
Does not mention this requirement, in fact it specifically says you only need an LDAP if: "only for LDAPSync-enabled Oracle Identity Manager installations and for Oracle Identity Manager installations that integrate with Oracle Access Manager. "
However I have seen mention of issues with viewing tasks in SOA from OIM:
How To : ORABPEL-30504: After Oim 11g Installation, Approval Tasks Cannot Be Read Through OIM Console
Stating then when using OIM, SOA and an isolated Admin server, you need to switch to a proper LDAP as a credential and policy store:
http://docs.oracle.com/cd/E17904_01/core.1111/e12036/net.htm#CIHIDJCC
"2.4 LDAP as Credential and Policy Store
With Oracle Fusion Middleware, you can use different types of credential and policy stores in a WebLogic domain. Domains can use stores based on XML files or on different types of LDAP providers. When a domain uses an LDAP store, all policy and credential data is kept and maintained in a centralized store. However, when using XML policy stores, the changes made on managed servers are not propagated to the Administration Server unless they use the same domain home.
An Oracle Fusion Middleware SOA Suite Enterprise Deployment Topology uses different domain homes for the Administration Server and the managed server as described in the Section 2.3, "Shared Storage and Recommended Directory Structure." Derived from this, and for integrity and consistency purposes, Oracle requires the use of an LDAP as policy and credential store in context of Oracle Fusion Middleware SOA Suite Enterprise Deployment Topology. To configure the Oracle Fusion Middleware SOA Suite Enterprise Deployment Topology with an LDAP as Credential and Policy store, follow the steps in Section 11.1, "Credential and Policy Store Configuration."
So which is it does anyone know?
Thanks,
Wayne.
Edited by: wblacklock on May 17, 2012 6:12 AMNote that you can use the internal LDAP that comes with WebLogic, for your users and groups if you want.
When you have multiple domains, you have a problem with this set-up as the internal LDAP is coupled to
a specific domain. This means that users you created in one domain are not visible in the other. When using
a separate LDAP that contains the users. You can configure in each domain an authenticator that points
to the LDAP. In this way you can share to user accross multiple domains.
When you are planning to use one domain you can stick with the internal LDAP if you want.
An example set-up (that uses access manager not identity manager) can be found here: http://middlewaremagic.com/weblogic/?p=7819,
which might help you in how to proceed. -
OIM OES Integration to use LDAP groups for policy making
Hi ,
I am trying to make policy for the OIM application using OES. i want to use my LDAP groups as principals to control the access in OIM. How it can be achieved
Thanks
Edited by: user10660448 on May 21, 2013 1:35 AMNote that you can use the internal LDAP that comes with WebLogic, for your users and groups if you want.
When you have multiple domains, you have a problem with this set-up as the internal LDAP is coupled to
a specific domain. This means that users you created in one domain are not visible in the other. When using
a separate LDAP that contains the users. You can configure in each domain an authenticator that points
to the LDAP. In this way you can share to user accross multiple domains.
When you are planning to use one domain you can stick with the internal LDAP if you want.
An example set-up (that uses access manager not identity manager) can be found here: http://middlewaremagic.com/weblogic/?p=7819,
which might help you in how to proceed.
Maybe you are looking for
-
Any way to see sharp pixels in a bitmap close-up?
Is there a way turn off antialias for a particular object (bitmap)? I want to fly the camera close to an image and see sharp edged pixels rather than a blur. Can this be done?
-
11.1.2.1 Planning JavaScript steps after updating ValidateData.js
I am working with Planning 11.1.2.1 this is a multiple server deployment (1 web server, 2 planning servers with load balancing). My question is I have updated the ValidateData.js in the HyperionPlanning.ear. Aside from deleting the Planning0\tmp dire
-
Mac App Store - page is inaccessible due to your Parental Control
Whenever I start the app store I get the following message on the Featured, Top Charts, and Purchased tabs. defaultButtonok message This page is inaccessible due to your Parental Control settings. okButtonStringOK If I try to sign in the wheel next t
-
XDCAM .mov Files on a PC in PrPro CC
Anybody know if there will be any support for XDCAM .mov files in Premiere Pro CC? I have a feeling that this is a limitation of Windows rather than Pr as it works fine on a Mac. Is the Calibrated software plugin the only workaround available or will
-
How can I find and edit the rss.xml feed made my iWed and .Mac?
I need to edit my rss.xml made by iWeb and .Mac so I can redirect iTunes to a my new rss from feedburner. Please advise. Thank you.