Creating user in AD error
Hey ,
I downloaded your sample app for java , all worked fine until I wanted to create an user with Display Name that has accents or not so usual characters. I get response code 500 , internal error...
Request:
"userPrincipalName": "[email protected]",
"mailNickname": "l45808",
"passwordProfile": {
"forceChangePasswordNextLogin": "false",
"password": "xxxxxxx"
"accountEnabled": "true",
"givenName": "ALVES",
"displayName": "VÂNIA ZOADA ALVES PEREIRA"
Response:
Response Code: 500
{"odata.error":{"code":"Service_InternalServerError","message":{"lang":"en","value":"Encountered an internal server error."}}}
Does anyone know why? I really need accents in display names , i can do that through the management portal but i rather do it through the API.
Thanks in advance.
Hi
Display name will accept unicode characters so it should work with accent in it.
In AAD Graph service calls, Server errors are represented by 500-series HTTP status codes, such as a transient directory failure. Most
of these errors are transient and can be resolved by retrying the request.
Regards
Aram
Similar Messages
-
Hi,
I'm using the below PowerShell script, by @hicannl which I found on the MS site, for bulk creating users from a CSV file.
I've had to edit it a bit, adding some additional user fields, and removing others, and changing the sAMAccount name from first initial + lastname, to firstname.lastname. However now when I run it, I get an error saying:
"[ERROR] Oops, something went wrong: The following exception occurred while retrieving member "Put": "There is no such object on the server."
The account is created in the default OU, with the correct firstname.lastname format, but then it seems to error at setting the "Set an ExtensionAttribute" section. However I can't see why!
Any help would be appreciated!
# ERROR REPORTING ALL
Set-StrictMode -Version latest
# LOAD ASSEMBLIES AND MODULES
Try
Import-Module ActiveDirectory -ErrorAction Stop
Catch
Write-Host "[ERROR]`t ActiveDirectory Module couldn't be loaded. Script will stop!"
Exit 1
#STATIC VARIABLES
$path = Split-Path -parent $MyInvocation.MyCommand.Definition
$newpath = $path + "\import_create_ad_users_test.csv"
$log = $path + "\create_ad_users.log"
$date = Get-Date
$addn = (Get-ADDomain).DistinguishedName
$dnsroot = (Get-ADDomain).DNSRoot
$i = 1
$server = "localserver.ourdomain.net"
#START FUNCTIONS
Function Start-Commands
Create-Users
Function Create-Users
"Processing started (on " + $date + "): " | Out-File $log -append
"--------------------------------------------" | Out-File $log -append
Import-CSV $newpath | ForEach-Object {
If (($_.Implement.ToLower()) -eq "yes")
If (($_.GivenName -eq "") -Or ($_.LastName -eq ""))
Write-Host "[ERROR]`t Please provide valid GivenName, LastName. Processing skipped for line $($i)`r`n"
"[ERROR]`t Please provide valid GivenName, LastName. Processing skipped for line $($i)`r`n" | Out-File $log -append
Else
# Set the target OU
$location = $_.TargetOU + ",$($addn)"
# Set the Enabled and PasswordNeverExpires properties
If (($_.Enabled.ToLower()) -eq "true") { $enabled = $True } Else { $enabled = $False }
If (($_.PasswordNeverExpires.ToLower()) -eq "true") { $expires = $True } Else { $expires = $False }
If (($_.ChangePasswordAtLogon.ToLower()) -eq "true") { $changepassword = $True } Else { $changepassword = $False }
# A check for the country, because those were full names and need
# to be land codes in order for AD to accept them. I used Netherlands
# as example
If($_.Country -eq "Netherlands")
$_.Country = "NL"
ElseIf ($_.Country -eq "Austria")
$_.Country = "AT"
ElseIf ($_.Country -eq "Australia")
$_.Country = "AU"
ElseIf ($_.Country -eq "United States")
$_.Country = "US"
ElseIf ($_.Country -eq "Germany")
$_.Country = "DE"
ElseIf ($_.Country -eq "Italy")
$_.Country = "IT"
Else
$_.Country = ""
# Replace dots / points (.) in names, because AD will error when a
# name ends with a dot (and it looks cleaner as well)
$replace = $_.Lastname.Replace(".","")
$lastname = $replace
# Create sAMAccountName according to this 'naming convention':
# <FirstName>"."<LastName> for example
# joe.bloggs
$sam = $_.GivenName.ToLower() + "." + $lastname.ToLower()
Try { $exists = Get-ADUser -LDAPFilter "(sAMAccountName=$sam)" -Server $server }
Catch { }
If(!$exists)
# Set all variables according to the table names in the Excel
# sheet / import CSV. The names can differ in every project, but
# if the names change, make sure to change it below as well.
$setpass = ConvertTo-SecureString -AsPlainText $_.Password -force
Try
Write-Host "[INFO]`t Creating user : $($sam)"
"[INFO]`t Creating user : $($sam)" | Out-File $log -append
New-ADUser $sam -GivenName $_.GivenName `
-Surname $_.LastName -DisplayName ($_.LastName + ", " + $_.GivenName) `
-StreetAddress $_.StreetAddress -City $_.City `
-Country $_.Country -UserPrincipalName ($sam + "@" + $dnsroot) `
-Company $_.Company -Department $_.Department `
-Title $_.Title -AccountPassword $setpass `
-PasswordNeverExpires $expires -Enabled $enabled `
-ChangePasswordAtLogon $changepassword -server $server
Write-Host "[INFO]`t Created new user : $($sam)"
"[INFO]`t Created new user : $($sam)" | Out-File $log -append
$dn = (Get-ADUser $sam).DistinguishedName
# Set an ExtensionAttribute
If ($_.ExtensionAttribute1 -ne "" -And $_.ExtensionAttribute1 -ne $Null)
$ext = [ADSI]"LDAP://$dn"
$ext.Put("extensionAttribute1", $_.ExtensionAttribute1)
Try { $ext.SetInfo() }
Catch { Write-Host "[ERROR]`t Couldn't set the Extension Attribute : $($_.Exception.Message)" }
# Move the user to the OU ($location) you set above. If you don't
# want to move the user(s) and just create them in the global Users
# OU, comment the string below
If ([adsi]::Exists("LDAP://$($location)"))
Move-ADObject -Identity $dn -TargetPath $location
Write-Host "[INFO]`t User $sam moved to target OU : $($location)"
"[INFO]`t User $sam moved to target OU : $($location)" | Out-File $log -append
Else
Write-Host "[ERROR]`t Targeted OU couldn't be found. Newly created user wasn't moved!"
"[ERROR]`t Targeted OU couldn't be found. Newly created user wasn't moved!" | Out-File $log -append
# Rename the object to a good looking name (otherwise you see
# the 'ugly' shortened sAMAccountNames as a name in AD. This
# can't be set right away (as sAMAccountName) due to the 20
# character restriction
$newdn = (Get-ADUser $sam).DistinguishedName
Rename-ADObject -Identity $newdn -NewName ($_.LastName + ", " + $_.GivenName)
Write-Host "[INFO]`t Renamed $($sam) to $($_.GivenName) $($_.LastName)`r`n"
"[INFO]`t Renamed $($sam) to $($_.GivenName) $($_.LastName)`r`n" | Out-File $log -append
Catch
Write-Host "[ERROR]`t Oops, something went wrong: $($_.Exception.Message)`r`n"
Else
Write-Host "[SKIP]`t User $($sam) ($($_.GivenName) $($_.LastName)) already exists or returned an error!`r`n"
"[SKIP]`t User $($sam) ($($_.GivenName) $($_.LastName)) already exists or returned an error!" | Out-File $log -append
Else
Write-Host "[SKIP]`t User $($sam) ($($_.GivenName) $($_.LastName)) will be skipped for processing!`r`n"
"[SKIP]`t User $($sam) ($($_.GivenName) $($_.LastName)) will be skipped for processing!" | Out-File $log -append
$i++
"--------------------------------------------" + "`r`n" | Out-File $log -append
Write-Host "STARTED SCRIPT`r`n"
Start-Commands
Write-Host "STOPPED SCRIPT"Here is one I have used. It can be easily updated to accommodate many needs.
function New-RandomPassword{
$pwdlength = 10
$bytes = [byte[]][byte]1
$pwd=[string]""
$rng=New-Object System.Security.Cryptography.RNGCryptoServiceProvider
while (!(($PWD -cmatch "[a-z]") -and ($PWD -cmatch "[A-Z]") -and ($PWD -match "[0-9]"))){
$pwd=""
for($i=1;$i -le $pwdlength;$i++){
$rng.getbytes($bytes)
$rnd = $bytes[0] -as [int]
$int = ($rnd % 74) + 48
$chr = $int -as [char]
$pwd = $pwd + $chr
$pwd
function AddUser{
Param(
[Parameter(Mandatory=$true)]
[object]$user
$pwd=New-RandomPassword
$random=Get-Random -minimum 100 -maximum 999
$surname="$($user.Lastname)$random"
$samaccountname="$($_.Firstname.Substring(0,1))$surname"
$userprops=@{
Name=$samaccountname
SamAccountName=$samaccountname
UserPrincipalName=“$[email protected]”)
GivenName=$user.Firstname
Surname=$surname
SamAccountName=$samaccountname
AccountPassword=ConvertTo-SecureString $pwd -AsPlainText -force
Path='OU=Test,DC=nagara,DC=ca'
New-AdUser @userprops -Enabled:$true -PassThru | |
Add-Member -MemberType NoteProperty -Name Password -Value $pwd -PassThru
Import-CSV -Path c:\users\administrator\desktop\users.csv |
ForEach-Object{
AddUser $_
} |
Select SamAccountName, Firstname, Lastname, Password |
Export-Csv \accountinformation.csv -NoTypeInformation
¯\_(ツ)_/¯ -
Hi,
I'm using the script found in metalink to create a Portal 902 user in OID using PL/SQL:
Note 229601.1 How to Create a Portal User through PL/SQL
The script runs fine under the Portal schema, but I get the following error using a different schema with execute rights to portal.wwsec_oid.
ORA-06510: PL/SQL: unhandled user-defined exception
ORA-06512: at"PORTAL.WWCTX_SSO", line 651
ORA-06510: PL/SQL: unhandled user-defined exception
ORA-06512: at "PORTAL.WWCTX_SSO", line 497
ORA-06502: PL/SQL: numeric or value error
I'd appreciate it if anyone has had success in this area.
The script:
DECLARE
p_name VARCHAR2 (50);
p_password VARCHAR2 (50);
p_firstname VARCHAR2 (60);
p_lastname VARCHAR2 (120);
p_group VARCHAR2 (50);
p_employeenumber VARCHAR2 (50);
p_e_mail VARCHAR2 (2000);
l_group VARCHAR2 (240);
l_member VARCHAR2 (240);
l_guid VARCHAR2 (32);
l_password VARCHAR2 (10);
l_ret VARCHAR2 (100);
l_dn VARCHAR2 (100);
BEGIN
p_name := '&username';
l_password := '&password';
p_firstname := '&firstname';
p_lastname := '&lastname';
p_e_mail := '&e_mail';
p_group := '&group';
BEGIN
-- FUNCTION CREATE_USER_ENTRY RETURNS VARCHAR2
-- Argument Name Type In/Out Default?
-- P_BASE VARCHAR2 IN
-- P_USER_NAME VARCHAR2 IN
-- P_PASSWORD VARCHAR2 IN
-- P_EMAIL VARCHAR2 IN DEFAULT
-- P_FIRST_NAME VARCHAR2 IN DEFAULT
-- P_LAST_NAME VARCHAR2 IN DEFAULT
-- P_WORK_PHONE VARCHAR2 IN DEFAULT
-- P_CREATE_STATE VARCHAR2 IN DEFAULT
-- P_BIND_AS_USER BOOLEAN IN DEFAULT
l_guid := wwsec_oid.create_user_entry (p_base => wwsec_oid.get_user_search_base,
p_user_name => p_name,
p_password => l_password,
p_email => p_e_mail,
p_first_name => p_firstname,
p_last_name => p_lastname,
p_bind_as_user => true);
EXCEPTION
WHEN wwsec_oid.NO_LDAP_CONNECTION_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'0');
WHEN wwsec_oid.LDAP_PARAMETERS_NOT_AVAILABLE THEN
RAISE_APPLICATION_ERROR (-20001,'1');
WHEN wwsec_oid.LDAP_CONNECTION_ERROR THEN
RAISE_APPLICATION_ERROR (-20001,'2');
WHEN wwsec_oid.INSUFFICIENT_ACCESS THEN
RAISE_APPLICATION_ERROR (-20001,'3');
WHEN wwsec_oid.LDAP_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'4');
WHEN wwsec_oid.NOT_FOUND_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'5');
WHEN wwsec_oid.MULTIPLE_MATCHES_FOUND THEN
RAISE_APPLICATION_ERROR (-20001,'6');
WHEN wwsec_oid.VALUE_NOT_FOUND_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'7');
WHEN wwsec_oid.ALREADY_EXISTS_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'8');
WHEN OTHERS THEN
RAISE_APPLICATION_ERROR (-20001,'Call to wwsec_oid.create_user_entry went wrong.');
END;
BEGIN
-- Due to bug #2311160/2578675 - Problem with wwsec_oid. get_group_search_base value as it returns null.
-- Ex: l_group := 'cn='||p_group||','||wwsec_oid.get_group_search_base;
-- Please substitute the dc's entries by your domain.
-- FUNCTION GET_GROUP_SEARCH_BASE RETURNS VARCHAR2
l_group := 'cn='||p_group||',cn=portal_groups,cn=groups,dc=bcou,dc=ca';
-- FUNCTION GET_USER_SEARCH_BASE RETURNS VARCHAR2
l_member := 'cn='||p_name ||','||wwsec_oid.get_user_search_base;
-- PROCEDURE GRANT_GROUP_MEMBERSHIP
-- Argument Name Type In/Out Default?
-- P_GROUP_DN VARCHAR2 IN
-- P_MEMBER_DN VARCHAR2 IN
-- P_IS_OWNER BOOLEAN IN DEFAULT
-- P_MAKE_MEMBER BOOLEAN IN DEFAULT
-- P_BIND_AS_USER BOOLEAN IN DEFAULT
wwsec_oid.grant_group_membership (p_group_dn => l_group, p_member_dn => l_member);
EXCEPTION
WHEN OTHERS THEN
dbms_output.put_line(sqlerrm);
RAISE_APPLICATION_ERROR (-20001,'Call to wwsec_oid.grant_group_membership went wrong');
END;
BEGIN
-- FUNCTION UPDATE_USER_PROFILE RETURNS VARCHAR2
-- Argument Name Type In/Out Default?
-- P_USER_NAME VARCHAR2 IN
-- P_EMPNO VARCHAR2 IN DEFAULT
-- P_DISPLAY VARCHAR2 IN DEFAULT
-- P_DISPLAY_PERSONAL_INFO VARCHAR2 IN DEFAULT
-- P_NOTIFICATION_PREFERENCE VARCHAR2 IN DEFAULT
-- P_LAST_NAME VARCHAR2 IN DEFAULT
-- P_FIRST_NAME VARCHAR2 IN DEFAULT
-- P_MIDDLE_NAME VARCHAR2 IN DEFAULT
-- P_KNOWN_AS VARCHAR2 IN DEFAULT
-- P_MAIDEN_NAME VARCHAR2 IN DEFAULT
-- P_DATE_OF_BIRTH VARCHAR2 IN DEFAULT
-- P_EMAIL VARCHAR2 IN DEFAULT
-- P_WORK_PHONE VARCHAR2 IN DEFAULT
-- P_HOME_PHONE VARCHAR2 IN DEFAULT
-- P_MOBILE_PHONE VARCHAR2 IN DEFAULT
-- P_PAGER VARCHAR2 IN DEFAULT
-- P_FAX VARCHAR2 IN DEFAULT
-- P_OFFICE_ADDR1 VARCHAR2 IN DEFAULT
-- P_OFFICE_ADDR2 VARCHAR2 IN DEFAULT
-- P_OFFICE_ADDR3 VARCHAR2 IN DEFAULT
-- P_OFFICE_CITY VARCHAR2 IN DEFAULT
-- P_OFFICE_STATE VARCHAR2 IN DEFAULT
-- P_OFFICE_ZIP VARCHAR2 IN DEFAULT
-- P_OFFICE_COUNTRY VARCHAR2 IN DEFAULT
-- P_HOME_ADDR1 VARCHAR2 IN DEFAULT
-- P_HOME_ADDR2 VARCHAR2 IN DEFAULT
-- P_HOME_ADDR3 VARCHAR2 IN DEFAULT
-- P_HOME_CITY VARCHAR2 IN DEFAULT
-- P_HOME_STATE VARCHAR2 IN DEFAULT
-- P_HOME_ZIP VARCHAR2 IN DEFAULT
-- P_HOME_COUNTRY VARCHAR2 IN DEFAULT
-- P_ORGANIZATION VARCHAR2 IN DEFAULT
-- P_TITLE VARCHAR2 IN DEFAULT
-- P_SPENDING_LIMIT NUMBER IN DEFAULT
-- P_HIREDATE VARCHAR2 IN DEFAULT
-- P_SOURCE VARCHAR2 IN DEFAULT
-- P_MANAGER_USER_NAME VARCHAR2 IN DEFAULT
-- P_DN VARCHAR2 OUT
l_ret := wwsec_oid.update_user_profile (p_user_name => p_name,
p_first_name => p_firstname,
p_last_name => p_lastname,
p_email => p_e_mail,
p_dn => l_dn);
EXCEPTION
WHEN wwsec_oid.NO_LDAP_CONNECTION_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'0');
WHEN wwsec_oid.LDAP_PARAMETERS_NOT_AVAILABLE THEN
RAISE_APPLICATION_ERROR (-20001,'1');
WHEN wwsec_oid.LDAP_CONNECTION_ERROR THEN
RAISE_APPLICATION_ERROR (-20001,'2');
WHEN wwsec_oid.INSUFFICIENT_ACCESS THEN
RAISE_APPLICATION_ERROR (-20001,'3');
WHEN wwsec_oid.LDAP_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'4');
WHEN wwsec_oid.NOT_FOUND_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'5');
WHEN wwsec_oid.MULTIPLE_MATCHES_FOUND THEN
RAISE_APPLICATION_ERROR (-20001,'6');
WHEN wwsec_oid.VALUE_NOT_FOUND_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'7');
WHEN wwsec_oid.ALREADY_EXISTS_EXCEPTION THEN
RAISE_APPLICATION_ERROR (-20001,'8');
WHEN OTHERS THEN
RAISE_APPLICATION_ERROR (-20001,'Call to wwsec_oid.update_user_profile went wrong');
END;
COMMIT;
END;This block of code:
begin
wk_num := 1;
exception
when x_datacheck then
raise_application_error(-20500, 'datacheck');
when others then
raise;
end tmp_pg;executes only once, the first time the package is accessed in a session. Since it does not raise x_datacheck, the exception block will not catch it. When x_datacheck is raised in main, the initialisation section has already finished running, so main needs to be the one catching and re-raising. Something like:
SQL> create package tmp_pg as
2 procedure main;
3 end tmp_pg;
4 /
Package created.
SQL> create or replace package body tmp_pg as
2 x_datacheck EXCEPTION;
3 wk_num NUMBER(1);
4
5 procedure main is
6 begin
7 if wk_num = 1 then
8 raise x_datacheck;
9 end if;
10 exception
11 when x_datacheck then
12 raise_application_error(-20500, 'datacheck');
13 end main;
14
15 begin
16 wk_num := 1;
17 end tmp_pg;
18 /
Package body created.
SQL> exec tmp_pg.main;
BEGIN tmp_pg.main; END;
ERROR at line 1:
ORA-20500: datacheck
ORA-06512: at "OPS$ORACLE.TMP_PG", line 12
ORA-06512: at line 1This would work even if some procedure called by main raised x_datacheck. If you want the initialisation section to catch x_datacheck, then either it needs to raise it itself, or call a procedure that raises x_datacheck.
John
John -
Create user permission denied error..
Hi all,
I just finished migrating our data in int environment to test environment. It returns an error while trying to create a user. (I use export/import to migrate setting and data...)
This is the error...
2009-10-09 15:25:39,893 ERROR [XELLERATE.WEBAPP] Class/Method: tcManageUserAction/createUser encounter some problems: PermissionDenied
java.lang.Exception: PermissionDenied
at com.thortech.xl.webclient.actions.tcManageUserAction.setUserDetails(Unknown Source)
at com.thortech.xl.webclient.actions.tcManageUserAction.createUser(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:280)
at com.thortech.xl.webclient.actions.tcLookupDispatchAction.execute(Unknown Source)
at com.thortech.xl.webclient.actions.tcActionBase.execute(Unknown Source)
at com.thortech.xl.webclient.actions.tcAction.execute(Unknown Source)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:484)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1482)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:525)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:810)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
at com.thortech.xl.webclient.security.SecurityFilter.doFilter(Unknown Source)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:81)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)
at org.jboss.web.tomcat.security.CustomPrincipalValve.invoke(CustomPrincipalValve.java:39)
at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:153)
at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:59)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:744)
at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)
at org.apache.tomcat.util.net.MasterSlaveWorkerThread.run(MasterSlaveWorkerThread.java:112)
at java.lang.Thread.run(Thread.java:534)
Please need immediate help.....:-(
Regards,
ChaturangaHi kevin,
Found the problem...:-)
I have attach a adapter on data object manager to check the entered email address is already exist or not in the target system. But, I have added it to both pre-insert and pre-update (before exporting data from int environment, i add this adapter to pre-update)...
So, somehow, oim first runs and create the user in the target system. And again run the validation in the pre-update...seems like oim call a pre-update validations in the same time....
Now it is ok. I remove the adapter from the pre-update of the "users" data object manager.
Thanks for the help.
Regards,
Chaturanga -
Server Error on Create user page in 9iAS Portal 9.0.2.0
Hi,
I have installed Oracle 9iAS Portal 9.0.2.0 on WinNT
I got the SSO page loging thru admin login and everything is fine .....i can get into build page groups etc.....
Problem
creation of users
When i click Build --> Administer --> Create User
Page error:
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator, [email protected] and inform them of the time the error occurred, and anything you might have done that may have caused the error.
More information about this error may be available in the server error log.
Oracle HTTP Server/1.3.22 Server at accentur-jpdq.accenture.com Port 7777
Kindly let me know how to solve this and get the Create User page --> To Create users ....
Thanks & Regards,
Gopinath.G
Accenture Technology services.
Bangalore,INDIACan you pls confirm if OC4J_DAS instance is up?
Refer Oracle9i Application Server Administrator's Guide
Release 2 (9.0.2) -> Starting and Stopping the Application Server for 'Starting an Infrastructure'
link: http://download-west.oracle.com/docs/cd/A97329_01/core.902/a92171/start.htm#1011347 -
Error while creating user for a domain
i am developing a web-application which is hosted on tomcat server.
it is creating domains and users at another remote domain server.
localy it is working fine..
but when i test it online..
the problem is,
sometimes it works fine ,the domains are being creted at remote server..
but sometimes it delivers error that domain at remote server can not be created.
Is it due to fact that theat some errornous code in the buffer of application have older versions of applications causing the error ?
Code::
if(strPlanId.equalsIgnoreCase("3")) {
//Create domain account for planid=3 plantype=Cp
blnOK=false;
passwordGS comes from database
strUrl="http://sosync.net/sosync/admin?pwd="+passwordGS+"&action=user_createdomain&domain="+strSubDomain+".gosync.net&adminpassword=aspire3002&diskquota="+longdk;
u=new URL(strUrl);
uc=(HttpURLConnection)u.openConnection();
code=uc.getResponseCode();
if(code == 200) {
rUrl="/TransCompleteServlet";
blnOK=true;
uc.disconnect();
} else {
rUrl="/GSView.jsp?page=GSError.jsp?REQ=Unknown";
if(blnOK) {
String strUrlUser="http://gosyncdesk.net/gosync/admin?pwd="+passwordGS+"&action=user_createuser&username="+strEmailId+"&password="+strPassword+"&domain="+strSubDomain+".gosync.net&communityname=Default&firstname="+user.getFirstName()+"&lastname="+user.getLastName();
URL u1=new URL(strUrlUser);
HttpURLConnection uc1=(HttpURLConnection)u1.openConnection();
code=uc1.getResponseCode();
response1=uc1.getResponseMessage();
if(code == 200) {
rUrl="/TransCompleteServlet";
String strUrlTZ="http://gosyncdesk.net/gosync/admin?pwd="+passwordGS+"&action=user_setuserpreference&username="+strEmailId+"&domain="+strSubDomain+".gosync.net&name=web_timezone&value='"+timeZone+"'";
u=new URL(strUrlTZ);
uc=(HttpURLConnection)u.openConnection();
code=uc.getResponseCode();
if(code != 200) {
rUrl="/GSView.jsp?page=GSError.jsp?REQ=Unknown";
} else {
rUrl="/GSView.jsp?page=GSError.jsp?REQ=Unknown";
mailUtil.sendMail_admin("Error In Creating User for the Domain","While creating domain for "+user.getEmail()+" user could not be created due to following reason: <BR> "+response1+"<br>GoSync UserName:"+strEmailId+"<br>GoSync Password:"+strPassword+"<br>GoSync Domain :"+strSubDomain+".gosync.net and URl String was :"+strUrlUser+"");
}if the problem is caching try setting the useChasses to false
uc.setUseCaches(false); -
Error while Creating user using Custome form
Hi,
I created a custom form same as create user form
updated in xlDefaultAdmin.properties,xlWebAdmin_en_US.properties,struts-config.xml
on this custom every thing is working fine but when on submit(Create User) it gives me below error
in Admin Console : You do not have permissions to perform this operation.
in App server log: maoRejections:You do not have permission to insert this object.My response is based on the following assumptions:
Your custom form is similar to that of CreateUser form in all manners. The logic at the back-end has been written by you as well. As soon as you get all the values you call the createUser API of OIM to create the user. You have wriiten your custom action classes as well.
The insert error may be due to the reason that the user which you are using to create the user doesn't have sufficient permissions. In other words, if this is done through Java code then while instaniating the API, the user used must be missing these permissions.
If the error is due to this permission for users then we can give these additional permissions to individual users, if in case its not and you have some other scenario then just give me more details, probably I can help you for it.
Thanks
Sunny -
Error While creating User using userservcenter Webservice
Hi All,
I have generated the java client stub from the um_workflowSaveCreateProfile.wsdl file successfully and I have developed one client code to call the web service to create user in Oracle Internet Directory.
I am invoking one workflow for creation of the user which accepts four attributes (sn, cn, uid, userPassword),it is working fine when sn, cn, uid attributes are mandatory only, but if I make userPassord as mandatory, it is showing me error : Not all of the required parameters for this operation were specified.
I am using the below client Code to call the service:
package com.example;
import java.util.Properties;
import org.apache.axis.AxisFault;
import com.oblix.CreateUser.*;
public class CreateUserClient {
public static void main(String Args[]) throws AxisFault{
try{
OblixIDXML_um_workflowSaveCreateProfile_ServiceLocator loc = new OblixIDXML_um_workflowSaveCreateProfile_ServiceLocator();
OblixIDXMLPortType port = loc.getOblixIDXML_um_workflowSaveCreateProfile_Port();
Authentication myauth = new Authentication();
myauth.setLogin("orcladmin");
myauth.setPassword("1111Aaaa");
Request myrequest = new Request();
myrequest.setFunction("workflowSaveCreateProfile");
myrequest.setApplication("userservcenter");
myrequest.setVersion("NPWSDL1.0");
RequestParams myparams = new RequestParams();
myparams.setObDomainName("dc=ad,dc=company,dc=com");
//myparams.setObWorkflowName("obworkflowid=wfqs20090206T1424241321438,obcontainerId=workflowDefinitions,o=Oblix,dc=ad,dc=company,dc=com");
myparams.setObWorkflowName("obworkflowid=wfqs20090206T170318571544,obcontainerId=workflowDefinitions,o=Oblix,dc=ad,dc=company,dc=com");
java.math.BigInteger myint2 = new java.math.BigInteger("4");
myparams.setNoOfFields(myint2);
AttributeParams attributeParams = new AttributeParams();
GenericAttribute []genericAttribute = new GenericAttribute[10];
GenericAttribute mygenericattr = new GenericAttribute();
mygenericattr.setAttrName("cn");
mygenericattr.setAttrOperation("ADD");
String[] cn = {"Akshay"};
mygenericattr.setAttrNewValue(cn);
genericAttribute[0] = mygenericattr;
GenericAttribute mygenericattr1 = new GenericAttribute();
mygenericattr1.setAttrName("sn");
mygenericattr1.setAttrOperation("ADD");
String[] sn = {"koul"};
mygenericattr1.setAttrNewValue(sn);
genericAttribute[1] = mygenericattr1;
GenericAttribute mygenericattr3 = new GenericAttribute();
mygenericattr3.setAttrName("uid");
mygenericattr3.setAttrOperation("ADD");
String[] uid = {"akshay_koul"};
mygenericattr3.setAttrNewValue(uid);
genericAttribute[2] = mygenericattr3;
PasswordAttribute []pwdatrarr= new PasswordAttribute[1];
PasswordAttribute pwdatr= new PasswordAttribute();
pwdatr.setAttrName("userPassword");
pwdatr.setAttrOperation("ADD");
pwdatr.setAttrNewValue("abcd1234");
pwdatr.setAttrConfirmValue("abcd1234");
pwdatrarr[0] = pwdatr;
System.out.println("the pwd is"+pwdatrarr.toString());
attributeParams.setGenericAttribute(genericAttribute);
attributeParams.setPasswordAttribute(pwdatrarr);
myparams.setAttributeParams(attributeParams);
myrequest.setParams(myparams);
Oblix output = port.oblixIDXML_um_workflowSaveCreateProfile(myauth, myrequest);
System.out.println("result of the request\n");
System.out.println();
//System.out.println("test:"+output.getObError().getObStatus());
// System.out.println("test1:"+output.getObError().getObRequestInfo());
System.out.println("test2:"+output.getObError().getObTextMessage()[0].toString());
System.out.println("test2:"+output.getObError().getObTextMessage()[0]);
System.out.println("test3:"+output.getObError().getObTextMessage(0));
System.out.println("status is " + output.getObStatus());
}catch(Exception e){
System.out.println("the exception is:"+e.getMessage());
e.printStackTrace();
Please suggest me where i am wrong !!!
Thanks in Advance
AkshayHi,
I guess, create workflow does not accept the password attribute while creating user account.
You have to create the account using createprofile web service then update the password using changeprofile web service.
I think this limitation is strategic, if you have password policies enabled, policies are applied to the container of the accounts.
So OAM needs to have the DN of the user account to check if there are any password policies associated with the container during password updates,
which might not be possible while using createProfile web service.
- Sandeep -
Error While creating users in managed system.
Dear All,
I am configuring SAP Solution Manager 7.1. I am in stage of Managed System Configuration (for JAVA).
In step 6 Create user: While creating (System) user SM_COLL_<SID> I am getting error :
An error occurred while processing the UME command READ_USER from agent <hostname> : Server returned: 401 Unauthorized. Please check SMD agent application logs.
And for ABAP System,
SMDAGENT_XXX Technical User (in Managed System <SID> Client 000)
while creating user SMDAGENT_<SID> and SAPSUPPORT
I am getting error:
No CENTRAL nor DIALOG instance known for system <SID>
But in SM51 I can see Server Status Active.
and Users are not present.(Checked it through SU01)
I am not getting why this is happening.
Please help me regarding the same.
Thanks & Regards
AjitabhHi,
I am pasting the SMD agent application logs:
<!LOGHEADER[START]/>
<!HELP[Manual modification of the header may cause parsing problem!]/>
<!LOGGINGVERSION[1.5.3.7185 - 630]/>
<!NAME[SMDAgentAppLog]/>
<!PATTERN[SMDAgentApplication.log]/>
<!FORMATTER[com.sap.tc.logging.TraceFormatter(%d [%t] %10s %m)]/>
<!ENCODING[Cp1252]/>
<!FILESET[0, 10, 1000000]/>
<!PREVIOUSFILE[SMDAgentApplication.9.log]/>
<!NEXTFILE[SMDAgentApplication.1.log]/>
<!LOGHEADER[END]/>
Nov 29, 2011 2:02:09 PM [Thread[Connector,5,main]] Warning com.sap.smd.wily.hostagent.mai.MaiAdapter - init: Introscope Host Adapter is not active, no Introscope metrics from MAI
Nov 29, 2011 2:21:01 PM [Thread[Thread-33,5,main]] Warning com.sap.smd.wily.hostagent.mai.MaiAdapter - init: Introscope Host Adapter is not active, no Introscope metrics from MAI
Nov 29, 2011 2:38:31 PM [Thread[Thread-67,5,main]] Warning com.sap.smd.wily.hostagent.mai.MaiAdapter - init: Introscope Host Adapter is not active, no Introscope metrics from MAI
Nov 30, 2011 1:26:19 PM [Thread[ExRun:OutsideDiscovery_1,5,OutsideDiscovery:ExecTG]] Path Caught java.net.ConnectException: Connection refused: connect
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333)
at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195)
at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366)
at java.net.Socket.connect(Socket.java:521)
at com.sap.smd.agent.plugin.connectors.http.ConnectionExtendedImpl.openSocket(ConnectionExtendedImpl.java:2025)
at com.sap.smd.agent.plugin.connectors.http.ConnectionExtendedImpl.open(ConnectionExtendedImpl.java:1398)
at com.sap.smd.agent.plugin.connectors.http.ConnectionExtendedImpl.sendInternal(ConnectionExtendedImpl.java:1552)
at com.sap.smd.agent.plugin.connectors.http.ConnectionExtendedImpl.send(ConnectionExtendedImpl.java:1483)
at com.tssap.dtr.client.lib.protocol.requests.RequestBase.perform(RequestBase.java:570)
at com.tssap.dtr.client.lib.protocol.requests.RequestBase.perform(RequestBase.java:693)
at com.sap.smd.agent.plugin.connectors.http.HTTPConnectorService.performRequest(HTTPConnectorService.java:548)
at com.sap.smd.agent.plugin.connectors.http.HTTPConnectorService.performRequest(HTTPConnectorService.java:673)
at com.sap.smd.agent.plugin.connectors.http.HTTPConnectorService.performRequest(HTTPConnectorService.java:638)
at com.sap.smd.agent.plugin.connectors.http.HTTPConnectorService.performRequest(HTTPConnectorService.java:624)
at com.sap.smd.agent.plugin.connectors.webservice.SAPHostAgentTrustedConnectionConfigurator.setupTrustedConnection(SAPHostAgentTrustedConnectionConfigurator.java:81)
at com.sap.smd.agent.plugin.connectors.webservice.WSConnectorFactory.configureLocalSAPHostAgentEndPoint(WSConnectorFactory.java:244)
at com.sap.smd.agent.plugin.hostagent.check.HostAgentCheckService.getHostAgentVersion(HostAgentCheckService.java:105)
at com.sap.smd.agent.plugins.dcc.util.WSProxyManager.checkSAPHostAgentVersion(WSProxyManager.java:287)
at com.sap.smd.agent.plugins.dcc.util.WSProxyManager.initSAPHostControlWebServiceClient(WSProxyManager.java:112)
at com.sap.smd.agent.plugins.dcc.util.WSProxyManager.getSAPHostControlProxy(WSProxyManager.java:75)
at com.sap.smd.agent.plugins.dcc.job.PhysicalHostPushJob.run(PhysicalHostPushJob.java:195)
at com.sap.smd.server.exec.TaskRunner.run(TaskRunner.java:46)
at com.sap.smd.server.util.concurrent.PooledExecutor$Worker.run(PooledExecutor.java:781)
at java.lang.Thread.run(Thread.java:679)
Nov 30, 2011 1:26:19 PM [Thread[ExRun:OutsideDiscovery_1,5,OutsideDiscovery:ExecTG]] Error Pb:
[EXCEPTION]
java.rmi.RemoteException: Error to perform http request cause by java.io.IOException: Unable to open connection to host "FQDN:1128". The host is down or unavailable...; nested exception is:
java.io.IOException: Unable to open connection to host "FQDN:1128". The host is down or unavailable.
Dec 2, 2011 4:56:53 PM [Thread[Thread-368,5,main]] Warning [Setup]Step Id 1051 has no step description
Dec 2, 2011 4:56:53 PM [Thread[Thread-368,5,main]] Warning [Setup]Step Id 1051 has no step description
Dec 2, 2011 5:02:05 PM [Thread[Thread-363,5,main]] Error [Setup]Failed to get a soap response from http://FQDN:50000/spml/spmlservice
Dec 2, 2011 5:02:05 PM [Thread[Thread-363,5,main]] Error [Setup]An error occured while processing the UME command READ_USER from agent HOSTNAME : Server returned: 401 Unauthorized
[EXCEPTION]
com.sap.sup.admin.xmlsoap.core.soap.NativeSOAPException: Server returned: 401 Unauthorized
Kindly help me out guys.
Thanks & Regards
Ajitabh -
Error While Creating User in OIM 11g R2
Experts,
I am working on OIM 11g R2, while creating user i am getting below prompt
IAM-2050242: Orchestration process with id 815, failed with error message IAM-3010201:LDAP create event failed: Object Class Violation.
any pointers?Try to check which OBJ Class violation are you hitting , for example: If you have uniquemember instead of member and try to add more than one member this will be a rule violation. Eg: ADD request to an attribute that is included in an account entry because the attribute entry has been existed prior to the ADD request.
I hope this helps.
Thiago Leoncio. -
Error While Creating user in Portal
Hai Experts...
Errored occured while creating User in portal.
Error : Error occured due to persistance: contact administrator.
Since i have created user in J2EE_ADMIN which has Administrator Role. i am facing this issue.
Kindly help me in this issue..
Regards
Arun Rajan,Hi ,
Solved problem by changing the UME configuration as ABAP.
after changing the UME configuration , some memory dump problem faced and solved as per server0 getting restarted when i access UME configuration .
Now it is able to create user in portal.
Thanks Juan Reyes and RishiAbrol.
thanks to all helped me to sort out the issue.
Regards
Arun
Edited by: Arun Rajan on Sep 11, 2009 8:43 AM
Edited by: Arun Rajan on Sep 11, 2009 8:45 AM -
Error creating user defined tables: Ref count (-1120)
Hi all !
I have to create user defined tables per code, so I wrote <b>2 main functions</b>, first <i>to create a table</i> (with TableName,TableType and TableDescription properties)and and <i>second to add fields</i> (to a certain table which is sent as parameter).
I call these functions to create multiple tables. For the first 6 tables it works totally ok. But beginning from the 7th table it gives that "<b>Ref count for this object is higher then 0.</b> " (-1120) error. All parameters are ok just as the first 6 tables.
Found such an explanation like below in help files.
<i>The DI API allows only one instance of a meta data object at a time. This maintains data integrity by preventing any manipulation of a business object while modifying the object's user fields. Therefore, verify that no other DI object is active except the meta data object.</i>
But why do I get such an error after sixth call of the function (but not beginning from the second table )?Gül,
Have you tried doing some grbage collection?
Search for a topic: "Add Usertables and Fields while having a recordset"
HTH
Juha -
Error has come while creating USER from SU01
Dear Expert,
I have got typical error while creating user from T-Code SU01.
Problem is like that : I suppose to use SU01 and "User Maintanace: Initial Screen
has come. Now I put the new user name like ABAP2008 or FI2008 (what ever the name thats hardly matter) and click on CREAT button then next screen Maintain User has been appeared.In this screen Address TAB is on and asking for fillup all the required user information.So I have been made all information like :First name /Last name /Tele ph/Fax / email etc etc. After complete this tab when I clicked on next tab is called "LOGON DATA, it has been given a error "Specify a valid country indicator
Message no. T5027" . Even thogh I didn't able to go to next screen LOGON DATA.Because of these problem I doesn't able to creat a user.
SAP : IDES version ECC 6
DB:SQL2005
OS: Windows 2003 server
Please do the needfull
Thanks & Regards
PavelHey Pavel,
Are you using ECC with ISU.. ? I am not sure but I feel your issue can be solved with information provided in SAPnote,
Note 1046566 - EC70: address-independent telephone number no country.
The system does not transfer any country from the master data template with the address-independent telephone number. The system issues the warning message T5027 "Specify a valid country indicator".
All the best ! -
Event Handler Error while Creating User
Hi,
I am not able to create users in OIM 11gR1 - " Event handler DemoNotificationEventResolver implemented using class/plug-in nrma.DemoNotificationEventResolver could not be loaded."
I have deleted this plugin from the "plugins" table in the database. What else am I supposed to do?Hi,
I have deleted it from the MDS Schema. Now I am getting a different error.
<Dec 20, 2012 5:24:57 PM EST> <Error> <oracle.iam.identity.usermgmt.impl> <IAM-3050030> <An exception occurred while performing the operation.
java.util.MissingResourceException: Can't find resource for bundle java.util.PropertyResourceBundle, key IAM-301094
at java.util.ResourceBundle.getObject(ResourceBundle.java:374)
at java.util.ResourceBundle.getObject(ResourceBundle.java:371)
at java.util.ResourceBundle.getObject(ResourceBundle.java:371)
at java.util.ResourceBundle.getObject(ResourceBundle.java:371)
at java.util.ResourceBundle.getString(ResourceBundle.java:334)
at oracle.iam.ldapsync.impl.util.LDAPSyncUtil.createValidationFailedException(LDAPSyncUtil.java:700)
at oracle.iam.ldapsync.impl.util.LDAPSyncUtil.generateAndValidateRDN(LDAPSyncUtil.java:824)
at oracle.iam.ldapsync.impl.eventhandlers.user.RDNPreProcessHandler.execute(RDNPreProcessHandler.java:68)
at oracle.iam.platform.kernel.impl.OrchProcessData.runPreProcessEvents(OrchProcessData.java:898)
at oracle.iam.platform.kernel.impl.OrchProcessData.runEvents(OrchProcessData.java:634)
at oracle.iam.platform.kernel.impl.OrchProcessData.executeEvents(OrchProcessData.java:227)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.resumeProcess(OrchestrationEngineImpl.java:664)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.process(OrchestrationEngineImpl.java:435)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.orchestrate(OrchestrationEngineImpl.java:381)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.orchestrate(OrchestrationEngineImpl.java:334)
at oracle.iam.identity.usermgmt.impl.UserManagerImpl.create(UserManagerImpl.java:653)
at oracle.iam.identity.usermgmt.api.UserManagerEJB.createx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310) -
Error while creating user in LDAP (MS ADS) from SAP Portal 7.0
Hi,
Is it obliged to use SSL connection to create new user in LDAP (MS ADS) from SAP Portal 7.0 ?
I've configured the UME with ldap server adress and port 389. And use configuration file "dataSourceConfiguration_ads_writeable_db.xml"
I succeed to view users existing in LDAP but when I try to create new user I've the following error message:
LDAP: error code 53 - 0000001F: SvcErr: DSID-031A0FC0, problem 5003 (WILL_NOT_PERFORM), data 0)
Thanks and regardscheck this link
http://help.sap.com/saphelp_nw70/helpdata/EN/37/cfd93f130f9115e10000000a155106/frameset.htm
and at the end of the page there is a qoute "We strongly recommend that you configure SSL between the UME and the LDAP directory. Some LDAP directories, such as Microsoft Active Directory Server, require an SSL connection if you want to create users on the LDAP directory"
hence follow this link to configure SSL
http://help.sap.com/saphelp_nw70/helpdata/EN/7d/77fa735e5f47a2a50b5336fd1b5a61/frameset.htm
hope this helps..
[Rahul|http://rahulursportal.blogspot.com/]
Maybe you are looking for
-
5530 firmware update found but not compatible?
Hi, the phone is a french 5530 (no fimlock, no netlock, a free phone), a firmware update is found from nokia, i can download it from the phone. Then it restarts the phone, and a white screen appears with the update bar. But then it just restarts and
-
I bought this Logic studio 8 from craigs list, the guy who sold it to me said he never registered the program but I asume he installed it in his mac which he also said that it crashed and that was the reason to get rid of logic since he is using a pc
-
the video will play but with no sound how do i fix this?
-
Hi- I recently moved my iTUNES library to an external hard drive following the directions posted by Apple. Everything was fine for 2 months. I would regularly down load new podcasts on my laptop and when I got home I would occasionally consolidate my
-
Batch date change corrupts the dates
I need some help with the batch name change in iPhoto. I recently tried to change some dates of an entire event to 12/25/2008. Once the batch change was done, the dates all appear as a corrupted year of 12/09/-2007 with the line in them. They then di