Documentation for OIM AD Connector
Hi,
Can any one suggest any documentation for OIM AD Connector which gives steps to develop adapters and so on
OIM Connector Guide for AD - > http://download.oracle.com/docs/cd/E10150_01/doc.904/e10158/toc.htm
OIM Connector Framework Guide -> http://download.oracle.com/docs/cd/E10150_01/doc.904/e10178/toc.htm
Maynot have a great deal of details, but something to start off with.
Rgds, Ajay
Similar Messages
-
Is there a forum or additional documentation for Adobe Flex Connector for MS SQL Server?
Is there a forum or additional documentation for Adobe Flex Connector for MS SQL Server? I am having problems getting it to work. Also it states that it is Flash Builder 4 certified but the code is all in halo (<mx:Application ...). I followed the documentation in the included PDF to no avail. I am looking for additional documentation - e.g.: a) where exactly (which directory on the SQL Server) to store the "fas_mssql_connector.asp" file; b) how to code the URL to the "fas_mssql_connector.asp"; c) wondering if the product is really Flex 4 certified. Thanks for any help (especially pointers to additional documenation).
I do have exactly the same questions. SO far the fas_mssql_connector.asp file is placed at the 'wwwroot' folder of the 'inetpub' folder of the IIS server. As hostname I use '[MyServer]' since it should run on the same machine and username and password are correct.
The fas_MSsql_Clean file is setup in a way that the name of the database is specified and the url to the asp file is set as: http://[MyServer]/fas_mssql_connector.asp
My SQL query looks like this:
private function getDbData():void
mssqlQuery("Select * from Tomat", "getDataO3");
And the MXML document like this:
<?xml version="1.0" encoding="utf-8"?>
<mx:Application xmlns:mx="http://www.adobe.com/2006/mxml" layout="absolute" minWidth="955" minHeight="600">
<mx:Script source="Actionscript/MSsql.as"/>
<mx:Script source="Actionscript/SqlQueries.as"/>
<mx:DataGrid x="148" y="95" id="dgData">
<mx:columns>
<mx:DataGridColumn headerText="Column 1" dataField="col1"/>
<mx:DataGridColumn headerText="Column 2" dataField="col2"/>
<mx:DataGridColumn headerText="Column 3" dataField="col3"/>
</mx:columns>
</mx:DataGrid>
<mx:Button x="148" y="264" label="Get data" id="btnGet" click="getDbData()"/>
</mx:Application>
However the application is busy for a long time and I do not receive a single piece of data. Any help with this?
Thanks in advance. -
OIM - OID11g Connector Logging
Hi All,
I have updated the logging.xml as below to enable the logging for OIM -OID Connector 11.1.1.5.0 but I can't see anything in the file (File is created but it has no logs):
<log_handler name='oid-handler' level='TRACE:32' class='oracle.core.ojdl.logging.ODLHandlerFactory'>
<property name='logreader:' value='off'/>
<property name='path' value='/u01/oracle/iam_middleware/user_projects/domains/IAMdomain/oidconnector.log'/>
<property name='format' value='ODL-Text'/>
<property name='useThreadName' value='true'/>
<property name='locale' value='en'/>
<property name='maxFileSize' value='5242880'/>
<property name='maxLogSize' value='52428800'/>
<property name='encoding' value='UTF-8'/>
</log_handler>
<logger name="OIMCP.OID" level="TRACE:32" useParentHandlers="false">
<handler name="oid-handler"/>
<handler name="console-handler"/>
</logger>
Please help.
Thanks
SunnyFirstly I would normally manage OIM 11g logging through Oracle Enterprise Manager rather than directly in a logging.xml file, with log information appearing in the OIM server diagnostic log rather than a dedicated log file as you have done. That is not to say what you are doing is wrong (I cannot comment as I have never managed OIM 11g logging in this way.)
The other thing that may be wrong is the logger you are using. You have logger OIMCP.OID. For my OIM11g OID connector logging I am using the standard logger of XL_INTG.OID. -
Testing Oracle Internet Directory Connector for OIM
Hello,
I'm trying to test the running test cases available in the Oracle Internet Directory Connector for OIM but I'm failing because it seems that the current release of this connector doesn't have the java class tcUtilTestOID as described in the documentation. This class should be at test\troubleshoot\scripts directory, but there there are only the batch files with the test cases.
Can anyone confirm this or provide me this class file?
Thanks in advance.This is the code. Include this in your custom jar file with the same name. You will be done I suppose:
import com.thortech.util.logging.Logger;
import com.thortech.xl.integration.OID.util.tcUtilLDAPOperations;
import java.io.*;
import java.util.Properties;
import javax.naming.directory.BasicAttribute;
import javax.naming.directory.BasicAttributes;
public class tcUtilTestOID
private static String CONFIG_FILEPATH = "global.properties";
public tcUtilTestOID()
public static void main(String args[])
tcUtilLDAPOperations ldapOp = null;
Logger logger = Logger.getLogger("TEST_USER_PROVISION");
logger.info("**********************************");
logger.info("**********************************" + args[0]);
try
FileInputStream configfile = null;
try
configfile = new FileInputStream(CONFIG_FILEPATH);
catch(FileNotFoundException fe)
logger.error("Unable to find configfile(" + CONFIG_FILEPATH + ")");
fe.printStackTrace();
Properties prp = new Properties();
try
prp.load(configfile);
catch(IOException ie)
logger.error("Unable to load configfile(" + CONFIG_FILEPATH + ")");
ie.printStackTrace();
String serverName = prp.getProperty("serverName");
String portNo = prp.getProperty("portNo");
String rootContext = prp.getProperty("rootContext");
String principalDN = prp.getProperty("principalDN");
String principalPass = prp.getProperty("principalPassword");
boolean sslFlag = "true".equalsIgnoreCase(prp.getProperty("sslFlag"));
logger.info("serverName = " + serverName);
logger.info("portNo = " + portNo);
logger.info("rootContext = " + rootContext);
logger.info("principalDN = " + principalDN);
logger.info("sslFlag = " + sslFlag);
logger.info("===================================\n");
ldapOp = new tcUtilLDAPOperations(serverName, portNo, rootContext, principalDN, principalPass, sslFlag);
String ldapUserDNPrefix = "cn";
String ldapObjectClass = "objectclass";
String ldapUserObjectClass = "inetOrgPerson";
String ldapFirstName = "givenName";
String ldapLastName = "sn";
String ldapCommonName = "cn";
String ldapPassword = "userPassword";
String containerDN = prp.getProperty("containerDN");
logger.info("containerDN = " + containerDN);
logger.info("UserOperation selected = " + args[0]);
if(args[0].equalsIgnoreCase("createUser"))
logger.info(" CREATE USER CALLED");
String createUserFName = prp.getProperty("createUser.firstName");
String createUserLName = prp.getProperty("createUser.lastName");
String createUserUserDN = prp.getProperty("createUser.userDN");
String createUserUserPass = prp.getProperty("createUser.userPassword");
logger.info("createUser.firstName = " + createUserFName);
logger.info("createUser.lastName = " + createUserLName);
logger.info("createUser.userDN = " + createUserUserDN);
logger.info("createUser.userPassword = " + createUserUserPass + "\n\n");
BasicAttributes basicattributes = new BasicAttributes(true);
basicattributes.put(new BasicAttribute(ldapObjectClass, ldapUserObjectClass));
basicattributes.put(new BasicAttribute(ldapFirstName, createUserFName));
basicattributes.put(new BasicAttribute(ldapLastName, createUserLName));
basicattributes.put(new BasicAttribute(ldapCommonName, createUserFName + " " + createUserLName));
basicattributes.put(new BasicAttribute(ldapPassword, createUserUserPass));
ldapOp.connectToLDAP();
boolean userCreated = ldapOp.createObject(ldapUserDNPrefix + "=" + createUserUserDN + "," + containerDN, basicattributes);
ldapOp.disconnectFromLDAP();
if(userCreated)
logger.info("\t>> " + createUserUserDN + " - USER_CREATION_SUCCESSFUL");
} else
logger.info("\t>> " + createUserUserDN + " - USER_CREATION_FAILED");
} else
if(args[0].equals("modifyUser"))
logger.info(" MODIFY USER CALLED");
String modifyUserUserDN = prp.getProperty("modifyUser.userDN");
String modifyUserParamName = prp.getProperty("modifyUser.paramName");
String modifyUserParamValue = prp.getProperty("modifyUser.paramValue");
logger.info("modifyUser.userDN = " + modifyUserUserDN);
logger.info("modifyUser.paramName = " + modifyUserParamName);
logger.info("modifyUser.paramValue = " + modifyUserParamValue);
ldapOp.connectToLDAP();
BasicAttributes basicattributes = new BasicAttributes(true);
basicattributes.put(new BasicAttribute(modifyUserParamName, modifyUserParamValue));
boolean isUserModified = ldapOp.modifyAttributesReplace(ldapUserDNPrefix + "=" + modifyUserUserDN + "," + containerDN, basicattributes);
ldapOp.disconnectFromLDAP();
if(isUserModified)
logger.info("\t>> " + modifyUserUserDN + " - USER_UPDATE_SUCCESSFUL");
} else
logger.info("\t>> " + modifyUserUserDN + " - USER_UPDATE_FAILED");
} else
if(args[0].equals("deleteUser"))
logger.info(" DELETE USER CALLED");
String deleteUserUserDN = prp.getProperty("deleteUser.userDN");
logger.info("deleteUser.userDN = " + deleteUserUserDN);
ldapOp.connectToLDAP();
boolean isUserDeleted = ldapOp.deleteObject(ldapUserDNPrefix + "=" + deleteUserUserDN + "," + containerDN);
ldapOp.disconnectFromLDAP();
if(isUserDeleted)
logger.info("\t>> " + deleteUserUserDN + " - USER_DELETION_SUCCESSFUL");
} else
logger.info("\t>> " + deleteUserUserDN + " - USER_DELETION_FAILED");
catch(Exception e1)
e1.printStackTrace();
return;
Thanks
Sunny -
What all connectors are available for OIM to connecting to a LDAP?
Hi,
Please let me know what all connectors are available for OIM to connecting to a LDAP?To answer your question a little more clearly:
The first reply does have a list of connectors.
If you are running OIM 9.x you will be better off using an older version of the Active Directory connector. You might have to search the web or request it through an SR. I have multiple versions of this particular connector to service different clients.
If you are running OIM 11gR1 or 11gR2 or 11gR2PS1 then you will want to use the Microsoft Active Directory User Management connector which is the activedirectory-11.1.1.5.0.zip download. Be sure to apply patch p14190610 if you have OIM 11gR2 or PS1.
If this answers your question completely please mark the thread accordingly. -
Hi All,
I am installing OIM - PeopleSoft connector for Employee Reeconciliation. As part of Target System Configuration for Full Reconciliation(Trusted Source) i performed all the steps specified in Connector documentation on Target System. Summary of the steps is Full publish of Person Data in PeopleSoft as xml files and feeding these xml as initial data load to OIM. After running the process scheduler for Data Publish of PERSON_BASIC_FULLSYNC message i dont see any xml files being generated. Rather it only gives me one log file and a .trc file. The log file says the process has ran successfully. But no expected out.
Any one who previously performed these steps successfully please share your experience and pointer would be appreciated
PeopleSoft HRMS 8.8
People Tools : 8.9.26
OIM 11g.
Connector : 9.1.1.6
Connector Documnetation Followed : http://download.oracle.com/docs/cd/E11223_01/doc.910/e11205/deploy.htm#BIHFHICC
Regards,
Ashoki'm face the same problem, have u soloved this problem . can u share me with it ?
-
OIM AD Connector (AD 9.1.1.4) Error
Hi experts,
We are configuring the connector MS AD 9.1.1.4 for OIM 9.1.0.2 BP07 on WebLogic 10.3.0. BD 10g (10.2.0.4). MS AD 2003.
But when we try to execute the AD Group Recon Lookup, the following error happens :
This are the values that we are providing in the Scheduled Task.
AttrName for Code Value in Lookup distinguishedName
AttrName for Decode Value in Lookup distinguishedName
Configuration Lookup Lookup.AD.Configuration
IT Resource Name ADITResource
Lookup Code Name Lookup.ADReconciliation.GroupLookup
Lookup Search Filter (objectclass=group)
Recon Type Refresh
Search Base ou=OIM,ou=Applications,dc=redecorp,dc=br
DEBUG LOG
INFO,19 May 2010 11:47:27,711,[XELLERATE.PERFORMANCE],API Call: com.thortech.xl.ejb.beansimpl.tcITResourceInstanceOperationsBean/getITResourceInstanceParameters 41
DEBUG,19 May 2010 11:47:27,712,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADITRes : initialize:: FINISHED
DEBUG,19 May 2010 11:47:27,789,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : addSecurityProvider:: STARTED
DEBUG,19 May 2010 11:47:27,789,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : addSecurityProvider:: FINISHED
DEBUG,19 May 2010 11:47:27,789,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : initialize:: FINISHED
DEBUG,19 May 2010 11:47:27,790,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADITRes : toString:: STARTED
DEBUG,19 May 2010 11:47:27,790,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADITRes : toString:: FINISHED
DEBUG,19 May 2010 11:47:27,790,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : execute : IT resource params are:
Admin FQDN : cn=oracle_idm,ou=Users,ou=OIM,ou=Applications,dc=redecorp,dc=br
Root Context : ou=OIM,ou=Applications,dc=redecorp,dc=br
SSL Port Number : 389
Server Address : 172.23.190.26
Use SSL : false
DEBUG,19 May 2010 11:47:27,791,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : toString:: STARTED
DEBUG,19 May 2010 11:47:27,791,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : toString:: FINISHED
DEBUG,19 May 2010 11:47:27,791,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : execute : Task attributes params are: Server: ADITResource
LookupCodeName: Lookup.ADReconciliation.GroupLookup
FilterLookupRecon: (objectclass=group)
AttrNameDecodeValueLookup: distinguishedName
AttrNameCodeValueLookup: distinguishedName
UserSearchScope: ou=OIM,ou=Applications,dc=redecorp,dc=br
INFO,19 May 2010 11:47:27,792,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : execute : Start of Active Directory Lookup Reconciliation.
DEBUG,19 May 2010 11:47:27,793,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : performReconciliation:: STARTED
DEBUG,19 May 2010 11:47:27,793,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : performReconciliation : query : (objectclass=group)
DEBUG,19 May 2010 11:47:27,801,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : searchResultPageEnum:: STARTED
DEBUG,19 May 2010 11:47:27,806,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : connectToAvailableAD:: STARTED
DEBUG,19 May 2010 11:47:27,810,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : hashTableEnvForDirContext:: STARTED
ERROR,19 May 2010 11:47:27,815,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,815,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : hashTableEnvForDirContext : null
ERROR,19 May 2010 11:47:27,815,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,822,[OIMCP.ADCS],================= Start Stack Trace =======================
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : hashTableEnvForDirContext
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],Description : null
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],java.lang.NullPointerException
at com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController.hashTableEnvForDirContext(Unknown Source)
at com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController.connectToAvailableAD(Unknown Source)
at com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController.searchResultPageEnum(Unknown Source)
at com.thortech.xl.schedule.tasks.ADLookupReconTask.performReconciliation(Unknown Source)
at com.thortech.xl.schedule.tasks.ADLookupReconTask.execute(Unknown Source)
at com.thortech.xl.scheduler.tasks.SchedulerBaseTask.run(Unknown Source)
at com.thortech.xl.scheduler.core.quartz.QuartzWrapper$TaskExecutionAction.run(Unknown Source)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(Unknown Source)
at weblogic.security.Security.runAs(Security.java:41)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(Unknown Source)
at com.thortech.xl.scheduler.core.quartz.QuartzWrapper.execute(Unknown Source)
at org.quartz.core.JobRunShell.run(JobRunShell.java:178)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:477)
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],================= End Stack Trace =======================
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : searchResultPageEnum : null
ERROR,19 May 2010 11:47:27,823,[OIMCP.ADCS],====================================================
DEBUG,19 May 2010 11:47:27,824,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : disconnect:: STARTED
DEBUG,19 May 2010 11:47:27,825,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : disconnect:: FINISHED
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : searchResultPageEnum : The error occured in tcADUtilLDAPController::connectToAvailableAD():null
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : searchResultPageEnum : null
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],================= Start Stack Trace =======================
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController : searchResultPageEnum
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],Description : null
ERROR,19 May 2010 11:47:27,825,[OIMCP.ADCS],com.thortech.xl.exception.ConnectionException
at com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController.searchResultPageEnum(Unknown Source)
at com.thortech.xl.schedule.tasks.ADLookupReconTask.performReconciliation(Unknown Source)
at com.thortech.xl.schedule.tasks.ADLookupReconTask.execute(Unknown Source)
at com.thortech.xl.scheduler.tasks.SchedulerBaseTask.run(Unknown Source)
at com.thortech.xl.scheduler.core.quartz.QuartzWrapper$TaskExecutionAction.run(Unknown Source)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(Unknown Source)
at weblogic.security.Security.runAs(Security.java:41)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(Unknown Source)
at com.thortech.xl.scheduler.core.quartz.QuartzWrapper.execute(Unknown Source)
at org.quartz.core.JobRunShell.run(JobRunShell.java:178)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:477)
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],================= End Stack Trace =======================
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : performReconciliation : null
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],====================================================
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],================= Start Stack Trace =======================
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : performReconciliation
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],Description : null
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],com.thortech.xl.exception.ConnectionException
at com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController.searchResultPageEnum(Unknown Source)
at com.thortech.xl.schedule.tasks.ADLookupReconTask.performReconciliation(Unknown Source)
at com.thortech.xl.schedule.tasks.ADLookupReconTask.execute(Unknown Source)
at com.thortech.xl.scheduler.tasks.SchedulerBaseTask.run(Unknown Source)
at com.thortech.xl.scheduler.core.quartz.QuartzWrapper$TaskExecutionAction.run(Unknown Source)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(Unknown Source)
at weblogic.security.Security.runAs(Security.java:41)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(Unknown Source)
at com.thortech.xl.scheduler.core.quartz.QuartzWrapper.execute(Unknown Source)
at org.quartz.core.JobRunShell.run(JobRunShell.java:178)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:477)
ERROR,19 May 2010 11:47:27,826,[OIMCP.ADCS],================= End Stack Trace =======================
DEBUG,19 May 2010 11:47:27,826,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : performReconciliation:: FINISHED
INFO,19 May 2010 11:47:27,826,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : execute : End of Active Directory Lookup Reconciliation.
DEBUG,19 May 2010 11:47:27,826,[OIMCP.ADCS],com.thortech.xl.schedule.tasks.ADLookupReconTask : execute:: FINISHED
DEBUG,19 May 2010 11:47:27,826,[XELLERATE.SCHEDULER.TASK],Class/Method: SchedulerBaseTask/run left.
DEBUG,19 May 2010 11:47:27,826,[XELLERATE.SCHEDULER.TASK],Class/Method: SchedulerBaseTask/isSuccess entered.
DEBUG,19 May 2010 11:47:27,826,[XELLERATE.SCHEDULER.TASK],Class/Method: SchedulerBaseTask/isSuccess left.
Thanks for any help you can provide.
RegardsHi! Can you tell me wich values have been used in the resource it, for provisioning ad.
How can i see this parameters in the log?
Thanks again
Maxi -
Facing issue when LDAPSync is enabled for OIM-AD integration with SSL enabled
Hi
We are performing LDAPSync for OIM AD real time sync.We have done all configuration as per oracle documentation on LDAPSync for OIM 11gR2 : http://docs.oracle.com/cd/E27559_01/integration.1112/e27123/oid_oim.htm The OIM environment we tested is the latest OIM version OIM 11gR2 PS1 (11.1.2.1.0).
WE have performed LDAPSync enablement on postinstallation of OIM .So we dont have OVD , we have configured libOVD as mentioned in this doc.
We have performed following steps mentioned in this document in our OIM environment.
3.1 Enabling Post installation LDAP Synchronization
3.3 Creating Identity Virtualization Library (libOVD) Adapters and Integrating With Oracle Identity Manager
As attribute like password might be not getting updated in AD from OIM , we have configured SSL enabled integration in LDAP sync as mentioned in above document.
We implemented this step 3.4.1 Enabling SSL Between Identity Virtualization Library (libOVD) and Microsoft Active Directory,
but here it is not properly mentioned that about how to import public key certificate of AD into OIM envirioment for SSL.
We are getting following error message in logs : Looking at logs it looks like the import of AD SSL certificate did not happen properly in OIM environment. But ,we have imported it using keytool and OVD keystore ...please let us know if we are missing any configuration in this process.Above oracle document is not pretty clear on this.
<Dec 7, 2013 12:22:53 AM IST> <Warning> <oracle.ods.virtualization.engine.backend.jndi.LDAP2.BackendJNDI> <OVD-40118> <Could not automatically detect binary attribute list: simple bind failed: 10.88.164.231:636.>
<Dec 7, 2013 12:22:53 AM IST> <Warning> <oracle.ods.virtualization.engine.backend.jndi.LDAP2.JNDIConnectionPool> <OVD-60024> <Connection error: simple bind failed: 10.88.164.231:636.>
<Dec 7, 2013 12:22:53 AM IST> <Error> <oracle.ods.virtualization.engine.backend.jndi.LDAP2.BackendJNDI> <OVD-60143> <[#LDAP2] Unable to create connection to ldap://[10.88.164.231]:636 as null.
javax.naming.CommunicationException: simple bind failed: 10.88.164.231:636 [Root exception is javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty]
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:195)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2720)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:296)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
at javax.naming.InitialContext.init(InitialContext.java:223)
at javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:134)
at oracle.ods.virtualization.engine.backend.jndi.JNDIConnectionPool.createCtx(JNDIConnectionPool.java:463)
at oracle.ods.virtualization.engine.backend.jndi.JNDIConnectionPool.create(JNDIConnectionPool.java:494)
at oracle.ods.virtualization.engine.backend.jndi.JNDIConnectionPool.<init>(JNDIConnectionPool.java:156)
at oracle.ods.virtualization.engine.backend.jndi.RemoteServer.getJNDIConnectionPool(RemoteServer.java:163)
at oracle.ods.virtualization.engine.backend.jndi.BackendJNDI.getLDAPContext(BackendJNDI.java:984)
at oracle.ods.virtualization.engine.backend.jndi.BackendJNDI.getConnection(BackendJNDI.java:927)
at oracle.ods.virtualization.engine.backend.jndi.ConnectionHandle.getHolder(ConnectionHandle.java:415)
at oracle.ods.virtualization.engine.backend.jndi.ConnectionHandle.search(ConnectionHandle.java:250)
at oracle.ods.virtualization.engine.backend.jndi.JNDIEntrySet.initialize(JNDIEntrySet.java:219)
at oracle.ods.virtualization.engine.backend.jndi.BackendJNDI.get(BackendJNDI.java:728)
at oracle.ods.virtualization.engine.chain.Chain.nextGet(Chain.java:303)
at oracle.ods.virtualization.engine.chain.BasePlugin.get(BasePlugin.java:89)
at oracle.ods.virtualization.engine.chain.Chain.nextGet(Chain.java:314)
at oracle.ods.virtualization.engine.chain.BasePlugin.get(BasePlugin.java:89)
at oracle.ods.virtualization.engine.chain.plugins.usermanagement.UserManagement.get(UserManagement.java:742)
at oracle.ods.virtualization.engine.chain.Chain.nextGet(Chain.java:314)
at oracle.ods.virtualization.engine.chain.PluginChain.runGet(PluginChain.java:211)
at oracle.ods.virtualization.engine.chain.PluginManager.runGet(PluginManager.java:351)
at oracle.ods.virtualization.engine.chain.PluginManager.runGet(PluginManager.java:316)
...more
Caused By: javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:190)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1731)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1692)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1675)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1601)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:94)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
at com.sun.jndi.ldap.Connection.writeRequest(Connection.java:414)
at com.sun.jndi.ldap.Connection.writeRequest(Connection.java:387)
at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:332)
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:190)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2720)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:296)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
at javax.naming.InitialContext.init(InitialContext.java:223)
at javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:134)
at oracle.ods.virtualization.engine.backend.jndi.JNDIConnectionPool.createCtx(JNDIConnectionPool.java:463)
at oracle.ods.virtualization.engine.backend.jndi.JNDIConnectionPool.create(JNDIConnectionPool.java:494)
at oracle.ods.virtualization.engine.backend.jndi.JNDIConnectionPool.<init>(JNDIConnectionPool.java:156)
at oracle.ods.virtualization.engine.backend.jndi.RemoteServer.getJNDIConnectionPool(RemoteServer.java:163)
at oracle.ods.virtualization.engine.backend.jndi.BackendJNDI.getLDAPContext(BackendJNDI.java:984)
at oracle.ods.virtualization.engine.backend.jndi.BackendJNDI.getConnection(BackendJNDI.java:927)
...more
Caused By: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
at sun.security.validator.PKIXValidator.<init>(PKIXValidator.java:57)
at sun.security.validator.Validator.getInstance(Validator.java:161)
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.getValidator(X509TrustManagerImpl.java:108)
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:204)
at oracle.ods.virtualization.engine.util.OVDTrustManager.checkServerTrusted(OVDTrustManager.java:99)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1198)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:136)
at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:593)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:529)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:925)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1170)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:637)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:89)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
Let us know for any helpful pointers on this
Thanks in advance,
RPB25Use the steps given below to perform import public key certificate of AD into OIM envirioment for SSL
Obtain the AD Certificates from the AD Administrator.
Copy the AD Certificates to the directory /jrockit-jdk1.6.0_20/jre/lib/security
Run the following command to import all the certificates
/jrockit-jdk1.6.0_20/bin/keytool -import -alias <provide_alias> -file <file-name> -keystorecacerts -storepasschangeit
4. The CA certificates are now present in the trust store. -
OIM AD Connector - not connecting to AD LDAP
Hello,
I'm new to Oracle Identity Management, so it could be some trivial misconfiguration issue.
I've installed OIM on a Windows Server 2003 with AD and Exchange already configured (with several user accounts).
Next, I've installed the AD connector for OIM and configured the 'AD Server' resource as follows:
Name: ADITResource
Type: AD Server
Admin FQDN: CN=Administrator,CN=Users,dc=mydomain,dc=COM // tested with a LDAP browser - ok
Admin Login: Administrator
Admin Password: *****
Allow Password Provisioning: yes
Port Number: 636
Root Context: OU=HQ1,DC=mydomain,dc=COM // tested with a LDAP browser - ok
SSL Port Number: 636
Server Address: 127.0.0.1
Use SSL: yes
isADAM: no
isLookupDN: no
I then configured the ActiveDirectoryReconTask, using the ADITResource above.
When I run the task, it runs instantly, but nothing actually happens.
In the JBoss console, I get a lot of lines saying:
INFO [ACCOUNTMANAGEMENT] UsernamePasswordLoginModule/initialize : Un-authenticated Identity: Unknown
and then an exception saying:
ERROR [APIS] Class/Method: tcLookupOperationsBean/getLookupValuesFilteredData encounter some problems: The LookupCode 'null' does not exist.
In the Deisgn Console, under Reconciliation Manager, there are no results.
I then tried to set up the ADITResource to not use SSL and connect to port no. 389.
Same results, JBoss console throws the same errors and exceptions.
I also tried running the AD connector test, runADTest.bat, but that didn't work either (it could not create the test user into AD).
With SSL, the runADTest.bat error is:
[OIMCP.ADCS],The error occured in ADClient::connectorToAvailableAD():127.0.0.1:636; socket closed.
[OIMCP.ADCS],Class/Method: ADClient/creatingUser encounter some problems: Connection Error Occur
[OIMCP.ADCS],User Createdfalse
Without SSL, the runADTest.bat error is:
[OIMCP.ADCS],The error occured in ADClient::createObject():LDAP: error code 32 - 0000208D: NameErr: DSID-031001CD, problem 2001 (NO_OBJECT), data 0, best match of: 'OU=HQ1,DC=mydomain,DC=COM'
[OIMCP.ADCS],User Createdfalse
Again, the "OU=HQ1,DC=mydomain,DC=COM" is valid.
Any clues ?
Thanks,
Chris
Edited by: user11699987 on Jul 16, 2009 5:31 AMRight, did that.
Now, the user did not show up in AD.
In the web console, under the user's details -> Resource Profile, I get:
Resource name: AD User
Status: Provisioning
Description: 25
Under Manage Scheduled Task, the Scheduled Provisioning Task ran and now it's Inactive.
Should I look elsewhere ?
Thanks !
UPDATE:
Now it has the 'Rejected' status.
Response: Organisation does not exist.
Response Description: Organization Unit Does not exist in target system.
Now, I know for sure that the target OU is there..
Edited by: Cristian Dumitrescu on Jul 17, 2009 6:17 AM -
Logging for the webservices connector
Hi all, I am confused.
I am looking for How to enable logging for the webservices connector.
The Wiki article: How to enable logging for the webservices connector (http://social.technet.microsoft.com/wiki/contents/articles/12427.fim2010-how-to-enable-logging-for-the-webservices-connector.aspx)
explains how to enable Web Service Configuration Tool, not Web Service Connector. I follow these instructions and log only the web Service Configuration tool usage, not Web Service Connector.
In Microsoft documentation point to logging.xml, but this file has GALSYNC log configuration, I did no t find
Logging level section:
<setting name="LoggingLevel" serializeAs="String">
<value>0</value>
</setting>
Someone can explain me how to enable logging for WEB Service Connector?
Thanks in advanced
Best Regards
JuanCC Technology SpecialistHi,
If you want to use SharePoint web service in Java client, the following articles for your reference:
Connect And Access Sharepoint Webservice From Java
http://blog.ashwani.co.in/blog/2013-07-28/connect-and-access-sharepoint-webservice-from-java/
Reading a SharePoint list with Java: tutorial
https://davidsit.wordpress.com/2010/02/10/reading-a-sharepoint-list-with-java-tutorial/
Best Regards,
Dennis Guo
TechNet Community Support
Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
[email protected] -
Hi All,
I have a requirement where I need to provision and reconcile into multiple flat files and metadata in each of them may differ.
So I was planning to create custom GTC connector each for provisioning and reconciliation respectively.
Can anyone please suggest me the best possible solution for this.
Is Oracle planning to launch a connector for flat file in near future which can help in such scenarios?I have tried using default GTC connector for reconciliation (without trusted source reconciliation). I have three fields in the file UserName,FirstName,LastName and have mapped them to account profile for OIM, a reconciliation rule has been created which looks for equality of User Id in both OIM and flat file. The User ID is present in both flat file and OIM and is same.
I have done configuration on both OIM 9100 and also on OIM 9101.
It is working in OIM 9100 but not on 9101 and giving me null pointer exception. Any idea why it is not working on 9101.
When I have a new entry in flat file that exists in OIM the connector link the two and creates the resource form. But when I try to update/delete any existing value in flat file it is showing me a strange behaviour.
For update it links the same profile again to different resource form (basically it link the account using "one entity match found" however it should be "one process match found")and for delete it is not working. I am assuming that it is not able to call process tasks.
Can anyone tell me why it is doing so. My reconciliation rule is working fine. -
Hi All,
I have instlalled the OIM DBUM connector for Oracle databse. I have provided all the parametrs except connectionproperties column while configuring the itresource for the connector.when trying to run the schedulers OOTB to populate lookups synchronized with target iam getting the following error.please help me out.
oracle.iam.connectors.icfcommon.exceptions.OIMException: Thor.API.Exceptions.tcAPIException: Row index out of bounds
thanks.Hi Ketan,
I have installed DBUM *11.1.1.6* on OIM *11.1.1.5* locally.
in the connector guide i followed below steps.
1. Sec:2.2.1 Installing the Connector in Oracle Identity Manager
2. Sec:2.3 Postinstallation
Section 2.3.1, "Postinstallation on Oracle Identity Manager"
Section 2.3.1.1, "Configuring the Target System As a Trusted Source"-notdone
Section 2.3.1.2, "Changing to the Required Input Locale" -----left it with default values
Section 2.3.1.3, "Clearing Content Related to Connector Resource Bundles from the
Server Cache"
Section 2.3.1.4, "Creating the Administrator Account on Oracle Database Vault"-----not done
Section 2.3.1.5, "Setting up the Lookup Definition for Connection Pooling"---not done
Section 2.3.1.6, "Enabling Logging for Oracle Identity Manager"
Section 2.3.2 Configuring the IT Resource for the Target System
In this we have a parameter text field called Connection Properties ----I left it blank and dont know what needs to be filled.
Remaining parameters are set
Database Name-IP of DB machine
DB Type
JDBC Driver
JDBC URL
Login Password
Login User
I could see connector installation success message. But when I am trying to run the scheduled jobs configured to populate the lookups , getting the above mentioned error.
Thanks.
Section 2.3.2, "Configuring the IT Resource for the Target System"
Section 2.3.3, "Configuring the Connector to Support Multiple Versions of the
Target System"------------------->not done
Edited by: Powerlad on Sep 2, 2012 11:55 PM -
References for developing Reconciliation Rules for OIM 11GR1
Good Day!
Hi Folks!
I would like to ask if you can share some references or any documents which tackles on the development or creation of reconciliation rules for OIM 11GR1. Currently, we are trying to pull users from a SAP system and provision them to MS AD. Currently, we want to develop reconciliation rules such that we can avoid doing manual ad-hoc link.
Aside from the documentation guide, are there any other references there available in helping us to develop recon rules from a simple definition and from there maybe we can pick it up to define a complex one?
All answers are appreciated.
Thanks in advance!
Regards,
Jeffreconciliation rule support very limited operator. find the below link
http://docs.oracle.com/cd/E11223_01/doc.910/e11217/cnnctrcmpnts.htm#CEGJHBDC -
Documentation for USRP 1.1 with Ettus N210
Where can I find documentation for using USRP 1.1 with the Ettus N210 device? The documentation that comes with USRP 1.1 has a tiny blurb on the N210 that points to the documentation for NI 292x devices for details. There, I find:
"For Ettus Research devices, use internal names to refer to the internal connectors inside the device case."
I'm trying to understand how to use the API to receive upon the LFRX-LF DC-50 MHz receiver daughter board. The two connectors on that board are labeled "RX-A" and "RX-B", but I can't get those names to work, nor can I get "RF1" or "RF2" to work (the names on the case).
Any suggestions?
Ultimately, I'd like to stream data from both connectors at the same time, if that's possible.Hi ejubenville,
Support for the LFRX 0-30 MHz daughter board was just added to the NI-USRP driver in version 1.1 and documentation for this daught board is limited. While support for the LFRX is listed, I saw no mention to the LFRX-LF 0-50 MHz daughter board. I expect that your daughter board will work, but if not this may be part of the reason.
As far as the driver is concerned, the Ettus N210 and the NI-292x devices will be configured the same so there is not different documentation for the N210. I would try using RX1 and RX2 which are the names used for the other daughter boards.
Sarah Y
SDR Product Manager
National Instruments | Ettus Research -
OIM Siebel Connector Real-Time
Hi All
I am using the direct provisioning for the OIM Siebel Connector.
Can I make this provisioning process to be a real time without human intervention ?
At the current time, I am adding an LDAP resource and Siebel resource to each user manually to start the provisioning process. Is there anyway to automate this process to remove the human intervention ?
ThanksYou can create a schedule task to initiate provisioning through APIs
Or
Use Access Policy. Whenever user will get created into OIM, he will get Siebel Resource
Maybe you are looking for
-
Mid 2010 MacBook Pro screen freakout - video link
Hello there, My mid-2010 15 inch MacBook Pro has started freaking out since about the time that I installed Lion on it - however I'm not convinced that Lion is the culprit. I have Snow Leopard partition and it does it there too. Every so often the sc
-
Problem with applications that doesn't show even if installed and to uninstall some that work wrong
Hi there! Problem #1: I've been having problems with my Windguru application in my Iphone. From sometime onwards, it is not showing the forecasted wind, etc after I open it. Tried to uninstall and install again but the problem continues. Seems like t
-
Can't get it to connect on yahoo messenger
What do I need to do to get it to work on yahoo messenger.
-
When I try to sync my ipod with itunes I get an error message which tells me Apple mobile device is not started.
-
Upgrade line transfer question
My hubby and I have been using each others upgrades, last year I used his to get a Blackberry Curve (8330), he recently used mine to get himself a Rogue. His line now has the 1 yr upgrade and I want to get the Incredible. If I order it on his line wi