OIM 11g - OID target reconc overwrites User-Type in OIM
Hi All,
When i run OID-OIM User-Type to Consultant in OIM user profile. I guess it is some where hard coded. please le tm know where can i find it. Also let me know if i can make it configurable.
Regards,
Ashok
Check the Schedule Task Parameters. It should be there only.
Similar Messages
-
OIM 11g r2 - Do we have User history in OIM?
Hi,
when we created a user in OIM, is there any time stamp for creation or last modification?
It is OIM 11g r2.
Thank in advance
dongsuHi Dongsu,
Login to DB using OIM username and use below query and verify
select * from usr;
which gives all user details including modified date, creation data and all other details.
Thanks & Regards,
Chinni
Edited by: chinni on 25-Apr-2013 16:50 -
How to change a label of User Type in OIM 11g
How to change a label of User Type in OIM 11g. If we have to change label of First Name or Last name then we can change in User.xml and some in resource properties file but what is the procedure to change for User Type.
Follow this: http://download.oracle.com/docs/cd/E14571_01/doc.1111/e14309/uicust.htm#BABDEGFE
i .Copy the $OIM_ORACLE_HOME/server/apps/oim.ear/admin.war/WEB-INF/lib/IdentityTaskFlow.jar to a local work directory, unzip it and locate UserAttributes.properties at /oracle/iam/resources/IdentityTaskFlow.
ii. Update the userAttributes.properties file in the IdentityTaskFlow.jar/oracle/iam/resources/IdentityTaskFlow and create a new IdentityTaskFlow.jar
iii. Copy the updated IdentityTaskFlow.jar to $OIM_ORACLE_HOME/ server/apps/oim.ear/admin.war/WEB-INF/lib/
For "User Type", try putting the property name as "user_type" or try "role". One should work.
HTH,
BB -
OIM 11g OID connector install error
Hi,
I'm trying to install the OID connector (OID_904140.zip) for OIM 11g (11.1.1.5), but it fails and I get this error message on my screen:
"A system error occurred.
Contact the Oracle Identity Manager System Administrator."
I have unzipped the OID_904140.zip into /home/oracle/Oracle/Middleware/Oracle_IDM1/server/ConnectorDefaultDirectory/
..and the ldap.jar and ldapbp.jar to the subfolder targetsystems-lib/OID_904140/
I can load it, but when I press install something fails. The log tells me this:
[2012-06-08T05:37:24.153-07:00] [oim_server1] [NOTIFICATION] [IAM-5010000] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Generic Information: Unable to delete, as profile does not exist : /db/OID User moving forward ...
[2012-06-08T05:37:24.157-07:00] [oim_server1] [NOTIFICATION] [IAM-5012124] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Failed to load profile from MDS /db/OID User. Error is oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/OID User".
[2012-06-08T05:37:24.157-07:00] [oim_server1] [NOTIFICATION] [IAM-5012124] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Failed to load profile from MDS /db/OID User_backup. Error is oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/OID User_backup".
[2012-06-08T05:37:24.165-07:00] [oim_server1] [NOTIFICATION] [IAM-5012122] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Reading configurations from the database for object name OID User
[2012-06-08T05:37:24.212-07:00] [oim_server1] [NOTIFICATION] [IAM-5010000] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Generic Information: tos not null
[2012-06-08T05:37:24.326-07:00] [oim_server1] [ERROR] [] [XELLERATE.WEBAPP] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Class/Method: tcActionBase/execute encounter some problems: EJB Exception: ; nested exception is: [[
java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V; nested exception is: java.rmi.RemoteException: EJB Exception: ; nested exception is:
java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V javax.ejb.EJBException: EJB Exception: ; nested exception is:
java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V; nested exception is: java.rmi.RemoteException: EJB Exception: ; nested exception is:
java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V
java.rmi.RemoteException: EJB Exception: ; nested exception is:
java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V
at weblogic.ejb.container.internal.EJBRuntimeUtils.throwRemoteException(EJBRuntimeUtils.java:108)
at weblogic.ejb.container.internal.BaseRemoteObject.handleSystemException(BaseRemoteObject.java:857)
at weblogic.ejb.container.internal.BaseRemoteObject.handleSystemException(BaseRemoteObject.java:809)
at weblogic.ejb.container.internal.BaseRemoteObject.postInvoke1(BaseRemoteObject.java:518)
This looks interesting to me, but I can't really make sense of it:
Failed to load profile from MDS /db/OID User_backup. Error is oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/OID User_backup".
Any ideas, what has gone wrong?
Thanks and regards,
Henrik
Edited by: user1154522 on Jun 8, 2012 6:50 AMHi Henrik,
Trying to help:
1-Go and take a look into CIH table into OIM Schema.
1.2-If OID is there, chech: CIH_STATUS column.
1.3-If it's recorded into this table. Try to follow OIM Connector Unistall guide and do it again.
Link: http://docs.oracle.com/cd/E28271_01/doc.1111/e14308/conn_mgmt.htm#CIHBDFEB
section: 6.9.3 Setting Up the Uninstall Connector Utility
I hope this helps,
Thiago Leoncio. -
OIM 11g R2 - API to validate user's password
Hi,
Is there any API available to validate if an user's password in OIM is valid.I have an user login and password and need to verify if the user's password in OIM is same the input password.I am not looking for the API to validate my password against password policy,for which I have the API.
Thanks.One of the ways to do it would be to decrypt the current password and then compare with the new password. Where are you doing this check? Depending upon where you want to do this, you can use different ways to decrypt the current password of the user.
There are various posts in the forum about decryting the password.
On a side note, if your policy does not allow same password, then new password validation against the policy should suffice your requirement.
-Bikash -
OIM 11g R1. Issue with parallel participant type approval workflow.
Hi All,
I have a request level approval with the human task assignment participant type set to parallel. There will be two participants in the workflow with approve and reject having outcome value as 50 each. When i submit a request, i can see the both the request is properly allocated to both the users. But when i log in with the individual users and search the approval tasks in the self service page, i cant see it properly assigned.
In the approval tasks table, i cant see the values for the following columns request ID, request type, beneficiary, request target. Whereas i can see the value for the requester as "Anonymour user" and it is assigned to a proper user. When i try to approve, i get the following error in the console.
========================================================================================================================
<25 Nov, 2012 1:49:09 PM IST> <Warning> <oracle.adfinternal.view.faces.renderkit
.rich.NavigationPaneRenderer> <BEA-000000> <ILLEGAL_COMPONENT_HIERARCHY : A chil
d component that is not a commandNavigationItem (or a separator when hint=choice
) was found.>
<25 Nov, 2012 2:22:57 PM IST> <Error> <oracle.iam.request.impl> <IAM-2050076> <N
o request found with the request ID .>
<25 Nov, 2012 2:22:57 PM IST> <Error> <oracle.iam.tasklist.agentry.task> <IAM-20
60009> <Error occurred while approving task from BPEL>
<25 Nov, 2012 2:22:57 PM IST> <Error> <oracle.iam.tasklist.agentry.task> <IAM-20
60013> <Exception thrown:
oracle.iam.request.exception.RequestServiceException: IAM-2050076:No request fou
nd with the request ID .
at oracle.iam.request.repository.RequestRepository.getRequestClone(Reque
stRepository.java:891)
at oracle.iam.request.impl.RequestEngine.getBasicRequestDetails(RequestE
ngine.java:3877)
at oracle.iam.request.impl.RequestServiceImpl.getBasicRequestData(Reques
tServiceImpl.java:94)
at oracle.iam.request.api.RequestServiceEJB.getBasicRequestDatax(Unknown
Source)
at sun.reflect.GeneratedMethodAccessor1000.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
sorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJo
inpointUsingReflection(AopUtils.java:310)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMetho
dInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMetho
dInvocation.proceed(ReflectiveMethodInvocation.java:149)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntrodu
ctionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntrodu
ctionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMetho
dInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisit
orImpl.visit(MethodInvocationVisitorImpl.java:37)
at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.c
allback(EnvironmentInterceptorCallbackImpl.java:54)
at com.bea.core.repackaged.springframework.jee.spi.EnvironmentIntercepto
r.invoke(EnvironmentInterceptor.java:50)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMetho
dInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocat
ionInterceptor.invoke(ExposeInvocationInterceptor.java:89)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMetho
dInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntrodu
ctionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntrodu
ctionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMetho
dInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopPr
oxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy337.getBasicRequestDatax(Unknown Source)
at oracle.iam.request.api.RequestService_dnwrzl_RequestServiceRemoteImpl
.__WL_invoke(Unknown Source)
at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(Ses
sionRemoteMethodInvoker.java:40)
at oracle.iam.request.api.RequestService_dnwrzl_RequestServiceRemoteImpl
.getBasicRequestDatax(Unknown Source)
at sun.reflect.GeneratedMethodAccessor999.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
sorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(Remote
BusinessIntfProxy.java:85)
at $Proxy170.getBasicRequestDatax(Unknown Source)
at sun.reflect.GeneratedMethodAccessor998.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
sorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflecti
on(AopUtils.java:307)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynami
cAopProxy.java:198)
at $Proxy336.getBasicRequestDatax(Unknown Source)
at oracle.iam.request.api.RequestServiceDelegate.getBasicRequestData(Unk
nown Source)
at oracle.iam.tasklist.agentry.task.ApproveActor.perform(ApproveActor.ja
va:106)
at oracle.iam.consoles.faces.mvc.canonic.Model.perform(Model.java:565)
at oracle.iam.consoles.faces.mvc.self.Model.perform(Model.java:178)
at oracle.iam.consoles.faces.mvc.canonic.Model.prepare(Model.java:460)
at oracle.iam.consoles.faces.mvc.self.Model.prepare(Model.java:173)
at oracle.iam.consoles.faces.mvc.canonic.Controller.doPrepare(Controller
.java:225)
at oracle.iam.consoles.faces.mvc.canonic.Controller.doSelectOperationNav
igation(Controller.java:88)
at oracle.iam.consoles.faces.render.canonic.UIEntrypod$CommandToolbarBut
tonActionListener.processAction(UIEntrypod.java:677)
at javax.faces.event.ActionEvent.processListener(ActionEvent.java:88)
at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcast(UIXC
omponentBase.java:675)
at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand
.java:179)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.r
un(ContextSwitchingComponent.java:92)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._pr
ocessPhase(ContextSwitchingComponent.java:361)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.bro
adcast(ContextSwitchingComponent.java:96)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclu
de.java:102)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.r
un(ContextSwitchingComponent.java:92)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._pr
ocessPhase(ContextSwitchingComponent.java:361)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.bro
adcast(ContextSwitchingComponent.java:96)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclu
de.java:96)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents
(LifecycleImpl.java:902)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(L
ifecycleImpl.java:313)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(Lifecyc
leImpl.java:186)
at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run
(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecuri
tyHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.jav
a:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.j
ava:205)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter
(RegistrationFilter.java:106)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterL
istChain.doFilter(TrinidadFilterImpl.java:446)
at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter
.java:60)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterL
istChain.doFilter(TrinidadFilterImpl.java:446)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilt
erImpl(TrinidadFilterImpl.java:271)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilte
r(TrinidadFilterImpl.java:177)
at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFi
lter.java:92)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.iam.platform.auth.web.PwdMgmtNavigationFilter.doFilter(PwdMgmt
NavigationFilter.java:121)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.iam.platform.auth.web.OIMAuthContextFilter.doFilter(OIMAuthCon
textFilter.java:107)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:1
75)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
3)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
il.java:413)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
a:94)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
61)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:13
6)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsF
ilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.wrapRun(WebAppServletContext.java:3715)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppS
ervletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletC
ontext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.j
ava:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
>
========================================================================================================================
Please share any thoughts on this.
Thanks,
SriniHi Kevin,
Thanks a lot for the response. But, when i deployed the composite SAR in to the server from Jdeveloper, i checked the option to "Overwrite any existing composite with same revision ID". SO, i used the same revision ID (Say 1.0), will this also need to be disabled?
Thanks,
Srini -
OIM 11g - Approval workflows for disabled user accounts
Hi,
We have a scenario wherein a user will be created in OIM with a future start date resulting in a Disabled Untill Start Date user status. Once the user is created, we should let anyone submit a New Hire form for the user and the submitted form needs to be approved by the Manager. Once the Manager approves the form, the target accounts should get created with disabled status. These accounts should get enabled on the start date.
As submission of New Hire Form is not a straightforward process, we came up with the following design.
A dummy resource object corresponding to the New Hire Form will be created and can be requested for a newly hired person by anyone who has OIM access. An approval workflow will be configured for the New Hire Form Resource object and provisioning of target accounts will be based on Manager's approval for this resource object.
However the challenge that we see with this design is, it wasn't possible to place a request for New Hire Form dummy resource object for a disabled user. But the requirement is to complete the New Hire Form submission process befor the user becomes active.
How can these workflows be invoked for a disbaled user? Is there any other way to implement this requirement?
Any kind of help/guidance is greatly appreciated.
Thanks and Regards
Deepa911709 wrote:
If I create a dummy resource, called "Group Membership" for example, and use this to show the groups that are available in AD, how can I have the request be routed to different approvers? For example, group cn=HR Users,cn=Users,dc=company,dc=com needs to be routed to HR for approval. Group cn=IT,cn=Users,dc=company,dc=com needs to be routed to IT for approval. How can I change the approvers dynamically?
Re: Spawning multiple approval tasks in parallel in OIM11g SOA Composite
You can have dynamic task assignment in BPEL; where you defne a variable in the task assignment and update the variable with the approver group name before triggering the task assignment task. Check BPEL docs for same.
If every group needs a different approver, and there are 5000 groups, can I make 5000 resources and use the built-in routing of approvals? Or, use the dummy resource approach and handle the management of the approvals in some other way.Just make one resource with one field attached to it which takes in the group name and handle approval in SOA by reading a lookup which has AD group to Approval Group mapping.
>
Thank you.-Bikash
Edited by: Bikash Bagaria on Feb 18, 2012 1:00 AM -
OIM 11g: Error Installing Sybase DBUM User Management 9.1.0.4 connector
Hi All,
While installing Sybase DBUM User Management 9.1.0.4 connector from OIM console, I get the following:
While on Step 2 of the wizard (Connector Installation):
- Configuration of connector libraries: passes
- Import of connector XML Files (using deployment manager): FAILS
The following error message appears:
DOBJ.XML_IMPORT_ERROR
Unresolved dependency{WIN=Reconciliation Manager}
Operating System: Linux
Thanks in advance for any ideas!which release of OIM are you using.
Did you try to retry the installation of connector?
If not then refrsh your OIM database and then install again.
Seems like some earlier installation has kept some data in OIM DB. -
OIM 11g R1: How to export Users
Hello,
how can i export users to an ldif, csv or xml file from OIM?
I need an automated process, which give me a list of special users and their attributes to import this to another system.Hello,
a out-of-the-box function is not available by default in OIM?
BI-Publisher would be a solution, isn't it? -
OIM 11g add custom role on user creation
Hi,
I when i create a user in OIM11g by default it gets added to "ALL USERS" role.
I have created a new role and want to add user to this custom role while creating users. How can i do this in OIM11g
Regards,
Ab
Edited by: 824473 on Jan 18, 2011 2:33 AMset Auto submit true. you can't set the value for ValueChangedListener property in current release of R2. This is bug and you can raise SR for same. But, this won't cause saving data into USR table. ValueChandedListener property for Modify User page only.
As you said, data is not being saved in the USR table then verify your steps again:
create sandbox->users->create user/edit user/view user details page->click customize->leftTopcorner->View->Source->select area->edit->Click Add Content (on left top)->Data Component catalog->scroll down and select User VO->Refresh dialogue box->select the field and click 'Add'->on dropdown select 'ADF Input test w/label/for view user page it should be output test w/label->close that window->Check if it added to create user form->save and close customization
for user detail page select "Managed User->UserVo1 " as datacomponent
Re: UDF creation on User form in 11gR2
for valuechangedlistener the fixes all ready available. you have to do some workaround as other poster has given in above link:
1.Create a sandbox and activate it. Open the page that contains the UDF, and click Customize.
2.Select View, Source.
3.Note the value of the valueChangeListener property of a predefined field. To do so:
a.Click the predefined field, and then click Edit to open the Component Properties dialog box.
b.Copy the value of the valueChangeListener property.
4.Export the sandbox as a ZIP file.
5.Extract the ZIP file and edit the jsff.xml file for the specific screen.
6.Add the following attributes to the ADF tag, for example af:inputText, for the UDF:
◦valueChangeListener=VALUE_COPIED_IN_STEP3
◦autoSubmit="true"
7.Create the ZIP file for the sandbox.
8.Import the sandbox.
9.Publish the sandbox.
Edited by: Nishith Nayan on Sep 21, 2012 1:04 PM -
11g - LDAP Sync - Select Custom Object class based on user type
Hi Gurus,
We have Ldap Sync set up between OIM 11g and ODSEE, we have some custom object class in ODSEE when the user are getting created in OIM it is getting created in ODSEE and it has all object class , every thing is working fine.
Now we have to select the object class based on user type of OIM, while pushing the user to ODSEE through LDAP sync.
we checked the LDAPUser.xml we doesnt have any option to choose custom object class based on user type.
Guys needs suggestion how to go forward on this requirement.Do you have OVD between OIM and ODSEE? If yes, then this can be handled at OVD. By modifying the LDAP Adapter and setting up search for users with custom objectclass instead of inetorgperson.
Flow would be as follows:
OIM --> LDAPRequest to Create User with inetorgperson to OVD --> OVD --> change request's objectclass to custom objectclass --> Create user in OID with custom objectclass
~Yagnesh -
How do i reconcile users from OIM to OID
I have configured the OIM with the connector for OID. But the user created in OIM is not stored in the OID. How should i proceed with it?
You are trying to do Provisioning with OID.
You have logged in with XELSYSADM.
You have searched for user and went to his Resource Profile.
Clicked Provision New Resource and selected OID.
Resource form must be populated and you have filled the information and clicked continue and subitt that.
Now go to Process Form attached with it and see whether values for OID Server has come and check for other attributes also.
Also uncheck Auto Save button and start provisioning for some user again and give proper values in all the fields of Process as well as Object forms. -
Hi all,
I have developed an Entity Adapter using Oracle Identity Manager Design Console which generates different account user ids against a user defined field on Process Form.
Here I'll provide more details about my scenario.
SCENARIO*
a. OIM version: 11.1.1.5.0
b. Process Form fields (Siebel Process Form):
- User ID
- First Name
- Last Name
.... [any other out of the box Siebel Connector field]
- Anonymous Flag (this is a user defined field on Siebel Process Form)
c. Entity Adapter
- this adapter has an input variable which is Process Form user defined field "+Anonymous Flag+"
- if "+Anonymous Flag+" is checked (true) then the adapter sets the return value to "*Anonymous*"
- else if "+Anonymous Flag+" is uncheked (false) then the adapter sets the return value to "*NOT Anonymous*"
- the adapter return variable is mapped to Process Form "+User ID+"
- NOTE: the adapter return values are only for testing pourpose. In the future, the adapter should return two different syntax for User ID.
For example in case of Anonymous Flag checked, account User ID should be +<surname>+ + "+_+" + +<name>+ + +<random_number>+; while in case of Anonymous Flag unchecked, account User ID should be <+company_name+> + <+random_number+>
d. Access Policies
- an access policy "+AP_for_Anonymous+" linked with a role "+ROLE_for_Anonymous+" that sets "+Anonymous Flag+" to checked (true)
- an access policy "+AP_for_NOT_Anonymous+" linked with a role "+ROLE_for_NON_Anonymous+" that sets "+Anonymous Flag+" to unchecked (false)
RESULTS*
Assigning one of roles "+ROLE_for_Anonymous+" or "+ROLE_for_NON_Anonymous+", on Process Form, user defined field "+Anonymous Flag+" is valorized correctly, but Entity Adapter doesn't seems to work. In fact Process Form User ID remains empty.
QUESTIONS*
1. Are Entity Adapters associated with accounts supported in OIM 11g? I found a couple of posts that assert that Entity Adapters don't exist in OIM 11g (Event handlers are not getting invoked in oim 11g. or that state Entity Adapters are not supported with the User Form (Issue in adapters mapping in OIM 11g About this I found Entity Adapter Oracle documentation (http://docs.oracle.com/cd/E21764_01/doc.1111/e14309/creadp.htm#BABDHECI)
2. If Entity Adapters are not applicabile to my scenario, can I use Event Handlers? If yes, what are the entity types that I can specify in event handler metadata xml file? For "event handler metadata xml file" I mean the following
<action-handler class="com.test.sample" entity-type=????? operation="CREATE" name="Sample" stage="postprocess" order="1007" sync="TRUE"/>3. If Entity Adapters are not applicabile to my scenario, what are the operations that I can specify in event handler metadata xml file?
Thank for your help,
DanieleEntity Adapter still exist in 11g. Yes, you can use Event Handler .
But why don't you use Process task/prepopulate adapter for your scenario. Try below
1. You have some condition on which role is assigned. Based on same condition populate this Anonymous/ Not Anonymous(true/false) at user profile.
2. write a pre-populate adapter to generate User ID. pass parameters Anonymous flag along with other user profile attribute(first name, last name..etc.) . Here based on flag you will be able to decide User ID.
3. attach this pre-populate with process form.
4. already you have two access policy which is fine. just edit both and remove the Anonymous flag value else can leave it as it is.
Note: for populating Anonymous flag on user profile create a new UDF and try to populate in trusted recon.else write post process event handler for same which will execute before access policy. I mean the order of evethandler should be between 1003 to 1008
If you have doubt let me know
--nayan -
Bulk load in OIM 11g enabled with LDAP sync
Have anyone performed bulk load of more than 100,000 users using bulk load utility in OIM 11g ?
The challenge here is we have OIM 11.1.1.5.0 environment enabled with LDAP sync.
We are trying to figure out some performance factors and best way to achieve our requirement
1.Have you performed any timings around use of Bulk Load tool. Any idea how long will it take to LDAP sync more than 100,000 users into OID. What are the problems that we could encounter during this flow ?
2.Is it possible we could migrate users into another environment and then swap this database for the OIM database? Also is there any effective way to load into OID directly ?
3.We also have some custom Scheduled Task to modify couple of user attributes (using update API) from the flat file. Have you guys tried such scenario after the bulk load ? And did you face any problem while doing so ?
Thanks
DKto Update a UDF you must assign a copy value adpter in Lookup.USR_PROCESS_TRIGGERS(design console / lookup definition)
eg.
CODE --------------------------DECODE
USR_UDF_MYATTR1----- Change MYATTR1
USR_UDF_MYATTR2----- Change MYATTR2
Edited by: Lighting Cui on 2011-8-3 上午12:25 -
OIM 11g - Authorization Policy
Hi,
I am facing issue in OIM 11g Authorization policy configuration. I am using OIM 11.1.1.5 Version.
I have Created a OU --> Sample Helpdesk OU. Under this OU, i have created a user --> Sample Helpdesk user.
I have created a role --> Sample Helpdesk Role and assigned this role to the user --> Sample Helpdesk user.
I have created a Auth Policy --> "HelpDesk Create User - HelpDesk OU" which has to allow the user --> Sample Helpdesk user, to create a new users under the organization "Sample Helpdesk OU".
During creation of User in OIM, i am not able to search the Organization in the lookup field. I am getting Zero records for the search. I used all type of filters to search the OU in the OIM User Form.
Thanks,
Sandy.
Edited by: Sandy on Dec 6, 2011 9:24 PM
Edited by: Sandy on Dec 6, 2011 9:25 PMHi,
Make Helpdesk Role created above as administrative role of OU.
Regards,
Raghav.
Maybe you are looking for
-
How can I reload (refresh) my files into iTunes
Hello, My iTunes folder and library is in its default location and I do not want to change my iTunes Library to an external harddrive. I do however have files on an external harddrive, which are also part of my media library in iTunes. Every now and
-
Ensure that master data is unique across R/3 source systems within BW
Hello all, I have an issue and don't have any clues for it. I wait for your suggestions , please. Problem: we must ensure that master data (represented by Info objects) is unique across R/3 source systems within BW Thank you.
-
ihone 4/ 8 ios 7.1.2 around late nov. both my phone and my wife's stopped up dating our photo stream called support and after several hours of resetting hot and cold they had me put in support id so they could look further into it. this was several w
-
Problems with lost bookmarks, keypad not working, apps shutting down
Out of the blue, while I was still using Safari, all my bookmarks disappeared. No matter how many times I tried to add a bookmark it doesn't show up on my Bookmarks tab. I've tried adding a new folder on my bookmarks tab but it doesn't work either. I
-
LDAP authentication too slow in OBIEE 10g
Hello , For one of our clients we have configured LDAP (Microsoft Active Directory) for authentication purpose in OBIEE 10g repository. The Authentication process takes around 10-15 mins to Login . Are there any parameters that can help to speed