OIM-AD connector Issues
Hi,
I am using a VMware image already configured with OIM-AD. But the AD connector is having some issues. When I test the ADITResource connectivity, the test is failed. It says the input parameters are correct. I have cross-checked may times...but all the parameters are intact. When i try to provision any user with this resource system validation is in pending status.
The logs are:
2010-04-26 05:41:56,321 DEBUG [org.jboss.ejb.StatefulSessionContainer] Created new session ID: g8h3mw9t-yl
2010-04-26 05:41:56,321 DEBUG [org.jboss.ejb.StatefulSessionContainer] Using create method for session: public void com.thortech.xl.ejb.databeansimpl.tcDataBaseBean.ejbCreate() throws javax.ejb.CreateException
2010-04-26 05:41:56,321 DEBUG [org.jboss.proxy.ejb.ProxyFactory] seting invoker proxy binding for stateful session: stateful-rmi-invoker
After setting SSL to true... i m getting the following error:
23:33:52,546 ERROR [ACTIVEDIRECTORYCONTROLLER] tcADUtilLDAPController.Connect():Problem getting InitialDirContext: javax
.naming.CommunicationException: simple bind failed: ten.mydomain.com:636 [Root exception is javax.net.ssl.SSLHandshakeEx
ception: sun.security.validator.ValidatorException: No trusted certificate found]
23:33:52,546 INFO [STDOUT] java.lang.reflect.InvocationTargetException
23:33:52,546 INFO [STDOUT] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
23:33:52,546 INFO [STDOUT] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
23:33:52,546 INFO [STDOUT] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
23:33:52,546 INFO [STDOUT] at java.lang.reflect.Method.invoke(Method.java:324)
23:33:52,546 INFO [STDOUT] at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpADCREATEUSER.CREATEUSER(adpADCREATE
USER.java:163)
23:33:52,546 INFO [STDOUT] at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpADCREATEUSER.implementation(adpADCR
EATEUSER.java:86)
Similar Messages
-
OIM: OID Connector Issue
Hey all,
I downloaded and installed the new 11g version of the OID 11.1.1.5 connector without the connector server on OIM 11g BPO5. While trying to run the group lookup reconciliation scheduled task, it fails with below error:
<Oct 30, 2012 8:51:01 PM PDT> <Error> <ORACLE.IAM.CONNECTORS.ICFCOMMON.RECON.LOOKUPRECONTASK> <BEA-000000> <oracle.iam.connectors.icfcommon.recon.LookupReconTask : execute : Error during execution
org.identityconnectors.framework.common.exceptions.ConnectorException: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; Remaining name: *'dc=mycompanydc=statedc=*type'
at org.identityconnectors.ldap.search.LdapInternalSearch.execute(LdapInternalSearch.java:71)
at org.identityconnectors.ldap.search.LdapInternalSearch.execute(LdapInternalSearch.java:59)
at org.identityconnectors.ldap.search.LdapSearch.execute(LdapSearch.java:131)
at org.identityconnectors.ldap.LdapConnector.executeQuery(LdapConnector.java:115)
at org.identityconnectors.ldap.LdapConnector.executeQuery(LdapConnector.java:59)
at org.identityconnectors.framework.impl.api.local.operations.SearchImpl.rawSearch(SearchImpl.java:105)
at org.identityconnectors.framework.impl.api.local.operations.SearchImpl.search(SearchImpl.java:82)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:93)
at $Proxy336.search(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:107)
at $Proxy336.search(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.identityconnectors.framework.impl.api.BufferedResultsProxy$BufferedResultsHandler.run(BufferedResultsProxy.java:162)
Caused By: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; Remaining name: *'dc=mycompanydc=statedc=*type'
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3092)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2820)
at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1829)
at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1752)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:368)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:338)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:321)
at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:245)
at org.identityconnectors.ldap.search.DefaultSearchStrategy.doSearch(DefaultSearchStrategy.java:60)
at org.identityconnectors.ldap.search.LdapInternalSearch.execute(LdapInternalSearch.java:66)
at org.identityconnectors.ldap.search.LdapInternalSearch.execute(LdapInternalSearch.java:59)
at org.identityconnectors.ldap.search.LdapSearch.execute(LdapSearch.java:131)
at org.identityconnectors.ldap.LdapConnector.executeQuery(LdapConnector.java:115)
at org.identityconnectors.ldap.LdapConnector.executeQuery(LdapConnector.java:59)
at org.identityconnectors.framework.impl.api.local.operations.SearchImpl.rawSearch(SearchImpl.java:105)
at org.identityconnectors.framework.impl.api.local.operations.SearchImpl.search(SearchImpl.java:82)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:93)
at $Proxy336.search(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:107)
at $Proxy336.search(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.identityconnectors.framework.impl.api.BufferedResultsProxy$BufferedResultsHandler.run(BufferedResultsProxy.java:162)
>
<Oct 30, 2012 8:51:01 PM PDT> <Warning> <oracle.iam.scheduler.vo> <IAM-1020035> <Error in exception object for job {0}
java.io.NotSerializableException: com.sun.jndi.ldap.LdapCtx
at java.io.ObjectOutputStream.writeObject0(ObjectOutputStream.java:1173)
at java.io.ObjectOutputStream.defaultWriteFields(ObjectOutputStream.java:1527)
at java.io.ObjectOutputStream.writeSerialData(ObjectOutputStream.java:1492)
at java.io.ObjectOutputStream.writeOrdinaryObject(ObjectOutputStream.java:1409)
at java.io.ObjectOutputStream.writeObject0(ObjectOutputStream.java:1167)
at java.io.ObjectOutputStream.defaultWriteFields(ObjectOutputStream.java:1527)
at java.io.ObjectOutputStream.defaultWriteObject(ObjectOutputStream.java:428)
at java.lang.Throwable.writeObject(Throwable.java:293)
at sun.reflect.GeneratedMethodAccessor94.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at java.io.ObjectStreamClass.invokeWriteObject(ObjectStreamClass.java:1001)
at java.io.ObjectOutputStream.writeSerialData(ObjectOutputStream.java:1478)
at java.io.ObjectOutputStream.writeOrdinaryObject(ObjectOutputStream.java:1409)
at java.io.ObjectOutputStream.writeObject0(ObjectOutputStream.java:1167)
at java.io.ObjectOutputStream.defaultWriteFields(ObjectOutputStream.java:1527)
at java.io.ObjectOutputStream.defaultWriteObject(ObjectOutputStream.java:428)
at java.lang.Throwable.writeObject(Throwable.java:293)
at sun.reflect.GeneratedMethodAccessor94.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at java.io.ObjectStreamClass.invokeWriteObject(ObjectStreamClass.java:1001)
at java.io.ObjectOutputStream.writeSerialData(ObjectOutputStream.java:1478)
at java.io.ObjectOutputStream.writeOrdinaryObject(ObjectOutputStream.java:1409)
at java.io.ObjectOutputStream.writeObject0(ObjectOutputStream.java:1167)
at java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:336)
at oracle.iam.scheduler.vo.TaskSupport.populateJobHIstory(TaskSupport.java:321)
at oracle.iam.scheduler.vo.TaskSupport.logJobExecution(TaskSupport.java:206)
at oracle.iam.scheduler.vo.TaskSupport.executeJob(TaskSupport.java:153)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at oracle.iam.scheduler.impl.quartz.QuartzJob.execute(QuartzJob.java:196)
at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
Another thing is, the logs is not showing the basecontext properly i.e., *'dc=mycompanydc=statedc=*type' instead of *'dc=mycompany,dc=state,dc=*type'. The ',' seems to be missing in the logs.
Please help.
Regards,
SunnyWhats is the value in SearchContext attribute value in scheduled task.
It should be dc=mycompany,dc=state,dc=type
And it should be present in your OID. -
OIM-AD connector Issues in OIM 11g
Hi
We are trying to provision user from OIM 11G to AD using Administration Tab of Admin Console.
As part of ADITResource configuration , follwoing fields are included.In the Enterprise manager OIM server log, we are getting the below error message.
Error Message In Enterprise manager OIM server log -
Module OIMCP.ADCS
Thread ID [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'
Message com.thortech.xl.integration.ActiveDirectory.tcUtilADTasks : createUser : Wrong Value Specified in Root Context of IT ResourceOr Organization DN_
However, in Admin console Selfservice-->Task-->Provisioning -->Shows error as
Response:Connection Error encountered
Response Description: Error encountered while connecting to target system
We have sucessfully tested the connection using Diagnoistic Dashboard (XIMDD) & Ldap Browser.
IT Resource Details-
Parameter Value
AD Sync installed (yes/no) no
ADAM LockoutThreshold Value 5
ADDisableAttr Lookup Definition Lookup.ADProvisioning.DisableAttrLookup
ADGroup LookUp Definition Lookup.ADReconciliation.GroupLookup
Abandoned connection timeout 600
Admin FQDN cn=administrator,cn=Users,dc=example,dc=com
Admin Login administrator
Admin Password ********
Allow Password Provisioning yes
AtMap ADGroup AtMap.ADGroup
AtMap ADUser AtMap.AD
AtMap Group AtMap.ADGroup
Atmap ADOrg AtMap.ADOrg
Backup Server URL [NONE]
Connection pooling supported false
Connection wait timeout 100
Custom Attribute Name
CustomizedReconQuery
Inactive connection timeout 600
Initial pool size 1
Invert Display Name no
LDAP Connection Timeout 30000
Last Modified Time Stamp 0
Last Modified Time Stamp Group 0
Max pool size 30
Min pool size 2
Native connection pool class definition
OIM User UDF
Pool excluded fields
Pool preference Default
Port Number 389
Remote Manager Prov Lookup AtMap.AD.RemoteScriptlookUp
Remote Manager Prov Script Path
ResourceConnection class definition com.thortech.xl.integration.ActiveDirectory.ADResourceConnectionImpl
Root Context dc=example,dc=com
SSL Port Number 636
Server Address WIN-PEUB23TMMT4.example.com
Target Locale: Country US
Target Locale: Language en
Target Locale: TimeZone GMT
Target supports only one connection false
Timeout check interval 100
UPN Domain example.com
Use Disable Attr false
Use SSL false
Validate connection on borrow true
isADAM no
isUserDeleteLeafNode no
For Organization we have selected ou=Test,dc=example,dc=com in our lookup defination
Please suggest....
ThanksIt's not Key, it's the Scheduled Task attribute "IT Resource Name"
Documentation: http://download.oracle.com/docs/cd/E11223_01/doc.910/e11197/using_conn.htm#CHDFBAAC
Here is the documentation on the lookup format: http://download.oracle.com/docs/cd/E11223_01/doc.910/e11197/intro.htm#CHDHCCJD
-Kevin -
OIM AD connector- Groups added natively in AD getting deleted
We are facing this issue with the OIM Ad connector- 11.1.1.5.0. The scenario is :
1. OIM user get created
2. OIM provisions user to AD and adds user to 2 groups ( 1 and 2)
3. AD Administrator logs into the AD directly and adds 3 groups to the user ( Group3,Group4 and Group5)
4. OIM admin goes to the resources tab and adds Group6 to the user from within OIM AD resource
Shouldn't we see that the user account on AD be a member of group1,group2,group3,group4,group5 and group6. This is the expected behavior
What we are seeing on the account is that only group1,group2 and group6 are visible.
I understand the the groups - Group3,Group4 and Group5 will not be visible on the resource form unless we do a recon but OIM should not be DELETING groups added natively on AD
Any help on this issue will be appreciatedThanks everyone. I do agree that the behavior should be such that all 6 groups should be visible on the user on the target (AD) system. However, we are seeing that the groups added natively within AD are getting deleted and OIM is "truing up" the user account with the groups that are added within the process form , i.e. the scenario described above. OIM is actually deleting the groups that were added manually on AD.
If I do trigger a target recon, then I can see that all the groups are reflected on the user within OIM. However running this task every hour or rather every time I need to add an entitlement on a user is not a feasible solution,would you agree?. Also this is a limitation that cannot be placed on a helpdesk person. Rather , if this is the only solution , it should be a functionality of the connector.
Please note that the connector deployed is v11.1.1.5.0 and NOT the 9.1.1.7. The 9.x connector did behave as expected , i.e it did not delete any groups. However the new ICF based connector is deleting groups. Is there a setting within the connector configuration to turn on/off this functionality?
This is what I see in the connector server logs
<VERBOSE>: Class-> ActiveDirectoryUtils, Method -> GetDnFromPath, Message -> Exiting the method. Returning the value = CN=TEST6,CN=Users,DC=OIM,DC=Test,DC=com
<VERBOSE>: Class-> CustomAttributeHandlers, Method -> UpdateDeFromCa_OpAtt_Groups, Message -> DirectoryEntry path = LDAP://xx.xx.xx.xxx/CN=Print,DC=OIM,DC=Test,DC=com. Removing: CN=TEST6,CN=Users,DC=OIM,DC=Test,DC=com from the property: member
"PRINT" is the group that was added natively on AD. -
ipod doesn't work on speakers but headphones are fine and speaker works with iPhone. Possible connector issue? Any thoughts on how I can get the fixed?
Try:
- Reset the iOS device. Nothing will be lost
Reset iOS device: Hold down the On/Off button and the Home button at the same time for at
least ten seconds, until the Apple logo appears.
- Reset all settings
Go to Settings > General > Reset and tap Reset All Settings.
All your preferences and settings are reset. Information (such as contacts and calendars) and media (such as songs and videos) aren’t affected.
- Restore from backup. See:
iOS: How to back up
- Restore to factory settings/new iOS device. -
Hello Experts,
We are trying to install OIM 11gR2, getting below error in domain confirguration step,
Component Schema=OIM Schema
Driver=oracle.jdbc.OracleDriver
URL=jdbc:oracle:thin:@oim-db-dev1:1530/CGSDTD34.WORLD
User=DEV1_OIM
Password=********
SQL Test=select 1 from schema_version_registry where owner=(select user from dual) and mr_type='OIM' and version='11.1.2.0.0'
CFGFWK-60850: Test Failed!
CFGFWK-60853: A connection was established to the database but no rows were returned from the test SQL statement.
We have used RCU version 11.1.1.6.0. We have used the exact same version of RCU few weeks back and surprisingly the installation went fine, not sure why it is failing today. I've checked schema_version_registry table and i can see the version # for OIM as 11.1.1.5.0, but in the older environment it is 11.1.2.0.
I found this thread but not of much use to me,
Re: OIM 11g R2-Issue while configuring oim domain in weblogic
Please let me know if anyone faced the similar issue and whats the resolution.I think you should be using the RCU version specifically for OIM 11G R2... RCU version 11.1.1.6.0 is inappropriate for R2...
Follow the following steps:
(1) Login to the edelivery.oracle.com
(2) Go to Oracle Fusion Middleware Identity Management 11g R2 Media Pack
(3) Download:-
Oracle Fusion Middleware Repository Creation Utility 11g (11.1.2.0.0) for Linux x86...
The part number:- V33642-01
Size:- 383M
or
Oracle Fusion Middleware Repository Creation Utility 11g (11.1.2.0.0) for Microsoft Windows
V33643-01
311M
I think currently you are using:-
Oracle Fusion Middleware Repository Creation Utility 11g (11.1.1.6.0) for Linux x86
V29674-01
390M
or
Oracle Fusion Middleware Repository Creation Utility 11g (11.1.1.6.0) for Microsoft Windows
V29675-01
319M
I used RCU 11.1.2.0.0 and my installation went fine... -
Hi All,
I have a requirement where I need to provision and reconcile into multiple flat files and metadata in each of them may differ.
So I was planning to create custom GTC connector each for provisioning and reconciliation respectively.
Can anyone please suggest me the best possible solution for this.
Is Oracle planning to launch a connector for flat file in near future which can help in such scenarios?I have tried using default GTC connector for reconciliation (without trusted source reconciliation). I have three fields in the file UserName,FirstName,LastName and have mapped them to account profile for OIM, a reconciliation rule has been created which looks for equality of User Id in both OIM and flat file. The User ID is present in both flat file and OIM and is same.
I have done configuration on both OIM 9100 and also on OIM 9101.
It is working in OIM 9100 but not on 9101 and giving me null pointer exception. Any idea why it is not working on 9101.
When I have a new entry in flat file that exists in OIM the connector link the two and creates the resource form. But when I try to update/delete any existing value in flat file it is showing me a strange behaviour.
For update it links the same profile again to different resource form (basically it link the account using "one entity match found" however it should be "one process match found")and for delete it is not working. I am assuming that it is not able to call process tasks.
Can anyone tell me why it is doing so. My reconciliation rule is working fine. -
Hi All,
I have instlalled the OIM DBUM connector for Oracle databse. I have provided all the parametrs except connectionproperties column while configuring the itresource for the connector.when trying to run the schedulers OOTB to populate lookups synchronized with target iam getting the following error.please help me out.
oracle.iam.connectors.icfcommon.exceptions.OIMException: Thor.API.Exceptions.tcAPIException: Row index out of bounds
thanks.Hi Ketan,
I have installed DBUM *11.1.1.6* on OIM *11.1.1.5* locally.
in the connector guide i followed below steps.
1. Sec:2.2.1 Installing the Connector in Oracle Identity Manager
2. Sec:2.3 Postinstallation
Section 2.3.1, "Postinstallation on Oracle Identity Manager"
Section 2.3.1.1, "Configuring the Target System As a Trusted Source"-notdone
Section 2.3.1.2, "Changing to the Required Input Locale" -----left it with default values
Section 2.3.1.3, "Clearing Content Related to Connector Resource Bundles from the
Server Cache"
Section 2.3.1.4, "Creating the Administrator Account on Oracle Database Vault"-----not done
Section 2.3.1.5, "Setting up the Lookup Definition for Connection Pooling"---not done
Section 2.3.1.6, "Enabling Logging for Oracle Identity Manager"
Section 2.3.2 Configuring the IT Resource for the Target System
In this we have a parameter text field called Connection Properties ----I left it blank and dont know what needs to be filled.
Remaining parameters are set
Database Name-IP of DB machine
DB Type
JDBC Driver
JDBC URL
Login Password
Login User
I could see connector installation success message. But when I am trying to run the scheduled jobs configured to populate the lookups , getting the above mentioned error.
Thanks.
Section 2.3.2, "Configuring the IT Resource for the Target System"
Section 2.3.3, "Configuring the Connector to Support Multiple Versions of the
Target System"------------------->not done
Edited by: Powerlad on Sep 2, 2012 11:55 PM -
Documentation for OIM AD Connector
Hi,
Can any one suggest any documentation for OIM AD Connector which gives steps to develop adapters and so onOIM Connector Guide for AD - > http://download.oracle.com/docs/cd/E10150_01/doc.904/e10158/toc.htm
OIM Connector Framework Guide -> http://download.oracle.com/docs/cd/E10150_01/doc.904/e10178/toc.htm
Maynot have a great deal of details, but something to start off with.
Rgds, Ajay -
OIM - OID11g Connector Logging
Hi All,
I have updated the logging.xml as below to enable the logging for OIM -OID Connector 11.1.1.5.0 but I can't see anything in the file (File is created but it has no logs):
<log_handler name='oid-handler' level='TRACE:32' class='oracle.core.ojdl.logging.ODLHandlerFactory'>
<property name='logreader:' value='off'/>
<property name='path' value='/u01/oracle/iam_middleware/user_projects/domains/IAMdomain/oidconnector.log'/>
<property name='format' value='ODL-Text'/>
<property name='useThreadName' value='true'/>
<property name='locale' value='en'/>
<property name='maxFileSize' value='5242880'/>
<property name='maxLogSize' value='52428800'/>
<property name='encoding' value='UTF-8'/>
</log_handler>
<logger name="OIMCP.OID" level="TRACE:32" useParentHandlers="false">
<handler name="oid-handler"/>
<handler name="console-handler"/>
</logger>
Please help.
Thanks
SunnyFirstly I would normally manage OIM 11g logging through Oracle Enterprise Manager rather than directly in a logging.xml file, with log information appearing in the OIM server diagnostic log rather than a dedicated log file as you have done. That is not to say what you are doing is wrong (I cannot comment as I have never managed OIM 11g logging in this way.)
The other thing that may be wrong is the logger you are using. You have logger OIMCP.OID. For my OIM11g OID connector logging I am using the standard logger of XL_INTG.OID. -
Hi All,
I am installing OIM - PeopleSoft connector for Employee Reeconciliation. As part of Target System Configuration for Full Reconciliation(Trusted Source) i performed all the steps specified in Connector documentation on Target System. Summary of the steps is Full publish of Person Data in PeopleSoft as xml files and feeding these xml as initial data load to OIM. After running the process scheduler for Data Publish of PERSON_BASIC_FULLSYNC message i dont see any xml files being generated. Rather it only gives me one log file and a .trc file. The log file says the process has ran successfully. But no expected out.
Any one who previously performed these steps successfully please share your experience and pointer would be appreciated
PeopleSoft HRMS 8.8
People Tools : 8.9.26
OIM 11g.
Connector : 9.1.1.6
Connector Documnetation Followed : http://download.oracle.com/docs/cd/E11223_01/doc.910/e11205/deploy.htm#BIHFHICC
Regards,
Ashoki'm face the same problem, have u soloved this problem . can u share me with it ?
-
OIM Siebel Connector Real-Time
Hi All
I am using the direct provisioning for the OIM Siebel Connector.
Can I make this provisioning process to be a real time without human intervention ?
At the current time, I am adding an LDAP resource and Siebel resource to each user manually to start the provisioning process. Is there anyway to automate this process to remove the human intervention ?
ThanksYou can create a schedule task to initiate provisioning through APIs
Or
Use Access Policy. Whenever user will get created into OIM, he will get Siebel Resource -
I am using OpenLDAP as my target system for the OID connector. I am following the OID 11.1.1.5.0 documentation section "2.1.6.1 Enabling Logging on Oracle Identity Manager". I placed the first part inside the <log_handers> tag and the second part inside the <loggers> tag.
<log_handler name='OIMCP.LDAP' level='TRACE:32'
class='oracle.core.ojdl.logging.ODLHandlerFactory'>
<property name='logreader:' value='off'/>
<property name='path'
value='${domain.home}/servers/${weblogic.Name}/logs/oid_connector.log'/>
<property name='format' value='ODL-Text'/>
<property name='useThreadName' value='true'/>
<property name='locale' value='en'/>
<property name='maxFileSize' value='5242880'/>
<property name='maxLogSize' value='52428800'/>
<property name='encoding' value='UTF-8'/>
</log_handler>
<logger name="ORG.IDENTITYCONNECTORS.LDAP" level="TRACE:32"
useParentHandlers="false">
<handler name="OIMCP.LDAP"/>
<handler name="console-handler"/>
</logger>
The "oid_connector.log" was created for me, but no logs are being printed out whenever I do anything related with LDAP in the OIM console.
Any insights on how to fix this issue?Any updates i am facing same problem.
thanks in advance -
ESSO PG Connector Issue in OIM 11G
I setup ESSO Provision Gateway Connector in OIM 11G.
But during "add credential task" I get error:
"*The add_credential execution failed. Error: Error in sending instruction from provisioning manager in Api Command (400) Bad Request. Add Credential Command failed to get invoked*".
In Event Log of the Windows Server 2008 with the Provision Gateway I saw:
"*Unexpected end tag. Line 6, position 1015*", "*server cannot clear headers after http headers have been sent*".
It means a syntax error in xml request of connector to web-service of Provision Gateway.
Wireshark shows me sent xml-request:
"<?xml version="1.0" encoding="UTF-8"?>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<soapenv:Header>
<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
<wsse:UsernameToken><wsse:Username>cn=adm,o=petro</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">12345678</wsse:Password><wsse:Nonce>QFJ903k1GFWnAoqZ/Npijg==</wsse:Nonce><wsu:Created xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2010-12-07T11:47:02.502Z</wsu:Created></wsse:UsernameToken></wsse:Security></soapenv:Header><soapenv:Body><AddCredential xmlns="http://passlogix.com/UP/"><strRequest><?xml version = '1.0' encoding = 'UTF-8'?>
<addRequest><attributes><attr name="objectclass"><value>urn.oasis.names.tc:SPML:1:0#GenericString</value></attr><attr name="provisioningAgent"><value>Provisioning Agent</value></attr><attr name="ssoUserId"><value>SGP63234</value></attr><attr name="creationTime"><value>2010-12-07 11:47:02.491Z</value></attr><attr name="executionTime"><value>2010-12-07 11:47:02.490Z</value></attr><attr name="applicationId"><value>SAP</value></attr><attr name="userId"><value>EBELOV</value></attr><attr name="description"><value>SAP</value></attr><attr name="password"><value>Q123</value></attr><attr name="thirdField"><value>888</value></attr></attributes></addRequest></strRequest></AddCredential></soapenv:Body></soapenv:Envelope>*</#document>*"
I saved it to xml-file and opened in Internet Explorer and there was error.
Then I decided to watch the view of this request in OIM 9.1.0.2 to compare with request in OIM 11G.
I found out next one:
the main difference was in last tag "*</#document>*".
I take this tag off from xml-file, taken from request of OIM 11G and saved the file.
Edited xml-file was correct.
Is it error in connector or in OIM 11G?How to solve it?Can anyone help me?Hi!
I get the same error during Add Credential task with the ESSO PG connector in OIM 11g.....
The add_credential execution failed. Error: Error in Sending instruction from the provisioning manager in API Command (400)Bad Request.
com.passlogix.integration.provision.client.CommandInvocationException: Error in Sending instruction from the provisioning manager in API Command (400)Bad Request
Where I can check the xml file?
You could solve the problem?
Thanks in advance!!! -
OIM RACF Advanced/Standard connector issues?
Folks,
Will you please share your thoughts or experience on Oracle Identity Manager 10g(OIM 9.1.0.2) integration with the out-of-the-box RACF Advanced/Standard connector ?
Basically lessons learned using the RACF Advanced/Standard connector or the key configurations reminders.
ThanksIt is sloooooowwww.
(Or at least the screen scraper variant was, may have been replaced by now)
Maybe you are looking for
-
How can you save videos from an iPad to an external memory?
How can you save videos from an ipad to an external memory?
-
Why did my Filmstrip function in CS6 Bridge stop working?
I've been using Photoshop CS6 Bridge for about a year now. Just recently the Filmstrip function stopped working. I click on it and nothing happens. Everything else works - Essentials, Metadata, and Output. It's been this way for a couple of weeks
-
How do I scan a document using an epson printer onto my mac
I can I scan a document using onto my computer using the Epson Stylus NX430 printer.
-
Hi, We have been getting some lock entries generated in the lock entry list even though there are no entries found in EMRP_RUN table. We have been facing some performance issues in Production server wherein all the lock entries are pointing towards
-
Lost YouTube in io6 update