OIM AD Password Sync issue

Similar Messages

• OIM-AD password sync not working

  Hi All,
  I am trying to sync password b/w AD and OIM. I have installed the password sync connector and followed the steps specified in the connector document. However when i change the password in AD, it is not reflected in OIM.
  The connector version is 11.1.1.5. And the following have been done
  1. deployed SPML-DSML service
  2. Tested the SPML-DSML service
  3. Installed the connector
  4. Enabled the logs
  5. Configured IT resource and enabled SSL
  But the password changed in AD is not reflected in OIM. Please let me know if any additional steps have to performed.
  Thanks

  Hi Raghav,
  Please find the log below
  Debug [1/19/2012 3:54:05 PM] Inside sgsladds::sgslperwriteData YOOOO
  Debug [1/19/2012 3:54:05 PM] Inside sgsladac c-tor
  Debug [1/19/2012 3:54:05 PM] AD Host
  Debug [1/19/2012 3:54:05 PM] localhost
  Debug [1/19/2012 3:54:05 PM]
  Debug [1/19/2012 3:54:05 PM] AD Port
  Debug [1/19/2012 3:54:05 PM] 636
  Debug [1/19/2012 3:54:05 PM]
  Debug [1/19/2012 3:54:05 PM] AD Base DN
  Debug [1/19/2012 3:54:05 PM] DC=abc,DC=xyz,DC=com
  Debug [1/19/2012 3:54:05 PM]
  Debug [1/19/2012 3:54:05 PM] Only dataattribute
  Debug [1/19/2012 3:54:05 PM] Got Registry enteries
  Debug [1/19/2012 3:54:05 PM] contact
  Debug [1/19/2012 3:54:05 PM] description
  Debug [1/19/2012 3:54:05 PM] Got Entiredn
  Debug [1/19/2012 3:54:05 PM] OU=oimpwdsynctms.abc.xyz,ou=org1,DC=abc,DC=xyz,DC=com
  Debug [1/19/2012 3:54:05 PM] Encrypted record already exists in Datastore
  Debug [1/19/2012 3:54:05 PM] Already Exists
  Debug [1/19/2012 3:54:05 PM] Encrypted record already exists in Datastore
  Debug [1/19/2012 3:54:05 PM] Already Exists
  Debug [1/19/2012 3:54:05 PM] Inside sgsladdsSearchUser
  Debug [1/19/2012 3:54:05 PM] Firing Search Request
  Debug [1/19/2012 3:54:05 PM] AD search for a user objectGUID is successfull
  Debug [1/19/2012 3:54:05 PM] Count success
  Debug [1/19/2012 3:54:05 PM] Search result fetched
  Debug [1/19/2012 3:54:05 PM] 0:319 10 230 308 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA6msQnVk0HkW+zmHr7+2nyAAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAADZgAAqAAAABAAAABU2g1ES3TOo35N6+zJPunGAAAAAASAAACgAAAAEAAAAEsx8lF3vt0oEaE0BhubB/A4AAAAl0IEcVLgvhvZryqKTWzBkjEatBoCMvekzXvlLlUfj/moGrX2NgWL9zlmeLKY9scstvPONOalbbgUAAAArNCxOGd02kIZELgCavo2IZpN5ZA=
  Debug [1/19/2012 3:54:05 PM] --------------------&&&----------------
  Debug [1/19/2012 3:54:05 PM] Inside sgsladds::sgsladdsgetData NEW Look
  Debug [1/19/2012 3:54:05 PM] 0:319 10 230 308 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA6msQnVk0HkW+zmHr7+2nyAAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAADZgAAqAAAABAAAABU2g1ES3TOo35N6+zJPunGAAAAAASAAACgAAAAEAAAAEsx8lF3vt0oEaE0BhubB/A4AAAAl0IEcVLgvhvZryqKTWzBkjEatBoCMvekzXvlLlUfj/moGrX2NgWL9zlmeLKY9scstvPONOalbbgUAAAArNCxOGd02kIZELgCavo2IZpN5ZA=
  Debug [1/19/2012 3:54:05 PM] Encoded Data Extracted in sgsladdsgetData
  Debug [1/19/2012 3:54:05 PM] 319 10 230 308 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA6msQnVk0HkW+zmHr7+2nyAAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAADZgAAqAAAABAAAABU2g1ES3TOo35N6+zJPunGAAAAAASAAACgAAAAEAAAAEsx8lF3vt0oEaE0BhubB/A4AAAAl0IEcVLgvhvZryqKTWzBkjEatBoCMvekzXvlLlUfj/moGrX2NgWL9zlmeLKY9scstvPONOalbbgUAAAArNCxOGd02kIZELgCavo2IZpN5ZA=
  Debug [1/19/2012 3:54:05 PM] Moving out sgsladdsgetData
  Debug [1/19/2012 3:54:05 PM] Encoded Data Extracted
  Debug [1/19/2012 3:54:05 PM] 319 10 230 308 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA6msQnVk0HkW+zmHr7+2nyAAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAADZgAAqAAAABAAAABU2g1ES3TOo35N6+zJPunGAAAAAASAAACgAAAAEAAAAEsx8lF3vt0oEaE0BhubB/A4AAAAl0IEcVLgvhvZryqKTWzBkjEatBoCMvekzXvlLlUfj/moGrX2NgWL9zlmeLKY9scstvPONOalbbgUAAAArNCxOGd02kIZELgCavo2IZpN5ZA=
  Debug [1/19/2012 3:54:05 PM] MAX_RETRY LIMIT count is not updated: OIM is down
  Debug [1/19/2012 3:54:05 PM] 0
  Debug [1/19/2012 3:54:05 PM] numretries ======
  Debug [1/19/2012 3:54:05 PM] 0
  Debug [1/19/2012 3:54:05 PM] Inside sgslcodsupdateChild
  Debug [1/19/2012 3:54:05 PM] 0:319 10 230 308 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA6msQnVk0HkW+zmHr7+2nyAAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAADZgAAqAAAABAAAABU2g1ES3TOo35N6+zJPunGAAAAAASAAACgAAAAEAAAAEsx8lF3vt0oEaE0BhubB/A4AAAAl0IEcVLgvhvZryqKTWzBkjEatBoCMvekzXvlLlUfj/moGrX2NgWL9zlmeLKY9scstvPONOalbbgUAAAArNCxOGd02kIZELgCavo2IZpN5ZA=
  Debug [1/19/2012 3:54:05 PM]
  Encrypted record data updated successfully
  Debug [1/19/2012 3:54:05 PM] Inside sgsladac destructor
  Debug [1/19/2012 3:54:05 PM] Password updation failed in child process
  Debug [1/19/2012 3:54:05 PM]
  Relaxing while processing records from datastore
  I have provided the correct port numbers and also my certificate is same as the OIM server name. But still when the password is changed in AD, its not updated in OIM.
  Thanks,
  Bhavana

• Password Sync Issue:JMS Listener: java.lang.ClassCastException

  Hi,
  For AD Password sync implemetation, I have installed Sun IDM 8.0, Sun Message Queue 4.5, Open DS and Active Directory.
  While configuring the IDM JMS Listner Adapter, I am getting the below error during the Test connection:
  Test connection failed for resource(s):
  JMS Listener: java.lang.ClassCastException: javax.naming.Reference cannot be cast to javax.jms.QueueConnectionFactory
  Can someone please help me out to resolve this issue?

  Can you tell us what you put in the JMS listener fields for:
  java.naming.factory.intial and java.naming.factory.url
  These shoudl match the settings used to create the JMX Queue.
  Looks to me like you simply didn't put the right values in there.

• OIM AD password Sync connector. Connection to AD through SSL

  Hi.
  I am trying to configure AD password sync connector 9.1.1.5 with patch 14627510 to connecto to AD through SSL.
  At this moment, connector is able to connect to OIM through SSL but not to the AD. If i set AD port number to 389 on the connector configuration, everything works fine.
  If i set it to 636, it is not able to connect to the AD.
  I've imported the AD SSL certificate to <connector install directory>\OIMADPasswordSync\_jvm\lib\security\cacerts and restarted the domain controller but still no luck.
  To test that the certificate and everything else is OK, i've also installed a jxplorer and imported the same certificate into <jexplorer install directory>\jxplorer321\security\cacerts. Jxplorer is able to connect to the AD through SSL on port 636 so user credentials, certificate, etc.. are ok
  Connector documentation doesn't mention anything regarding SSL connection to AD, it only describes SSL connection to OIM.
  Anyone has donde this before? Is there any additional step i should follow to enable SSL connection from AD password sync connector to AD? Does the connector support SSL connection to AD?
  Regards.

  have you tried importing the cert in cacerts under $JAVA_HOME?

• New password sync issues

  I've recently changed my .Mac password and now when adding photos to a .Mac online gallery it won't sync with iPhoto. I get the following error message,
  An error occurred with the publication of album “XXXXXX.”
  Your MobileMe account information is not correct. The provided login or password is not valid.<
  I dutifully opened MobileMe prefs and there's nowhere to change password. Well, O.K., there is a place and I entered my new password as the old one and new one, since it has been working properly everywhere else.
  So, I guess the question is, How do I get iPhoto to recognize my new .Mac password?
  And yes, I know its now MobileMe, but I never liked that and Mr. Jobs certainly didn't check w/ me before changing everything.
  Thanks for your kind consideration and help,
  Louie

  Try the following:
  1 - go to the System/MobileMe preference pane and log out of MMe.
  2 - login with a bogus username and password like "test" and "test". This clears the caches.
  3 - login with your correct username and password.
  4 - launch iPhoto and try again.

• OIM 9102 , AD Password Sync 91x, JBoss 423GA - issue over SSL port.

  Followed the steps describe in "Deploying the connector"
  http://download.oracle.com/docs/cd/E11223_01/doc.910/e11218/install_config.htm#insertedID0
  section
  Pre-Installation both SSL n non-SSL works for SPML verification.
  For JBoss Application Server:
  http://IP ADDRESS:8080/spmlws/services/HttpSoap11
  https://IP ADDRESS:8443/spmlws/services/HttpSoap11
  Post Installation - configured SSL.
  On AD machine logs following error message is displayed:
  MAX_RETRY LIMIT count is not updated: OIM is down
  Following meta-link ID 1073889.1
  https://support.oracle.com/CSP/main/article?cmd=show&type=NOT&doctype=PROBLEM&id=1073889.1
  explains to verify 'oimhost and oimport' - oimhost is machine ip address ( AD machine is able to ping OIM machine through ip address and machine name )
  oimport is 8443
  Any suggestion.
  Or anyone previously successfully deployed password sync over SSL for OIM 9102 and AD Password sync 91x,
  as i found a similar thread in OTN forum where user had issues over SSL.

  Did anyone resolve this issue? I have the same running SSL Password Sync on OAS 10.1.3.4 and OIM 9.1.0.2 BP09a with AD 2003.
  Debug [7/8/2010 6:35:45 AM] oimport is
  Debug [7/8/2010 6:35:45 AM] 4443
  Debug [7/8/2010 6:35:45 AM]
  Debug [7/8/2010 6:35:45 AM] oimsslclient is
  Debug [7/8/2010 6:35:45 AM] nw-dc-01.nwocaland.nwoca.org
  Debug [7/8/2010 6:35:45 AM]
  Debug [7/8/2010 6:35:45 AM] oimuserattr is
  Debug [7/8/2010 6:35:45 AM] USR_UDF_SAM_ACCTNAME
  Debug [7/8/2010 6:35:45 AM]
  Debug [7/8/2010 6:35:45 AM] oimusessl is
  Debug [7/8/2010 6:35:45 AM] Y
  Debug [7/8/2010 6:35:45 AM]
  Debug [7/8/2010 6:35:45 AM] oimappservertype is
  Debug [7/8/2010 6:35:45 AM] 2
  Debug [7/8/2010 6:35:45 AM]
  Debug [7/8/2010 6:35:45 AM] End of sgsloidi::getConfigParamters
  Debug [7/8/2010 6:35:45 AM] Inside sgsloidi::setParameters
  Debug [7/8/2010 6:35:45 AM] The SOAP start element is
  Debug [7/8/2010 6:35:45 AM] <SPMLv2Document xmlns="http://xmlns.oracle.com/OIM/provisioning">
  Debug [7/8/2010 6:35:45 AM] The SOAP end element is
  Debug [7/8/2010 6:35:45 AM] </SPMLv2Document>
  Debug [7/8/2010 6:35:45 AM] The path is
  Debug [7/8/2010 6:35:45 AM] /spmlws/HttpSoap11
  Debug [7/8/2010 6:35:45 AM] End of sgsloidi::setParameters

• OIM Password sync connector installation issue

  Hi All,
  I am trying to configure password synchronziation between OIM & Active Directory. while installing AD Password Sync connector on AD Host it is returniing following.
  Error occurred while uploading prepAD.ldif. , please refer to %TEMP%\oimpwdsync.log. Please upload
  prepAD.ldif to Active Directory Domain Controller before applying ACLs.
  Kindly suggest me on this.
  Regards,
  Madhu

  I'm also getting the same error.
  This is the content of the log file :
  (Apr 14, 2011 6:19:27 AM), Install, com.oracle.installshield.adpwd.pathValidator, dbg, Directory does not exists, will get created at the installation time
  (Apr 14, 2011 6:19:38 AM), Install, com.installshield.product.actions.UninstallerJVMResolution, dbg.jvm, attempting to use the current JVM
  (Apr 14, 2011 6:19:38 AM), Install, com.installshield.product.actions.UninstallerJVMResolution, dbg.jvm, searching for a JVM
  (Apr 14, 2011 6:19:38 AM), Install, com.installshield.product.service.product.PureJavaProductServiceImpl$Installer, err, ProductException: (error code = 601; message="JVM not found")
  STACK_TRACE: 8
  ProductException: (error code = 601; message="JVM not found")
       at com.installshield.product.actions.JVMResolution.install(JVMResolution.java:171)
       at com.installshield.product.service.product.PureJavaProductServiceImpl$InstallProduct.checkUninstallerJVMResolution(PureJavaProductServiceImpl.java:4793)
       at com.installshield.product.service.product.PureJavaProductServiceImpl$InstallProduct.install(PureJavaProductServiceImpl.java:4554)
       at com.installshield.product.service.product.PureJavaProductServiceImpl$Installer.execute(PureJavaProductServiceImpl.java:3758)
       at com.installshield.wizard.service.AsynchronousOperation.run(AsynchronousOperation.java:41)
       at java.lang.Thread.run(Unknown Source)
  (Apr 14, 2011 6:19:38 AM), Install, com.oracle.installshield.adpwd.execTool, err, Cannot run program "C:\Program": CreateProcess error=2, The system cannot find the file specified
  (Apr 14, 2011 6:19:38 AM), Install, com.installshield.wizardx.ascii.ModifyFile, msg2, ASCII file C:\Program Files\oracle\OIMADPasswordSync\prepAD.ldif does not exist and will be created.
  (Apr 14, 2011 6:19:38 AM), Install, com.oracle.installshield.adpwd.ldapModify, err, gen exp
  (Apr 14, 2011 6:19:38 AM), Install, com.oracle.installshield.adpwd.ldapModify, err, C:\Program Files\oracle\OIMADPasswordSync\prepAD.ldif (The system cannot find the file specified)
  Anyone fixed it. I have checked JAVA env is set in my machine
  C:\>echo %JAVA_HOME%
  D:\oracle\Middleware\jdk160_14_R27.6.5-32
  C:\>java -version
  java version "1.6.0_12"
  Java(TM) SE Runtime Environment (build 1.6.0_12-b04)
  Java HotSpot(TM) Client VM (build 11.2-b01, mixed mode)
  Did anyone fix the issue?

• AD Password Sync connector 9.1.1 With OIM 11g R2 - ERROR OVER SSL

  I have set up AD password sync with from AD to OIM 11G R2
  The password syncs from AD to OIM 11G R2 on non ssl port 389.
  But if fails on SSL Port 636.
  Errors in OIMMain.Log:_
  Debug [10/11/2012 10:49:34 AM] Inside ConnectToADSI
  Debug [10/11/2012 10:49:34 AM]
  ldap_connect failed with
  Debug [10/11/2012 10:49:34 AM] Server Down
  Debug [10/11/2012 10:49:34 AM]
  Steps Carried Out thus far:_
  AD is up and running.
  Configured AD Password Sync Connector on 636 and selected ssl.
  Created Certificate on OIM host, configured custom identity key store on weblogic. Restarted Weblogic.
  Imported Certificate to AD. After this, restarted the AD
  I can Telnet port 636 from OIM Box and also connect to AD through LDAP Browser on 636 and view OU and CN, so this seems fine.
  Provisioning from OIM through Connector Server to AD works over SSL and this works fine.
  Help would be appreciated.
  Many Thanks

  This question is now been fixed.
  Instead of explicitly stating 636 for SSL,
  Use the same port 389 for ssl and also configured oim port to be 140001 which is the ssl port for oim in the configuration of OIM Password Sync.
  Export Certificates from AD to java security keystore and to weblogic keystore
  Export .pem certificate created on OIM host machine to AD.
  Restart weblogic, oim and AD
  Everything would work fine.
  For all the other information, refer to doc.
  Thanks

• Issue with installing password sync on Windows 2008

  I have installed pwd sync 64 bit on Windows 2008. Configured it in direct mode (no jms). But when I change the password of a user it is not syncing with the IdM. We have the 32 bit pwd sync working fine on Win 2003. Is there any special steps for installing, configuring 64 bit pwd sync on Win 2008. Thanks. Jack

  Hi again Tim-
  Given the error "failed to crack URL" I believe you're hitting an issue we have documented as bug # 21999. Here's the jist of it and a possible way around it.
  ==========
  When installing password sync on a Windows 2008 system, if you are not
  logged in as 'Administrator', the installer and the configure applications
  may be subject to Windows File And Registry Virtualization (FARV). This may
  cause the registry entries for password sync to be written to the user portion
  of the registry, rather than the system portion. Subsequently, password sync
  will fail with the message "failed to crack URL".
  To work around FARV, either run the MSI installer from a privileged cmd.exe
  prompt, or run the configure.exe application using the "Run As Administrator"
  functionality (right-click on the configure.exe application, select "Run As
  Administrator").
  ==========
  Hope this helps.
  Regards,
  Alex

• Problem with  ActiveDirectory Password Sync  in OIM 11gR2

  Hi,
  I installed active directory password sync connector successfully and i enabled SPML web-service also .but the problem is while changing password in AD it is not reflecting in OIM
  log info in 20120930082425511_adsi_debug file is
  Debug [09/30/12 08:24:25] CONFIG VALUE LENGTH
  Debug [09/30/12 08:24:25] 330
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25] Before adding configsync attributes
  Debug [09/30/12 08:24:25]
  sgslrgac instance
  Debug [09/30/12 08:24:25] User Name --->
  Debug [09/30/12 08:24:25] padmaja
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25] RelativeId:
  Debug [09/30/12 08:24:25] 1152
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25]
  sgsladac Instance
  Debug [09/30/12 08:24:25]
  LDAP Connected
  Debug [09/30/12 08:24:25] search string :
  Debug [09/30/12 08:24:25] (&(objectCategory=person)(objectClass=user)(sAMAccountName=padmaja))
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25] Connected to ADSI
  Debug [09/30/12 08:24:25] After Search
  Debug [09/30/12 08:24:25] SID::
  Debug [09/30/12 08:24:25] S-1-5-21-2856378657-228540474-388709823-1152
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25] DN::
  Debug [09/30/12 08:24:25] CN=padmaja,OU=Users1,DC=odc,DC=com
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25] GUID:::
  Debug [09/30/12 08:24:25] YzyFkltH9UqYuk/zbJiSuQ==
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25] after ladp search
  Debug [09/30/12 08:24:25] Success sgsldpap
  Debug [09/30/12 08:24:25]
  Passlen populated :
  Debug [09/30/12 08:24:25] 266
  Debug [09/30/12 08:24:25]
  Debug [09/30/12 08:24:25]
  Moving sgsloidi from asynchSystem
  Debug [09/30/12 08:24:25] Store Object populated
  Debug [09/30/12 08:24:25] [getObjectGuid=YzyFkltH9UqYuk/zbJiSuQ==
  getPasswordLen=266
  getUserDn=CN=padmaja,OU=Users1,DC=odc,DC=com
  getUserId=padmaja
  Debug [09/30/12 08:24:25]
  ***end of status
  Debug [09/30/12 08:24:25]
  Out of sgsloidi from asynchSystem
  Debug [09/30/12 08:24:25]
  Before Free
  Debug [09/30/12 08:24:25]
  After Free
  Thanks,

  Hi,
  This is my Error in OIM Log file :
  Debug [10/01/12 02:11:17] Search result fetched
  Debug [10/01/12 02:11:17] 2:430 7 314 420 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAShm+mp7fKU2Dv/gbeNNOrgAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAAQZgAAAAEAACAAAAB7L8K4A9Eylj2yszNBI3x8VxQPEE7sA4HxLJehzytXBgAAAAAOgAAAAAIAACAAAACNbZQoSKuTFqSE6kbzrRONowt74kZX2/BoFbZ8249xTUAAAAAVM3ikVDndtYiDqBaZL1t9K17ptPUm7XrpFMRiF0OiyR1cPGq/n/CIElmHiwH43eHRNVGv0jI5vPYveKudnkWBQAAAAIn4+NxxMGHP3SBAngDcKLDAhoMfzJpsfteiAIjPePW2mWodSRWOUZvmjRKmbv+A/Pa2Dzce5UNkjaVlvBz41lQ=
  Debug [10/01/12 02:11:17] --------------------&&&----------------
  Debug [10/01/12 02:11:17] Inside sgsladds::sgsladdsgetData NEW Look
  Debug [10/01/12 02:11:17] 2:430 7 314 420 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAShm+mp7fKU2Dv/gbeNNOrgAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAAQZgAAAAEAACAAAAB7L8K4A9Eylj2yszNBI3x8VxQPEE7sA4HxLJehzytXBgAAAAAOgAAAAAIAACAAAACNbZQoSKuTFqSE6kbzrRONowt74kZX2/BoFbZ8249xTUAAAAAVM3ikVDndtYiDqBaZL1t9K17ptPUm7XrpFMRiF0OiyR1cPGq/n/CIElmHiwH43eHRNVGv0jI5vPYveKudnkWBQAAAAIn4+NxxMGHP3SBAngDcKLDAhoMfzJpsfteiAIjPePW2mWodSRWOUZvmjRKmbv+A/Pa2Dzce5UNkjaVlvBz41lQ=
  Debug [10/01/12 02:11:17] Encoded Data Extracted in sgsladdsgetData
  Debug [10/01/12 02:11:17] 430 7 314 420 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAShm+mp7fKU2Dv/gbeNNOrgAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAAQZgAAAAEAACAAAAB7L8K4A9Eylj2yszNBI3x8VxQPEE7sA4HxLJehzytXBgAAAAAOgAAAAAIAACAAAACNbZQoSKuTFqSE6kbzrRONowt74kZX2/BoFbZ8249xTUAAAAAVM3ikVDndtYiDqBaZL1t9K17ptPUm7XrpFMRiF0OiyR1cPGq/n/CIElmHiwH43eHRNVGv0jI5vPYveKudnkWBQAAAAIn4+NxxMGHP3SBAngDcKLDAhoMfzJpsfteiAIjPePW2mWodSRWOUZvmjRKmbv+A/Pa2Dzce5UNkjaVlvBz41lQ=
  Debug [10/01/12 02:11:17] Moving out sgsladdsgetData
  Debug [10/01/12 02:11:17] Encoded Data Extracted
  Debug [10/01/12 02:11:17] 430 7 314 420 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAShm+mp7fKU2Dv/gbeNNOrgAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAAQZgAAAAEAACAAAAB7L8K4A9Eylj2yszNBI3x8VxQPEE7sA4HxLJehzytXBgAAAAAOgAAAAAIAACAAAACNbZQoSKuTFqSE6kbzrRONowt74kZX2/BoFbZ8249xTUAAAAAVM3ikVDndtYiDqBaZL1t9K17ptPUm7XrpFMRiF0OiyR1cPGq/n/CIElmHiwH43eHRNVGv0jI5vPYveKudnkWBQAAAAIn4+NxxMGHP3SBAngDcKLDAhoMfzJpsfteiAIjPePW2mWodSRWOUZvmjRKmbv+A/Pa2Dzce5UNkjaVlvBz41lQ=
  Debug [10/01/12 02:11:17] Incrementing the MAX_RETRY LIMIT:
  Debug [10/01/12 02:11:17] 3
  Debug [10/01/12 02:11:17] numretries ======
  Debug [10/01/12 02:11:17] 3
  Debug [10/01/12 02:11:17] Inside sgslcodsupdateChild
  Debug [10/01/12 02:11:17] 3:430 7 314 420 AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAShm+mp7fKU2Dv/gbeNNOrgAAAAAmAAAAUABhAHMAcwB3AG8AcgBkACAARQBuAGMAcgBwAHQAaQBvAG4AAAAQZgAAAAEAACAAAAB7L8K4A9Eylj2yszNBI3x8VxQPEE7sA4HxLJehzytXBgAAAAAOgAAAAAIAACAAAACNbZQoSKuTFqSE6kbzrRONowt74kZX2/BoFbZ8249xTUAAAAAVM3ikVDndtYiDqBaZL1t9K17ptPUm7XrpFMRiF0OiyR1cPGq/n/CIElmHiwH43eHRNVGv0jI5vPYveKudnkWBQAAAAIn4+NxxMGHP3SBAngDcKLDAhoMfzJpsfteiAIjPePW2mWodSRWOUZvmjRKmbv+A/Pa2Dzce5UNkjaVlvBz41lQ=
  Debug [10/01/12 02:11:17]
  Encrypted record data updated successfully
  Debug [10/01/12 02:11:17] Inside sgsladac destructor
  Debug [10/01/12 02:11:17] End of sgsloidiOIMGeneralErrorHandler
  Debug [10/01/12 02:11:17] Password updation failed in child process
  Debug [10/01/12 02:11:17]
  Relaxing while processing records from datastore

• OIM Password Sync Installation on Windows Core Server 2008

  Hi,
  Did anyone ever installed AD Password Sync connector on windows core 2008 server, please provide the steps for that?
  Server Core doesn't have GUI, it uses command prompt to install. I tried to installed but it corrputed the server itself.
  Please let me know if anyone has prior experience on that.
  Thanks,
  Amitesh

  Hi,
  Yes in Browser, the response is perfect. The only issue is in Calling inside in any file, i even tried Javascript's XML dom to load it, but same result, the file is just loading and never loads completely. I also tried using an SWF file with AS3 code to load XML inside as3 and send the result to any JS function.
  The output comes using trace in as3, but when it comes to browser, the same loading happends and result never loads.

• AD Password Sync Connector Issue

  Hi All,
  I am using OIM 11.1.1.5.4 which is in LDAP Sync with OID via OVD. Also OIM and OAM is integrated.
  I am using AD user management connector (11.1.1.1.5 ) in OIM and also m using AD password Sync Connector (9.1)
  Previously when checked, password sync connector was updating the changed password of AD in OID. I.e when a password was changed in AD it was getting reflected in OID databse (It was checked through LDAPBIND Command) but was not reflected in OIM database.(i.e when we tried to login into OIM's unprotected URL,we were not able to login into OIM with this new password of AD).
  Now when tested, the changed password in AD is reflected in OIM database.(i.e when tried with unprotected URL of OIM we are able to login into OIM and design console with this new password of AD ) but this password is not propogating to OID.(i.e LDAP bind is failing for the new passord which was resetted in AD) and also when tried to login in OIM on SSO page it is not able to login.
  I need the password updated in AD should be replected in OID as we are using SSO.
  Can ane one please help on it.
  Thanks!!
  TJ

  Hi,
  when i am updating password in OIM it is resetting the password in OID.
  Also just want to ask when we install password sync connector on Ad machine it asks for AD ip and port.
  Now AD is enabled on 389 port which is non ssl port .The ssl port of AD is 636.
  So please guide me which port we have to give while configuring
  Thanks!!
  TJ
  Edited by: user13405070 on Nov 29, 2012 1:02 AM

• AD password sync connector configuration for OIM Cluster

  Hi
  I have OIM running on clustered environment in two nodes.
  I have some AD domain controller. I need to install the AD password sync connector (version 9.1.1) in the AD domain controller.
  I remember that in the earlier versions we need to install the user management console and then change the value in xlConfig file to have both the node name.
  Version 9.1.1 is changed to use the SPML webservices. I have installed the SPML WS in both the nodes.
  My question is where do i specify in the AD password sync connector that I have two server as there is no xlConfig or any other config file that I can give both the server address.
  I referred the following PDF http://download.oracle.com/docs/cd/E11223_01/doc.910/e11218.pdf
  Thanks
  Narendar Doshi

  have you tried importing the cert in cacerts under $JAVA_HOME?

• OIM AD reverse password sync from one AD instance to multiple OIM instances

  Hi All,
  I have a followind scenario. My client is having multiple offices across the globe. They have OIM installed and configured in each location in each country to manage there local applications. Client also has a Global LDAP which is common across all the offices worldwide.
  My requirement is then i need to setup reverse password sync from Global LDAP to all the OIM sysem across the Globe. As per the reverse password sync connector i can only define one OIM system to sync the password.
  Can you please suggest me some way to achieve this functionality? Is it possible to install more than one password sync connector and configure them with different OIM systems?
  Thanks
  Yogesh

  I have one AD instance and n OIM instances. Can i install multiple AD-OIM passwordd sync components on the same AD machine and configure each component with various OIM's?

• How configure password sync connector in OIM cluster environmet

  Hi,
  i want some inputs to configure password sync connector in OIM cluster environmet.
  Thanks,

  Use a load balanced URL.
  -Kevin