OIM Disable OID Users Error

Hello
WHen disabling users in OIM, the connected OID resource is not disabled and I receive the below error in the log. Is there a status definition or lookup that needs to be filled in for this to complete?
2012-06-28 11:30:10,048 INFO [STDOUT] Target Class = com.thortech.xl.integration.OID.tcUtilOIDUserOperations
2012-06-28 11:30:10,142 ERROR [XL_INTG.OID] ====================================================
2012-06-28 11:30:10,142 ERROR [XL_INTG.OID] com.thortech.xl.integration.OID.tcUtilOIDUserOperationsMapping for ldapdisabled missing in the lookup definition
2012-06-28 11:30:10,142 ERROR [XL_INTG.OID] ====================================================
Thanks
Nick

Have you changed your OID user process task mappings for the Enable User and Disable User tasks? By default these set AttrName to "UserEnabled" and "UserDisabled", both of which map in lookup AttrName.Prov.Map.OID to attribute orclIsEnabled.
Your error messages seems to suggest your Disable User process task mapping for OID User has been set to have AttrName set to ldapdisabled, and this attribute does not have a mapping defined in AttrName.Prov.Map.OID.

Similar Messages

  • Disable OID User account after 90 days of inactivity - OIM

    Hello there,
    I have a requirement where I have to disable a users account if he/she has not logged in since last 90 days into our environment(OID). The users are authenticated via OAM when they are logging in. Does anybody has any idea which attribute in which object class in OID needs to be checked for the last login attempt made by the user and what is the datatype of the same? Is it a date that I can compare after making a initial LDAP context to OID and pointing to each single user?
    Really need a solution for this. Please respond.
    Many Thanks,
    - oidm.

    Check the schema description at:
    http://download.oracle.com/docs/cd/B28196_01/idmanage.1014/b25348/schema.htm#CFHCGFCC
    You create a code that runs daily, check for the last login dates and, if is older than 90 days, you disable the OID user.

  • Disable OID user account

    I am new to OID, but very familar with Novell eDirectory and Microsoft Active Directory.
    Both Novell eDirectory and Microsoft Active Directory have the ability to disable login accounts so they can not be used for login (ie say when a user leaves your company).
    I have been unable to find in OID how to disable a user account, could someone point me to that please?
    B

    there is an attribute called "orclisenabled" and you can disable a user by setting this attribute to "Disabled"

  • OIM 10G OID user account / group membership reconciliation

    Hello
    I have an OID environment that is used for OAM access to applications within the environment. I need to be able to reconcile users from OID into OIM along with their group membership so that roles for users are maintained and updated. I have ORM integrated within the environment so entitlements would need to flow to orm to document that users are members of a role / OIM group. Not sure if this is possible through the trusted reconciliation or if there is a user / group target reconciliation that can be used for this. Any help you can give for this would be appreciated.
    Thanks

    When i use ADCS timestamp as 0 (to capture changes from the beginning and not necessarily after the group change event occured on the AD side) and run AD user target recon this is getting updated. Is this correct and if so how can i always default ADCS timestamp as 0 in the scheduled task and are there any side effects for this sort of approach.
    Prasad.
    Edited by: Prasad on Nov 7, 2011 12:31 PM

  • Users not provisioned from OIM to OID user group child form

    I have created 3 fields in UserForm named Application1, Application2 and Application3.All are textfield. Now I have a field in Process form in child table name Applications which is a lookup type and a multivalue attribute. Now the requirement is that whenever a user gets some value in UF for any application (Application 1, 2 or 3), the field Applications in PF should get auto populated by that application value.
    Applications lookup in Process Form has already all the applications1, 2 and 3 in the lookup code and decode value.

    In your adapter, read all the values from UDF (User Form)
    If value is not equal to NULL then use tcFormInstanceOpetaionsIntf API to add values in Process Form.
    http://otndnld.oracle.co.jp/document/products/id_mgmt/idm_903/doc_cd/javadocs/operations/Thor/API/Operations/tcFormInstanceOperationsIntf.html#addProcessFormChildData%28long,%20long,%20java.util.Map%29

  • OIM-DBAT ...ERROR during Disabling user

    Hi,
    I am using database app tables connector with OIM, wherein the user is being provisioned to a database table. When user is Disabled, the assosciated database resource does not gets Disabled, Disable User is rejected and It gives following error:
    GCPROV.ProvTransportProvider.DBProvisioningTransport.DB_STATUS_FIELD_LOOKUP_ERROR" does not correspond to a known Response Code. Using "UNKNOWN
    The table has some attributes viz. Username, user id, fname, lname, Status(can be 0 or 1), email.
    The requirement is: when user id terminated in OIM, the respective database resource should get Disabled, that is the status should be updated to 0.

    Hi Sunny,
    When I disable OIM user , Disable User process of the database account is invoked but it gets rejected giving the above stated error. And the status field in process form is not updated. In the GTC configuration, I have mentioned the table column name(ENABLED,which can take values 0 or 1) that will be acting as status ,and also provided the Lookup code name that contains the status mappings as follows:
    Code Decode
    Active 0
    Disabled 1

  • OIM User Creation Error After OIM and OID Intregation

    Hi,
    I am new in oim and i am getting popup error message for user creation from OIM application after oim and oid intregation through libovd.
    Error message : LDAP create event failed : orclguid attribute has duplicate value.
    please guide me for resolving error.
    Thanks & Regards,
    Rajeev

    Hi,
    Thanks for reply...i checked1307549.1 in metalink, In that link they are telling us to modify some tables in the data base.i have some question regarding the following steps please help.
    === ODM Solution / Action Plan ===
    1. Use the following query to find fields with "plain text" values:
    select svr.svr_name, spd.spd_field_name, svp.svp_key, svp_field_value
    from svp
    inner join spd on spd.spd_key = svp.spd_key
    inner join svr on svr.svr_key = svp.svr_key
    2. Set these plain text values to null after making backup of table.
    *(kashyap:: Which fields values we have to change)*
    3. Edit the Directory Server to re-set values.
    *(kashyap:: could you please explain this)*
    Expected error at this stage:
    -- no "System Error call admin...", but that makes sense since the values in question pertained directly to the Directory Server --

  • Provisoning users from OIM to OID having org other than xellerate users

    Hi,
    when i provision a user belonging to default Xellerate Users organization in OIM to OID, it is done.
    what changes do i need to do if a want to provision a user in any other organization say 'MyCompany' to OID user
    (it gives naming exception error when i try doing so)

    let me explain what I am trying to acheive.
    I create a user using flat file reconciliation such that the user is created in organization say 'XYZ'. Also I've created a group say XYZmember (membership rule is organization name=XYZ)
    I created an access policy such that whenever a user who is a member of XYZmember group(means organization name is XYZ)is created in OIM the user gets provisioned to OID and will be assigned an OID role say role1.
    Now when i create a user with XYZ as organization,he becomes a member of XYZmember group.... according to access policy he should be provisioned to OID user and assigned role1
    But it gives naming exception error.
    i want to know if i create a user in some org other than xellerate users will it get provisioned to OID? and HOW?

  • User Provisioning not working from OIM to OID

    Hi All,
    I am trying to create new user from OIM to OID, am getting following error message on console...
    Response: INVALID_NAMING_ERROR
    Response Description: Naming exception encountered
    Notes:
    In logs files while creation am getting following message....
    INFO,09 Oct 2011 23:37:50,253,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,253,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_ALIAS
    INFO,09 Oct 2011 23:37:50,253,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_CUSTID
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_IVRPIN
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_USERAPPSTATUS
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_CREATEDDATE
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_OAMLOCKTIME
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_PASSWORD_EXPIRE
    INFO,09 Oct 2011 23:37:50,257,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    Please help me on this....
    Thanks in Advance
    YJR

    That is not the log output of the OID connector. Check the connector docs, and enable the OID logging only. The INVALID_NAMING_ERROR means something is wrong with the naming of your object. Most likely there is an LDAP error output somewhere, but all the output you provided is info level, nothing wrong with it.
    -Kevin

  • OIM 11g OID connector install error

    Hi,
    I'm trying to install the OID connector (OID_904140.zip) for OIM 11g (11.1.1.5), but it fails and I get this error message on my screen:
    "A system error occurred.
    Contact the Oracle Identity Manager System Administrator."
    I have unzipped the OID_904140.zip into /home/oracle/Oracle/Middleware/Oracle_IDM1/server/ConnectorDefaultDirectory/
    ..and the ldap.jar and ldapbp.jar to the subfolder targetsystems-lib/OID_904140/
    I can load it, but when I press install something fails. The log tells me this:
    [2012-06-08T05:37:24.153-07:00] [oim_server1] [NOTIFICATION] [IAM-5010000] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Generic Information: Unable to delete, as profile does not exist : /db/OID User moving forward ...
    [2012-06-08T05:37:24.157-07:00] [oim_server1] [NOTIFICATION] [IAM-5012124] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Failed to load profile from MDS /db/OID User. Error is oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/OID User".
    [2012-06-08T05:37:24.157-07:00] [oim_server1] [NOTIFICATION] [IAM-5012124] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Failed to load profile from MDS /db/OID User_backup. Error is oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/OID User_backup".
    [2012-06-08T05:37:24.165-07:00] [oim_server1] [NOTIFICATION] [IAM-5012122] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Reading configurations from the database for object name OID User
    [2012-06-08T05:37:24.212-07:00] [oim_server1] [NOTIFICATION] [IAM-5010000] [oracle.iam.reconciliation.impl.config] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Generic Information: tos not null
    [2012-06-08T05:37:24.326-07:00] [oim_server1] [ERROR] [] [XELLERATE.WEBAPP] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 88d26e01c38a3469:747267b6:137cc114f1d:-8000-0000000000000123,0] [APP: oim#11.1.1.3.0] Class/Method: tcActionBase/execute encounter some problems: EJB Exception: ; nested exception is: [[
    java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V; nested exception is: java.rmi.RemoteException: EJB Exception: ; nested exception is:
    java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V javax.ejb.EJBException: EJB Exception: ; nested exception is:
    java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V; nested exception is: java.rmi.RemoteException: EJB Exception: ; nested exception is:
    java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V
    java.rmi.RemoteException: EJB Exception: ; nested exception is:
    java.lang.NoSuchMethodError: org/eclipse/persistence/queries/SQLCall.setParameters(Ljava/util/Vector;)V
    at weblogic.ejb.container.internal.EJBRuntimeUtils.throwRemoteException(EJBRuntimeUtils.java:108)
    at weblogic.ejb.container.internal.BaseRemoteObject.handleSystemException(BaseRemoteObject.java:857)
    at weblogic.ejb.container.internal.BaseRemoteObject.handleSystemException(BaseRemoteObject.java:809)
    at weblogic.ejb.container.internal.BaseRemoteObject.postInvoke1(BaseRemoteObject.java:518)
    This looks interesting to me, but I can't really make sense of it:
    Failed to load profile from MDS /db/OID User_backup. Error is oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/OID User_backup".
    Any ideas, what has gone wrong?
    Thanks and regards,
    Henrik
    Edited by: user1154522 on Jun 8, 2012 6:50 AM

    Hi Henrik,
    Trying to help:
    1-Go and take a look into CIH table into OIM Schema.
    1.2-If OID is there, chech: CIH_STATUS column.
    1.3-If it's recorded into this table. Try to follow OIM Connector Unistall guide and do it again.
    Link: http://docs.oracle.com/cd/E28271_01/doc.1111/e14308/conn_mgmt.htm#CIHBDFEB
    section: 6.9.3 Setting Up the Uninstall Connector Utility
    I hope this helps,
    Thiago Leoncio.

  • Unlocking OID User Through OIM

    Hi all,
    I am testing an OID User Process task in OIM which can be run on a user's OIM account and unlock a locked user in OID
    However, I am getting the following error after executing the task:
    ERROR 11:54:51,375, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ERROR in OID:com.thortech.xl.integration.OID.util.tcUtilLDAPOperations:modifyAttributesReplace(S,A) NamingExceptionUnable to add attributes of the object
    ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - [LDAP: error code 53 - Account Policy Error :9051: GSL_ACCOUNTUNLOCK_EXCP : Only Modify-add allowed on orclpwdaccountunlock attribute. Modify-delete and Modify-replace are not allowed.
    ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ERROR in com.thortech.xl.integration.OID.tcUtilOIDUserOperations:modifyUser(S,S,S,S) NamingExceptionError while connecting to target
    ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - com.thortech.xl.integration.OID.util.tcUtilLDAPOperationsNamingException[LDAP: error code 53 - Account Policy Error :9051: GSL_ACCOUNTUNLOCK_EXCP : Only Modify-add allowed on orclpwdaccountunlock attribute. Modify-delete and Modify-replace are not allowed.
    ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - ====================================================
    ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - com.thortech.xl.integration.OID.util.tcUtilLDAPOperationsNamingException[LDAP: error code 53 - Account Policy Error :9051: GSL_ACCOUNTUNLOCK_EXCP : Only Modify-add allowed on orclpwdaccountunlock attribute. Modify-delete and Modify-replace are not allowed.
    ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - ====================================================
    DEBUG 11:54:51,378, RMICallHandler-113 XL_INTG.OID - com.thortech.xl.integration.OID.tcUtilOIDUserOperations:modifyUser(S,S,S,S) Returning with code: INVALID_NAMING_ERROR
    I am using the adapter adpOIDMODIFYUSER to update the orclpwdaccountunlock attribute to 1.
    Not sure if this is a correct method. Any ideas would be appreciated :)

    Bbagaria: OIDDAS is not enabled in our environment. However, I can unlock the user in OID using ldapmodify
    ldapmodify -p 636 -h **** -D "cn=orcladmin" -w *** -v -f /home/oracle/unlock.ldif
    dn: cn=JENZO,ou=***,dc=***,dc=***,dc=***
    changetype: modify
    add: orclpwdaccountunlock
    orclpwdaccountunlock: 1
    Rajiv: I did try that. Same results unfortunately.

  • Error while "OID USER TARGET RECON"....

    hi,
    Iam new to OIM and i would really appreciate your help.
    Everytime i run the OID USER TARGET RECON i keep getting this annoying error which actually prints in the log but it doesnt stop the process (i beleive). The updated data in the OID is reflecting the process form but for some reason this error is coming. please help!
    DEBUG QuartzWorkerThread-3 XELLERATE.APIS - Class/Method: tcLookupOperationsBean
    */getLookupValuesFilteredData entered.*
    DEBUG QuartzWorkerThread-3 XELLERATE.APIS - Class/Method: tcLookupOperationsBean
    */getLookupValuesFilteredData left.*
    INFO QuartzWorkerThread-3 XELLERATE.JAVACLIENT - System Event Handler: Validatin
    g the name of the Organization
    ERROR QuartzWorkerThread-3 XELLERATE.DATABASE - Class/Method: tcDataBase/writeSt
    atement encounter some problems: ORA-02291: integrity constraint (OIMUSER.FK_ACT
    _ACT) violated - parent key not found*
    java.sql.SQLIntegrityConstraintViolationException: ORA-02291: integrity constrai
    nt (OIMUSER.FK_ACT_ACT) violated - parent key not found
    at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.ja
    va:85)
    at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:1
    *33)*
    at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java
    *:206)*
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:455)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:413)
    at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1034)
    at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.
    Thanks,
    Thilak

    hi,
    Thanks for your timely reply,
    The users are created in OIM and it is already provisioned to OID(*User is in both OIM and OID*), but we update the fields in OID through a script and try to bring the updated values to OIM process form by target recon. When i run the recon i get this error in the log but the values are getting updated successfully.
    Thanks
    Thilak

  • OID Prov Error in OIM

    Looking for help from anyone that is familiar with OID provisioning.
    I am trying to do provisioning to OID and it was working fine at one point, nothing has changed since in OIM but now I get this error:
    Error while getting tcUtilLDAPOperations instance. tcUtilLDAPDirectory Standard Attribute Map Not Complete
    Here is the log:
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID], Parameter Variables passed into tcUtilOIDUserOperations :tcUtilOIDUserOperations(s,s,s,s,s,o,o,b): are sServerName = 10.10.81.101, sRootContext = dc=mydomain, sPort = 389, sPrincipalDN = cn=orcladmin,
    INFO,17 Dec 2009 17:08:01,634,[XL_INTG.OID], Parameter Variables passed into tcUtilOIDUserOperations :tcUtilOIDUserOperations
    (s,s,s,s,s,o,o,b): are sServerName = 10.10.81.101, sRootContext = dc=mydomain, sPort = 389, sPrincipalDN = cn=orcladmin,
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],Entering into method OID:tcUtilOIDUserOperations:checkForNullAndEmpty()
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],tcUtilOIDUserOperations :tcUtilOIDUserOperations(s,s,s,s,s,o,o,b)Parameter values passed weresServerName = 10.10.81.101
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],tcUtilOIDUserOperations :tcUtilOIDUserOperations(s,s,s,s,s,o,o,b)Parameter values passed weresRootContext = dc=mydomain
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],tcUtilOIDUserOperations :tcUtilOIDUserOperations(s,s,s,s,s,o,o,b)Parameter values passed weresPort = 389
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],tcUtilOIDUserOperations :tcUtilOIDUserOperations(s,s,s,s,s,o,o,b)Parameter values passed weresPrincipalDN = cn=orcladmin
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],Exit from method OID:tcUtilOIDUserOperations:checkForNullAndEmpty()
    DEBUG,17 Dec 2009 17:08:01,634,[XL_INTG.OID],Entering into method OID:tcUtilOIDUserOperations :setLDAPInternalAttributes()
    ERROR,17 Dec 2009 17:08:01,634,[XL_INTG.OID],tcUtilOIDUserOperations Error while getting tcUtilLDAPOperations instance. tcUtilLDAPDirectory Standard Attribute Map Not Complete
    java.lang.reflect.InvocationTargetException
         at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
         at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
         at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)

    For Provisioning Question
    Well the only reason I can think of is the improper HashMap creation before passing to the constructor for CreateUser(JavaTask) of the OID Create User adapter. The code actually throws this error during Constructor Initialization which is also visible in the logs you have pasted. So you can just look at the following two things for verification:
    1) Just look for the ITResource parameter Prov Attribute Lookup Code for "ITResource Name"= OID Server. This parameter must be supplied with some value. Ideally its value must be equal to AttrName.Prov.Map.OID from the document.
    2) Also verify that if the above parameter is specified correctly then there must be a lookup in OIM with the name AttrName.Prov.Map.OID. This is an OOTB lookup, so must be there, if you have modified it then make sure you have furnished it with the following parameters at least:
    (ldapObjectClass)
    (ldapUserObjectClassPrimary)
    (ldapUserDNPrefix)
    (ldapUserID)
    (ldapUserDisableAttr)
    (ldapFirstName)
    (ldapLastName)
    (ldapPassword)
    (ldapOrgUnitObjectClass)
    (ldapOrgDNPrefix)
    (ldapGroupObjectClass)
    (ldapGroupDNPrefix)
    (ldapRoleDNPrefix)
    (ldapRoleObjectClass)
    For Reconciliation Question
    Well the error says that ignoreEventData encounter some problems: No Reconciliation Fields defined, so it should have something related to reconFields supplied in the HashMap for ignoreEvent() API of interface tcReconciliationOperationsIntf. Does it print the HashMap containing the final data in log somewhere before calling this API, check it out.
    And a bit more detail on I have extended the OID schema to server as an OAM repository. I am not clear.
    Hope it helps.
    Sunny

  • Disables AD User account in OIM 9.1 still user can access its account

    The following issue is happing on OIM Version: 9.1.0.1866.25
    When disabling a single AD resource, it will appear on IdM in status as Disabled, even though it remains accessible by the user. No change of password occurs.
    Where should I check and how can I fix that.
    Kind Regards,
    Silviu

    What task is attached to Disable of user? Ideally we have an adapter attached to disable user who disables user in target AD system when fired. Login to design console, open you process definition and open disable user task to see what adapter is attached.
    regards,
    GP
    Edited by: Gyanprakash Pandey on Feb 2, 2012 4:33 AM

  • Creation of users in OIM from OID, where OID is target resource

    Hi,
    I am new to OIM. We have a scenario where we have OIM and OID. The users are being created in OID. Now we need to get these users to the OIM system to use the Change Password, Forgot Password functionalities of OIM. Can we have OID as the target resource for OIM and have a reconciliation done to get all the users from OID and have them created in OIM.
    Or this possible only when OID is the Trusted Source?
    Thanks in advance,

    Re: OIM's Trusted Source

Maybe you are looking for

  • Enable the field in the list display and insert the new value and  save it.

    Hi In a report when I am in third list using ALV a field which is disabled should be enabled and  have to insert the new value in it and  save. please tell me how to do it using classes and methods and also using ALV's. Promise to reward points. Rega

  • Pages Page Numbering not working correctly in iOS 5.01

    Whenever I set up Auto Numbering for a Page footer in Pages, it gives me high negative numbers instead of real page number or counts. I'll get -23829839282 or -2893282922 of -2973287372 instead of Page 2, or Page 2 of 4. This works in the Desktop Pag

  • Get values in 1 parameter by selecting values from 2 param at selection scr

    Hi all Please help me out in getting values at selection screen . as, i am using a search help in one parameter field of selection screen and by selecting one value from their i want that corresponding values should come in the second parameter . spe

  • ITunes version

    How do I know what version of iTunes I have on my iPad (1)?

  • Elements 12 editor is not starting

    Hi, I bought two days ago online elements 12 from adobe. I get the mail with my serialnumber and I instaalled it on my computer, but when I want to open the editor, i get the message that I have to validate my serialnumber, when I click on that I get