OIM provisioning to many AD domains

We have a customer scenario where we need to implement user provisioning in many different AD domains (not in the same forest). A given user (OIM user) might have 1 account in up to 3 different ADs.
What are the best practices to implement such a scenario? 1 AD resource per domain, 1 common AD resource for all the domains, other ? (without OVD).
Would implementation of OVD be a much better standard way to solve this challenge? (OIM connector "talk" to OVD, OVD maps to the underlying ADs)
Thanks,
Didier.

I cannot provide any suggestions for OVD and integration with multiple AD Domains. I can suggest you duplicate the connector for the Active Directory objects to have 3 different workflows for each domain. It might take some time to do this, but this way you won't need to worry about access policy conflicts, and each will be it's own object, with their own lookups and everything pertaining to them. Some domains might have different attributes required for provisioning so having multiple workflows will allow you to capture those differences.
-Kevin

Similar Messages

  • OIM Provisioning - Error during OID Create User Task

    Hi,
    I am getting the following error during OIM Provisioning to OID (Create User Task).
    I added few more attributes to the OID_USR form and then to the "OID User" Process Definition.
    Also, I added the Code/Decode Key Values in AttrName.Prov.Map.OID.
    DEBUG,08 Dec 2010 21:19:04,547,[XELLERATE.SERVER],Class/Method: tcDataBase/readPartialStatement entered.
    ERROR,08 Dec 2010 21:19:04,555,[XELLERATE.ADAPTERS],Class/Method: tcAdapterMappingUtility/getRunTimeVariable Mappings encounter some problems: No data available for variable having key = 350
    ERROR,08 Dec 2010 21:19:04,555,[XELLERATE.ADAPTERS],Class/Method: tcAdapterMappingUtility/getRunTimeVariable Mappings encounter some problems: No data available for variable having key = 350
    java.lang.Exception: No data available for variable having key = 350
    Earlier, before adding these attributes, the OID Create User Task was working. So I belive this is from the newly added attributes.
    Questions:
    - How to identity the attribute with this key? It looks like some of the attribute values that it gets during Run Time is not populated correctly. Any suggestions?
    - "key = 350"- Is there a database table that this gets stored? SPD? or anything else?
    Regards
    Vijay Chinnasamy

    @Keviin,
    I added 13 new attributes and corresponding "* Updated" Tasks.
    For all these, ProcessInstanceKey is mapped to Process Data -> Process Instance.
    I am going to validate the mappings again. Also, I noticed, some of the fields that I am prepopulating is not populated.
    Regards
    Vijay Chinnasamy

  • OIM provisioning to Multiple Domain Controllers of a single Domain

    Hi experts !
    Our client has offices in different parts of country and they are using MS AD. We have to integrated this AD with OIM. The issue we are facing is that there is a cluster of domain controllers (DC) at each location for example NewYork, Dallas and Ohio and OIM is being deployed in NY. All the DC at all location are part of a single domain "example.com" and they is no child domain.
    Now if a User Administrator in Ohio logs in to this central OIM online and creates / modifies user profile of a user in AD, it means that the OIM will create / update the user profile in the DC placed in NY and through AD replication, it will be pushed to Ohio.
    As the communication between few sites is not reliable, thus managers at these locations will have to bear the delays if the replication between DCs takes time even when they have modified the resource profile in OIM.
    Is it a possibility that the user administrator at location A, when modifies the user resource profile, the modifications is carried out in the DC of location A? for example, if the administrator in Ohio logs in, whenever, he changes the profile, OIM modifies the profile in DC placed at Ohio?
    I have gone through "Configuring the Connector for Multiple Installations of the Target System" in MS AD connector Documentation but i am uncertain whether this "target system" means DC of same domain or different child domains?
    Any help / idea would be really appreciated.
    Best Regards.
    Edited by: Zia on May 8, 2011 11:21 PM
    Edited by: Zia on May 8, 2011 11:22 PM

    thank you for your reply sir
    initially i was of the idea to place OIM servers at each location with DB at a central point. However, there are more than a dozen such locations! have you come accross any such scenario where more than 12 machines running OIM at different places point to a central DB? i was a bit reluctant in proposing such design due to network instability. So we decided to deploy OIM at a single location in cluster mode and admins at each location will access this single instance (cluster) over the WAN. This cluster will populate domain controller at this specific location and will be replicated through AD replication.
    But now the analysis team has pointed out the problem scenario as i have mentioned in my earlier post. so we are in a bit fix how to handle this situation :-s

  • OIM provisioning error to Siebel

    I am using the Siebel User Management connector to provision users to the Siebel CRM application. I am getting an error when provisioning users, however it is not showing up in the logs as an error. Siebel is set to DEBUG in the log file. The on screen error is the following:
    Response: erroneous handlers
    Response Description: Unknown response received
    Error details: Setting task status... "erroneous handlers" does not correspond to a known Response Code. Using "UNKNOWN".
    I have followed the instructions in the Siebel User Management connector documentation. The Siebel environment uses DB authentication so we are only trying to provision a user directly to the Siebel database.
    *DEBUG,12 Jan 2011 15:17:00,348,[XELLERATE.PREPAREDSTATEMENT],Class/Method: tcDataBase/writeStatement: Param (string/clob): 4 is set to Setting task status... "erroneous handlers" does not correspond to a known Response Code. Using "UNKNOWN".*
    DEBUG,12 Jan 2011 15:17:00,348,[XELLERATE.PREPAREDSTATEMENT],Class/Method: tcDataBase/writeStatement: Param (Timestamp): 5 is set to 2011-01-12 15:17:00.347
    DEBUG,12 Jan 2011 15:17:00,348,[XELLERATE.PREPAREDSTATEMENT],Class/Method: tcDataBase/writeStatement: Param (ByteArray): 6 is set to java.io.ByteArrayInputStream@299552d
    INFO,12 Jan 2011 15:17:00,350,[XELLERATE.PERFORMANCE],Query: DB: 2
    DEBUG,12 Jan 2011 15:17:00,350,[XELLERATE.AUDITOR],Class/Method: AuditEngine/getAuditEngine entered.
    DEBUG,12 Jan 2011 15:17:00,350,[XELLERATE.SERVER],Class/Method: tcDataBase/readPartialStatement entered.
    Has anyone encountered anything like this? Thanks for your help.
    OIM 9.1.0
    Siebel 8.1.1
    Siebel User Management Connector 9.0.4

    Hi,
    Are you able to resolve this issue. I am facing a similar issue.
    Your guidance, will be handy.
    Regards
    Karan

  • OIM provisioning in bulk causes several provisioning tasks to be listed as

    OIM 9102 Provisioning in bulk causes several provisioning tasks to be listed as "provisioning in queue" We are using offline provisioning as we had some issues running without it.
    If i bring in via trusted resource, 10 or so users, the first 5 or 6 work fine, and then 1 or 2 will show some of their resources as provisioning in queue. It looks like it didn't get around to running those as I don't see errors in the log(debug on everything) if I open and save the form, they provision immediately with no trouble. I'm just trying to figure out what the hold up is, and is there a way to have it automatically retry when this happens?
    Any help would be great.

    also each one this happens to is a different resource. on a different user. and each is stuck and system validation.

  • Errors in OIM Provisioning with SunJavaSystemDirectoryServer -- Please help

    Hi,
    I am new to Oracle Identity Manager Technology. I am stuck up with this issue for more then 3 days.
    I installed the OIM version 9.1.0.1 successfully with the below configuration
    Application Server : JBoss
    DB :MS SQL Server
    DS : Sun Directory Server 5.2
    Sun Java Directory Server Connector : SJSDS_90440
    I followed the "Connector Guide for Sun Java System Directory Release 9.0.4 E10446-07" for configuring the connector. I did the necessary changes in Sun DS and installed the connector successfully.
    Now, When I try to do the provisioning from OIM to Sun DS, I am getting the below exception in console:
    11:03:05,416 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnNull=true
    11:04:03,146 INFO [STDOUT] Running Get Target Attribute Mapping
    11:04:03,177 INFO [STDOUT] Running IPNT Get Lookup Values
    11:04:03,208 INFO [STDOUT] Running Get Process Data
    11:04:03,364 INFO [STDOUT] Running USEXLORGSTRUCTURE
    11:04:03,364 INFO [STDOUT] Target Class = java.lang.String
    11:04:03,364 INFO [STDOUT] Running ISSSL
    11:04:03,364 INFO [STDOUT] Target Class = java.lang.String
    11:04:03,364 INFO [STDOUT] Running GETPATH
    11:04:03,364 INFO [STDOUT] Target Class = com.thortech.xl.util.adapters.tcUtilLDAPOrganizationHierarchy
    11:04:03,364 INFO [STDOUT] Running CREATEUSER
    11:04:03,364 INFO [STDOUT] Target Class = com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations
    11:04:03,490 ERROR [SJSDS] ====================================================
    11:04:03,490 ERROR [SJSDS] com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations : connectToLDAP() : : Unable to create Initial LDAP Context[LDAP: error code 34 - Invalid DN]
    11:04:03,490 ERROR [SJSDS] ====================================================
    11:04:03,490 ERROR [STDERR] javax.naming.InvalidNameException: [LDAP: error code 34 - Invalid DN]
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2946)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2753)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2667)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:287)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
    11:04:03,490 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
    11:04:03,490 ERROR [STDERR] at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
    11:04:03,490 ERROR [STDERR] at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
    11:04:03,490 ERROR [STDERR] at javax.naming.InitialContext.init(InitialContext.java:223)
    11:04:03,490 ERROR [STDERR] at javax.naming.InitialContext.<init>(InitialContext.java:197)
    11:04:03,490 ERROR [STDERR] at javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:82)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations.connectToLDAP(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations.createUser(Unknown Source)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,490 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,490 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpIPLANETCREATEUSER.CREATEUSER(adpIPLANETCREATEUSER.java:431)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpIPLANETCREATEUSER.implementation(adpIPLANETCREATEUSER.java:124)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.client.events.tcBaseEvent.run(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.dataobj.tcDataObj.runEvent(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.dataobj.tcScheduleItem.runMilestoneEvent(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.dataobj.tcScheduleItem.eventPostInsert(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.dataobj.tcDataObj.insert(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.dataobj.tcDataObj.save(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.ejb.beansimpl.tcProvisioningOperationsBean.retryTasks(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.ejb.beans.tcProvisioningOperationsSession.retryTasks(Unknown Source)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,490 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,490 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,490 ERROR [STDERR] at org.jboss.invocation.Invocation.performCall(Invocation.java:359)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.StatelessSessionContainer$ContainerInterceptor.invoke(StatelessSessionContainer.java:237)
    11:04:03,490 ERROR [STDERR] at org.jboss.resource.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:158)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.StatelessSessionInstanceInterceptor.invoke(StatelessSessionInstanceInterceptor.java:169)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.CallValidationInterceptor.invoke(CallValidationInterceptor.java:63)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:121)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.TxInterceptorCMT.runWithTransactions(TxInterceptorCMT.java:350)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.TxInterceptorCMT.invoke(TxInterceptorCMT.java:181)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:168)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.LogInterceptor.invoke(LogInterceptor.java:205)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invoke(ProxyFactoryFinderInterceptor.java:138)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.SessionContainer.internalInvoke(SessionContainer.java:648)
    11:04:03,490 ERROR [STDERR] at org.jboss.ejb.Container.invoke(Container.java:960)
    11:04:03,490 ERROR [STDERR] at sun.reflect.GeneratedMethodAccessor134.invoke(Unknown Source)
    11:04:03,490 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,490 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,490 ERROR [STDERR] at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:155)
    11:04:03,490 ERROR [STDERR] at org.jboss.mx.server.Invocation.dispatch(Invocation.java:94)
    11:04:03,490 ERROR [STDERR] at org.jboss.mx.server.Invocation.invoke(Invocation.java:86)
    11:04:03,490 ERROR [STDERR] at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:264)
    11:04:03,490 ERROR [STDERR] at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:659)
    11:04:03,490 ERROR [STDERR] at org.jboss.invocation.local.LocalInvoker$MBeanServerAction.invoke(LocalInvoker.java:169)
    11:04:03,490 ERROR [STDERR] at org.jboss.invocation.local.LocalInvoker.invoke(LocalInvoker.java:118)
    11:04:03,490 ERROR [STDERR] at org.jboss.invocation.InvokerInterceptor.invokeLocal(InvokerInterceptor.java:209)
    11:04:03,490 ERROR [STDERR] at org.jboss.invocation.InvokerInterceptor.invoke(InvokerInterceptor.java:195)
    11:04:03,490 ERROR [STDERR] at org.jboss.proxy.TransactionInterceptor.invoke(TransactionInterceptor.java:61)
    11:04:03,490 ERROR [STDERR] at org.jboss.proxy.SecurityInterceptor.invoke(SecurityInterceptor.java:70)
    11:04:03,490 ERROR [STDERR] at org.jboss.proxy.ejb.StatelessSessionInterceptor.invoke(StatelessSessionInterceptor.java:112)
    11:04:03,490 ERROR [STDERR] at org.jboss.proxy.ClientContainer.invoke(ClientContainer.java:100)
    11:04:03,490 ERROR [STDERR] at $Proxy332.retryTasks(Unknown Source)
    11:04:03,490 ERROR [STDERR] at Thor.API.Operations.tcProvisioningOperationsClient.retryTasks(Unknown Source)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,490 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,490 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,490 ERROR [STDERR] at Thor.API.Base.SecurityInvocationHandler$1.run(Unknown Source)
    11:04:03,490 ERROR [STDERR] at Thor.API.Security.LoginHandler.jbossLoginSession.runAs(Unknown Source)
    11:04:03,490 ERROR [STDERR] at Thor.API.Base.SecurityInvocationHandler.invoke(Unknown Source)
    11:04:03,490 ERROR [STDERR] at $Proxy790.retryTasks(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.webclient.actions.ResourceProfileProvisioningTasksAction.retryTasks(Unknown Source)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,490 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,490 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,490 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,490 ERROR [STDERR] at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:280)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.webclient.actions.tcLookupDispatchAction.execute(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.webclient.actions.tcActionBase.execute(Unknown Source)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.webclient.actions.tcAction.execute(Unknown Source)
    11:04:03,490 ERROR [STDERR] at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:484)
    11:04:03,490 ERROR [STDERR] at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274)
    11:04:03,490 ERROR [STDERR] at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1482)
    11:04:03,490 ERROR [STDERR] at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:525)
    11:04:03,490 ERROR [STDERR] at javax.servlet.http.HttpServlet.service(HttpServlet.java:710)
    11:04:03,490 ERROR [STDERR] at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    11:04:03,490 ERROR [STDERR] at com.thortech.xl.webclient.security.SecurityFilter.doFilter(Unknown Source)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    11:04:03,490 ERROR [STDERR] at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
    11:04:03,490 ERROR [STDERR] at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:182)
    11:04:03,490 ERROR [STDERR] at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
    11:04:03,490 ERROR [STDERR] at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
    11:04:03,490 ERROR [STDERR] at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262)
    11:04:03,490 ERROR [STDERR] at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844)
    11:04:03,490 ERROR [STDERR] at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
    11:04:03,490 ERROR [STDERR] at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446)
    11:04:03,490 ERROR [STDERR] at java.lang.Thread.run(Thread.java:619)
    11:04:03,568 ERROR [SJSDS] ====================================================
    11:04:03,568 ERROR [SJSDS] com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations : connectToLDAP() : : Unable to create Initial LDAP Context[LDAP: error code 34 - Invalid DN]
    11:04:03,568 ERROR [SJSDS] ====================================================
    11:04:03,568 ERROR [STDERR] javax.naming.InvalidNameException: [LDAP: error code 34 - Invalid DN]
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2946)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2753)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2667)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:287)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
    11:04:03,568 ERROR [STDERR] at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
    11:04:03,568 ERROR [STDERR] at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
    11:04:03,568 ERROR [STDERR] at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
    11:04:03,568 ERROR [STDERR] at javax.naming.InitialContext.init(InitialContext.java:223)
    11:04:03,568 ERROR [STDERR] at javax.naming.InitialContext.<init>(InitialContext.java:197)
    11:04:03,568 ERROR [STDERR] at javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:82)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations.connectToLDAP(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations.search(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations.isObjectExists(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations.createUser(Unknown Source)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,568 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,568 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpIPLANETCREATEUSER.CREATEUSER(adpIPLANETCREATEUSER.java:431)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpIPLANETCREATEUSER.implementation(adpIPLANETCREATEUSER.java:124)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.client.events.tcBaseEvent.run(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.dataobj.tcDataObj.runEvent(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.dataobj.tcScheduleItem.runMilestoneEvent(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.dataobj.tcScheduleItem.eventPostInsert(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.dataobj.tcDataObj.insert(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.dataobj.tcDataObj.save(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.ejb.beansimpl.tcProvisioningOperationsBean.retryTasks(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.ejb.beans.tcProvisioningOperationsSession.retryTasks(Unknown Source)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,568 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,568 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,568 ERROR [STDERR] at org.jboss.invocation.Invocation.performCall(Invocation.java:359)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.StatelessSessionContainer$ContainerInterceptor.invoke(StatelessSessionContainer.java:237)
    11:04:03,568 ERROR [STDERR] at org.jboss.resource.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:158)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.StatelessSessionInstanceInterceptor.invoke(StatelessSessionInstanceInterceptor.java:169)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.CallValidationInterceptor.invoke(CallValidationInterceptor.java:63)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:121)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.TxInterceptorCMT.runWithTransactions(TxInterceptorCMT.java:350)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.TxInterceptorCMT.invoke(TxInterceptorCMT.java:181)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:168)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.LogInterceptor.invoke(LogInterceptor.java:205)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invoke(ProxyFactoryFinderInterceptor.java:138)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.SessionContainer.internalInvoke(SessionContainer.java:648)
    11:04:03,568 ERROR [STDERR] at org.jboss.ejb.Container.invoke(Container.java:960)
    11:04:03,568 ERROR [STDERR] at sun.reflect.GeneratedMethodAccessor134.invoke(Unknown Source)
    11:04:03,568 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,568 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,568 ERROR [STDERR] at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:155)
    11:04:03,568 ERROR [STDERR] at org.jboss.mx.server.Invocation.dispatch(Invocation.java:94)
    11:04:03,568 ERROR [STDERR] at org.jboss.mx.server.Invocation.invoke(Invocation.java:86)
    11:04:03,568 ERROR [STDERR] at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:264)
    11:04:03,568 ERROR [STDERR] at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:659)
    11:04:03,568 ERROR [STDERR] at org.jboss.invocation.local.LocalInvoker$MBeanServerAction.invoke(LocalInvoker.java:169)
    11:04:03,568 ERROR [STDERR] at org.jboss.invocation.local.LocalInvoker.invoke(LocalInvoker.java:118)
    11:04:03,568 ERROR [STDERR] at org.jboss.invocation.InvokerInterceptor.invokeLocal(InvokerInterceptor.java:209)
    11:04:03,568 ERROR [STDERR] at org.jboss.invocation.InvokerInterceptor.invoke(InvokerInterceptor.java:195)
    11:04:03,568 ERROR [STDERR] at org.jboss.proxy.TransactionInterceptor.invoke(TransactionInterceptor.java:61)
    11:04:03,568 ERROR [STDERR] at org.jboss.proxy.SecurityInterceptor.invoke(SecurityInterceptor.java:70)
    11:04:03,568 ERROR [STDERR] at org.jboss.proxy.ejb.StatelessSessionInterceptor.invoke(StatelessSessionInterceptor.java:112)
    11:04:03,568 ERROR [STDERR] at org.jboss.proxy.ClientContainer.invoke(ClientContainer.java:100)
    11:04:03,568 ERROR [STDERR] at $Proxy332.retryTasks(Unknown Source)
    11:04:03,568 ERROR [STDERR] at Thor.API.Operations.tcProvisioningOperationsClient.retryTasks(Unknown Source)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,568 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,568 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,568 ERROR [STDERR] at Thor.API.Base.SecurityInvocationHandler$1.run(Unknown Source)
    11:04:03,568 ERROR [STDERR] at Thor.API.Security.LoginHandler.jbossLoginSession.runAs(Unknown Source)
    11:04:03,568 ERROR [STDERR] at Thor.API.Base.SecurityInvocationHandler.invoke(Unknown Source)
    11:04:03,568 ERROR [STDERR] at $Proxy790.retryTasks(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.webclient.actions.ResourceProfileProvisioningTasksAction.retryTasks(Unknown Source)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    11:04:03,568 ERROR [STDERR] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    11:04:03,568 ERROR [STDERR] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    11:04:03,568 ERROR [STDERR] at java.lang.reflect.Method.invoke(Method.java:597)
    11:04:03,568 ERROR [STDERR] at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:280)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.webclient.actions.tcLookupDispatchAction.execute(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.webclient.actions.tcActionBase.execute(Unknown Source)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.webclient.actions.tcAction.execute(Unknown Source)
    11:04:03,568 ERROR [STDERR] at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:484)
    11:04:03,568 ERROR [STDERR] at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274)
    11:04:03,568 ERROR [STDERR] at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1482)
    11:04:03,568 ERROR [STDERR] at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:525)
    11:04:03,568 ERROR [STDERR] at javax.servlet.http.HttpServlet.service(HttpServlet.java:710)
    11:04:03,568 ERROR [STDERR] at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    11:04:03,568 ERROR [STDERR] at com.thortech.xl.webclient.security.SecurityFilter.doFilter(Unknown Source)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    11:04:03,568 ERROR [STDERR] at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
    11:04:03,568 ERROR [STDERR] at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:182)
    11:04:03,568 ERROR [STDERR] at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
    11:04:03,568 ERROR [STDERR] at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
    11:04:03,568 ERROR [STDERR] at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262)
    11:04:03,568 ERROR [STDERR] at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844)
    11:04:03,568 ERROR [STDERR] at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
    11:04:03,568 ERROR [STDERR] at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446)
    11:04:03,568 ERROR [STDERR] at java.lang.Thread.run(Thread.java:619)
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations : connectToLDAP() : : Exception : Unable to search LDAPnull
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations : isObjectExists() : Generic Exception: com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations: Exception : Unable to search LDAP [null]
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations : createUser() : Generic Exception: com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperationscom.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations: Exception : Unable to search LDAP [null]
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations : disconnectFromLDAP() : : Unable to close LDAP Context. The context was probably not created, since it is null
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] ====================================================
    11:04:03,615 ERROR [SJSDS] com.thortech.xl.integration.iplanet.tcUtilIPlanetUserOperations : createUser() : CommunicationException: Error while connecting to target. com.thortech.xl.integration.iplanet.util.tcUtilLDAPOperations: Unable to close LDAP Context. The context was probably not created, since it is null
    11:04:03,615 ERROR [SJSDS] ====================================================
    I am running out of time, so please reply me as soon as possible.
    Thanks in advance.
    Regards,
    ~Senthil Nathan

    Hi Suren,
    Thanks for your quick reply.I checked the connection parameters and everything looks fine.
    Here is my IT Resource Details
    IT Resource Name : iPlanet User
    IT Resource Type : LDAP Server
    Remote Manager
    Parameter Value
    Trusted Source Reconciliation Time Stamp : 0
    Target Resource Reconciliation Time Stamp :0
    SSL:false
    Server Address: 10.239.63.164
    Port:11580
    Root DN :cn=OIM User,ou=administrators,ou=topologymanagement,o=netscaperoot
    Admin Id:OIMUser
    Admin Password:******
    Prov Attribute Lookup Code : AttrName.Prov.Map.iPlanet
    Use XL Org Structure:true
    Recon Attribute Lookup Code:AttrName.Recon.Map.iPlanet
    Prov Role Attribute Lookup Code:AttrMap.iPlanetRole
    Prov Group Attribute Lookup Code:AtMap.iPlanetGroup
    Group Reconciliation Time Stamp:0
    Role Reconciliation Time Stamp:0
    Regards,
    ~Senthil Nathan

  • OIM provisioning of groups to AD

    Hi,
    Can any one tell me how can i provision groups to AD. when ever the administrator creates a group in Administration Console that group needs to be provisioned to AD.

    Hi,
    The idea is that you set up triggers on the Group forms (under the Data Object Manager). So anytime a group is added to OIM, on Pre-insert (or post-insert), your adapter is called to add the group to AD. Same with pre-delete,post-delete. Your adapter will have to be coded to do the AD part. AD information will have to be hard-coded because at the time of the trigger, you only have the information that is on the group form available to you.. no other information.
    Cheers,
    Deborah

  • OIM Provisioning problem with EBS

    I use connector to test provisioning function with EBS, and it works.
    Besides,there have 2 CreateUser storedprocedure in EBS, and one for SSO(we
    can set GUID value when create user). I found the connector used
    the non-SSO storedprocedure. The question is can I modify the config files(
    attributemapping_prov.properties, config.properties,storeprocedures.properties)
    to utilize the SSO storedprocedure to finish the create operation during provisioning
    (I want to specify GUID by myself when create EBS' user through OIM)?
    I just tried my opinion, but the logs prompt SQLException.I do not know why?What should I do?
    Any suggestions will be helpful.
    Thanks!

    You could definitely write your own connector. We faced a similar problem and solved it by writing our own EBS Connector.
    I haven't explored the exact capabilities of the standard EBS connector so you might be able to do this by configuration. My general experience is that it is often better to bite the bullet and create your own connector rather than wasting time trying to get the out of the box connectors to do advanced operations.
    It looks like the config files are more for defining the type and number of attributes that is used during user creation rather than control which stored procedure should be called.
    Good luck
    /M

  • OIM provisioning query

    Hi All
    When we disable any user in OIM, is it the default behaviour that only provisioned resources will be revoked. The resources to which the provisioning status is 'provisioning', will not change. Is it because OIM never provisioned the user to that resource, so it will not even revoke.
    Please correct me if I am wrong. Thanks

    Normally a disablement of the OIM user triggers an execution of the task that is marked as "disable task effect" of any resource that is in provisioned state. Afaik OIM does not trigger any tasks in resources in provisioning state.
    You could debate if this is a wise design choice or not but this is how OIM is designed. If you have lots of issues with resources getting stuck in provisioning I would recommend fixing that.
    Best regards
    /Martin

  • How can OIM provision users with same Display Name in AD?

    I can create users with same First Name, Middle Name and Last Name (same Display Name) in OIM if they have different UserId.
    But I can not provision two users with same Display Name to one Organization Unit in AD, the resource provisioning shows
    Status: Rejected
    Response: AD user already exists
    Can AD be configured to create users with same Display Name (different UserId) in one OU, or would I have to create logic in OIM to modify the display name so it gets accepted by AD?
    Thanks!

    Thanks Nitesh. Also, I can create the user with same DN in different OU's, not in same OU.
    I agree once we determine that same cn exists in one OU , I can modify the display name by appending a number at the end or something. I understand the logic but I need more details on how to specify this logic in the pre-pop adapter, can you please share more details.
    Thanks a lot!

  • OIM - Provisioning AD User Home Directory

    Has anyone had success in provisioning a user's home directory in Active Directory?
    Currently we are provisioning two custom attributes to AD for this: homeDrive and homeDirectory. homeDrive is a literal "H:" and homeDirectory is \\server\home\%username%.
    When this is done from AD the user's home directory is created automatically in \\server\home, but when I provision these values from OIM the literal value of %username% is kept in the homeDirectory field and the user directory is not created.

    I have populated the field both ways, with %username% and also with the userid. In neither case is the user's home directory automatically created. However, when you supply %username% when creating a user in the AD Users and Computers console, the directory is created. So I guess that I need to kick off some sort of script to create this unless there is a better solution. How would you go about kicking off an external script?
    BTW/The NTFS permissions required for this can be found here:
    http://support.microsoft.com/kb/555046

  • OIM Provision Users to diffrent OU's

    I was trying to see how we could provsion users to diffrent OU's . As of now when I try to create users and they are being provisioned into default User container. I was trying to find out where exactly will it be pulling up the OU information from. (I belive it is from the adapter file.)So that I can change the same so that users will be populated to different OU's accordingly.

    What user user637654 recommended is what is supported out of the box.
    In many cases it simply isn't enough to meet the requirements. In that case you need to create a custom AD create user task. We have done this for a number of customers and the main problem is usually to find the transform between the information that you have available (information about the user from your trusted source) and the OU location in AD.
    One option if you have requested based provisioning is to include the OU on the object form and let the requester pick the OU. Not always appropriate but can sometimes be a viable option.
    Hope this helps
    /M

  • OIM Provisioning - Update target field just under condition

    Hello Experts,
    I need support to modify my SAP Target Provisioning.
    This is my scenario:
    - userA has a Resource SAP ECC.
    - I need that the 'Valid Through' field cannot be update if the SAP ECC resource is in status 'Disabled'.
    Is it possible?
    Thanks in Advance
    Best Regards,
    AT

    Hi Amit,
    thanks for your answer.
    At the moment the task that set our "Valid Through" atribute is linked to an adpter (type process task) that contanis just a "SET VARIABLE".
    We need to introduce an IF condition linked to the SAP Resource Status (Es. if the status is not 'Disabled'-> set variable).
    How can we do it using Design Console > Adapter Factory?
    If, into the Adapter, I add a new Util Task -> Oracle Identity Manager API, I can use an OIM Api method, but is not clear how to save the result value into an adapter variable..
    Could you give us some hints?
    Thanks in advance,
    Regards.
    AT

  • OIM - Provisioning in Groups

    Hi,
    How can we provision from OIM to OID in "cn=Groups" node.
    "cn=Groups" is using out of the box "GorupOfUniqueNames" class.
    Please suggest.
    Thanks.
    Edited by: ASA on 28/07/2010 20:47

    The ObjectClass should be configured in this lookup Lookup.Configuration.ActiveDirectory
    Check below
    http://docs.oracle.com/cd/E22999_01/doc.111/e20347/extnd_func.htm#sthref221
    4.6 Configuring the Connector for User-Defined Object Classes

  • OIM - Provisioning of a Group to Active Directory

    Hallo,
    When I provision a AD Group resource I get the following exception:
    08/06/02 11:44:40 Running Get Attribute Map
    08/06/02 11:44:40 Running Get Path
    08/06/02 11:44:40 Running Create Group
    ERROR,02 Jun 2008 11:44:41,600,[XL_INTG.ACTIVEDIRECTORY],Problem creating object: javax.naming.directory.InvalidAttributeValueException: [
    LDAP: error code 21 - 00000057: LdapErr: DSID-0C090B38, comment: Error in attribute conversion operation, data 0, vece^@]; remaining name
    'cn=Xellerate Users'
    I am using the standard form that is provided with the Connector for Microsoft Active Directory 9.0.4.
    Thanks

    The group name wasn't too long. There was a problem in Lookup Definition of the Group Type. I could solve this problem.
    Best regards

Maybe you are looking for