OIM's Trusted Source
I have OIM11g and OID11g, and setup OID as the ldap during configuring OIM. OIM pulls the new or changes of the identities via the LDAP Reconciliation jobs from OID.
There is also the LDAP provision to OID from OIM running auto out of the box.
Can we say the OID is the OIM's trusted source?
Rajiv Dewan wrote:
There is also the LDAP provision to OID from OIM running auto out of the boxGo to Adminitration Console > Search User > Select User > Click that user > Go to Resources Tab
What do you see here ?
If you see LDAP/OID resource there then it means that resource is configured as Target Resource.
Also, which task do you run to bring changes fromOID/LDAP to OIM. Is it trusted reconciliation o target reconciliation task ?
Guide also tells about configuring OID/LDAP as trusted resurce. Do you see those configuration in your system ?selected a user's Resources Tab, it shows the provisioned the resource of the target Application.
And as I stated in the beginning "OIM pulls the new or changes of the identities via the LDAP Reconciliation jobs from OID.".
The Reconciliation Jobs are out of the box jobs.
So can we say the OID is OIM's trusted source?
Similar Messages
-
OIM-OID trusted source reconciliation failure
Hi All,
I am running trusted source reconciliation on OID to create users on OIM, i have followed all the steps mentioned in the OID document to run TSR, when i check the logs i saw these error messages ... it says attributes ,Organization Name and Manager Login missing......
..... please guide...
[2011-06-15T15:41:10.052+05:30] [oim_server1] [ERROR] [IAM-3020003] [oracle.iam.configservice.impl] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 0000J2Im7Vo5UcnMwmrY6G1Dy7II0000J8,0] [APP: oim#11.1.1.3.0] [dcid: 599ab6c29ce1f3ca:30cd79de:130928baf6b:-7ffd-00000000000004dd] [arg: Organization Name] The attribute Organization Name does not exist!
[2011-06-15T15:41:10.052+05:30] [oim_server1] [WARNING] [] [oracle.iam.identity.usermgmt.impl] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 0000J2Im7Vo5UcnMwmrY6G1Dy7II0000J8,0] [APP: oim#11.1.1.3.0] [dcid: 599ab6c29ce1f3ca:30cd79de:130928baf6b:-7ffd-00000000000004dd] [[
oracle.iam.configservice.exception.NoSuchAttributeException: Organization Name
at oracle.iam.configservice.impl.EntityUtil.getAttribute(EntityUtil.java:504)
at oracle.iam.configservice.impl.RDBMSDAO.getAttribute(RDBMSDAO.java:1035)
at oracle.iam.configservice.impl.ConfigManagerImpl.getAttribute(ConfigManagerImpl.java:625)
at oracle.iam.identity.usermgmt.impl.UserManagerImpl.search(UserManagerImpl.java:1698)
at oracle.iam.identity.usermgmt.api.UserManagerEJB.searchx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy327.searchx(Unknown Source)
at oracle.iam.identity.usermgmt.api.UserManager_nimav7_UserManagerRemoteImpl.searchx(UserManager_nimav7_UserManagerRemoteImpl.java:799)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:84)
at $Proxy185.searchx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
at $Proxy309.searchx(Unknown Source)
at oracle.iam.identity.usermgmt.api.UserManagerDelegate.search(Unknown Source)
at oracle.iam.identitytaskflow.backing.taskflows.advsearch.AdvancedSearchView.processQuery(AdvancedSearchView.java:577)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.sun.el.parser.AstValue.invoke(AstValue.java:157)
at com.sun.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:283)
at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcastToMethodExpression(UIXComponentBase.java:1303)
at oracle.adf.view.rich.component.UIXQuery.broadcast(UIXQuery.java:115)
at oracle.adf.view.rich.component.fragment.UIXRegion.broadcast(UIXRegion.java:148)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:97)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:91)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:309)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:94)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:91)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents(LifecycleImpl.java:812)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:292)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:177)
at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:191)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:97)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:421)
at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:60)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:421)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.iam.platform.auth.web.PwdMgmtNavigationFilter.doFilter(PwdMgmtNavigationFilter.java:116)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.iam.platform.auth.web.OIMAuthContextFilter.doFilter(OIMAuthContextFilter.java:101)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:160)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:330)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3684)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
[2011-06-15T15:41:10.052+05:30] [oim_server1] [ERROR] [IAM-3020003] [oracle.iam.configservice.impl] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 0000J2Im7Vo5UcnMwmrY6G1Dy7II0000J8,0] [APP: oim#11.1.1.3.0] [dcid: 599ab6c29ce1f3ca:30cd79de:130928baf6b:-7ffd-00000000000004dd] [arg: Manager Login] The attribute Manager Login does not exist!
[2011-06-15T15:41:10.052+05:30] [oim_server1] [WARNING] [] [oracle.iam.identity.usermgmt.impl] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 0000J2Im7Vo5UcnMwmrY6G1Dy7II0000J8,0] [APP: oim#11.1.1.3.0] [dcid: 599ab6c29ce1f3ca:30cd79de:130928baf6b:-7ffd-00000000000004dd] [[
oracle.iam.configservice.exception.NoSuchAttributeException: Manager Login
at oracle.iam.configservice.impl.EntityUtil.getAttribute(EntityUtil.java:504)
at oracle.iam.configservice.impl.RDBMSDAO.getAttribute(RDBMSDAO.java:1035)
at oracle.iam.configservice.impl.ConfigManagerImpl.getAttribute(ConfigManagerImpl.java:625)
at oracle.iam.identity.usermgmt.impl.UserManagerImpl.search(UserManagerImpl.java:1698)
at oracle.iam.identity.usermgmt.api.UserManagerEJB.searchx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy327.searchx(Unknown Source)
at oracle.iam.identity.usermgmt.api.UserManager_nimav7_UserManagerRemoteImpl.searchx(UserManager_nimav7_UserManagerRemoteImpl.java:799)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:84)
at $Proxy185.searchx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
at $Proxy309.searchx(Unknown Source)
at oracle.iam.identity.usermgmt.api.UserManagerDelegate.search(Unknown Source)
at oracle.iam.identitytaskflow.backing.taskflows.advsearch.AdvancedSearchView.processQuery(AdvancedSearchView.java:577)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.sun.el.parser.AstValue.invoke(AstValue.java:157)
at com.sun.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:283)
at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcastToMethodExpression(UIXComponentBase.java:1303)
at oracle.adf.view.rich.component.UIXQuery.broadcast(UIXQuery.java:115)
at oracle.adf.view.rich.component.fragment.UIXRegion.broadcast(UIXRegion.java:148)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:97)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:91)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:309)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:94)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:91)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents(LifecycleImpl.java:812)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:292)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:177)
at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:191)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:97)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:421)
at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:60)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:421)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.iam.platform.auth.web.PwdMgmtNavigationFilter.doFilter(PwdMgmtNavigationFilter.java:116)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.iam.platform.auth.web.OIMAuthContextFilter.doFilter(OIMAuthContextFilter.java:101)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:160)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:330)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3684)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)You need to provide a default Organization for reconciliation that exists within OIM, and not the Org from OID because that will be a dn of some sort. As for the manager, try unmapping this for the recon mapping values. Then set your filter to recon only one user and test it out. For your manager login, check what value is actually coming from OID and that it matches to the user login field in OIM before mapping it back in your recon fields.
-Kevin -
OIM: trusted source reconciliation - user deletion
Hello,
I am working on a test scenario with Oracle Identity Manager 9.1.0.1.
I have succesfully setup trusted source reconciliation with Oracle 10g Database using the "Database Application Tables Release 9.1.0 connector".
In the DB resides a HR table with users.
When the data in the HR table is edited and updated everything works fine it get's reconciled to OIM.
But when a user get's deleted from the Database HR table. The user isn't deleted in OIM
How is that possbile?
Your response is greatly appreciated!
Thank you very much in advance!OK i have now managed the problem with the first unparsable error syntax.
According to here (http://download.oracle.com/docs/cd/E11223_01/doc.910/e11194/create.htm):
Database Date Format parameter for reconciliation:
Enter the same value that you enter for the Source Date Format parameter.
I entered the settings bellow and it works.
Database Date Format: DD-MMM-YY
Source Date Format: DD-MMM-YY
Another problem:+_
Now i have a problem with the "hire end" date, because if a user is still employed, there is a null value in the Oracle 10g DB.
And i get Unparsable date: "" error
Please help. -
Error while creating GTC for trusted source reconciliation in OIM11g
Hi,
I got an exception while trying to create GTC for Trusted source Reconciliation in OIM11g
Class/Method: CreateGenConnectorAction/imageScreen encounter some problems: Provider Exception[[
java.lang.Exception: Provider Exception
at com.thortech.xl.webclient.actions.CreateConnectorAction.getGenericAdapter(CreateConnectorAction.java:2265)
at com.thortech.xl.webclient.actions.CreateConnectorAction.imageScreen(CreateConnectorAction.java:1196)
at com.thortech.xl.webclient.actions.CreateConnectorAction.goNext(CreateConnectorAction.java:521)
at sun.reflect.GeneratedMethodAccessor4673.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:269)
at com.thortech.xl.webclient.actions.tcLookupDispatchAction.execute(tcLookupDispatchAction.java:133)
at com.thortech.xl.webclient.actions.tcActionBase.execute(tcActionBase.java:894)
at com.thortech.xl.webclient.actions.tcAction.execute(tcAction.java:213)
at com.thortech.xl.webclient.actions.CreateConnectorAction.execute(CreateConnectorAction.java:135)
at org.apache.struts.chain.commands.servlet.ExecuteAction.execute(ExecuteAction.java:58)
at org.apache.struts.chain.commands.AbstractExecuteAction.execute(AbstractExecuteAction.java:67)
at org.apache.struts.chain.commands.ActionCommandBase.execute(ActionCommandBase.java:51)
at org.apache.commons.chain.impl.ChainBase.execute(ChainBase.java:191)
at org.apache.commons.chain.generic.LookupCommand.execute(LookupCommand.java:305)
at org.apache.commons.chain.impl.ChainBase.execute(ChainBase.java:191)
at org.apache.struts.chain.ComposableRequestProcessor.process(ComposableRequestProcessor.java:283)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at com.thortech.xl.webclient.security.XSSFilter.doFilter(XSSFilter.java:103)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at com.thortech.xl.webclient.security.CSRFFilter.doFilter(CSRFFilter.java:61)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.iam.platform.auth.web.PwdMgmtNavigationFilter.doFilter(PwdMgmtNavigationFilter.java:115)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.iam.platform.auth.web.OIMAuthContextFilter.doFilter(OIMAuthContextFilter.java:100)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:330)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3684)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused by: java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:48)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:600)
at com.thortech.xl.gc.util.ProviderFacade.getProvider(ProviderFacade.java:344)
at com.thortech.xl.webclient.actions.CreateConnectorAction.getGenericAdapter(CreateConnectorAction.java:2201)
... 47 more
Caused by: java.lang.NullPointerException
at com.thortech.util.logging.Logger.isDebugEnabled(Logger.java:599)
at com.thortech.xl.gc.impl.recon.SharedDriveReconTransportProvider.initialize(SharedDriveReconTransportProvider.java:106)
... 53 more
Thanks & Regards,
PrasadMost likely you are hitting below bug
Bug 14271576 - OIM BETA : CONNECTOR LOGS ARE NOT GETTING UPDATED IN 11G R2 [preferrred fix ...]
or
Bug 13605443 - NULL POINTER EXCEPTIONS IN OIM SERVER DURING RECONCILIATION USING GTC CONNECTOR
Thanks Deepak -
Reconciliation Rule for Trusted Sources
Is it possible to create a reconciliation rule for a trusted source based a user-defined field that stores a GUID? By default, OIM uses the user id in the reconciliation rule, however if the user id changes on the trusted source a recon. rule based on user id will never find a match - if I understand how the recon. rule works.
Has anyone attempted to use something other than user id in a recon. rule for a trusted source?
ThanksI have a doubt here..please clear if i am able to sucessfully explain...in reconcilliation action we wrote that "No Match Found" --> "create User". it is working fine (for me it is Sun LDAP on other side)..but issue is that when it create a user in OIM...under resource profile no resource is coming as attached...then how can one knows that this user already had a profile in LDAP and need not created a new one and also we cannot provision the same user to LDAP as it is already there...means we cannot link these two user profiles (OIM and LDAP one)....but for feasible scenerion it should be...can anyone tell me where i am wrong and what other configuration needs to be done if it is a feasible scenerion..
-
MTS - Multiple trusted Sources
Hi all,
I want to have multiple trusted source in the IDM 11g, There are 2 kinds of connectors MTS-compatible and MTS-non-compatible, i need to know that how to identify that if a connector is MTS-compatible or MTS-non-compatible ?
Secondly I need o have AD as main Trusted source and 1 or 2 databases as additional Trusted Sources, I will be using the DBAT_91050 connector to create GTC connectors to for the DBs. does anyone know that if DBAT_91050 is MTS-compatible or not?
http://download.oracle.com/docs/cd/E10391_01/doc.910/e10363/resmgt.htm#BCEBGEDG
Regards....A little further detail....
I am running FMW, OIM 11g R1 (11.1.1.5). Kindly clear one doubt about "Database_App_Tables_9.1.0.5.0" that if it is MTS-Compatible connector or not ? since I am not getting any such information in the connector documentation. Moreover in the following document
http://download.oracle.com/docs/cd/E14571_01/doc.1111/e14309.pdf
Section: 9.9.4.3 - Multiple Trusted Source Reconciliation.
there are two methods mentioned for the MTS Reconciliation one is for the connectors that are MTS compatible and the other for the MTS non compatible connectors, I need to know that in case of usning "Database_App_Tables_9.1.0.5.0" + "MSFT_AD_Base_9.1.1.7.0" which method can be followed since AD connector is MTS compatible and I think that DBAT connector is not MTS compatible?
If you can refer any documentation that describes the procedure in a bit detail that would be great.
My objective is to create user from AD, using AD as trusted source and fetching the additional feilds for the same user from the HR-DB and havimg a consolidated user record in OIM.
Finally if it is possible to configure the DBAT connector to use the tables that have multiple level of Master-Slave relationship? i.e Parent Table1 having one Child Table and then this Child table is Parent of another Child table. P1>ch1>ch2..... what i know is that only upto one level of Master - Slave can be configured in DBAT having one Master that can have one Slave or 2 ,3, 4 Slave tables at the same level.... Mater1 > Child 1 - Child 2 - Child -3. is it correct? -
Reconciliation with Trusted Source dont work
Hello to all!! I hope you can help me with an issue.....
I follow the OIM Connector Guide For Database Applications Tables "A.4 Configuring the Target System As a Trusted Source"
I create a GTC with the next data:
Transport Provider list: Database Application Tables Reconciliation Transport Provider
Format Provider list Database Application Tables Reconciliation Format Provider
Trusted Source Reconciliation: Box cheked
Database Driver field oracle.jdbc.driver.OracleDriver
Database URL field jdbc:oracle:thin:@lordaeron:1521:OIMDB --> I cretae a table into de OIMDB for test
Batch Size field All
Reconciliation Type list Full
The table have the next rows:
MPLOYEE_ID VARCHAR2 No --> 235
FIRST_NAME VARCHAR2 No --> Jhon
LAST_NAME VARCHAR2 No --> Smith
EMAIL VARCHAR2 Yes
PHONE_NUMBER VARCHAR2 Yes
HIRE_DATE DATE Yes
LAST_UPDATE TIMESTAMP Yes
SALARY NUMBER Yes
STATUS VARCHAR2 Yes --> Enabled
On the third step:
- Create the reconciliation rule by creating a matching-only mapping between
the EMPLOYEE_ID (primary key) field of the Reconciliation Staging
- Create the mandatory fields required for creation of an OIM User
Organization, employee type, user type and password. Yes I put a generic password for all.
After this I run the task scheduler manual and don't populate the OIM... my log is the next:
DEBUG [ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)' XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG [ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)' XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG [ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)' XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG [ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)' XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG QuartzSchedulerThread XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG QuartzSchedulerThread XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG QuartzSchedulerThread XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG QuartzSchedulerThread XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG QuartzWorkerThread-1 XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG QuartzWorkerThread-1 XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG QuartzWorkerThread-1 XELLERATE.RESOURCEMANAGEMENT - Class/Method: tcObjectOperationsBean/findObjects entered.
DEBUG QuartzWorkerThread-1 XELLERATE.RESOURCEMANAGEMENT - Class/Method: tcObjectOperationsBean/findObjects left.
DEBUG QuartzWorkerThread-1 XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG QuartzWorkerThread-1 XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
DEBUG QuartzWorkerThread-1 XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader entered.
DEBUG QuartzWorkerThread-1 XELLERATE.ADAPTERS - Class/Method: tcADPClassLoader/getClassLoader left.
I hope you can help me!!! ThanksHi, thanks for answer ... Yes I selected "Matching Only" on all fields ... but dont work --> Enabled On the third step: - Create the reconciliation rule by creating a matching-only mapping
I'll try to do again step by step maybe I miss something.... but I don't think so....
If I found a solution I feed this post......
Some help is welcome...... thanks -
Delay with GTC as Trusted Source Reconciliation
Hi Everyone,
I'm using OIM 9.1.0.2 with Websphere 6.5.1
I have a GTC as Trusted Source Reconciliation when the GTC schedule is run, the log shows step by step how the user is created and provisioned to AD and Exchange. There aren't any error in the log. But when I check if the user was created, I detect that the user wasn't created, but it appers in Reconcilliation Manager in the Design Console with status "Event Received". Around 10 minutes later the status changes to "Event Linked" and in this moment the user appers in OIM.
Any idea for this?
How can I resolve it?
Thanks,
ArielThanks for your response.
I'm reconciling 1 user, because I'm testing the development.
I have Access Policy for provisioning AD and Exchange.
But the log shows all processes for creating an user, but the user appers around 10 minutes later.
I did a deploy to a Vitual Machine with OIM 9.1.0.2 and JBoss and the user is created in the moment that the reconcilliation is run.
Thanks,
Ariel -
Hi
I need to configure multiple systems as a trusted source , can you tell me the best approach to handle such situation
ps: OIM 11g R2Go through this
http://docs.oracle.com/cd/E27559_01/dev.1112/e27150/resmgt.htm
4.3.4.3 Multiple Trusted Source Reconciliation -
Difference between Targeted vs. Trusted source reconciliation?
Hello!
Can someone please explain to me in a “for dummies sort of way” or “by example” what is the difference between
Trusted source reconciliation and Targeted resource reconciliation??
I found this explanation on Oracle, but I still don't understand the difference:
Targeted resource reconciliation:
occurs when the audit criteria reconciles the resource request or change against the actual resource provisioned insuring access or the lack thereof in a ad hoc query bases.
Trusted source reconciliation:
occurs when the audit criteria reconciles from a primary point of truth validating the resource access status against corporate policy.
Thank you very muchTrusted Source:
Trusted sources are identified as your source of truth for employee information. It is a store of user information that hopefully will contain your entire employee list. The best example would be payroll. The information from payroll should be accurate for all employees, and also contain personal data that might be required. Your trusted source will map to a single user identity in OIM, which is the Xellerate User. When you perform a trusted reconciliation against this target, it will create your Xellerate User object for each user which is the unique identity within OIM. Also, when performing reconciliations against a trusted source, this is the only time a reconciliation event triggers an update to a field. You can propogate changes from a trusted reconciliation onto your targets by creating triggers.
Target Reconciliation:
Now that you have your unique identity, this Xellerate User can have user accounts that the end user will actually use. They can have multiple targets linked to their trusted profile (Xellerate User). So when you perform a target recon, it will match that target entity to the Xellerate User identity creating a 1 to many relationship. For every 1 Xellerate User object, you can have multiple target objects, but not the other way around. When you perform the target reconciliation for updates, there are no triggered changes to the process form. It is all an immediate change and you cannot have a trigger on these fields, wheras the trusted source will trigger a change that can be propagated to the targets.
So you can think of it as Trusted is an identity or person, and Target is a user account or object that is actually used by the identity.
-Kevin -
I am trying to scan checks in the USAA.com website and Java is giving me an error message: "The publisher cannot be verified by a trusted source. Code will be treated as unsigned."
Serac wrote:
Hi,
I am occasionally running into an issue where I get the following error:
"The publisher cannot be verified by a trusted source.Code will be treated as unsigned."
I am not sure how to stop getting this error or what the root cause of the issue is.
Any idea what could be causing this? and how I can get rid of it? is this a bug in the JRE?
Thanks,
DeeOn the contrary. It shows that Java takes your security very seriously and it will not allow
hackers to format your hard-disk, get personal data etc.
Google for signed applets. -
I need to download an Application from a Trusted source, but not an apple source.
I need to download an application from a trusted source, but not an apple source. Application is apparently downloads, but the computer will not open it. I have turned off my fire wall. I should press control and then the app which should be in the applications folder. It does not appear to be in that folder.
System Preferences > Security & Privacy > General
Unlock the lock if you have to. Click the lock and authenticate.
"Allow applications downloaded from:"
Select "Anywhere".
Best. -
BNSF help desk says it was an internal update by java and mac users won't be able to use firefox to log on. The update changed things for mac users. The window that popped up said sun.security validator exception. MD2 with RSA disabled. Cannot be verified by trusted source. I really need this web site for my work. I'm also computer illiterate. Is there some kind of patch or fix for mac lion. HELP.
That file could be set as a Launch Agent or Daemon in your ~/Library or /Library, You could try to look for it or Safeboot your computer and then empty the trash. Safebooting disables Launch Agents/Daemon and Third Party Kernal extensions. Here's the article to Safeboot OS X: What is Safe Boot, Safe Mode? - Apple Support
-
Script Alert "You should only run scripts from a trusted source."
I created a small javascript which opens Photoshop and resizes some images.
I want to be able to double-click the .JSX file from Windows Explorer, and have Photoshop execute the script. Likewise, I want to be able to run the .JSX file from the command line.
The script runs perfectly. However, the problem is that I don't want any user interaction. I want to be able to run the script from the command line without the user having to click anything. What happens now when I try to run the file from Windows Explorer of the command line is, I get a Script Alert with the following text:
You are about to run a script in Adobe Photoshop CS3. You should only run scripts from a trusted source. Do you want to run the script? Yes/No
Is there any possible way to bypass this message or to answer in the affirmative?
Thanks,
Jamie L.Hi... Sorry to revive such an old thread,
Does anyone know the "trusted source" folder for MAC CS4.
EDIT!
My bad. "The /users/<user_name>/documents/Adobe Scripts" folder is working for this purpose for me. I needed a path to it and forgot that the ~ resolves to the current user. Sweet.
-Bill -
When using digital signatures in Acrobat Pro and Reader 9.3 ... is there a limit to the number of trusted sources you can have in your application?
Hi,
There is no limit to the number of certificates you can add to the Manage Trusted Identities list, but if the list grows too large it could slow down the signature verification process. The reason is it will take Acrobat/Reader longer to find the trust anchor as part of the chain building portion of the signature validation process and if the it has to look in the list to do the chain building (i.e. the signing chain was not included in the signature object in the PDF) that would also slow things down.
Steve
Maybe you are looking for
-
Best Safari version for 10.6.6
I'm running Safari 5.0.2 on a 15" Macbook Pro running Snow Leopard 10.6.6. I'm having issues with some sites so wish to try another version of Safari to see if that will help. I downloaded versions 5.0.2 (just for safety if I had to return to it), 5.
-
Repair error in transport request with return code-0008
hi!! I am getting error while importing a transport request by giving return code-0008. Can anyone explain me the reason and solution for the same. Rgds, Ajeet.
-
Why can i only search in the names of 'contacts' and not also in other fields such as city, country?
This is possible on a mac but not on ipdad or ipod touch
-
I inserted a HTML5 video in page, when I test it in a Browser, I see the poster image and controls, But when I click play button the video goes white, slider moves like its playing, but just white picture. There was no audio included in video. Please
-
hi I have a package create package pack1 procedure proc1(empid varchar2(10),ename varchar2(20),joindate date,empcat varchar2(20)) is begin declare cursor c1 is select..... begin case when joindate>=(select joindate from empdetails where eid=empid) db