Password sync, activesync idm ad and ldap question

Similar Messages

• Can't reset my password thanks to slow email and security questions issues.

  I'm trying to reset my password on my Iphone so I can update my device and apps, but I forgot my password. So I decided to reset, using my username, but I never recieved an email to do so. I tried the security questions, and everytime I try to enter my birthday, the site keeps reseting me back to selecting my brithday. So in a way, there is no way I can reset my password? How do I fix this issue?

  See this for contacting Apple security: http://support.apple.com/kb/HT5699
  Although your logic escapes me. YOU made several mistakes, including your security questions, not having a rescue email address, and having a weak password that someone guessed. And you expect Apple to bail you out of the predicament that YOU created instantly. They probably will, but it isn't something that you should expect.

• Open Directory and LDAP questions/difficulties

  Hi, my company is about to try out OSX Server to replace our old Irix file server. In order to do this we need to run through a number of tests in order to validate the idea. Basically, the test setup is a PM G5 running OSX Server 10.4 and a connected Mac and/or PC on the G5's second ethernet port as test clients. The first ethernet port is connected to the local subnet (192.168.1.x) and, ideally, the OSX Server should have its own subnet on the second port and serve DHCP, AFP and SMB to that port only, along with an OD shared directory providing both authentication and home directories for users. (later on, if all is successful, it will serve those services on the company subnet). DNS is supplied by a separate server on the subnet (DNS caching server running tinydns)
  I've read my way through the OSX Server documentation, and gathered all the information the Worksheet requires. The problems started occuring because we installed OSX Server over an OSX Client and broke off the Server Assistent, because we were worried at the time that turning on a Windows PDC would collide with our current (and very flaky) Samba server running on the Irix machine, and that DHCP might also collide with our current dhcp server.
  As a consequence, we tried to set it up via the Server Admin Panel, Network Prefs, and the Workgroup Manager, after having connected the second ethernet port of the G5.
  Doing this, and setting the OD service to an OD Master, along with a Search base of dc=hostname, dc=domain, dc=tld has not exactly changed much. The problem is that the info panel says that LDAP is not running. This confuses me no end. I thought OD was based upon LDAP. The server name in the Server Admin panel is hostname.local. And now I get to my real questions (finally):
  1.Would it be better to just wipe the machine and start again using the Assistent, and set up the ODMaster that way?
  2.When is an ODMaster not a local directory and when is it a shared directory (the hostname.local worries me)
  3.What services exactly need to be running for the ODMaster to function properly
  3.How do I configure the local subnet on the second port (should I use the Gateway Assistent or do it by hand), and how do I only serve those services to that port (do I do it by setting the router/gateway for those services as the IP of the second port or as localhost).
  4.Do I need to simply enable LDAPv3 on the clients and set the search path to automatic to get the clients to Autheticate?
  5.Do user and groups added to the hostname.local become part of the OD Domain?
  I'm sorry if I come across as a total newbie. I'm used to doing most of this on the commandline in Linux (except for LDAP, which is new to me), and the GUI. I have managed to entangle myself quite nicely in all this and could really use some pointers.
  Thanks in advance
  Theo.
  PowerBook G4   Mac OS X (10.4.7)  

  1. Starting with a freshly installed OS X Server is recommended, but start no services at first, you need working DNS with reverse zone for the server IP to run OD Master (and other services). If the server domain is to be different from the existing network domain name setup DNS in OS X for the test domain.
  2. I'm not sure I understand the question. LDAP/OD can be used on the server to "house" the user accounts but you don't have to bind computers to it.
  If you don't use the more advanced possibilities with LDAP/OD I don't think the clients even need to have LDAP configured to be able to authenticate.
  hostname.local = hostname and the standard Bonjour domainname .local ?
  3a. DNS, so that reverse lookup works for the hostname before setting up OD Master. OD needs a "true" domainname Bonjour isn't sufficient. Setup/use something like mydomain.private.
  3b. You don't need to do NAT, you can also route between two subnets (you would need a static route in your Internet router too).
  If you want NAT you can use the GW assistant. The interface on the top of the list in Network config (where you can add more/alias interfaces) is the "main" interface used as the "WAN"/"Internet" interface.
  4. If the clients are "standalone" (not bound to the OD domain or not using server based homefolders and such) I think you only need LDAP if you want the clients to be able to search for info in OD/LDAP. Not needed for authentication.
  You can send out LDAP info with DHCP.
  5. If you mean you add/enter users and groups to OD/LDAP directory it just means you can have different servers/clients using a central repository(?) for authentication purposes.
  If you add (bind) machines to the domain you can to control what clients can do locally (priviledges), which applications they can run and so forth.
  In /etc/smb.conf you can say which interface to use för samba (don't remember what to enter though). And if using the firewall (you must if you want NAT) you can stop Bonjour (mDNS - multicasts) from entering the "old" network if you like/need.

• Password reset problem with Password sync and Waveset exception

  Hi,
  We are using IdM 5 SP 5 with password sync installed on ad.
  Once a user tries to change password by using Ctrl-Alt-Del, password sync intercepts the requests and then invoke an IdM change user password form, but on the log we see the following exceptions. Can anyone identity what are the nature/reason for the exceptions?
  [#|2005-08-17T16:22:14.914-0400|INFO|sun-appserver-ee8.1|javax.enterprise.system.stream.out|_ThreadID=24;|
  WavesetException: Constructor threw an exception.
  ==> java.lang.reflect.InvocationTargetException:
  ==> Missing required argument "operator". |#]
  [#|2005-08-17T16:22:14.917-0400|WARNING|sun-appserver-ee8.1|javax.enterprise.system.stream.err|_ThreadID=24;|com.waveset.util.WavesetException: Constructor threw an exception.
  ==> java.lang.reflect.InvocationTargetException:
  ==> Missing required argument "operator".
  at com.waveset.util.WavesetException.checkBreakpoint(WavesetException.java:366)
  at com.waveset.util.WavesetException.<init>(WavesetException.java:159)
  at com.waveset.util.Reflection.throwInstantiation(Reflection.java:266)
  at com.waveset.util.Reflection.instantiate(Reflection.java:350)
  at com.waveset.expression.ExNew.eval(ExNew.java:144)
  at com.waveset.expression.ExNode.evalToObject(ExNode.java:439)
  at com.waveset.expression.ExFunction$f_list.eval(ExFunction.java:2557)
  at com.waveset.expression.ExNode.evalToObject(ExNode.java:439)
  at com.waveset.object.Property.getValue(Property.java:232)
  at com.waveset.object.AbstractViewHandler.getFormOptions(AbstractViewHandler.java:166)
  at com.waveset.view.ChangeUserPasswordViewer.refreshView(ChangeUserPasswordViewer.java:168)
  at com.waveset.view.PasswordViewer.checkinView(PasswordViewer.java:258)
  at com.waveset.server.ViewMaster.checkinView(ViewMaster.java:629)
  at com.waveset.session.LocalSession.checkinView(LocalSession.java:660)
  at com.waveset.rpc.GenericMessageHandler.doCheckin(GenericMessageHandler.java:1491)
  at com.waveset.rpc.GenericMessageHandler.syncUserPassword(GenericMessageHandler.java:2639)
  at sun.reflect.GeneratedMethodAccessor177.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:585)
  at com.waveset.rpc.GenericMessageHandler.request(GenericMessageHandler.java:350)
  at com.waveset.rpc.SimpleRpcHandler.doRequest(SimpleRpcHandler.java:164)
  at com.waveset.rpc.SimpleRpcHandler.doRequest(SimpleRpcHandler.java:128)
  at org.openspml.server.SOAPRouter.doPost(SOAPRouter.java:500)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:767)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
  at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:264)
  at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:178)
  at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:263)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
  at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:225)
  at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:173)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
  at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:161)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
  at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:933)
  at com.sun.enterprise.web.connector.httpservice.HttpServiceProcessor.process(HttpServiceProcessor.java:221)
  at com.sun.enterprise.web.HttpServiceWebContainer.service(HttpServiceWebContainer.java:2072)
  Wrapped exception:
  java.lang.reflect.InvocationTargetException
  at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
  at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
  at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
  at java.lang.reflect.Constructor.newInstance(Constructor.java:494)
  at com.waveset.util.Reflection.instantiate(Reflection.java:334)
  at com.waveset.expression.ExNew.eval(ExNew.java:144)
  at com.waveset.expression.ExNode.evalToObject(ExNode.java:439)
  at com.waveset.expression.ExFunction$f_list.eval(ExFunction.java:2557)
  at com.waveset.expression.ExNode.evalToObject(ExNode.java:439)
  at com.waveset.object.Property.getValue(Property.java:232)
  at com.waveset.object.AbstractViewHandler.getFormOptions(AbstractViewHandler.java:166)
  at com.waveset.view.ChangeUserPasswordViewer.refreshView(ChangeUserPasswordViewer.java:168)
  at com.waveset.view.PasswordViewer.checkinView(PasswordViewer.java:258)
  at com.waveset.server.ViewMaster.checkinView(ViewMaster.java:629)
  at com.waveset.session.LocalSession.checkinView(LocalSession.java:660)
  at com.waveset.rpc.GenericMessageHandler.doCheckin(GenericMessageHandler.java:1491)
  at com.waveset.rpc.GenericMessageHandler.syncUserPassword(GenericMessageHandler.java:2639)
  at sun.reflect.GeneratedMethodAccessor177.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:585)
  at com.waveset.rpc.GenericMessageHandler.request(GenericMessageHandler.java:350)
  at com.waveset.rpc.SimpleRpcHandler.doRequest(SimpleRpcHandler.java:164)
  at com.waveset.rpc.SimpleRpcHandler.doRequest(SimpleRpcHandler.java:128)
  at org.openspml.server.SOAPRouter.doPost(SOAPRouter.java:500)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:767)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
  at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:264)
  at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:178)
  at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:263)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
  at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:225)
  at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:173)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
  at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:161)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
  at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:933)
  at com.sun.enterprise.web.connector.httpservice.HttpServiceProcessor.process(HttpServiceProcessor.java:221)
  at com.sun.enterprise.web.HttpServiceWebContainer.service(HttpServiceWebContainer.java:2072)
  Caused by: java.lang.IllegalArgumentException: Missing required argument "operator".
  at com.waveset.object.AttributeCondition.confirmMembers(AttributeCondition.java:436)
  at com.waveset.object.AttributeCondition.<init>(AttributeCondition.java:370)
  at com.waveset.object.AttributeCondition.<init>(AttributeCondition.java:408)
  ... 38 more
  |#]
  [#|2005-08-17T16:22:14.918-0400|INFO|sun-appserver-ee8.1|javax.enterprise.system.stream.out|_ThreadID=24;|
  XPRESS <new> exception:|#]
  [#|2005-08-17T16:22:14.918-0400|INFO|sun-appserver-ee8.1|javax.enterprise.system.stream.out|_ThreadID=24;|
  com.waveset.util.WavesetException: Constructor threw an exception.
  ==> java.lang.reflect.InvocationTargetException:
  ==> Missing required argument "operator". |#]
  Thanks,
  David

  If thjis is a reproducible problem log a support case with the traces and have them figure it out for you.
  WilfredS

• AD Password Sync connector 9.1.1 With OIM 11g R2 - ERROR OVER SSL

  I have set up AD password sync with from AD to OIM 11G R2
  The password syncs from AD to OIM 11G R2 on non ssl port 389.
  But if fails on SSL Port 636.
  Errors in OIMMain.Log:_
  Debug [10/11/2012 10:49:34 AM] Inside ConnectToADSI
  Debug [10/11/2012 10:49:34 AM]
  ldap_connect failed with
  Debug [10/11/2012 10:49:34 AM] Server Down
  Debug [10/11/2012 10:49:34 AM]
  Steps Carried Out thus far:_
  AD is up and running.
  Configured AD Password Sync Connector on 636 and selected ssl.
  Created Certificate on OIM host, configured custom identity key store on weblogic. Restarted Weblogic.
  Imported Certificate to AD. After this, restarted the AD
  I can Telnet port 636 from OIM Box and also connect to AD through LDAP Browser on 636 and view OU and CN, so this seems fine.
  Provisioning from OIM through Connector Server to AD works over SSL and this works fine.
  Help would be appreciated.
  Many Thanks

  This question is now been fixed.
  Instead of explicitly stating 636 for SSL,
  Use the same port 389 for ssl and also configured oim port to be 140001 which is the ssl port for oim in the configuration of OIM Password Sync.
  Export Certificates from AD to java security keystore and to weblogic keystore
  Export .pem certificate created on OIM host machine to AD.
  Restart weblogic, oim and AD
  Everything would work fine.
  For all the other information, refer to doc.
  Thanks

• Profile server and ldap server login

  To enable my portal to have anonymous login and skip the login menu, from the admin console, i've added "Membership" and "Ldap" under the interactive mode section. This is to allow Ldap or Membership authentication methods enabled at the anonymous page. I tried to use the default login channel to log into the portal using LDAP authentication, but it doesn't work. I can log into the portal via the login channel using "Membership" authentication method. But somehow i have no idea how to "integrate" my membership (profile) authentication with Ldap authentication. (Syncs between profile server and LDAP Server for user name and password). Anyone out there have any idea what went wrong here? Thanks a lot.

  The sp3a release notes shows how you can modify the login channel to work with other authentication modules.
  The sample given is for unix authentication to make that sample work for ldap authentication take a copy of that sample
  cp display_iwtAuthUnix.html display_iwtAuthLdap.html
  now look for form action and replace the form action from /login/Unix to /login/Ldap, now follow the instructions given in the sp3a release notes, replace unix with ldap everywhere and it should work ..

• User locked while Ldap password sync.

  I'm testing Ldap Password Synchronization in IDM70.
  It works pretty fine, but sometimes I find in the ActiveSync log the following error:
  "Cannot access user <accountId> at this time, please try again later.".
  In this case ActiveSync fails updating the User's password, but what is bad is that it will never try it again: the changelog update is considered done, no later try.
  IDM and Ldap passwords are out-of-sync.
  Is there a way to overcome this limit?

  I usually see that message occur when an account is opened for edit and didn't press the cancel button. A common practice, but remember that there is a lock on that account you are performing an edit on, and cancel will unlock it. If you just close out instead of cancel, the record can't be accessed.
  let me know if that solves it

• I need help for install and configure password sync from AD to OID

  Hi guys!
  I need to sync passwords from AD to OID, first all, ¿What software do I need? I read some docs and don't find the good config.
  I'm trying with:
  -Database 11g
  -Weblogic 11g
  -SOA 11g
  -IDM 11g
  -IAM 11g
  First I install the Database and load the schemas with RCU, next install Weblogic without domian, next install SOA, next install IDM (OID and DIP) in a new Weblogic Domain, next install IAM, next configure IAM in the domain created before, next configure SSL, check the config by using ldapbind, next configure DIP.
  It's that ok?
  ¿What I am doing wrong?
  Thank you all.

  If all you need is AD & OID then OIM is not required. DIP alone can handle this
  Password sync should work using DIP. if this is not working then check synchronization mapping and verify that password attribute is also part of this AD-OID sync. Enable debug in synchronization profile or raise an Service Request with Oracle support.
  Check
  http://docs.oracle.com/cd/E23943_01/oid.1111/e10031/odip_actdir.htm#CHDIGDEH
  and
  http://docs.oracle.com/cd/E23943_01/oid.1111/e10031/odip_config_integration.htm#BABBFAAJ
  and
  http://docs.oracle.com/cd/E23943_01/oid.1111/e10031/odip_adpasswordsync.htm#CHDBIIJC
  Atul Kumar

• OIM-OAM integration and LDAP Sync

  Hello All, I have deployed OIM 11g R2 and OAM/OVD 11.1.1.5. Now I need to enable LDAP sync for OIM-OAM integration and I'm not allowed to extend Oracle schema in AD. So I decided to use OUD for FMW schema and I have completed all those steps and OUD is up and running. Since my enterprise directory is AD and OUD is my FMW directory, I need to think of a split profile setting in OVD. I'm following this link http://fusionapplications-ateam.blogspot.com/2012/04/split-profiles-with-ad-and-oid-for.html for this deployment. I have OVD adapters configured for AD, OUD, Join view and changelog. The link does not clearly explain the steps in OIM for LDAP Sync.
  When I configure LDAP Sync in OIM, should I point the sync to the OUD users container?
  When and how this cn=shadowentries container will be used? I understand that the password (obattributes) are used for password management by OAM, but wondering where will that get stored in OUD?
  Please let me know your thoughts.
  Thanks.

  Hi,
  when I use url:
  http://idm1:14000/admin/faces/pages/Admin.jspx
  I get Access Manager login page, I can click links: register new user, reset password and I get correct OIM pages. But when I type xelsysadm and password I get error on the next page:
  Error 401--Unauthorized
  From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
  10.4.2 401 Unauthorized
  I can't logon to EM, OAMconsole, Weblogic etc. when the OAM is running. In OIM log I got errors from oam-agent: "User is not authorized to access resource, MinorCode: DENY, MajorCode: DENY".
  I have got user xelsysadm in OIM and in LDAP, when the OAM is not running I can login to OIM, create users in OIM (they appear in OID) etc. The user xelsysadm is added to group: OAMAdministrators. Also when I try to logon to OAM console (http://idm1:7001/oamconsole) using orcladmin name I get error: Access to administration console is restricted. But when I use weblogic username (the user is in OAMAdministrators group in OID) i can get OAMconsole.
  How can I change logon type in OIM?
  best
  mp
  Edited by: J23 on 2011-01-10 00:47

• Password Sync and HTTPS

  Hi All,
  We are configuring the password Sync in https. In http works and the password was send to the queue.
  In Https the Password Sync Test function works but when there is a change password it returns an error and the password wasn't send to the queue.
  We are using:
  - IDM 7.1 update 1
  - Password Sync 7.1 update 1
  Thanks,
  Zaic
  Server Log on Password Sync Test Function
  [01/Apr/2008:13:40:55 CEST] [B1065]: Accepting: [email protected]:52862->jms:55466. Count=1
  [01/Apr/2008:13:40:55 CEST] [B1066]: Closing: [email protected]:52862->jms:55466 because "[B0059]: Client closed the connection". Count=0
  Log Password Sync on change password
  PwSyncClient::SendToServlet
  04/01/2008 12.16.52.484000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,72): Connecting to idmcluster on port 443
  04/01/2008 12.16.52.500000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,102): Resource is '/idm/servlet/PasswordSync?JNDIProperties=java.naming.factory.initial%3dcom.sun.jndi.fscontext.RefFSContextFactory%3bjava.naming.provider.url%3dfile%3a%2f%2f%2ftmp&accountId=&clientEndpoint=VM103DCP&connectionFactory=IdmQueueConnectionFactory&direct=false&emailEndUser=false&jmsPassword=fp%2frcCDuWhE%3d&jmsUser=admin&password=&queueName=IdmQueue&resourceAccountGUID=96deb639505af842b1cc2ea8c947f06e&resourceAccountId=CN%3dLorenzini_M%2cOU%3dSindacati%2cDC%3dlab%2cDC%3drersdm%2cDC%3dit&resourcePassword=zWQfQiMbgq%2f3o0G1cpWxAg%3d%3d&resourcePasswordLength=10&resourcetype=Windows Active Directory&sessionType=LOCAL'
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,132): httpSendRequest failed
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,139): HTTPSendRequest last error was ...(null)
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,141): HTTPSendRequest last error was ...2F0D
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,157): servlet contact failed
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\pwsyncclient.cpp,165): Exit: PwSyncClient::SendToServlet
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\lhpwic.cpp,83): Enter: writeToEventLog
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\lhpwic.cpp,105): Exit: writeToEventLog
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\lhpwic.cpp,203): Enter: EmailNotification
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\lhpwic.cpp,206): Email is not enabled
  04/01/2008 12.16.53.062000 [3572] (e:\waveset\build\idm711-35\src\wps\passwordsync\passwordsyncdll\lhpwic.cpp,198): Exit: SyncPassword

  I ran into a similar situation on Linux - https stopped working when we switched default SSL cert provided with Sun App server and switched to a external CA issued cert.
  You may want to check if something is wrong with certificate IDM app server is using.

• I accidentally screwed up my apple id when trying to change my primary email address. Password recovery options and security questions arent working either to restore

  I accidentally screwed up my apple id when trying to change my primary email address. Password recovery options and security questions arent working either to restore. Created a new appleid just to get into forums to ask a question but hesitate to sync itunes and iphone with it as i may lose all purchased music apps etc. can anyone help? i have received no email response frm apple support, it's been over 48 hours

  I have the same problem - it is maddening. I rely on this iPad for work so this is not just an annoyance! The above solutions of changing the appleid on the device or on the website do not work.
  The old email address no longer exists - I haven't used it in a year probably and I no longer have the account.  I logged into the appleid website and there is no trace of the old email address so there is nothing that can be deleted or changed there.  On the iPad there is no trace of the old email address so nothing can be deleted there either. I have updated the iPad software and the same problem comes right back.  Every 2 seconds I am asked to log in using the old non-existent email.  The device is currently useless.
  The only recent change to anything was the addition of an Apple TV device, which was set up using the correct login and password.
  Does anyone have any ideas? The iPad has been backed up to the iCloud so presumably it now won't recognize the current iCloud account? So restoring may notbe an option?

• Sun IdM Password Sync 8.1 - Urgent help needed

  Hi,
  I have installed Sun Idm 8.1 password sync. It has been installed in Direct mode.
  The test environment is 1 dc controller and 1 windows xp machine.
  The following test cases were done -
  1. Admin/User changes password (IDM) - it is synchronized to AD and user is able to log into XP.
  2. Admin changes the password in AD - it is synchronized to IdM and user is able to log into XP and IdM
  **3. When the user changes the password in XP, it does not get synchronized to idm.**
  Please let me know your suggestions. Password Sync is a proven technology and should work.

  It should work - we have it working.
  Few things to look at:
  1) Check the Password Sync DLL trace log, level 4. It will help you see what is going on.
  2) What is the version of Windows domain controller?
  3) Make sure you have the latest password syc DLL installed.

• Configuration of Password Sync & JMS Listener in fail over in SUN IDM 7.1

  HI All,
  We are having a set up with IDM running on two Sun application servers pointed to single repository. Sun webserver Reverse Proxy has configured for load balancing.
  We have configured JMS Listener adapter for Password Sync and JMS Listener Sync is running on Instance1*
  and I copied a copy of .bindings file from Instance1 to Instance2 (I doubt whether this is correct or not) by keeping in mind about load balancing with Reverse Proxy.
  Issue
  Some times the JMS Listener Sync running on Instance1 is hanging (no polling is happening) and password changes are not happening. To make password changes happen, we are restarting Application server of Instance1 and with this some password are failing to synchronize.
  I want to configure High availability or Failover to overcome the above issue.
  [http://docs.sun.com/source/819-6123/IDM_admin_passwordsync.html#wp25192] not having any detailed steps to configure failover.
  Please provide valuable suggestions
  Thanks In Advance
  Madhu

  The problem appears to be machine account password changes that pass null or corrupted values. Machine accounts are like users, but the password change occur automatically between machine and DC so that the client can be a member of the domain.
  We turned up the Password Sync logging were able to see the machine name that occurred before each event, and then researching those machines identified them as NT 4.0 workstations. It turns out that NT 4.0 machines cycle their password every 7 days, down to the second. To say that we were surprised to find these machines still on the network was an understatement.
  Contact support for this issue. They have been working on a patch for this.
  Jason

• I need to know all the questions below.  I had to restore my computer to original state and now even if I sign on it won't let me sync my ipad or iphone.  the message is that it is synced to another library and it could wipe out my data on the ipad.

  I need to know all the questions below.  I had to restore my computer to original state and now even if I sign on it won't let me sync my ipad or iphone.  the message is that it is synced to another library and it could wipe out my data on the ipad.  Am I understanding correctly? I am running Windows 7 but have never had any problems.  Thanks

  You need iTunes on the computer. There is no iTunes for your phone. See:
  Locked Out, Forgot Lock or Restrictions Passcode, or Need to Restore Your Device: Several Alternative Solutions
  1. iOS- Forgotten passcode or device disabled after entering wrong passcode
  2. iPhone, iPad, iPod touch: Wrong passcode results in red disabled screen
  3. Restoring iPod touch after forgotten passcode
  4. What to Do If You've Forgotten Your iPhone's Passcode
  5. iOS- Understanding passcodes
  6. iTunes 10 for Mac- Update and restore software on iPod, iPhone, or iPad
  Forgotten Restrictions Passcode Help
  You will need to restore your device as New to remove a Restrictions passcode. Go through the normal process to restore your device, but when you see the options to restore as New or from a backup, be sure to choose New.
  Also, see iTunes- Restoring iOS software.

• I have forgotten my password for iPod Touch 4G and it is now disabled. I tried connecting to iTunes but i haven't synced before and i need to enter the password before i can back it up so i can restore it. I don't want to lose pictures so please help!

  I have forgotten my password for iPod Touch 4G and it is now disabled. I tried connecting to iTunes but i haven't synced before and i need to enter the password before i can back it up so i can restore it. I don't want to lose pictures so please HELP!

  Disabled
  Place the iOS device in Recovery Mode and then connect to your computer and restore via iTunes. The iPod will be erased. That is how it works
  iOS: Forgot passcode or device disabled
  If recovery mode does not work try DFU mode.                        
  How to put iPod touch / iPhone into DFU mode « Karthik's scribblings        
  For how to restore:
  iTunes: Restoring iOS software
  To restore from backup see:
  iOS: Back up and restore your iOS device with iCloud or iTunes       
  If you restore from iCloud backup the apps will be automatically downloaded. If you restore from iTunes backup the apps and music have to be in the iTunes library since synced media like apps and music are not included in the backup of the iOS device that iTunes makes.
  You can redownload most iTunes purchases by:
  Downloading past purchases from the App Store, iBookstore, and iTunes Store        
  If problem what happens or does not happen and when in the instructions? When you successfully get the iPod in recovery mode and connect to computer iTunes should say it found an iPod in recovery mode.