Questions : - AD Connector in OIM 11gR2
Hi,
Please provide your suggestions on below queries (OIM 11gR2)
1) How to create a new AD Group from OIM? We see a "AD group" resource object created with the connector installation. Will we have create an Application instance for "AD group" RO and AD IT resource instance to achieve the AD group creation?
2) How to manage the memebers of the AD group from OIM?
3) How to delete a AD group from OIM?
Thanks in advance
Hi,
Please provide your suggestions on below queries (OIM 11gR2)
1) How to create a new AD Group from OIM? We see a "AD group" resource object created with the connector installation. Will we have create an Application instance for "AD group" RO and AD IT resource instance to achieve the AD group creation?
2) How to manage the memebers of the AD group from OIM?
3) How to delete a AD group from OIM?
Thanks in advance
Similar Messages
-
Configuring ACF2 connector with OIM 11gR2
Hi Experts,
I am working on configuring ACF2 connector with OIM 11gr2, In an intermediatory step we need to copy VOYAGER_ID.properties file. The comment against this file is written as: Rename VOYAGER_ID with the name "Voyager server's VOYAGER_ID control file property".
Can anybody please tell what does this actually mean?
thanksRename the copied file to match the VOYAGER_ID property. For example, if the target system has VOYAGER_ID = VOYAGE14, then the .properties file should be named VOYAGE14.properties.
The Voyager reconciliation agent sends a unique identifier value, called VOYAGER_ID, each time a reconciliation event occurs. This value must match the name of the .properties file being used by the topsecret-adv-agent-recon.jar file for reconciliation. -
Configuring exchange connector in OIM 11gR2
Hi Experts,
I have to configure exchange connector with OIM 11gR2. I went through the connector guide and there they have mentioned about custom powershell script. Please let know from where I can get this script and the use of it. If any one is having sample script then please share it with me.
Regards,
Bhawna.Connetcor version is 11.1.1.6.0
Also in doc it was mentioned to create a .bat file on OIM server to call this power shell script on connector server. -
Uninstall AD Connector in oim 11gR2
Hi,
I want to uninstall AD connector (.NET version 11.1.1.5.0) from oim 11gR2. For this, i run uninstallConnector.sh but i got this error . Do you have any idea ?
Thanks.
DEBUG,27 Nov 2012 11:32:07,475,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD Group
DEBUG,27 Nov 2012 11:32:07,476,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD Group
DEBUG,27 Nov 2012 11:32:07,476,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD Organizational Unit
DEBUG,27 Nov 2012 11:32:07,477,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD Organizational Unit
DEBUG,27 Nov 2012 11:32:07,477,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD User
DEBUG,27 Nov 2012 11:32:07,478,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD User
DEBUG,27 Nov 2012 11:32:07,478,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD User Trusted
DEBUG,27 Nov 2012 11:32:07,478,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD User Trusted
DEBUG,27 Nov 2012 11:32:07,479,[ConnectorUninstall.log],Exiting Method: checkAndPrintAttestationTask of Class: UninstallUtility
DEBUG,27 Nov 2012 11:32:07,479,[ConnectorUninstall.log],Entering Method: deleteReconciliationData of Class: UninstallUtility
DEBUG,27 Nov 2012 11:32:07,479,[ConnectorUninstall.log],Getting ReconConfigService instance.
DEBUG,27 Nov 2012 11:32:07,500,[ConnectorUninstall.log],Successful in getting ReconConfigService instance.
*DEBUG,27 Nov 2012 11:32:07,501,[ConnectorUninstall.log],Deleting the reconciliation profile for the resource object: AD Group*
Exception in thread "main" oracle.iam.reconciliation.exception.ConfigException: oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/AD Group"
at oracle.iam.reconciliation.impl.config.CoreProfileManagerImpl.getProfileFromMDS(CoreProfileManagerImpl.java:395)
at oracle.iam.reconciliation.impl.config.CoreProfileManagerImpl.getProfile(CoreProfileManagerImpl.java:381)
at oracle.iam.reconciliation.impl.config.ProfileManagerImpl.getProfile(ProfileManagerImpl.java:163)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy439.getProfile(Unknown Source)
at oracle.iam.reconciliation.impl.ReconConfigServiceImpl.deleteProfile(ReconConfigServiceImpl.java:54)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy438.deleteProfile(Unknown Source)
at oracle.iam.reconciliation.api.ReconConfigServiceEJB.deleteProfilex(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.oracle.pitchfork.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:34)
at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
at com.oracle.pitchfork.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:42)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy437.deleteProfilex(Unknown Source)
at oracle.iam.reconciliation.api.ReconConfigService_66l8sr_ReconConfigServiceRemoteImpl.__WL_invoke(Unknown Source)
at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
at oracle.iam.reconciliation.api.ReconConfigService_66l8sr_ReconConfigServiceRemoteImpl.deleteProfilex(Unknown Source)
at oracle.iam.reconciliation.api.ReconConfigService_66l8sr_ReconConfigServiceRemoteImpl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:667)
at weblogic.rmi.cluster.ClusterableServerRef.invoke(ClusterableServerRef.java:230)
at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:522)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:518)
at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused by: oracle.mds.core.MetadataNotFoundException: MDS-00013: no metadata found for metadata object "/db/AD Group"
at oracle.mds.core.MetadataObject.getBaseMO(MetadataObject.java:1331)
at oracle.mds.core.MDSSession.getBaseMO(MDSSession.java:3200)
at oracle.mds.core.MDSSession.getMetadataObject(MDSSession.java:1190)
at oracle.mds.core.MDSSession.getMetadataObject(MDSSession.java:1136)
at oracle.iam.reconciliation.impl.config.CoreProfileManagerImpl.getProfileFromMDS(CoreProfileManagerImpl.java:390)
... 60 moreYes, i did.
I created profile from design console for AD Resource objects. Then i am getting this error;
ey = atr.apd_key AND atr.atr_key = apt.atr_key AND apt.apt_key = atd.apt_key AND atd.oiu_key = oiu.oiu_key AND oiu.obi_key = obi.obi_key AND obi.obj_key = obj.obj_key AND obj.obj_name = ?
DEBUG,27 Nov 2012 13:08:07,589,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD Group
DEBUG,27 Nov 2012 13:08:07,590,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD Group
DEBUG,27 Nov 2012 13:08:07,590,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD Organizational Unit
DEBUG,27 Nov 2012 13:08:07,591,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD Organizational Unit
DEBUG,27 Nov 2012 13:08:07,591,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD User
DEBUG,27 Nov 2012 13:08:07,592,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD User
DEBUG,27 Nov 2012 13:08:07,593,[ConnectorUninstall.log],Executing the Prepared Statement for the ResourceObject: AD User Trusted
DEBUG,27 Nov 2012 13:08:07,594,[ConnectorUninstall.log],Successfully executed the Prepared Statement for the ResourceObject: AD User Trusted
DEBUG,27 Nov 2012 13:08:07,594,[ConnectorUninstall.log],Exiting Method: checkAndPrintAttestationTask of Class: UninstallUtility
DEBUG,27 Nov 2012 13:08:07,594,[ConnectorUninstall.log],Entering Method: deleteReconciliationData of Class: UninstallUtility
DEBUG,27 Nov 2012 13:08:07,594,[ConnectorUninstall.log],Getting ReconConfigService instance.
DEBUG,27 Nov 2012 13:08:07,622,[ConnectorUninstall.log],Successful in getting ReconConfigService instance.
*DEBUG,27 Nov 2012 13:08:07,622,[ConnectorUninstall.log],Deleting the reconciliation profile for the resource object: AD Group*
Exception in thread "main" oracle.iam.reconciliation.exception.ConfigException: Path :: /db/RA_ADGROUPA80D3C22.xml
at oracle.iam.reconciliation.impl.config.CoreProfileManagerImpl.removeFromMDS(CoreProfileManagerImpl.java:364)
at oracle.iam.reconciliation.impl.config.CoreProfileManagerImpl.removeStagingEntityDef(CoreProfileManagerImpl.java:346)
at oracle.iam.reconciliation.impl.config.CoreProfileManagerImpl.remove(CoreProfileManagerImpl.java:314)
at oracle.iam.reconciliation.impl.config.ProfileManagerImpl.remove(ProfileManagerImpl.java:154)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
Thanks. -
Any reference to Webservice based connector for OIM 11gR2
Hi All,
Please send any reference, document, link to web based connectors in OIM 11.2
thanks,If you are just looking for reference, then use:
http://docs.oracle.com/cd/E10391_01/doc.910/e10360/prdfnd_prov.htm#CHDGHCCG -
ICF Exchange connector for OIM 11gR2
When i installed Exchange connector i saw that the process form does not contain objectGUID field . So when we link AD and exchange with depends on tab in design console how will Exchange provisioning process get to know whether AD is provisioned or not?
The linking as far as I know depends upon your recon key field and the recon rule. Since AD & Exchange are tied together, we follow the same recon field and rule (Atleast I haven't seen different recon field or rule for these two systems).
Now suppose you have a user in OIM and you manually create AD/Exchange for the user and then do a target Exchange recon, OIM will show up exchange as provisioned state even though OIM does not have AD resource information. This is the case for recon.
While doing provisioning, since the exchange resource has dependency with AD resource object, that's the reason why exchange would be in waiting state before AD gets into provisioned state.
For the objectGUID, you can remove it from all the configurations of AD and Exchange & the connector would still work fine as long as you have a valid recon key field.
Hope this helps,
Bikash
Edit: just saw after replying that the question was about R2. My views are based on R1 and I understand that it's same for R2 as well. But I might be wrong in R2. -
Problem with Exchange 11.1.1.5 Connector in OIM 11gR2
HI,
i provisioned user to exchange server using 11.1.1.5 Connector successfully. when i am trying to update Database field Lookup in user process form i am getting following error
Running EXCHANGEUPDATEUSER
Target Class = oracle.iam.connectors.icfcommon.prov.ICProvisioningManager
<Sep 5, 2012 8:53:45 AM EDT> <Error> <ORACLE.IAM.CONNECTORS.ICFCOMMON.PROV.ICPROVISIONINGMANAGER> <BEA-000000> <oracle.iam.connectors.icfcommon.prov.ICProvisioningManager : doUpdate : Error while updating user
java.lang.IllegalArgumentException: Update type [Database] not supported
at org.identityconnectors.framework.impl.serializer.CommonObjectHandlers$14.createException(CommonObjectHandlers.java:274)
at org.identityconnectors.framework.impl.serializer.CommonObjectHandlers$14.createException(CommonObjectHandlers.java:273)
at org.identityconnectors.framework.impl.serializer.CommonObjectHandlers$ThrowableHandler.deserialize(CommonObjectHandlers.java:115)
at org.identityconnectors.framework.impl.serializer.binary.BinaryObjectDecoder$InternalDecoder.readObject(BinaryObjectDecoder.java:162)
at org.identityconnectors.framework.impl.serializer.binary.BinaryObjectDecoder.readObject(BinaryObjectDecoder.java:313)
at org.identityconnectors.framework.impl.serializer.binary.BinaryObjectDecoder.readObjectField(BinaryObjectDecoder.java:417)
at org.identityconnectors.framework.impl.serializer.MessageHandlers$5.deserialize(MessageHandlers.java:155)
at org.identityconnectors.framework.impl.serializer.binary.BinaryObjectDecoder$InternalDecoder.readObject(BinaryObjectDecoder.java:162)
at org.identityconnectors.framework.impl.serializer.binary.BinaryObjectDecoder.readObject(BinaryObjectDecoder.java:313)
at org.identityconnectors.framework.impl.api.remote.RemoteFrameworkConnection.readObject(RemoteFrameworkConnection.java:153)
at org.identityconnectors.framework.impl.api.remote.RemoteOperationInvocationHandler.invoke(RemoteOperationInvocationHandler.java:101)
at $Proxy868.update(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.identityconnectors.framework.impl.api.DelegatingTimeoutProxy.invoke(DelegatingTimeoutProxy.java:107)
at $Proxy868.update(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.identityconnectors.framework.impl.api.LoggingProxy.invoke(LoggingProxy.java:76)
at $Proxy868.update(Unknown Source)
at org.identityconnectors.framework.impl.api.AbstractConnectorFacade.update(AbstractConnectorFacade.java:154)
Thanks and Regards,In Lookup.Exchange.UM.Configuration add:
Before Update Action File
/opt/oracle/Scripts/customExchangeUpdateScript.bat
Before Update Action Language
Shell
Before Update Action Target
Resource
In OIM create /opt/oracle/Scripts/customExchangeUpdateScript.bat with the following content:
IF NOT "%__NAME__%" == "" IF NOT "%Database%" == "" Powershell.exe -ImportSystemModules -File C:\PSScripts\setExchangeDatabase.ps1 "%__NAME__%" "%Database%"
Exit
Note: variables as %__NAME__% or %Database% are DECODE values from Lookup.Exchange.UM.ProvAttrMap
Note: Create ICProvisioningManager# updateAttributeValues(String objectType, String[] labels) ...I can send you my step by step documentation about this
In Exchange we create PowerShell skript C:\PSScripts\setExchangeDatabase.ps1 with the following content.
<#
.SYNOPSIS
Updates a mailbox property
.DESCRIPTION
This script set a MS Exchange Database for a user.
.NOTES
File Name : setExchangeDatabase.ps1
#>
#Accept parameters
$Identity = $args[0]
$DatabaseName = $args[1]
#if arg[1] is not empty (is available) set the database
###### test
# $Identity >> 'c:\PSScripts\tracefile.log'
# $DatabaseName >> 'c:\PSScripts\tracefile.log'
# $Identity = $Identity.replace('[','').replace(']','')
# $DatabaseName = $DatabaseName.split("=")[1].split(",")[0]
# $Identity >> 'c:\PSScripts\tracefile.log'
# $DatabaseName >> 'c:\PSScripts\tracefile.log'
# " --- " >> 'c:\PSScripts\tracefile.log'
if (("$Identity" -eq "") -or ("$DatabaseName" -eq ""))
Exit
else
#parse alias and DB name only
$Identity = $Identity.replace('[','').replace(']','')
$DatabaseName = $DatabaseName.split("=")[1].split(",")[0]
$UserCN = get-mailbox -identity $Identity|ForEach {$_.Name}
$Identity >> 'c:\PSScripts\tracefile.log'
$DatabaseName >> 'c:\PSScripts\tracefile.log'
" --- " >> 'c:\PSScripts\tracefile.log'
#Move request
Remove-MoveRequest -Identity "$Identity" -confirm:$False
New-MoveRequest -Identity "$Identity" -TargetDatabase "$DatabaseName"
#test only
#set-user -Identity "$Identity" -Office "$DatabaseName" -
Target Recon using ICF flatfile connector in OIM 11gR2
Hi,
we developed a flatfile recon using Oracle Assets (where there was a predeveloped oracle flatfile connecter using ICF) and deployed the Flatfile connector on java connector server using ICF. for test purposes, We took a user created already in OIM and enter the same user details in flatfile and ran a recon operation. We created a scheduled job and ran the job successfully. When we check the recon events, it shows a user creation successful in the events. When we went and checked the user profile, the flatfile resource is not reflected in the User Accounts Tab.
Can anyone please let me know how we can ensure that the flatfile resource is reflected in the Accounts provisioned section?
ThanksHave you created Application instance for this resource in OIM.
You have to create Application Instance -> Login to Sysadmin url->Create sandbox->click on Application Instance-> create-> select resource object and itresource->save it-> now click on create form-> save it -> referesh dropdown and select the form now save the appinstance.->publish sandbox
Run scheduled task "Catalog sync" similar to that. So, Appinstance will be available to catalog for provisioning.
Now you can run the target recon. your account will be available under User->accouts tab.
find below links
http://docs.oracle.com/cd/E27559_01/dev.1112/e27150/resmgt.htm#CBBFAIEC
http://docs.oracle.com/cd/E27559_01/admin.1112/e27149/appinstance.htm#CHDHDFIE -
Uninstalling AD Connector Issue- OIM 11gR2 PS1
Hi All,
I am getting error as mentioned below when uninstalling AD connector : Please suggest steps to remove this issue.
DEBUG,05 Jun 2013 14:33:09,594,[ConnectorUninstall.log],Entering Method: getRequestService of Class: UninstallUtility
Exception in thread "main" oracle.iam.platform.utils.NoSuchServiceException: java.lang.reflect.InvocationTargetException
at oracle.iam.platform.OIMClient.getServiceDelegate(OIMClient.java:278)
at oracle.iam.platform.OIMClient.getService(OIMClient.java:255)
at oracle.iam.connectormgmt.uninstall.UninstallUtility.getRequestService(UninstallUtility.java:2272)
at oracle.iam.connectormgmt.uninstall.UninstallUtility.closeRequest(UninstallUtility.java:2287)
at oracle.iam.connectormgmt.uninstall.UninstallUtility.executeDeleteConnectorObjects(UninstallUtility.java:384)
at oracle.iam.connectormgmt.uninstall.UninstallUtility.executeDirectDeletion(UninstallUtility.java:326)
at oracle.iam.connectormgmt.uninstall.ConnectorUninstall.doConnectorDeletion(ConnectorUninstall.java:389)
at oracle.iam.connectormgmt.uninstall.ConnectorUninstall.main(ConnectorUninstall.java:85)
Caused by: java.lang.reflect.InvocationTargetException
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
at oracle.iam.platform.OIMClient.getServiceDelegate(OIMClient.java:274)
... 7 more
Caused by: java.lang.NoClassDefFoundError: org/eclipse/persistence/indirection/ValueHolderInterface
at java.lang.Class.forName0(Native Method)
at java.lang.Class.forName(Class.java:169)
at $Proxy2.<clinit>(Unknown Source)
at sun.reflect.GeneratedSerializationConstructorAccessor22.newInstance(Unknown Source)
at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
at java.io.ObjectStreamClass.newInstance(ObjectStreamClass.java:919)
at java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:1736)
at java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1328)
at java.io.ObjectInputStream.readObject(ObjectInputStream.java:350)
at weblogic.utils.io.ChunkedObjectInputStream.readObject(ChunkedObjectInputStream.java:208)
at weblogic.rjvm.MsgAbbrevInputStream.readObject(MsgAbbrevInputStream.java:599)
at weblogic.utils.io.ChunkedObjectInputStream.readObject(ChunkedObjectInputStream.java:204)
at weblogic.rmi.internal.ObjectIO.readObject(ObjectIO.java:62)
at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:243)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:348)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:259)
at weblogic.jndi.internal.ServerNamingNode_1036_WLStub.lookup(Unknown Source)
at weblogic.jndi.internal.WLContextImpl.lookup(WLContextImpl.java:424)
at weblogic.jndi.internal.WLContextImpl.lookup(WLContextImpl.java:412)
at javax.naming.InitialContext.lookup(InitialContext.java:392)
at org.springframework.jndi.JndiTemplate$1.doInContext(JndiTemplate.java:155)
at org.springframework.jndi.JndiTemplate.execute(JndiTemplate.java:88)
at org.springframework.jndi.JndiTemplate.lookup(JndiTemplate.java:153)
at org.springframework.jndi.JndiTemplate.lookup(JndiTemplate.java:178)
at oracle.iam.request.api.RequestServiceDelegate.<init>(Unknown Source)
... 12 more
Caused by: java.lang.ClassNotFoundException: org.eclipse.persistence.indirection.ValueHolderInterface
at java.net.URLClassLoader$1.run(URLClassLoader.java:202)
at java.security.AccessController.doPrivileged(Native Method)
at java.net.URLClassLoader.findClass(URLClassLoader.java:190)
at java.lang.ClassLoader.loadClass(ClassLoader.java:306)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:301)
at java.lang.ClassLoader.loadClass(ClassLoader.java:247)
... 37 more
Thanks,
RPB
Edited by: RPB25 on Jun 5, 2013 2:16 AMThis issue is resolved now.
While uninstalling AD connector make sure that all necessary jars are present in classpath like:
/home/oracle/Oracle/Middleware/Oracle_IDM1/server/lib/eclipselink.jar:/home/oracle/Oracle/Middleware/wlserver_10.3/server/lib/wlfullclient.jar:/home/oracle/Oracle/Middleware/wlserver_10.3/server/lib/ojdbc6.jar
Required jars in class path are:
ojdbc6.jar
wlfullclient.jar
eclipselink.jar
Thanks,
RPB -
Problem with provisioning using Exchange 11.1.1.5 Connector in OIM 11gR2
Hi,
I getting following error while provisioning user to exchange server.
org.identityconnectors.framework.common.exceptions.ConnectorException: Problem while PowerShell execution Org.IdentityConnectors.Framework.Common.Exceptions.ConnectorException: No provisioning handler is installed.
Thanks,Yes, you can try out few things suggested in below thread
Re: Exchange Provisioning
The error looks like form exchange server side but still not sure about it.
Meantime open Service Request with oracle about the same as I can see other developers are also facing same issue. -
OIM 11GR2 UNIX Connector Reconcile users from UNIX inquiry
Good Day!
I would like to ask whether there is a way in OIM that when I reconcile all new users from my UNIX server, OIM will also create the resource which this user is provisioned upon?
Here is my scenario:
1.) Freshly installed OIM 11GR2.
2.) Installed UNIX connector on OIM 11GR2.
3.) Configured UNIX TRUSTED Resource
4.) Reconciled all the UNIX users into OIM. (New users are created since my OIM doesn't have any user)
5.) The problem is when the new users are now created in OIM, they don't have entitlements or accounts linked to the UNIX server which they have been pulled upon.
I would like to ask whether I need to configure something to have the entitlements/accounts linking possible?
If not, what are the ways I can achieve this?
The only way I can think of is have the UNIX users be created in a flat file first then load via GTC then have reconciliation to have OIM to link these users to UNIX which I believe should be able to do the scenario I am asking upon.
Thanks in advance!
Regards,
JeffBy the way, checking target resource recon by default will not create new users when OIM is not able to establish a link.
In my case, OIM doesn't have any users since this is a fresh install hence even running target resource at start will won't create the new users in OIM right?
based from this:
"You configure application (AD, OID, OVD, HR) etc in Target Resource Mode if that OIM is source of truth for user provisioning (All users are created in OIM and OIM then provision accounts in Application. Any changes in Application are reconciled back to OIM)." -
OIM 11gR2 Active Directory integration issue
Hi,
I am trying to install AD connector on OIM 11gR2 and have successfully performed all the necessary and relevant steps according to the deployment guide.
When i am trying to test the connector though, by running the "Active Directory Organization Lookup Recon" scheduled job i am getting the following error:
Exception Message oracle.iam.connectors.icfcommon.exceptions.Integration
Exception: The value for a key [Host] is not defined in the provided map.
Kindly help me out with this
Best Regards,
VarunHi,
i hope you are using the AD New connector(i.e. ICF based ) and your connector server key is not set properly. Most of the cases this is arises because of connector parameters. So verify the connector parameters and also have you put the AD connector jars on connector server side.
_Saurabh -
OIM 11gR2 user not provisioning to Active Directory (11.1.1.5 connector)
Hello all,
I'm trying to set up an OIM 11gR2 instance to work with Active Directory with the Active Directory 11.1.1.5.0 connector. I've full installed both OIM and AD on separate servers, and I've installed the AD 11.1.1.5 connector on OIM. I have configured Active Directory properly (connector on OIM and the connector server on the AD server-side), and have set up the two IT Resources on OIM. I can run, for example, the Active Directory Organization Lookup Recon job and have it return results in the Lookup window.
My problem is that I cannot get it to provision to a user. I've created an Application Instance and Form for Active Directory, attached the Form, associated them with the appropriate resources (AD User), and added them to the Catalog, and then gone through the process of adding an account to the user, selecting the Application Instance, adding it to the cart, checking out, filling out the fields (Password, User ID, UPN, First Name, Last Name, Common Name, and Organization Name), and then submitting the request. This is all done as the xelsysadm admin user, but it still results with the account stuck on "Provisioning" because the "Create User" task failed due to a Connector Error (the reason stated is just a repeat of "Create Object" failed).
Anyone know what I'm missing here?
Thank you!
Edited by: 939908 on Nov 12, 2012 6:36 AMHey 833249, thanks for your reply
The organization field attribute is filled in correctly, in that the OU I selected exists in AD.
These are the errors listed in the connector server log:
+11/9/2012 9:07:07 PM <ERROR>: Class-> ActiveDirectoryUtils Method -> GetDirectoryEntry, Message -> Exception occured during the creation of directory entry.+
+11/9/2012 9:07:07 PM <ERROR>: Class-> ActiveDirectoryUtils Method -> GetDirectoryEntry, Message -> Exception Message : Logon failure: unknown user name or bad password.+
+11/9/2012 9:07:08 PM <ERROR>: Class-> ActiveDirectoryUtils Method -> GetDirectoryEntry, Message -> Exception Stack Trace : at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)+
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_NativeObject()
at Org.IdentityConnectors.ActiveDirectory.ActiveDirectoryUtils.GetDirectoryEntry(String path, ActiveDirectoryConfiguration configuration) in c:\ADE\aime_oimcp\idc\bundles\dotnet\ActiveDirectory\ActiveDirectoryConnector\ActiveDirectoryUtils.cs:line 1423
+11/9/2012 9:07:08 PM <ERROR>: Class-> ActiveDirectoryConnector Method -> Create, Message -> Encountered Excetion: Unable to get the Directory Entry+
+11/9/2012 9:07:08 PM <ERROR>: Class-> ActiveDirectoryConnector Method -> Create, Message -> Stack Trace: at Org.IdentityConnectors.ActiveDirectory.ActiveDirectoryUtils.GetDirectoryEntry(String path, ActiveDirectoryConfiguration configuration) in c:\ADE\aime_oimcp\idc\bundles\dotnet\ActiveDirectory\ActiveDirectoryConnector\ActiveDirectoryUtils.cs:line 1456+
at Org.IdentityConnectors.ActiveDirectory.ActiveDirectoryUtils.DirectoryEntryExists(String path) in c:\ADE\aime_oimcp\idc\bundles\dotnet\ActiveDirectory\ActiveDirectoryConnector\ActiveDirectoryUtils.cs:line 1512
at Org.IdentityConnectors.ActiveDirectory.ActiveDirectoryConnector.Create(ObjectClass oclass, ICollection`1 attributes, OperationOptions options) in c:\ADE\aime_oimcp\idc\bundles\dotnet\ActiveDirectory\ActiveDirectoryConnector\ActiveDirectoryConnector.cs:line 219
ConnectorServer.exe Error: 0 : Org.IdentityConnectors.Framework.Common.Exceptions.ConnectorException: Unable to get the Directory Entry
at Org.IdentityConnectors.ActiveDirectory.ActiveDirectoryConnector.Create(ObjectClass oclass, ICollection`1 attributes, OperationOptions options) in c:\ADE\aime_oimcp\idc\bundles\dotnet\ActiveDirectory\ActiveDirectoryConnector\ActiveDirectoryConnector.cs:line 368
at Org.IdentityConnectors.Framework.Impl.Api.Local.Operations.CreateImpl.Create(ObjectClass oclass, ICollection`1 attributes, OperationOptions options) in c:\ADE\aime_icf\icf\framework\dotnet\FrameworkInternal\ApiLocalOperations.cs:line 388
at Org.IdentityConnectors.Framework.Impl.Api.Local.Operations.ConnectorAPIOperationRunnerProxy.Invoke(Object proxy, MethodInfo method, Object[] args) in c:\ADE\aime_icf\icf\framework\dotnet\FrameworkInternal\ApiLocalOperations.cs:line 244
at ___proxy1.Create(ObjectClass , ICollection`1 , OperationOptions )
at Org.IdentityConnectors.Framework.Impl.Server.ConnectionProcessor.ProcessOperationRequest(OperationRequest request) in c:\ADE\aime_icf\icf\framework\dotnet\FrameworkInternal\Server.cs:line 609
I'm not sure why the username/password error could be occurring, as those fields in the AD IT Resource are correct (I've run AD recon jobs that have connected properly). Is there something I'm missing? -
Problem handling SMTP address with OIM 11gR2 Exchange connector
Hello,
I have a problem in regarding the primary SMTP address with the Exchange connector. The connector doesn't seem to be able to update it. Changing a user's primary SMTP address from its account details in OIM creates a new secondary address in Exchange. It does not change the current primary SMTP address. This does not look like a normal behavior... Any ideas on how to fix this?
I'm using OIM 11gR2 with BP10 with AD 11.1.1.5.0A and Exchange 11.1.1.5.0.
Thanks,
--jtellierYes, you can try out few things suggested in below thread
Re: Exchange Provisioning
The error looks like form exchange server side but still not sure about it.
Meantime open Service Request with oracle about the same as I can see other developers are also facing same issue. -
Adding custom challenge questions in OIM 11gR2
Friends,
Can you please let me know the process to add new custom challenge questions in OIM 11gR2?
ThanksDetailed steps have been given in my blog at the below url.
http://srini-bellamkonda.blogspot.com/2012/11/adding-custom-challenge-questions-in.html
Have a look and let me know if you have any questions.
Maybe you are looking for
-
How do I use setWhereClauseParam for a date parameter?
Hello - I have a view object with a query like this: SELECT column1, column2 FROM my_table WHERE some_date_column = :1 In the code where I set it I have the date supplied (input from the user from a web page) as a String - "09/17/2004". What kind of
-
Background Task on Adobe Photoshop Elements and Adobe Premiere Elements Organizer "hangs"
I recently upgraded my software from Elements 10 to Elements 12 and had a bit of trouble. Apparently both 10 and 12 have a way of launching an executable in the background which tends to get "stuck" on my system. I believe the problem may be relate
-
Insertion point thickness--help for the visually impaired
I experience difficulty in seeing the blinking 'insertion point' bar or carat. I have increased the size of the cursor and I beam using the preference panel controls. I can see these clearly. It would help if I could make the 'insertion point' thicke
-
How to make icloud calendar reconize categories of outlook?
I sync iclud recently with outlook 2010 and the calendar transfer to icloud without the catergories of the appointments. Anyone has resolve this issue?
-
My Webdyno appl is not displayed? deployed successfully.
Hi all, My appl is to connect to backend R/3 and retrieve the results from there.For this I have developed a WD FlightList appl. Deployed successfully using SDM. Before runing,I should bind the logical name of R/3 to that of SLD. I did it in Webdynpr