SoD entitlement sync with OIM
Hi guys,
I'm currently developing a high-level solution architecture for a custom SoD engine integrated to OIM through Oracle SoD Invocation Library (SIL). Reading through the SIL documentation I can see that the proposed way of loading & updating the existing entitlements in the SoD engine is to use some ETL tool on the resource (target system). My question is, is it possible to extract, transform and load the entitlements directly from OIM or Oracle Role Manager instead from the resource? I imagine it would be a lot easier to develope a single "connector" module for grabing entitlements from OIM/ORM rather than separete ones for every resource that needs to be SoD compliant. Anyone with experience in this area? Thanks in advance!
Edited by: user12133307 on Nov 5, 2009 4:04 PM
Edited by: user12133307 on Nov 5, 2009 4:21 PM
OIM 11.1.1.3 is the version that we installed. USR_PASSWORD is not empty, after BP03 this appears to be a random password. it appears to be generated by oracle.iam.reconciliation.impl.ReconUserPasswordHandler. From the sequence of events it also appears that UserCreateLDAPPostProcessHandler is not getting called.
password was same as AD username before bp03. it looks like your issue is different in this case.
Below is the error stack that i see in oim diagnostic log.
oracle.iam.platform.kernel.EventFailedException: Enabling failed because user SYNCTEST5 is not synchronized to the LDAP directory.
at oracle.iam.ldapsync.impl.eventhandlers.user.util.LDAPUserHandlerUtil.enableUser(LDAPUserHandlerUtil.java:79)
at oracle.iam.ldapsync.impl.eventhandlers.user.UserEnableLDAPHandler.execute(UserEnableLDAPHandler.java:143)
at oracle.iam.platform.kernel.impl.OrchProcessData.runPostProcessEvents(OrchProcessData.java:1153)
at oracle.iam.platform.kernel.impl.OrchProcessData.runEvents(OrchProcessData.java:703)
at oracle.iam.platform.kernel.impl.OrchProcessData.executeEvents(OrchProcessData.java:220)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.resumeProcess(OrchestrationEngineImpl.java:674)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.resumeProcess(OrchestrationEngineImpl.java:705)
at oracle.iam.platform.kernel.impl.OrhestrationAsyncTask.execute(OrhestrationAsyncTask.java:108)
at oracle.iam.platform.async.impl.TaskExecutor.executeUnmanagedTask(TaskExecutor.java:100)
at oracle.iam.platform.async.impl.TaskExecutor.execute(TaskExecutor.java:70)
at oracle.iam.platform.async.messaging.MessageReceiver.onMessage(MessageReceiver.java:68)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
Similar Messages
-
Error in Ldap sync with OIM 11gr2 and OID
Hi,
I am trying to sync OIM 11g r2 with OID using Ldap sync option. While creating a user or role I am facing this error
IAM-2050243 : Orchestration process with id 930, failed with error message IAM-3010201 : LDAP create event failed : Error: NO_SUCH_OBJECT null.
Help required,
ThanksAny suggestions...
-
Error while password sync with Active directory.
Hi all.
Am doing active directory password sync with oim 11g but this gives an error
Debug [07/31/12 11:52:14] CONFIG VALUE LENGTH
Debug [07/31/12 11:52:14] 254
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14] Before adding configsync attributes
Debug [07/31/12 11:52:14]
sgslrgac instance
Debug [07/31/12 11:52:14] User Name --->
Debug [07/31/12 11:52:14] TEST.TEST10
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14] RelativeId:
Debug [07/31/12 11:52:14] 1122
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14]
sgsladac Instance
Debug [07/31/12 11:52:14]
LDAP Connected
Debug [07/31/12 11:52:14] search string :
Debug [07/31/12 11:52:14] (&(objectCategory=person)(objectClass=user)(sAMAccountName=TEST.TEST10))
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14] Connected to ADSI
Debug [07/31/12 11:52:14] After Search
Debug [07/31/12 11:52:14] SID::
Debug [07/31/12 11:52:14] S-1-5-21-449192332-2375483478-3823051035-1122
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14] DN::
Debug [07/31/12 11:52:14] CN=test test10,CN=Users,DC=thakralone,DC=com
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14] GUID:::
Debug [07/31/12 11:52:14] QHetRJE7hEKkG8PeqYRKlQ==
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14] after ladp search
Debug [07/31/12 11:52:14] Success sgsldpap
Debug [07/31/12 11:52:14]
Passlen populated :
Debug [07/31/12 11:52:14] 190
Debug [07/31/12 11:52:14]
Debug [07/31/12 11:52:14]
Moving sgsloidi from asynchSystem
Debug [07/31/12 11:52:14] Store Object populated
Debug [07/31/12 11:52:14] [getObjectGuid=QHetRJE7hEKkG8PeqYRKlQ==
getPasswordLen=190
getUserDn=CN=test test10,CN=Users,DC=thakralone,DC=com
getUserId=TEST.TEST10
Debug [07/31/12 11:52:14]
***end of status
Debug [07/31/12 11:52:14]
Out of sgsloidi from asynchSystem
Debug [07/31/12 11:52:14]
Before Free
Debug [07/31/12 11:52:14]
After Free
i have tried to reconfig and reinstall the connector but still the same issue.Don't think so.
Reconcile will just find accounts that are out of sync (that is, that exist on one system but not the other). It doesn't update account attributes.
ActiveSync can identify and process changed records, but the password itself is hashed, so unless you can use the hashed password directly (and IDM can't) then you just would get "garbage" data via the sync.
I think you do need to use one of the PasswordSync tools for this, because they intercept the password change process before the password is hashed, allowing you to apply the changes in multiple locations. -
AD Password Sync connector 9.1.1 With OIM 11g R2 - ERROR OVER SSL
I have set up AD password sync with from AD to OIM 11G R2
The password syncs from AD to OIM 11G R2 on non ssl port 389.
But if fails on SSL Port 636.
Errors in OIMMain.Log:_
Debug [10/11/2012 10:49:34 AM] Inside ConnectToADSI
Debug [10/11/2012 10:49:34 AM]
ldap_connect failed with
Debug [10/11/2012 10:49:34 AM] Server Down
Debug [10/11/2012 10:49:34 AM]
Steps Carried Out thus far:_
AD is up and running.
Configured AD Password Sync Connector on 636 and selected ssl.
Created Certificate on OIM host, configured custom identity key store on weblogic. Restarted Weblogic.
Imported Certificate to AD. After this, restarted the AD
I can Telnet port 636 from OIM Box and also connect to AD through LDAP Browser on 636 and view OU and CN, so this seems fine.
Provisioning from OIM through Connector Server to AD works over SSL and this works fine.
Help would be appreciated.
Many ThanksThis question is now been fixed.
Instead of explicitly stating 636 for SSL,
Use the same port 389 for ssl and also configured oim port to be 140001 which is the ssl port for oim in the configuration of OIM Password Sync.
Export Certificates from AD to java security keystore and to weblogic keystore
Export .pem certificate created on OIM host machine to AD.
Restart weblogic, oim and AD
Everything would work fine.
For all the other information, refer to doc.
Thanks -
Hi,
I have a requirement of password sync between OIM and SAP. Do you have any idea of how we can achieve this?
Is there any out of box connector for the password sync with SAP?
Please let me know.
thanks in advance
Edited by: IDMuser19 on Jul 26, 2010 2:17 PMRamesh,
Are you using the password hook or something from the framework?
The password hook only works with Microsoft Active Directory.
If you're using a framework task or other job or a custom task you almost always need a SSL enabled connection to the LDAP server.
Hope this helps.
Matt -
OIM 11g Sync with Active Directory
Hi, I need to configure OIM 11g 11.1.1.3 Sync with a AD (Windows server 2003), I believe this is not possible (in this release), but, I am trying to configure through OVD but the queries of creation Containers throw errors.
Can be configured through OVD ??
Sync with AD will be supported in future Releases?
Thanks!!From the installation media, copy and extract contents of the bundle/ActiveDirectory.Connector-1.1.0.6380.zip file to the CONNECTOR_SERVER_HOME directory
Refer http://docs.oracle.com/cd/E22999_01/doc.111/e20347/deploy.htm#CHDDJGIG -
Re: Syncing with new application - more info
David,
Let's eliminate the easy stuff first! ;-)
1. Double check your are modifying the correct file/directory. Do you see
other changes to application files, or is this just specific to portal?
2. Check you are sync'ing to the correct server and application.
3. Check using the Data Repository browser that your documents are ALL in
the Master Data Repository for the server. Use the context URL of the
DataSync WebApp for you application: e.g.
http://localhost:7501/p13nAppDataSync/index.html (for the P13N application)
4. Check the contents of the Portal Data Repository (using the browser) and
see if your changes are getting out to there.
5. Check the portal is entitled, visible, allowable etc.
I would be surprised if you have found a bug (but you never know!) , as the
system has had a fair bit of use by now. If after double checking your
configuration you still haven't found it please ZIP your *-project directory
and I will run a test here using SQL Server.
Sincerely,
Daniel Selman
"David Tsai" <[email protected]> wrote in message
news:[email protected]...
>
Daniel,
I'm experiencing the same problems as Heidi. I'm not sure whether thisissue was
ever resolved with Heidi.
Here are the specifics of my installation:
Weblogic Server 6.1 SP1
Weblogic Portal Server 4.0
MS SQL Server 7
EBCC 4.0
There are no exceptions when I run synchronization in EBCC. However, if Iadd a
portlet anything else on the XML, the new addition does not reflect in thePORTLET
table in my database.
Please Advice. Thanks in Advance.
Cheers,
Dave
"Daniel Selman" <[email protected]> wrote:
Heidi,
To reconfirm: are you saying that you modified this document in the EBCC
and
it did not get propogated to the server? Please double check that you
really
did modify that version of the document (not the version installed with
the
server, but the one installed with the EBCC).
FYI: you can force a sync of all documents (whether changed or not, but
using the "refresh-from-client" sync mode (called update all documents,
in
the EBCC sync properties).
If you continue to see this behavior please send us both documents(server
and client) and we will investigate.
Thanks,
Daniel Selman
"Heidi Wagner" <[email protected]> wrote in message
news:[email protected]...
Some more information:
When I check the database, the data_sync_item information has as
follows:
>>>
6059 2001 15 0 0 4293367840
/webapps/myapp/sampleapp_main.wf
13-MAR-02 13-MAR-02 14-MAR-02 14-MAR-02
<?xml version="1.0"?>
<webflow-configuration xmlns="http://www.bea.com/servers/
HWagner C:\Documents and Settings\HWagner en US America/Chicago
sampleapp_main.wf
C:\bea\ebcc4.0\applications\myapp\application-sync\webapps\myapp\sampleapp_m
ain.w
f
Yet, the file has not changed and my changes to the webflow are notreflected
on the application.
"Heidi Wagner" <[email protected]> wrote:
I'm trying to sync with a new application. I checked the error files
and there
are no errors, but i noticed that under
wlportal/applications/myApp-project/application-sync/webapps/myapp/sampleapp
_main.wf
has not been modified. Any reason why this did not happen? Am I
missing
some
sort of sync setting to pass in or otherwise?David,
I think you need WLP 4.0 SP1 - I believe this bug was fixed for SQL Server.
This will definitely explain why your changes aren't showing up after you
sync!
Thanks,
Daniel Selman
"David Tsai" <[email protected]> wrote in message
news:[email protected]...
>
Daniel,
I've double checked everything. Everything seems to be in order, thoughthis exception
shows up everytime I sync through command or EBCC. If you take a look atthe zip
file. The delegate has been set to the SQL server Generic JDBC Delegate.Do you
know what's ailing here?
<cr:rule xmlns:cr="http://w...
Creation date: 2002-04-15 18:21:11.061
Modification date: 2002-04-15 18:21:11.061
Metadata: com.bea.p13n.common.internal.MetadataImpl@1cb9e8
Name: Developer.ent
Description:D:\bea\ebcc4.0\applications\cingularApp\application-sync\entitlements\Global
Entitlements\Developer.ent
Author: dtsai C:\Documents and Settings\dtsai en US Asia/Calcutta
Version:
] - with embedded exception: [java.sql.SQLException:java.sql.SQLException: This
JDBC 2.0 method is not implemented]
atcom.bea.p13n.management.data.repository.persistence.JdbcDataSource.createDat
aItem(JdbcDataSource.java:261)
atcom.bea.p13n.management.data.repository.persistence.JdbcPersistenceManager.c
reateDataItem(JdbcPersistenceManager.java:79)
atcom.bea.p13n.management.data.repository.internal.AbstractDataRepository.hand
leDataItemMessage(AbstractDataRepository.java:840)
atcom.bea.p13n.management.data.repository.internal.AbstractDataRepository.onDa
taSyncMessage(AbstractDataRepository.java:1016)
atcom.bea.p13n.management.data.repository.internal.AbstractDataRepository.exec
uteMessage(AbstractDataRepository.java:259)
atcom.bea.p13n.management.data.message.internal.JvmCommunicationPipe.sendMessa
ge(JvmCommunicationPipe.java:116)
atcom.bea.p13n.management.data.transport.servlets.DataSyncServlet.doPost(DataS
yncServlet.java:382)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
:265)
atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
:200)
atweblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletCo
ntext.java:2459)
atweblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java
:2039)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:139)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:120)
Caused by: java.sql.SQLException: java.sql.SQLException: This JDBC 2.0method is
not implemented
atweblogic.jdbc.rmi.SerialPreparedStatement.setCharacterStream(SerialPreparedS
tatement.java:428)
at com.bea.p13n.util.jdbc.JdbcHelper._setClob(JdbcHelper.java:579)
at com.bea.p13n.util.jdbc.JdbcHelper.setClob(JdbcHelper.java:561)
at com.bea.p13n.util.jdbc.JdbcHelper._setClob(JdbcHelper.java:628)
at com.bea.p13n.util.jdbc.JdbcHelper.setClob(JdbcHelper.java:612)
atcom.bea.p13n.management.data.repository.persistence.JdbcDataSource.createDat
aItem(JdbcDataSource.java:223)
atcom.bea.p13n.management.data.repository.persistence.JdbcPersistenceManager.c
reateDataItem(JdbcPersistenceManager.java:79)
atcom.bea.p13n.management.data.repository.internal.AbstractDataRepository.hand
leDataItemMessage(AbstractDataRepository.java:840)
atcom.bea.p13n.management.data.repository.internal.AbstractDataRepository.onDa
taSyncMessage(AbstractDataRepository.java:1016)
atcom.bea.p13n.management.data.repository.internal.AbstractDataRepository.exec
uteMessage(AbstractDataRepository.java:259)
atcom.bea.p13n.management.data.message.internal.JvmCommunicationPipe.sendMessa
ge(JvmCommunicationPipe.java:116)
atcom.bea.p13n.management.data.transport.servlets.DataSyncServlet.doPost(DataS
yncServlet.java:382)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
:265)
atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
:200)
atweblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletCo
ntext.java:2459)
atweblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java
:2039)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:139)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:120)
Resource key "Corrective Action" not found for classcom.bea.commerce.tools.server.SynchronizationProgress.
null
"Daniel Selman" <[email protected]> wrote:
David,
Let's eliminate the easy stuff first! ;-)
1. Double check your are modifying the correct file/directory. Do you see
other changes to application files, or is this just specific to portal?
2. Check you are sync'ing to the correct server and application.
3. Check using the Data Repository browser that your documents are ALL in
the Master Data Repository for the server. Use the context URL of the
DataSync WebApp for you application: e.g.
http://localhost:7501/p13nAppDataSync/index.html (for the P13N
application)
>>
4. Check the contents of the Portal Data Repository (using the browser)
and
see if your changes are getting out to there.
5. Check the portal is entitled, visible, allowable etc.
I would be surprised if you have found a bug (but you never know!) , as
the
system has had a fair bit of use by now. If after double checking your
configuration you still haven't found it please ZIP your *-projectdirectory
and I will run a test here using SQL Server.
Sincerely,
Daniel Selman
"David Tsai" <[email protected]> wrote in message
news:[email protected]...
Daniel,
I'm experiencing the same problems as Heidi. I'm not sure whether thisissue was
ever resolved with Heidi.
Here are the specifics of my installation:
Weblogic Server 6.1 SP1
Weblogic Portal Server 4.0
MS SQL Server 7
EBCC 4.0
There are no exceptions when I run synchronization in EBCC. However,if I
add a
portlet anything else on the XML, the new addition does not reflect inthe
PORTLET
table in my database.
Please Advice. Thanks in Advance.
Cheers,
Dave
"Daniel Selman" <[email protected]> wrote:
Heidi,
To reconfirm: are you saying that you modified this document in the
EBCC
and
it did not get propogated to the server? Please double check that youreally
did modify that version of the document (not the version installed
with
the
server, but the one installed with the EBCC).
FYI: you can force a sync of all documents (whether changed or not,but
using the "refresh-from-client" sync mode (called update alldocuments,
in
the EBCC sync properties).
If you continue to see this behavior please send us both documents(server
and client) and we will investigate.
Thanks,
Daniel Selman
"Heidi Wagner" <[email protected]> wrote in message
news:[email protected]...
Some more information:
When I check the database, the data_sync_item information has as
follows:
6059 2001 15 0 0 4293367840
/webapps/myapp/sampleapp_main.wf
13-MAR-02 13-MAR-02 14-MAR-02 14-MAR-02
<?xml version="1.0"?>
<webflow-configuration xmlns="http://www.bea.com/servers/
HWagner C:\Documents and Settings\HWagner en US America/Chicago
sampleapp_main.wf
C:\bea\ebcc4.0\applications\myapp\application-sync\webapps\myapp\sampleapp
m
ain.w
f
Yet, the file has not changed and my changes to the webflow are notreflected
on the application.
"Heidi Wagner" <[email protected]> wrote:
I'm trying to sync with a new application. I checked the error
files
and there
are no errors, but i noticed that under
wlportal/applications/myApp-project/application-sync/webapps/myapp/samplea
p
p
_main.wf
has not been modified. Any reason why this did not happen? Am I
missing
some
sort of sync setting to pass in or otherwise? -
What is the SAFEST SEQUENCE to convert from a Outlook/iPad/iPhone synced with MobileMe to syncing with iCloud (I have 10 years of calendar diary events and 3000 contacts) - I am worried about the data issues that have been posted about iCloud.
This has worked fine with MobileMe with only a couple of minor glitches in the past.
Any experience doing this the "right" way?The warranty entitles you to complimentary phone support for the first 90 days of ownership.
-
Issue in ldap-sync with active directory - OIM11gR2
Hi Expert,
I have enabled the ldap-sync with Active Directory in OIM11gR2. I followed the below document to enable the ldap-sync.
Enabling LDAP Synchronization in Oracle Identity Manager - 11g Release 2 (11.1.2)
For testing if ldap sync is working on not . I run the LDAPSync Post Enable Provision Users to LDAP schedule job. While running the job i encounter below exception in log. Please provide me some pointer to solve my issue. How we can sure ldap sync is configure properly? Please provide me some steps to test it out?
<Jul 31, 2013 9:51:25 AM PDT> <Warning> <JMS> <BEA-040442> <While attempting to bind JNDI name jms/b2b/B2BEventQueue for destination SOAJMSModule!dist_B2BEventQueue_auto_1_auto in module null a JNDI name conflict was found. This destination has not been bound into JNDI.>
<Jul 31, 2013 9:51:25 AM PDT> <Error> <oracle.iam.platform.entitymgr.provider.ldap> <BEA-000000> <An error occurred while searching the entity in LDAP, and the corresponding error is - {0}
javax.naming.NameNotFoundException: Error: NO_SUCH_OBJECT
LDAP Error 32 : No Such Object [Root exception is oracle.ods.virtualization.service.VirtualizationException: oracle.ods.virtualization.engine.util.DirectoryException: LDAP Error 32 : No Such Object]
at oracle.ods.virtualization.jndi.OVDUtil.mapErrorCode(OVDUtil.java:151)
at oracle.ods.virtualization.jndi.OVDContext.search(OVDContext.java:439)
at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:257)
at oracle.iam.platform.entitymgr.provider.ldap.LDAPUtil.search(LDAPUtil.java:1073)
at oracle.iam.platform.entitymgr.provider.ldap.LDAPDataProvider.search(LDAPDataProvider.java:1218)
at oracle.iam.ldapsync.impl.util.CommonNamePolicyUtil.isUserExists(CommonNamePolicyUtil.java:84)
at oracle.iam.ldapsync.impl.util.CommonNameGenerationUtil.isCommonNameExistingOrReserved(CommonNameGenerationUtil.java:192)
at oracle.iam.ldapsync.impl.plugins.FirstNameLastNamePolicy.getCommonNameFromPolicy(FirstNameLastNamePolicy.java:157)
at oracle.iam.ldapsync.impl.util.CommonNameGenerationUtil.generateCommonName(CommonNameGenerationUtil.java:116)
at oracle.iam.ldapsync.impl.util.CommonNameGenerationUtil.generateCommonName(CommonNameGenerationUtil.java:82)
at oracle.iam.oimtoldap.impl.SeedOIMDataInLDAPImpl.createUserInLDAP(SeedOIMDataInLDAPImpl.java:182)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy710.createUserInLDAP(Unknown Source)
at oracle.iam.oimtoldap.api.SeedOIMDataInLDAPEJB.createUserInLDAPx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.oracle.pitchfork.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:34)
at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
at com.oracle.pitchfork.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:42)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy709.createUserInLDAPx(Unknown Source)
at oracle.iam.oimtoldap.api.SeedOIMDataInLDAP_8d8qil_SeedOIMDataInLDAPRemoteImpl.__WL_invoke(Unknown Source)
at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
at oracle.iam.oimtoldap.api.SeedOIMDataInLDAP_8d8qil_SeedOIMDataInLDAPRemoteImpl.createUserInLDAPx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
at $Proxy163.createUserInLDAPx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
at $Proxy707.createUserInLDAPx(Unknown Source)
at oracle.iam.oimtoldap.api.SeedOIMDataInLDAPDelegate.createUserInLDAP(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy708.createUserInLDAP(Unknown Source)
at oracle.iam.oimtoldap.scheduletasks.user.SeedOIMUsersInLDAP.execute(SeedOIMUsersInLDAP.java:59)
at oracle.iam.scheduler.vo.TaskSupport$1.processWithoutResult(TaskSupport.java:135)
at oracle.iam.platform.tx.OIMTransactionCallbackWithoutResult.process(OIMTransactionCallbackWithoutResult.java:9)
at oracle.iam.platform.tx.OIMTransactionCallback.doInTransaction(OIMTransactionCallback.java:13)
at oracle.iam.platform.tx.OIMTransactionCallback.doInTransaction(OIMTransactionCallback.java:6)
at org.springframework.transaction.support.TransactionTemplate.execute(TransactionTemplate.java:128)
at oracle.iam.platform.tx.OIMTransactionManager.execute(OIMTransactionManager.java:22)
at oracle.iam.scheduler.vo.TaskSupport.executeJob(TaskSupport.java:116)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at oracle.iam.scheduler.impl.quartz.QuartzJob$TaskExecutionAction.run(QuartzJob.java:266)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.security.Security.runAs(Security.java:41)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(weblogicLoginSession.java:52)
at oracle.iam.scheduler.impl.quartz.QuartzJob.execute(QuartzJob.java:75)
at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
Caused By: oracle.ods.virtualization.service.VirtualizationException: oracle.ods.virtualization.engine.util.DirectoryException: LDAP Error 32 : No Such Object
at oracle.ods.virtualization.operation.SearchOperation.process(SearchOperation.java:209)
at oracle.ods.virtualization.operation.SearchOperation.process(SearchOperation.java:47)I have checked the OIM vs AD attribute mapping. now I am getting below error. I have also attached the LDAPUsers.xml file . I don't know what went wrong .. How to test ldap-sync is configure properly? I created the user in OIM but in AD user is not getting created. I am not able to see any thing log file liek (dignostic and nohup log) .. Any idea where I can see the log to identify the issue??
g 1, 2013 8:15:15 AM PDT> <Warning> <JMS> <BEA-040442> <While attempting to bind JNDI name jms/b2b/B2BEventQueue for destination SOAJMSModule!dist_B2BEventQueue_auto_1_auto in module null a JNDI name conflict was found. This destination has not been bound into JNDI.>
<Aug 1, 2013 8:15:15 AM PDT> <Warning> <oracle.ods.virtualization.engine.backend.jndi.LDAP1.ConnectionHandle> <OVD-40082> <Could not modify entry.
javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0
<?xml version='1.0' encoding='UTF-8'?>
<tns:entity-definition xmlns:tns="http://www.oracle.com/schema/oim/entity" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.oracle.com/schema/oim/entity ../entity.xsd ">
<entity-type child-entity="false">LDAPUser</entity-type>
<provider-instance>
<repository-instance>Directory Server</repository-instance>
<provider-type>LDAPDataProvider</provider-type>
<parameters>
<parameter name="base">
<value>dc=cgtest,dc=adtest,dc=com</value>
</parameter>
<parameter name="rdnattribute">
<value>cn</value>
</parameter>
<parameter name="objectclass">
<value>orclIDXPerson</value>
</parameter>
<parameter name="idattribute">
<value>objectGUID</value>
</parameter>
<parameter name="entityIdentifierObjectclass">
<value>inetorgperson</value>
</parameter>
<parameter name="excludeObjectclass">
<value>orclappiduser</value>
</parameter>
</parameters>
</provider-instance>
<container-capability>
<enabled>false</enabled>
</container-capability>
<entity-attributes>
<attribute name="User Login">
<type>string</type>
<required>true</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="First Name">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Last Name">
<type>string</type>
<required>true</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Middle Name">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Display Name">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
<multi-represented>true</multi-represented>
</attribute>
<attribute name="usr_password">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>false</searchable>
</attribute>
<attribute name="LDAP GUID">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="LDAP DN">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Role">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Email">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Start Date">
<type>date</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="End Date">
<type>date</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="usr_timezone">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="usr_manager_key">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Country">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Department Number">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Description">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Common Name">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Employee Number">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Fax">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Generation Qualifier">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Hire Date">
<type>date</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Home Phone">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Home Postal Address">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Locality Name">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Mobile">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Pager">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Postal Address">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Postal Code">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="PO Box">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="usr_locale">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="State">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Street">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Telephone Number">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Title">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="Initials">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="LDAP Organization">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="LDAP Organization Unit">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
<MLS>false</MLS>
</attribute>
<attribute name="User Status">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Lock Status">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Accessibility Mode">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Color Contrast">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Font Size">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Number Format">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Currency">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Date Format">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Time Format">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="Embedded Help">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="FA Language">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="FA Territory">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
<attribute name="User Name Preferred Language">
<type>string</type>
<required>false</required>
<attribute-group>Basic</attribute-group>
<searchable>true</searchable>
</attribute>
</entity-attributes>
<target-fields>
<field name="uid">
<type>string</type>
<required>true</required>
</field>
<field name="givenname">
<type>string</type>
<required>false</required>
</field>
<field name="sn">
<type>string</type>
<required>true</required>
</field>
<field name="middleName">
<type>string</type>
<required>false</required>
</field>
<field name="cn">
<type>string</type>
<required>true</required>
</field>
<field name="userPassword">
<type>string</type>
<required>false</required>
</field>
<field name="objectGUID">
<type>string</type>
<required>false</required>
</field>
<field name="dn">
<type>string</type>
<required>false</required>
</field>
<field name="employeeType">
<type>string</type>
<required>false</required>
</field>
<field name="mail">
<type>string</type>
<required>false</required>
</field>
<field name="orclActiveStartDate">
<type>date</type>
<required>false</required>
</field>
<field name="orclActiveEndDate">
<type>date</type>
<required>false</required>
</field>
<field name="orclTimeZone">
<type>string</type>
<required>false</required>
</field>
<field name="manager">
<type>string</type>
<required>false</required>
</field>
<field name="c">
<type>string</type>
<required>false</required>
</field>
<field name="departmentNumber">
<type>string</type>
<required>false</required>
</field>
<field name="description">
<type>string</type>
<required>false</required>
</field>
<field name="employeeNumber">
<type>string</type>
<required>false</required>
</field>
<field name="facsimileTelephoneNumber">
<type>string</type>
<required>false</required>
</field>
<field name="orclGenerationQualifier">
<type>string</type>
<required>false</required>
</field>
<field name="orclHireDate">
<type>date</type>
<required>false</required>
</field>
<field name="homePhone">
<type>string</type>
<required>false</required>
</field>
<field name="homePostalAddress">
<type>string</type>
<required>false</required>
</field>
<field name="l">
<type>string</type>
<required>false</required>
</field>
<field name="mobile">
<type>string</type>
<required>false</required>
</field>
<field name="pager">
<type>string</type>
<required>false</required>
</field>
<field name="postalAddress">
<type>string</type>
<required>false</required>
</field>
<field name="postalCode">
<type>string</type>
<required>false</required>
</field>
<field name="postOfficeBox">
<type>string</type>
<required>false</required>
</field>
<field name="preferredLanguage">
<type>string</type>
<required>false</required>
</field>
<field name="st">
<type>string</type>
<required>false</required>
</field>
<field name="street">
<type>string</type>
<required>false</required>
</field>
<field name="telephoneNumber">
<type>string</type>
<required>false</required>
</field>
<field name="title">
<type>string</type>
<required>false</required>
</field>
<field name="initials">
<type>string</type>
<required>false</required>
</field>
<field name="o">
<type>string</type>
<required>false</required>
</field>
<field name="ou">
<type>string</type>
<required>false</required>
</field>
<field name="displayName">
<type>string</type>
<required>false</required>
</field>
<field name="orclAccountEnabled">
<type>string</type>
<required>false</required>
</field>
<field name="orclAccountLocked">
<type>string</type>
<required>false</required>
</field>
<field name="orclAccessibilityMode">
<type>string</type>
<required>false</required>
</field>
<field name="orclColorContrast">
<type>string</type>
<required>false</required>
</field>
<field name="orclFontSize">
<type>string</type>
<required>false</required>
</field>
<field name="orclNumberFormat">
<type>string</type>
<required>false</required>
</field>
<field name="orclCurrency">
<type>string</type>
<required>false</required>
</field>
<field name="orclDateFormat">
<type>string</type>
<required>false</required>
</field>
<field name="orclTimeFormat">
<type>string</type>
<required>false</required>
</field>
<field name="orclEmbeddedHelp">
<type>string</type>
<required>false</required>
</field>
<field name="orclFALanguage">
<type>string</type>
<required>false</required>
</field>
<field name="orclFATerritory">
<type>string</type>
<required>false</required>
</field>
<field name="orclDisplayNameLanguagePreference">
<type>string</type>
<required>false</required>
</field>
</target-fields>
<attribute-maps>
<attribute-map>
<entity-attribute>User Login</entity-attribute>
<target-field>uid</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>First Name</entity-attribute>
<target-field>givenname</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Last Name</entity-attribute>
<target-field>sn</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Middle Name</entity-attribute>
<target-field>middleName</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Common Name</entity-attribute>
<target-field>cn</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>usr_password</entity-attribute>
<target-field>userPassword</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>LDAP GUID</entity-attribute>
<target-field>objectGUID</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>LDAP DN</entity-attribute>
<target-field>dn</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Role</entity-attribute>
<target-field>employeeType</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Email</entity-attribute>
<target-field>mail</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Start Date</entity-attribute>
<target-field>orclActiveStartDate</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>End Date</entity-attribute>
<target-field>orclActiveEndDate</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>usr_timezone</entity-attribute>
<target-field>orclTimeZone</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>usr_manager_key</entity-attribute>
<target-field>manager</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Country</entity-attribute>
<target-field>c</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Department Number</entity-attribute>
<target-field>departmentNumber</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Description</entity-attribute>
<target-field>description</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Employee Number</entity-attribute>
<target-field>employeeNumber</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Fax</entity-attribute>
<target-field>facsimileTelephoneNumber</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Generation Qualifier</entity-attribute>
<target-field>orclGenerationQualifier</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Hire Date</entity-attribute>
<target-field>orclHireDate</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Home Phone</entity-attribute>
<target-field>homePhone</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Home Postal Address</entity-attribute>
<target-field>homePostalAddress</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Locality Name</entity-attribute>
<target-field>l</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Mobile</entity-attribute>
<target-field>mobile</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Pager</entity-attribute>
<target-field>pager</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Postal Address</entity-attribute>
<target-field>postalAddress</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Postal Code</entity-attribute>
<target-field>postalCode</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>PO Box</entity-attribute>
<target-field>postOfficeBox</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>State</entity-attribute>
<target-field>st</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Street</entity-attribute>
<target-field>street</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Telephone Number</entity-attribute>
<target-field>telephoneNumber</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Title</entity-attribute>
<target-field>title</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Initials</entity-attribute>
<target-field>initials</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>LDAP Organization</entity-attribute>
<target-field>o</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>LDAP Organization Unit</entity-attribute>
<target-field>ou</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Display Name</entity-attribute>
<target-field>displayName</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>User Status</entity-attribute>
<target-field>orclAccountEnabled</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Lock Status</entity-attribute>
<target-field>orclAccountLocked</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Accessibility Mode</entity-attribute>
<target-field>orclAccessibilityMode</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Color Contrast</entity-attribute>
<target-field>orclColorContrast</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Font Size</entity-attribute>
<target-field>orclFontSize</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Number Format</entity-attribute>
<target-field>orclNumberFormat</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Currency</entity-attribute>
<target-field>orclCurrency</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Date Format</entity-attribute>
<target-field>orclDateFormat</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Time Format</entity-attribute>
<target-field>orclTimeFormat</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>Embedded Help</entity-attribute>
<target-field>orclEmbeddedHelp</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>FA Language</entity-attribute>
<target-field>orclFALanguage</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>FA Territory</entity-attribute>
<target-field>orclFATerritory</target-field>
</attribute-map>
<attribute-map>
<entity-attribute>User Name Preferred Language</entity-attribute>
<target-field>orclDisplayNameLanguagePreference</target-field>
</attribute-map>
</attribute-maps>
<control-attributes>
<attribute name="container">
<type>LDAPContainer</type>
<required>false</required>
</attribute>
</control-attributes>
</tns:entity-definition> -
Events doubling up on iPhone 3G when synced with iCal on my iMac
Hi all,
I'm having an annoying problem with iCal on my iPhone 3G...
I'm happily using iCal on my iMac and everything seems up to date, days and events look perfectly normal on there. However, when I sync it up with my iPhone 3G, for some reason some events (but not all) are being doubled up on my iPhone. They aren't there on my iMac's copy of iCal - that still looks correct.
I tried going through and deleting the extra events from my iPhone. As soon as I synced again with my iMac, all the rogue events reappeared on my iPhone. Tried it a few times, same result.
I have a feeling the rogue events that are appearing on my iPhone are ones that I originally inputted onto my iPhone's copy of iCal, then a few weeks later I've adjusted them, deleted them, generally tidied up my calendar through iCal on my iMac. This might be why it's only doing it to a few events I've added, not all of them. When I re-sync, it's like they keep being resurrected on my iPhone.
I've tried re-syncing using the Advanced option in iTunes where you replace information on the iPhone - the rogue events still came back on my iPhone. I also just tried going to my iSync preferences and resetting my Sync History. Didn't fix it.
I don't use MobileMe and I have no other computers or calendars so there's nothing else trying to sync up that might be generating these doubled up events. I'm not doing anything other than try and sync my iPhone 3G with my iMac through iTunes.
Any ideas where these extra events are coming from and how I can flush them out of my iPhone's copy of iCal?I just posted this in another thread, but I'll summarize it here for you:
I had three groups of calendars in the Calendar app on my iPhone (OS 3.0): calendars from my MobileMe account, a set of calendars I had subscribed to with iCal, and calendars entitled "From My Mac" which was a duplicate of every calendar from the other two groups. What I wanted was to go back to having just the MobileMe syncing over the air, plus the subscribed calendars, so everything would be continuously updated instantly. I didn't need a duplicate set of static calendars, and so I wanted to get rid of the calendars in the group "From My Mac".
I made sure I'd unchecked the checkboxes for iCal in the Info tab of iTunes for my iPhone, and then applied the sync. Unfortunately, this did not remove that new special group of calendars for my iPhone, yet. I guess it kept them just in case. (Side note: Interestingly, when I recreated my problem to re-test this, I forgot to do this again. The checkbox for the Calendars seems to magically uncheck itself if I go through the rest of the steps without doing this first. I think iTunes gets informed from the cloud at some point, perhaps after I decide to delete the calendars in the "From My Mac" group from within the iPhone. So, you may not need to do this. Anyways, make sure it's unchecked so it won't happen again…)
On the iPhone, I opened the Settings app, went into "Mail, Contacts, Calendars", chose my MobileMe account, and then turned off the Calendars. It asked me whether I wanted to delete the MobileMe calendars from my iPhone and I chose "Delete from My iPhone". Note that the message explicitly refers to your iPhone and not MobileMe, so you are not deleting them from MobileMe. (But please do read the messages and don't assume that's what it says. There are many prompts.) If you don't delete them for your iPhone, they'll get added to the "From My Mac" group of calendars. This isn't a problem since this group will get deleted later, so you can choose either to keep them, or delete them now.
Wait a moment before turning the Calendars back on, to give it time to process the "offing". When turning the Calendars on, I was asked whether I wanted to merge the MobileMe calendars with the existing calendars on my iPhone, that special group I was trying to get rid of. I chose "Do not Merge" because I didn't want even more duplicates, I just wanted what I had in the cloud, on MobileMe.
After not merging the calendars, next it asked whether I wanted to keep the existing calendars I had on my iPhone. I chose to "Delete" them, which it then asked me to confirm (Delete or Cancel) so again I chose "Delete". (And once again, please read the messages carefully and don't assume what they say just because what is written here. The messages might change with updates.) When I opened the Calendars app on the iPhone, the "From My Mac" group of calendars was completely gone. I was back to what I had before, just two groups: the MobileMe calendars I had just turned on, and the subscribed calendars that I hadn't touched.
I think the key is to not merge with the duplicate set of calendars, and to not keep them. Otherwise, you can't go wrong because everything is on MobileMe, as long as you're synced with it. -
ICal on Iphone 5 not syncing with new Macbook Pro
I just got a new Mac Book Pro. I put new events on my Iphone but when I sync with my laptop the new events don't carry over. It is the same calendar as my main one. What do I need to do to get it to sync all events from my Iphon 5 to Mac Book Pro? Thanks for assistance.
The warranty entitles you to complimentary phone support for the first 90 days of ownership.
-
Is it possible to have multiple LDAP Sync from OIM 11g?
I have a requirement to setup LDAP sync to a legacy iPlanet 5.2 LDAP server and that looks pretty straight forward. Now I'm planning to integration OAM with OIM. Our OAM is configured against OVD/AD (multiple domains), so that needs a LDAP sync to be cofigured against OVD/AD. I would like to know if multiple LDAP sync is possible and is a supported config? Experts please help.
Thanks,
Sunil.Thanks for the reply.
The below link lists the LDAP's supported:
http://docs.oracle.com/cd/E21764_01/install.1111/e12002/oidonly.htm#autoId23
My question specifically is, can I configure multiple LDAP sync's? I already have LDAP sync configured for iPlanet/ODSEE and now I wanted to set LDAP sync to AD to support OIM-OAM integration. Any thoughts? -
Why won't my iMessage sync with my new phone?
I recently upgraded phones to an iPhone 6, but iMessage from my Mac doesn't seem to want to sync with my phone. If I send an iMessage using my Mac, it sends the message through gmail rather than using my phone number. I'm sure it's something simple that I'm missing, but I can't seem figure this one out.
Thank you in advance!Hi,
In that case you will most likely have to Contact Apple Support.
The Mac version we know use the Serial Number as a way of confirming the Apple ID and Location are "you".
It seems likely that something about the iPhone is also used for it's registration.
If you did not "de-register" the original iPhone it may be it is rejecting the new one.
This will in effect be an Apple ID issue (although in this case it is your phone number) It is only linked to the iMessages server.
As an Account issue the "Fix" should be free. However you may have to ask to speak to a Level 2 person as Level 1 people are very Script led and try to place all calls as "software" or "hardware" issues that charged fro after Apple Care has run out.
Remember you are also entitled to 90 days of Apple Care with a new device.
9:16 pm Monday; January 12, 2015
iMac 2.5Ghz i5 2011 (Mavericks 10.9)
G4/1GhzDual MDD (Leopard 10.5.8)
MacBookPro 2Gb (Snow Leopard 10.6.8)
Mac OS X (10.6.8),
Couple of iPhones and an iPad -
Syncing the OIM data changes to DSEE
Hi,
I need to update the DSEE if any updates happens to OIM data.
I know if I manullay change the data in process form then the changes gets reflected in DSEE, but here I want if I update the OIM data then the same should get reflected to DSEE also autmatically.
Please suggest how to achieve this.
ThanksI am not sure how DSEE is integrated with OIM in your environment. But this can be achieved using Ldap Sync very easily.
If you have configured DSEE as a target resource and you have the provisioning workflow in OIM. then just update Lookup.USR.Process.Trigger(similar to that verify using design console)
add one recored for each attribute of user profile and create task( Change <Attribute name>) one for each in oim to copy user profile attribute to the process form attribute. So, whenever any change occur at user profile the process form attribute will be updated accordingly.
Hope you have already defined the Updated tasks. -
Hi All,
Please Help Regarding This Issue
I Cannot Resolve password sync with this AD
My Idm Version Is 9.1
My Active Directory Running on Windows 2003
=========================================================================================
My AD SYNC LOG
15 Sep 2008 19:05:51 INFO Logger created
15 Sep 2008 19:05:51 INFO Triggering Password Synchronization mechanism
15 Sep 2008 19:05:52 INFO Value of the installedFlag=>true
15 Sep 2008 19:05:52 INFO Password Reset Installed..get the ITResourceType and ITResourceName
15 Sep 2008 19:05:52 INFO IT ResourceType Name=> AD Server
15 Sep 2008 19:05:52 INFO ITResourceName=> ADITResource
15 Sep 2008 19:05:52 INFO Checking for OIM Server to synchronize password for the user--> IDMUSER
15 Sep 2008 19:05:52 INFO Port: 1099
15 Sep 2008 19:05:52 INFO Host: idmkuneh
15 Sep 2008 19:06:04 INFO OIM Server is up and running !!
15 Sep 2008 19:06:04 INFO Logging to OIM server
15 Sep 2008 19:06:04 INFO Logging into OIM Server with an auth mechanism
15 Sep 2008 19:06:04 INFO Necessary Configurations read
15 Sep 2008 19:06:04 INFO Logging into OIM Server with uname/pwd based auth
15 Sep 2008 19:06:04 INFO Finally !!
15 Sep 2008 19:06:04 INFO Before System.exit(0):
=========================================================================================
MY XLCONFIG.XML
- <xl-configuration>
<appServerName>jboss</appServerName>
- <Discovery>
- <CoreServer>
<java.naming.provider.url>jnp://idmkuneh:1099</java.naming.provider.url>
<java.naming.factory.initial>org.jnp.interfaces.NamingContextFactory</java.naming.factory.initial>
</CoreServer>
</Discovery>
- <Security>
- <XLSymmetricProvider>
- <KeyStore>
<Provider>com.sun.crypto.provider.SunJCE</Provider>
</KeyStore>
</XLSymmetricProvider>
- <XLPKIProvider>
- <KeyStore>
<Location>.xlkeystore</Location>
<Password encrypted="true">FlbwcjDZAB0hS3Q8F7PB4g==</Password>
<Type>JKS</Type>
<Provider>sun.security.provider.Sun</Provider>
</KeyStore>
- <Keys>
- <PrivateKey>
<Alias>xell</Alias>
<Password encrypted="true">FlbwcjDZAB0hS3Q8F7PB4g==</Password>
</PrivateKey>
</Keys>
<SignatureAlgorithm>SHA1withDSA</SignatureAlgorithm>
<SignatureProvider>sun.security.provider.Sun</SignatureProvider>
<VerifySigner>false</VerifySigner>
</XLPKIProvider>
</Security>
- <!-- Configuration for AD Password Sync Adapter
-->
- <ADSync>
- <Login>
<UseSignature>false</UseSignature>
<Username>xelsysadm</Username>
<Password encrypted="true">aPM3F6YImvbctkGkE4C4Ww==</Password>
</Login>
- <UserMatch>
- <!-- UserID and UDF
-->
<MatchingMethod>UserID</MatchingMethod>
<FieldName>UD_ADUSER_LOGIN</FieldName>
<ResourceObject>AD User</ResourceObject>
</UserMatch>
- <Result>
<UpdateUDF>false</UpdateUDF>
<FieldName>USR_UDF_ADPWDRES</FieldName>
<SuccessValue>SUCCESS</SuccessValue>
<FailureValue>FAIL</FailureValue>
<AppendTimeStamp>true</AppendTimeStamp>
</Result>
- <ADConnectorConfig>
<Installed>true</Installed>
<ITResourceType>AD Server</ITResourceType>
<ITResourceName>ADITResource</ITResourceName>
</ADConnectorConfig>
</ADSync>
- <Cache>
- <XLCacheProvider>
<MultiCastAddress>10.10.10.30</MultiCastAddress>
</XLCacheProvider>
</Cache>
</xl-configuration>
=========================================================================================
Thanks Before
GdeWhich version of AD Connector and AD Pass Sync Agent are you using?
I think the Filed Name is now UD_ADUSER_UID.
Did you complete all the post installation steps of Password Sync Agent?
Maybe you are looking for
-
IPhone 6 Wi-Fi and Battery Problems
Background info: -- My first iPhone 6 kept randomly shutting down and turning itself back on while I was in various apps and on the home screen and also while the phone was on stand-by. I called Apple Support and they sent me a replacement without as
-
This error refers to my scratch disk. It was a photoshop error. It happened while using the selection tool, and shut photoshop down. I then jumped into acrobat to see if i could save a file, and it wouldn't let me either. Scary. I just want to know w
-
I would like to be able to accept credit cards on my website; can I do that with a website created with iWeb?
-
Home sharing between 2 computers + Apple devices/TV
After upgrading to iTunes 10.5, Home Sharing will not work on my Win7 64 bit system. It works fine with my Win7 32 bit system. I have verified that my security settings mirror on both computers, and have made sure that bonjour & itunes both are all
-
My MBP doesn't have com.apple.PhotoBooth.plist
My Photobooth is acting up. It's a bit blurry looking. If I open iChat and look ath the webcam from there, it looks great.