Sun Idm with LDAP failover

Similar Messages

• Expert pls help: Sun IDM with ldap active sync

  Hi all,
  Currently i am configuring Sun IDM 6.0 SP1 to active sync with Sun directory server. I have enabled Retro Change Log but yet i cant find my changeNumber in directory server. Could anyone show me a way (search?) to get what changeNumber directory server currently running?

  Check the account used by IDM to access DS can search cn=changelog branch. If he is not Directory Manager, you probably need to set an ACI on that branch.
  HTH

• SUN IDM with Windows Vista

  Hello,
  Has anybody tried installing SUN IDM with windows vista
  I tried IDM 7.1 with vista home premium and doesnt seem to work. Curious to know if any body has success with vista
  Awaiting replies
  Thanks,

  What error message are you getting?
  Have you installed Java and an apllication servers as requested?
  1) Set Up a Java Virtual Machine Software Development Kit and Java Compiler
  The application requires a Java compiler and a Java Virtual Machine (JVM) to run the Java classes that perform actions within Identity Manager. Both of these can be found in a Java SDK. Download from or http://java.sun.com/javase/downloads/index_jdk5.jsp *** You should add JAVA_HOME to your list of system environment variables and to your system path. To do this, add JAVA_HOME to your system environment and JAVA_HOME\bin to your path, making sure to list it before any other Java environment variables.
  2) Install Tomcat application server from official http://tomcat.apache.org/ to local hard drive. Configure Tomcat memory requirements and restart. Min: 256k

• Using Sun IDM with Firefox 3.0.3

  We just upgraded to Firefox version 3.0.3. When I try to run a report in Sun IDM, I get the following error:
  There was an error while retrieving task status.
  This connection has timed out. Please login again.
  It works properly in IE, and previous versions of Firefox.
  Does anyone know of a fix for this, and has there been any other problems with Firefox 3.0.3?
  Thanks,
  Jody

  jweisbau wrote:
  There was an error while retrieving task status.
  This connection has timed out. Please login again.That error you're seeing is from the little java applet that runs when a report is generated. It's possible a new security restriction regarding applets is active in your browser.
  You can still see the report by looking in Server Tasks -> All Tasks and viewing the result of the report task there.

• Idm with LDAP as repository

  Hi,
  Does idm supports as LDAP as repostiory ??
  Regards,
  madhusrinivas

  That is logical also. since IDM does so many read write operations if we start using LDAP for that it will be very slow as write operation in any hiererchical database is slow.

• SUN idM integrate with GRC AC

  There are documents available for best practice on provisioning using CUP by integrating SUN idM with GRC AC...I have not found any document on best practice for deprovisioning when some one leaves organization...
  Is there any one who has worked on the same or are there any best practice guide on how it can be implemented...What should be architecture or data flow?
  Regards,
  Milan

  Hi Milan,
  here is the document you need:
  http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/e0b2e5c5-fa62-2c10-9687-ff98bc0b99f8
  Best,
  Frank

• SUN IDM Failover means session failover concept

  Hi All
  Anybody have idea how to do configure failover in SUN IDM .
  Is there any session failover concept or not?
  If not then how we simple failover in SUN IDM?
  Thanks
  SAini

  Hi
  Came across this issue myself (just now) and fixed it so thought I'd comment. I appreciate this post is quite old now but this might help anyone else who has this issue.
  We are using IDM 8.1 and have 2 DSEE 6.3 instances - one master and one replica. In the help description for Failover Server on the LDAP resource configuration page it says:
  "List all servers in the form of "ldap://ldap.example.com:389/o=LdapFailover" which follows the standard LDAP v3 URLs described in RFC 2255. Only the host, port, and dn parts of the URL are relevant in this setting."
  We originally listed our second server as above and included the "/o=LdapFailover" bit on the end and we got the same error. We removed the "/o=LdapFailover" and just left "ldap://<host>:<port>" there and it all works.
  Hope this helps someone.

• Managing LDAP groups and roles through SUN IDM

  Hi Guys,
  We have a requirement to build the following functionality in our Sun IDM tool.
  1.     Ability to create/manage Static LDAP group.
  2.     Ability to create/manage filtered LDAP group.
  3.     Ability to create/manage Static LDAP roles.
  4.     Ability to create/manage filtered LDAP roles.
  Can anyone let us know any pointers as to how to accomplish this or any ideas for the path to follow for this.
  Any reply will be appreciated.

  http://myidm.blogspot.com/2009/06/how-to-create-groups-in-ldap-or-active.html

• Any experience with NFS failover in Sun Cluster?

  Hello,
  I am planning to install dual-node Sun Cluster for NFS failover configuration. The SAN storage is shared between nodes via Fibre Channel. The NFS shares will be manually assigned to nodes and should fail over / takeback between nodes.
  Is this setup tested well? How the NFS clients survive the failover (without "stale NFS handle" errrors)? Does it work smoothly for Solaris,Linux,FreeBSD clients?
  Please share your experience.
  TIA,
  -- Leon

  My 3 year old linux installtion on my laptop, which is my NFS client most of the time uses udp as default (kernel 2.4.19).
  Anyway the key is that the NFS client, or better, the RPC implementation on the client is intelligent enough to detect a failed TCP connection and tries to reestablish it with the same IP address. Now once the cluster has failed over the logical IP the reconnect will be successful and NFS traffic continues as if nothing bad had happened. This only(!) works if the NFS mount was done with the "hard" option. Only this makes the client retry the connection.
  Other "dumb" TCP based applications might not retry and thus would need manual intervention.
  Regarding UFS or PxFS, it does not make a difference. NFS does not know the difference. It shares a mount point.
  Hope that helped.

• Anyone has experience with sun idm data exporter /warehouse funtionality ?

  Anyone has experience with sun idm data exporter /warehouse functionality. There is not much documentation about how to debug it. I created everything like in the document. Everything seems running fine. I get the following the server tasks->Run Tasks
  Data Warehouse Exporter      Data Warehouse Exporter      Configurator      executing
  Prior to that i created database and 50 tables as it said in the doc.
  I created accounts and modify email address. Nothing is getting to my warehouse database and i don;t know where to look for the errors. Any information is appreciated.

  Hi there,
  I have been looking at the source code and I think I have found the problem.
  IDM determines whether to update or create a resource account
  by attempting to fetch the user from the resource.
  If the user exists then update, otherwise create.
  In the code, if the user does not exist, the code throws the
  exception: EntityDoesNotExist(1301)
  The code then catches this exception
  and then returns a null back to IDM,
  indicating that the user does not exist.
  Well, that is what the code says but this does
  not match its actual behaviour....
  I then decompiled the actual class (jar) files
  and the code there does NOT catch the exception,
  so it bubbles up to IDM, which regards it as an error.
  Soo, the jar file that is on the website has a bug in it.
  The source code in SVN is correct, but it appears
  that the jar file was not rebuilt.
  I am attempting to rebuild a new version of the jar file...
  John I

• Provisioning User IDs in Remedy Help Desk with Sun IdM 7.0.

  Hi,
  Our team is in the process of defining a approach to provision user IDs in Remedy Help Desk system using Sun IdM version 7.0.
  What we wanted to know is whether it is possible to use the Remedy resource adapter bundled with Sun IdM 7.0 to provision user IDs. We think that this resource adapter is used to provision help desk tickets into the help desk system and not user IDs. Is the understanding correct?
  If user IDs cannot be provisioned using the resource adapter, we are planning the following approach to provision user IDs into Remedy:
  1. Understand the table schema of the Remedy database.
  2. Configure the Database Table resource adapter to provision into the Remedy user tables.
  We are looking for inputs from people who have come across a similar design issues with Remedy Help Desk and could validate our design approach. We will highly appreciate any inputs on this.
  Thank You.
  Regards,
  Vallabh Vengulekar.

  "We think that this resource adapter is used to provision help desk tickets into the help desk system and not user IDs"
  hi as per ur post...where did u find this information..I am looking for this information of how to manage Remedy tickets through IDM.
  If you can help me it wil be great...looking for your inputs...
  thanks in advance.

• How do Sun Convergence Communicate with LDAP?

  Please tell how do sun convergence communicate with LDAP server.what api do these calls use.and where do we can find it.
  Looked at the login page,it is was calling iwc.protocol.iwcp.LOGIN_URL variable.
  login_url was assign as below:
  iwc.protocol.iwcp.LOGIN_URL = iwc.config.session.contextPath + "/svc/iwcp/login.iwc";
  please let us know what is iwcp ?
  And what is contextPath its refering?
  Also please let us know what kind of frame work does convergence uses to communicate with LDAP.
  If possible,advice some documentation to read about this function.
  thanks in advance
  Edited by: testxtest on Jul 14, 2009 12:50 PM

  testxtest wrote:
  Please tell how do sun convergence communicate with LDAP server.Convergence uses the standard LDAP protocol to access data from the LDAP servers.
  what api do these calls use.and where do we can find it.The LDAP protocol technical specifications are defined here:
  http://tools.ietf.org/html/rfc4510
  Looked at the login page,it is was calling iwc.protocol.iwcp.LOGIN_URL variable.
  login_url was assign as below:
  iwc.protocol.iwcp.LOGIN_URL = iwc.config.session.contextPath + "/svc/iwcp/login.iwc";
  please let us know what is iwcp ?What is it you are trying to achieve?
  And what is contextPath its refering?The "contextPath" is the Convergence server URL base for the current session e.g. http://server.aus.sun.com/iwc
  Also please let us know what kind of frame work does convergence uses to communicate with LDAP.The Convergence server uses java ldap-pool libraries.
  If possible,advice some documentation to read about this function.Once again, what is it you are trying to achieve, and most importantly, why?
  Regards,
  Shane.

• Linking a new resouce with user account in Sun IDM via activesync

  Hi,
  I am having a new resource which contains the user records. Now I want to link that resource to the existing and new users in Sun IDM.
  I do not want to update and create user in the new resource. I just need that a link is created in Sun IDM when ever activesync runs on users account.
  Please guide me how to achieve the same.
  Regards,
  Nitin

  I'm afraid I can't share the exact code but it should be straight forward through the following:
  1. define a field (call it ldapDN)
  2. create a rule to user getResourceObjects to search for the user DN and return the DN to ldapDN.
  3. when ldapDN is not null, expand waveset.resources and add your LDAP resource, like:
  <Field name='waveset.resources'>
  <Expansion>
  <append>
  <s>LDAP</s>
  4. Then set the accountId for that resource as
  <Field ........ accounts[LDAP].accountId>
  <Default><s>ldapDN</s></Default>
  and you should be set... hope it helps.

• Please help with Donwload Sun IDM 6.0 sp1

  Hi,
  I am trying to find where to download Sun IDM 6.0 SP, so far no success. All I can find is either 6.0 or 7.0. Any body have a link? any help or information is appericiated.
  Thanks in advance,
  Michael

  As of the last few months Sun requires you to have a service contract to download service packs. If you have one then you should be able to go to your Support Page and find the download for the service pack.

• Error while install IM with LDAP repository

  Hi,
  like the title says, I am getting error immediately when deploy idm.war on sjsas(glassfishv2):
  Starting internal database server ...
  com.waveset.util.ConfigurationError:
  ==> java.sql.SQLException: Connection is broken: java.lang.OutOfMemoryError: Java heap space
  at com.waveset.repository.HSqlDBDataStore.getNetworkConnection(HSqlDBDataStore.java:348)
  at com.waveset.repository.HSqlDBDataStore.getRawConnection(HSqlDBDataStore.java:460)......
  while I was configuring IM installation for resource I have set the ldap data and click the Test Connection button wich is pass and said ok. And I dont have any more databases - should I?
  I having Sun Directory Server LDAP running on windows server 2003, but I installed IM on my computer with XP, and I Testing connection with hostename and port works fine (like I said), but should I have Gateway install in this case?
  Plese help,
  Thanks.
  Edited by: mdebac on Nov 13, 2007 6:01 AM

  Hi Guys,
  I am also getting same exception.
  #|2010-08-12T18:46:37.097+1000|WARNING|sun-appserver-pe8.2|javax.enterprise.system.stream.err|_ThreadID=10;|com.waveset.util.ConfigurationError:
  ==> java.sql.SQLException: Connection is broken: java.lang.OutOfMemoryError: Java heap space
       at com.waveset.repository.HSqlDBDataStore.getNetworkConnection(HSqlDBDataStore.java:348)
       at com.waveset.repository.HSqlDBDataStore.getRawConnection(HSqlDBDataStore.java:460)
       at com.waveset.repository.RelationalDataStore.connect(RelationalDataStore.java:4528)
       at com.waveset.repository.RelationalDataStore.open(RelationalDataStore.java:7632)
       at com.waveset.repository.RelationalDataStore.checkDatabaseMetaData(RelationalDataStore.java:3938)
       at com.waveset.repository.RelationalDataStore.init(RelationalDataStore.java:3788)
       at com.waveset.repository.ServerRepository.initDataStore(ServerRepository.java:1508)
       at com.waveset.repository.ServerRepository.getPrimaryDataStore(ServerRepository.java:1385)
       at com.waveset.repository.ServerRepository.getPrimaryDataStore(ServerRepository.java:1351)
       at com.waveset.repository.ServerRepository.init(ServerRepository.java:741)
       at com.waveset.repository.ServerRepository.<init>(ServerRepository.java:717)
       at com.waveset.repository.ServerRepository.getRepository(ServerRepository.java:158)
       at com.waveset.server.Server.init(Server.java:271)
       at com.waveset.server.Server.start(Server.java:237)
       at com.waveset.server.Server.getServer(Server.java:826)
       at com.waveset.server.Server.getServer(Server.java:803)
       at com.waveset.server.StartupServlet.startServer(StartupServlet.java:441)
       at com.waveset.server.StartupServlet.init(StartupServlet.java:116)
       at javax.servlet.GenericServlet.init(GenericServlet.java:261)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:249)
       at java.security.AccessController.doPrivileged(Native Method)
       at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
       at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:282)
       at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:165)
       at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:118)
       at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1093)
       at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:931)
       at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4183)
       at org.apache.catalina.core.StandardContext.start(StandardContext.java:4536)
       at com.sun.enterprise.web.WebModule.start(WebModule.java:241)
       at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1086)
       at org.apache.catalina.core.StandardHost.start(StandardHost.java:847)
       at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1086)
       at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:483)
       at org.apache.catalina.startup.Embedded.start(Embedded.java:894)
       at com.sun.enterprise.web.WebContainer.start(WebContainer.java:741)
       at com.sun.enterprise.web.PEWebContainer.startInstance(PEWebContainer.java:515)
       at com.sun.enterprise.web.PEWebContainerLifecycle.onStartup(PEWebContainerLifecycle.java:54)
       at com.sun.enterprise.server.ApplicationServer.onStartup(ApplicationServer.java:300)
       at com.sun.enterprise.server.PEMain.run(PEMain.java:294)
       at com.sun.enterprise.server.PEMain.main(PEMain.java:220)
  Caused by: java.sql.SQLException: Connection is broken: java.lang.OutOfMemoryError: Java heap space
       at org.hsqldb.jdbc.Util.sqlException(Unknown Source)
       at org.hsqldb.jdbc.jdbcConnection.<init>(Unknown Source)
       at org.hsqldb.jdbcDriver.getConnection(Unknown Source)
       at org.hsqldb.jdbcDriver.connect(Unknown Source)
       at java.sql.DriverManager.getConnection(DriverManager.java:582)
       at java.sql.DriverManager.getConnection(DriverManager.java:154)
       at com.waveset.repository.HSqlDBDataStore.getNetworkConnection(HSqlDBDataStore.java:332)
       ... 44 more
  Wrapped exception: