Connector AD on OIM 11g

Hi experts

I try to install the AD on OIM 11 g connector. However, when I run the Setup, the first two steps, IE

Configuration of the connector libraries and
Importing XML Connector


complete successfully, however, the third step "Compilation of definitions of adapter" really takes a lot of time and eventually fails.

the server logs are as under: -.

# < 13 January 2011 11:38:44 EST > < WARNING > < JDBC > < oim.soa.af > < oim_server1 > < anonymous > > <>MDSPollingThread-[IOM, jdbc/mds/MDS_REPOS] > < < < 11d1def534ea1be0:edd9efd:12d79bd90fb: - 7ffd - 0000000000000013 > < 1294979924173 > < BEA-001129 > < receipt exception creating connection to pool "SDM - EEM": the network adapter could not establish the connection >
# < 13 January 2011 11:38:44 EST > < Info > < JDBC > < oim.soa.af > < oim_server1 > < MDSPollingThread-[IOM, jdbc/mds/MDS_REPOS] > < < anonymous > > <>< 11d1def534ea1be0:edd9efd:12d79bd90fb: - 7ffd - 0000000000000013 > < 1294979924176 > < BEA-001156 > < associated to 001129 following message from stack trace:

java.sql.SQLException: the network adapter could not establish the connection
at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:74)
at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:203)
at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:489)
at oracle.jdbc.driver.T4CConnection.logon(T4CConnection.java:439)
to oracle.jdbc.driver.PhysicalConnection. < init > (PhysicalConnection.java:640)
to oracle.jdbc.driver.T4CConnection. < init > (T4CConnection.java:205)
at oracle.jdbc.driver.T4CDriverExtension.getConnection(T4CDriverExtension.java:35)
at oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:554)
at weblogic.jdbc.common.internal.ConnectionEnvFactory.makeConnection(ConnectionEnvFactory.java:327)
at weblogic.jdbc.common.internal.ConnectionEnvFactory.createResource(ConnectionEnvFactory.java:227)
at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1193)
at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1117)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResourceInternal(ResourcePoolImpl.java:427)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:332)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:322)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:438)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:317)
at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:93)
at weblogic.jdbc.common.internal.RmiDataSource.getPoolConnection(RmiDataSource.java:342)
at weblogic.jdbc.common.internal.RmiDataSource.getConnection(RmiDataSource.java:360)
at oracle.mds.internal.persistence.db.JNDIConnectionManagerImpl.fetchConnection(JNDIConnectionManagerImpl.java:91)
at oracle.mds.internal.persistence.db.ConnectionManager.getConnection(ConnectionManager.java:347)
to oracle.mds.internal.persistence.db.BaseReposAccess. < init > (BaseReposAccess.java:347)
to oracle.mds.internal.persistence.db.shredded.ShreddedReposAccess. < init > (ShreddedReposAccess.java:274)
at oracle.mds.internal.persistence.db.shredded.ShreddedDBMSConnection.createReposAccess(ShreddedDBMSConnection.java:444)
at oracle.mds.internal.persistence.db.BaseDBMSConnection.getOrCreateReposAccess(BaseDBMSConnection.java:2072)
at oracle.mds.internal.persistence.db.BaseDBMSConnection.queryStoreForLatestCommitNumber(BaseDBMSConnection.java:2503)
at oracle.mds.internal.persistence.db.DBDocumentChangeProvider.queryStoreForLatestCommitNumber(DBDocumentChangeProvider.java:330)
at oracle.mds.internal.persistence.db.DBDocumentChangeProvider.getChanges(DBDocumentChangeProvider.java:81)
at oracle.mds.persistence.stores.db.DBMetadataStoreCommunicator.signalChanges(DBMetadataStoreCommunicator.java:134)
at oracle.mds.internal.persistence.db.ChangePollingThread.run(ChangePollingThread.java:81)

Caused by: oracle.net.ns.NetException: the network adapter could not establish the connection
at oracle.net.nt.ConnStrategy.execute(ConnStrategy.java:334)
at oracle.net.resolver.AddrResolution.resolveAndExecute(AddrResolution.java:425)
at oracle.net.ns.NSProtocol.establishConnection(NSProtocol.java:646)
at oracle.net.ns.NSProtocol.connect(NSProtocol.java:212)
at oracle.jdbc.driver.T4CConnection.connect(T4CConnection.java:1076)
at oracle.jdbc.driver.T4CConnection.logon(T4CConnection.java:303)
to oracle.jdbc.driver.PhysicalConnection. < init > (PhysicalConnection.java:640)
to oracle.jdbc.driver.T4CConnection. < init > (T4CConnection.java:205)
at oracle.jdbc.driver.T4CDriverExtension.getConnection(T4CDriverExtension.java:35)
at oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:554)
at weblogic.jdbc.common.internal.ConnectionEnvFactory.makeConnection(ConnectionEnvFactory.java:327)
at weblogic.jdbc.common.internal.ConnectionEnvFactory.createResource(ConnectionEnvFactory.java:227)
at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1193)
at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1117)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResourceInternal(ResourcePoolImpl.java:427)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:332)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:322)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:438)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:317)
at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:93)
at weblogic.jdbc.common.internal.RmiDataSource.getPoolConnection(RmiDataSource.java:342)
at weblogic.jdbc.common.internal.RmiDataSource.getConnection(RmiDataSource.java:360)
at oracle.mds.internal.persistence.db.JNDIConnectionManagerImpl.fetchConnection(JNDIConnectionManagerImpl.java:91)
at oracle.mds.internal.persistence.db.ConnectionManager.getConnection(ConnectionManager.java:347)
to oracle.mds.internal.persistence.db.BaseReposAccess. < init > (BaseReposAccess.java:347)
to oracle.mds.internal.persistence.db.shredded.ShreddedReposAccess. < init > (ShreddedReposAccess.java:274)
at oracle.mds.internal.persistence.db.shredded.ShreddedDBMSConnection.createReposAccess(ShreddedDBMSConnection.java:444)
at oracle.mds.internal.persistence.db.BaseDBMSConnection.getOrCreateReposAccess(BaseDBMSConnection.java:2072)
at oracle.mds.internal.persistence.db.BaseDBMSConnection.queryStoreForLatestCommitNumber(BaseDBMSConnection.java:2503)
at oracle.mds.internal.persistence.db.DBDocumentChangeProvider.queryStoreForLatestCommitNumber(DBDocumentChangeProvider.java:330)
at oracle.mds.internal.persistence.db.DBDocumentChangeProvider.getChanges(DBDocumentChangeProvider.java:81)
at oracle.mds.persistence.stores.db.DBMetadataStoreCommunicator.signalChanges(DBMetadataStoreCommunicator.java:134)
at oracle.mds.internal.persistence.db.ChangePollingThread.run(ChangePollingThread.java:81)

Caused by: java.net.SocketException: too many open files
at java.net.Socket.createImpl(Socket.java:397)
at java.net.Socket.connect(Socket.java:527)
at oracle.net.nt.MetricsEnabledSocket.connect(TcpNTAdapter.java:465)
at oracle.net.nt.TcpNTAdapter.connect(TcpNTAdapter.java:134)
at oracle.net.nt.ConnOption.connect(ConnOption.java:130)
at oracle.net.nt.ConnStrategy.execute(ConnStrategy.java:310)
at oracle.net.resolver.AddrResolution.resolveAndExecute(AddrResolution.java:425)
at oracle.net.ns.NSProtocol.establishConnection(NSProtocol.java:646)
at oracle.net.ns.NSProtocol.connect(NSProtocol.java:212)
at oracle.jdbc.driver.T4CConnection.connect(T4CConnection.java:1076)
at oracle.jdbc.driver.T4CConnection.logon(T4CConnection.java:303)
to oracle.jdbc.driver.PhysicalConnection. < init > (PhysicalConnection.java:640)
to oracle.jdbc.driver.T4CConnection. < init > (T4CConnection.java:205)
at oracle.jdbc.driver.T4CDriverExtension.getConnection(T4CDriverExtension.java:35)
at oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:554)
at weblogic.jdbc.common.internal.ConnectionEnvFactory.makeConnection(ConnectionEnvFactory.java:327)
at weblogic.jdbc.common.internal.ConnectionEnvFactory.createResource(ConnectionEnvFactory.java:227)
at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1193)
at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1117)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResourceInternal(ResourcePoolImpl.java:427)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:332)
at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:322)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:438)
at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:317)
at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:93)
at weblogic.jdbc.common.internal.RmiDataSource.getPoolConnection(RmiDataSource.java:342)
at weblogic.jdbc.common.internal.RmiDataSource.getConnection(RmiDataSource.java:360)
at oracle.mds.internal.persistence.db.JNDIConnectionManagerImpl.fetchConnection(JNDIConnectionManagerImpl.java:91)
at oracle.mds.internal.persistence.db.ConnectionManager.getConnection(ConnectionManager.java:347)
to oracle.mds.internal.persistence.db.BaseReposAccess. < init > (BaseReposAccess.java:347)
to oracle.mds.internal.persistence.db.shredded.ShreddedReposAccess. < init > (ShreddedReposAccess.java:274)
at oracle.mds.internal.persistence.db.shredded.ShreddedDBMSConnection.createReposAccess(ShreddedDBMSConnection.java:444)
at oracle.mds.internal.persistence.db.BaseDBMSConnection.getOrCreateReposAccess(BaseDBMSConnection.java:2072)
at oracle.mds.internal.persistence.db.BaseDBMSConnection.queryStoreForLatestCommitNumber(BaseDBMSConnection.java:2503)
at oracle.mds.internal.persistence.db.DBDocumentChangeProvider.queryStoreForLatestCommitNumber(DBDocumentChangeProvider.java:330)
at oracle.mds.internal.persistence.db.DBDocumentChangeProvider.getChanges(DBDocumentChangeProvider.java:81)
at oracle.mds.persistence.stores.db.DBMetadataStoreCommunicator.signalChanges(DBMetadataStoreCommunicator.java:134)
at oracle.mds.internal.persistence.db.ChangePollingThread.run(ChangePollingThread.java:81)
>
# < 13 January 2011 11:38:51 pm > < critical > < Server > < oim.soa.af > < oim_server1 > < DynamicListenThread [Default] > < < WLS Kernel > > <>< 11d1def534ea1be0:edd9efd:12d79bd90fb: - 7ffd - 00000000000006e1 > < 1294979931516 > < BEA-002616 > < could not listen on channel 'Default' on 10.33.100.217:14000, County of failure: 1, failing to 0 seconds , java.net.SocketException: too many open files >



I checked the source of data for the weblogic console connection and the connection of IOM - mds test is successful.


can someone help me here please?

IOM is 11.1.1.3 and connector is 9.1.1.5.0



Best regards

It seems that the cause is "caused by: java.net.SocketException: too many open files".

It works on Unix/Linux? If so, I would check the settings of the user running the IOM ulimit.
Also, if it's a development system, you can try to restart the VMvare and see if that helps.
It looks like a problem of resources on the server for me.

Concerning
Vijay Colin

Tags: Fusion Middleware

Similar Questions

  • OIM 11G PS2 R2 Notification service

    Hello

    I'm trying to use Notifications of OIM 11G.

    I am trying to create a resolver of notification. I'm trying to implement: NotificationEventResolver in the code below:

    public class DemoNotificationEventResolver implements {NotificationEventResolver}

    }

    But I'm not able to find the class file or a jar that contains the class NotificationEventResolver.

    It is not available in oimclient.jar.

    Any idea where I can find the related jar?

    Thank you

    Sash

    in OIMServer.jar

  • Object of the USR UDF is not respected in oim 11g

    Hi all
    We did the upgradation of oim 9.1 IOM 11.1.1.5 and verified our functionality (Provisioing AD/Exchange). Practically, all work as planned, up to now, we have not seen all the important issues. How ever, we observed one thing to console design, there are 6 user defined field Defination IOM objects in our IOM 9.1

    SDK utility Structure - user defined fields
    Objects in OBJ - user defined fields resource
    Applications of REQ - user defined fields
    Act - user defined fields
    Roles of UGP - user defined fields
    Users of the USR - user defined fields 0

    We have 36 (UDF) fields in object USR IOM 9.1
    Later, upgradation of oim 11g, we have 5 field except USR user-defined objects.

    USR was missed in oim 11g, how ever we are able to see the values of all the users through IOM admin console. Everything bad thing here. Can you please think about it, the impact and work around for this (if any).

    Thank you.

    USR is moved to Console advanced IOM to 11g to the title of the item menu user Configuretion.

    Check out there.

  • OIM 11g - Install Question

    Hi all

    Is it possible to install only the files for installation of OIM 11g, but connect to an existing database?

    For example, if I have a current environment, and I managed to break my WLS to the point where I can't start, is it possible that I can reinstall Weblogic with IOM/SOA but not lose all my configurations IOM?

    Thank you

    Alex S says:
    Hi all

    Is it possible to install only the files for installation of OIM 11g, but connect to an existing database?

    For example, if I have a current environment, and I managed to break my WLS to the point where I can't start, is it possible that I can reinstall Weblogic with IOM/SOA but not lose all my configurations IOM?

    Thank you

    Yes at least for IOM you can do. But just that you need to have the .xldatabasekey of the previous installation that is copied into the new installation directory. I had trouble with SOA and SOA also needs the key to store credentials that I had been unable to get the previous installation. I asked people to Oracle on this subject but haven't heard anything back from them.

    So just FYI that IOM you can have the new facility easily pointing to an existing database, but you'll have to dig around for the part of SOA.

    HTH,
    BB

  • OIM 11g - AD LDS connector - LDAP: error code 16

    Hi Experts,

    We need to install a connector to manage an AD LDS.
    We used the connector AD user base, we set up against an announcement and it works fine.
    Fact we have changed the rootContext, the Admin of credentials and the address of the server, but seems not working is not on the AD LDS.

    We are able to connect to it, in fact, we can successfully run the Organization search AD (the search is filled), but when we try to provision we are faced with an error like:

    * < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < com.thortech.xl.integration.ActiveDirectory.tcUtilADTasks: createUser: error InvalidDataExceptionAttributeMapping: [LDAP: error code 16-00000057: LdapErr: IDDM-0C090C3E, comment: error in the conversion of attribute operation, data 0, v1db1] > *.


    Has anyone already faced a similar issue?

    Thank you




    FEEL running
    Target the class java.lang.String =
    CREATEUSER running
    Target class = com.thortech.xl.integration.ActiveDirectory.tcUtilADTasks
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > <>=
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController: createObject: [LDAP: error code 16-00000057: LdapErr: IDDM-0C090C3E, comment: error in the conversion of attribute operation, data 0, v1db1] >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < =.
    >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < = start the Stack Trace = >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController: createObject >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < [LDAP: error code 16-00000057: LdapErr: IDDM-0C090C3E, comment: error in the conversion of attribute operation, data 0, v1db1] >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < Description: [LDAP: error code 16-00000057: LdapErr: IDDM-0C090C3E, comment: error in the conversion of attribute operation, data 0, v1db1] >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < javax.naming.directory.NoSuchAttributeException: [LDAP: error code 16-00000057: LdapErr: IDDM-0C090C3E, comment: error in the conversion of attribute operation, data 0, v1db1]; "name remaining ' cn = testuser, OR = OU_User, OU = ORG, DC = intecorp, DC = local"
    at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3062)
    at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2987)
    at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2794)
    at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(LdapCtx.java:788)
    at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_createSubcontext(ComponentDirContext.java:319)
    at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:248)
    at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:236)
    at javax.naming.directory.InitialDirContext.createSubcontext(InitialDirContext.java:178)
    at com.thortech.xl.integration.ActiveDirectory.tcADUtilLDAPController.createObject (unknown Source)
    at com.thortech.xl.integration.ActiveDirectory.tcUtilADTasks.createUser (unknown Source)
    at com.thortech.xl.integration.ActiveDirectory.tcUtilADTasks.createADorADAMUser (unknown Source)
    [...]
    >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < = end of stack memory trace = >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > <>=
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < com.thortech.xl.integration.ActiveDirectory.tcUtilADTasks: createUser: error InvalidDataExceptionAttributeMapping: [LDAP: error code 16-00000057: LdapErr: IDDM-0C090C3E, comment: error in the conversion of attribute operation, data 0, v1db1] >
    < 13 January 2012 13:38:40 THIS > < error > < OIMCP. A/d converters > < BEA-000000 > < =.
    >
    < 13 January 2012 13:41:03 THIS > < error > < org.quartz.impl.jdbcjobstore.JobStoreCMT > < BEA-000000 > < MisfireHandler: rates of error handling: unexpected runtime exception: null
    org.quartz.JobPersistenceException: unexpected runtime exception: null [see nested exception: java.lang.NullPointerException]
    at org.quartz.impl.jdbcjobstore.JobStoreSupport.doRecoverMisfires(JobStoreSupport.java:3042)
    to org.quartz.impl.jdbcjobstore.JobStoreSupport$ MisfireHandler.manage (JobStoreSupport.java:3789)
    to org.quartz.impl.jdbcjobstore.JobStoreSupport$ MisfireHandler.run (JobStoreSupport.java:3809)

    Repeat the update:

    Return status code: 16 indicates that the attribute specified in create or edit a transaction does not exist in the entry.
    Please check the configuration of resources COMPUTER available in form of user AD process and also with login account permissions. Open task "Create a user" in the definition of user AD process and search for any configuration of attribute/DN.

    Thank you

  • Automatic, commissioning AD (oim 11g) connector

    Hi friends,
    I have the ADC configured correctly (manual configuration), my question is how can I do an automatic supply with this connector.

    Thank you

    When yiou create access policy automatically prepopulate adapter works.

    Just check AutoSave on the definition of user AD process.

    Creating access policy, provide information for the server field of ads like ADITResource and the field of the organization.

    Creating access policy, you will need to join a group on which you want to attach your access policy.

    You're done!

    Test it!

  • Compatibility of Exchange Server 2013 with OIM 11g R2 BP 14

    Hello

    My system is configured as shown below the configuration and integrated into Exchange Server.

    Wanted to know would be compatible with Exchange server 2013.

    Would appreciate if you could share any link or documents that list this matrix.

    IOM - 11.1.2.0.0 with BP-14 version

    Database Version - Oracle Database 11g Enterprise Edition Release 11.2.0.4.0 - 64 bit Production

    WebLogic Version - 10.3.6.0

    Version of connector AD- 11.1.1.5.0

    AD installed on Windows Server 2008

    Version of Exchange Connector - 11.1.1.5.0

    Type of current - Exchange Server OnPremise2010

    Thanks in advance

    Puneet

    You must upgrade your Exchange server connector .

    Please see below note;

    Target systems

    The target system can be one or a combination of the following:

    • Microsoft Exchange 2007 SP1, SP2, SP3 (64-bit)
    • Microsoft Exchange 2010 RTM, SP1, SP2, SP3 (64-bit)
    • Microsoft Exchange 2013 RTM (64-bit)

    For support of Exchange 2013, Patch 17239236 must be applied to the version 11.1.1.6.0 of the Exchange Connector. This Patch can come from My Oracle Support under patches and updates.

    Download location for connector:

    Microsoft Exchange 11.1.1.6.0 http://download.Oracle.com/OTN/NT/IAS/connectors/111/Exchange-11.1.1.6.0.zip Change - 11.1.1.6.0.zip

    ~ J

    Note:

    ------

    Please check the response as useful or correct when it is appropriate to make it easier for others to find

  • What's new in OIM 11g

    Hello world



    Could you please tell me the differences between the IOM 10 g and 11g IOM






    Thank you
    Vermorel

    Couple of things you can find here:

    http://identityandaccessmanager.blogspot.com/2010/11/comparision-of-OIM-versions-11g-with.html

  • OIM 11g R2 - twice more entries of catalog

    Hello

    I use OIM 11 g R2 PS2. By chance, I checked my catalog and all my roles found twice.

    I have checked the CATALOG table in DB and you can find roles twice.

    No idea why my roles are stored twice in the catalog?

    You can try to re-run the catalog synchronization task and delete the timestamp and type the Full value.  See if that will update the data.

    -Kevin

  • OIM 11g R2 - DefaultRequestApproval

    Hello

    I recently started working on OIM 11 g R2 - and I have a question about approval and workflow policies.

    IOM, I created a 'Role' role and I trust members (Users) to that role. And I could see workflow DefaultRequestApproval to fires and the task is entrusted to Admin users.

    Here, my question is - how DefaultRequestApproval is fires when I try to assign a role Member. And I have no defined approval or configured for this application policy is not here to note. I searched political approval in admin console and led me zero records.

    Enjoy your in this regard.


    Thank you

    Satyendra

    The first point, you should look at is the link of the Architecture of the security of the IOM (http://docs.oracle.com/cd/E40329_01/dev.1112/e27150/securityarch.htm#CEGCJJHI).  This document you will provide with whether a specific action will be done as a direct (without permission) delivery or by a request based on an individuals Admin roles assigned to them.

    Then, you must understand that there are two parts to each request (http://docs.oracle.com/cd/E40329_01/admin.1112/e27149/appr_policies.htm#OMADM2264):

    1. application level - it is more than a generic approval and is generated for each request and not based on the content.  As a general rule, guests have a policy on approval created to auto approve all application-level permissions.

    2. operation level - it is specific to each of the elements in a query.  Operational approval will be generated for each item in the query.  You can create policies for approval with the rules based on the type of request for identification if they will be require approval or get auto approved.

    For your process, you can create a trust strategy which is at the level of the demand for the type of role assign application.  Assign this automatic approval.  If you do not set a policy on approval at the operation level, then do the same type of assignment but it uses the default approval process.

    By default, if you do not have a rule, it will trigger the values by default if necessary.

    -Kevin

  • OIM 11g r2 PS1 and PS2 versions.

    Hi all.

    We have communicated 11 g R2 IOM 11.1.2.0.0, 11.1.2.1.0 and 11.2.2.0. Can you please let me know which version belongs to the PS1 and belongs to the PS2.

    And also let know how to differentiate the PS1 and PS2.

    Thank you.

    Hello

    You have a typo in your version.

    I received below for PS2 directly from the Oracle site

    Identity Management 11g(11.1.2.2.0) R2PS2

    Identity Management 11g(11.1.2.1.0) R2PS1

    Here's the url http://www.oracle.com/technetwork/middleware/id-mgmt/downloads/oid-11gr2-2104316.html

    You can check the version numbers

  • ActiveSync in OIM 11g

    Hi Experts,

    Could you please help me how to configure Activesync (as in Sun Identity Manager) in OIM 11 g.

    Thanks in advance

    Complete and incremental will be decided depending on your type of target.

    Incremental Recon will recognize newly added or updated records only if the resource has a way to identify, as the use of changelogs or timestamp. Say in your database table, you have the column as the timestamp. You can specify in the configuration and select incremental mode.

    If the resource is not a way to identify new added or updated records then DUE.

  • OIM 11g - reconciliation of the status of resource target

    Hello


    We work closely with IOM 11.1.1.5.2 and DBUM 9.1.0.4 and MSAD 9.1.1.7.
    Commissioning and reconciliation seem to work fine, but we found that the State of the resource is not be compared on the console of the IOM.

    For example, if supply us a user with an account of Oracle database, then lock the account on the database, when we run the reconciliation, the event is generated and finished with 'update succeeded', we go to the UD_DB_ORA_U table and find that the UD_DB_ORA_U_LOCK field has a value "BLOCKED." , then if we check the newspapers, we can see that the connector is properly mapping the State of resources with purpose of IOM status:

    prepareTargetUsersRecordInOIMFormat: save the value: LOCKED
    prepareTargetUsersRecordInOIMFormat: map: {OPEN = enabled 1 = Disabled, YES = Disabled, 0 = active, EXPIRED & LOCKED = Disabled No. = Enabled, LOCKED = disabled}
    ...
    prepareTargetUsersRecordInOIMFormat: roValue: TEMPORARY_TABLESPACE_QUOTA
    prepareTargetUsersRecordInOIMFormat: Temp RO value: null
    prepareTargetUsersRecordInOIMFormat: reconData: [{default Tablespace = 27 ~ USERS, Authentication Type = PASSWORD, password = dummy, default Tablespace = 27 ~ USERS, Authentication Type = PASSWORD, password = dummy, Quota of Tablespace default = profile_name = 27 ~ USERS, resource = Oracle, user name is USPRUEBA65, temporary Tablespace = 27 ~ TEMP, account status is LOCKED, status = Disabled, Global DN =, privilege list is [], the list of roles = [{role Admin Option = number}] [{[{, role name =}], Quota of temporary Tablespace =}]
    prepareTargetUsersRecordInOIMFormat: COMPLETED

    But, even if reconciliation succeeded the administration shows console account status "Enabled" and when I check the table Ouedraogo, I see that the status of an object of the IOM is always enabled.


    I found a few discussions on this issue, the closest was this one: reconciliation for users deleted on the target resource accounts but all it doesn't seem to be a great help because all the tasks described are already carried out by the installation of the connector (at least in the msad and dbum connectors).

    This problem occurs both Active Directory and Oracle database users, maybe we missed something but based on the documentation for both connectors, we thought it was a STANDARD feature. Is there some setting of the connector or the property of the system, that we have to configure to make it work?

    Thank you.

    Published by: fmc on July 26, 2012 12:53

    It should work OOTB. No need to write an adapter for it.
    It works for me like OOTB waited.

    Don't see you not received update reconciliation task inserted into the details of the profile of the users of resources? You have changed the status of the object mapping task in this task? It must be set to NONE.

    Thank you
    Patricia

  • Error in recon OIM 11g

    Hi all
    I have a recon job target custom. When the job is run for the first time, the recon events are created and processed, but when I run the following query, I don't see the events are completed:

    Select rb_key, rb_batch_status, rb_profile_name from recon_batches where rb_batch_status = 'initiated ';
    All events of my stay in State initiated.

    If I run the job again for the same users, I get the following error:

    oracle.iam.reconciliation.exception.ReconciliationException: Exception occurred when inserting data into the table RA_APP_NAME145 reason of
    Inner exception: java.sql.SQLException: ORA-01422: exact fetch returns more than number of lines
    ORA-06512: at "OIM_OIM. RECON_CREATE_EVENTS', line 69
    ORA-06512: at "OIM_OIM. RECON_CREATE_EVENTS', line 122
    ORA-06512: at line 1

    No matter who faced this problem before and what is the resolution to this?

    To resolve this problem, refer to Metalink doc: ORA-01422: while to run Recon Job in OIM 11 g [1384816.1 ID]

  • OIM 11g - PostProcessHandler change password problem

    Hi all

    I have a process post event handler to change the password for users created through trust Recon.
    Event handler receives successfully started and I don't see any errors in the console. But the change of password doesn't seem to work. The end user
    can not connect with the password set by the hanbler event.


    Code below. Pointers would be appreciated.



    / public class PwdGenerateInEventHandlerRecon implements PostProcessHandler {}


    public BulkEventResult run (long processId, long eventId, BulkOrchestration bulkOrchestration)
    {

    try {}
    System.out.println ("* in PwdGenerateInEventHandlerRecon: BulkEventResult *");
    String operation = bulkOrchestration.getOperation ();
    If (operation.equals ("CREATE")) {}
    Parameters HashMap < String, Serializable > = bulkOrchestration.getParameters ();

    String usrLogin = getParameterValue (settings, "user login");
    contractor tank = usrLogin.charAt (0);

    A string of recent = "abcd";

    String usrKey1 = bulkOrchestration.getTarget () .getEntityId ();
    Thor.API.Operations.tcPasswordOperationsIntf pwdService = (tcPasswordOperationsIntf) Platform.getService (Thor.API.Operations.tcPasswordOperationsIntf.class);
    pwdService.setXelleratePassword (Long.parseLong (usrKey1), password);
    UserManager userManager = Platform.getService (UserManager.class);
    userManager.changePassword (usrLogin, password.toCharArray (), true);
    }
    } catch (Exception e) {}
    System.out.println ("* Exception occurred *" + e);
    }

    return new BulkEventResult();

    }

    public void offset (long l, long l1,
    {AbstractGenericOrchestration abstractGenericOrchestration)
    }
    public cancel Boolean (long l, long l1,
    {AbstractGenericOrchestration abstractGenericOrchestration)
    Returns false;
    }
    Public Sub initialize (hashMap HashMap < String, String >) {}
    }
    private String getParameterValue (< String, Serializable > HashMap parameters,
    String key) {}
    String value =
    (parameters.get (key) instanceof ContextAware)? (String) ((ContextAware) Parameters.get (Key)). GetObjectValue():
    (String) parameters.get (key);
    Returns the value;
    }

    @Override
    public EventResult run (long arg0, arg1 long, Orchestration arg2) {}
    System.out.println ("* in EventResult *");
    Returns a null value.
    }

    }

    Hey Ashok,

    The default behavior of OIM 11.1.1.5 is there a default eventhandler generates a random password for the user created using trust recon and send the password to the user. Which I agree is stupid!

    In case you think your manager even works without error that indicates that you successfully configure the evenhandler which is good news.
    Now the way I see it is that eventhandler to generate the default password runs almost at the same time, you set the default password using your event handler.

    Try to increase the order of 1001 or more because I believe that the default handler has an order of 1000.
    If you need to run your manager even after failure

    I put it in 2000 and it works for me

    I hope it helps.

    -Kungo

Maybe you are looking for

  • Maximum RAM for 13 and 15 inches?

    A quick search on Google shows that the RAM maximum 8 GB for models 13 "and 15" for late 2011 and mid-2012. My uncle has a 15 "end 2011 MBP with 16 GB. The 8 GB means 8 GB in each slot? I was looking to upgrade my MacBook like they turned slowly.

  • My apps no longer appear in my Itunes library (since the last update in March 2016)

    My apps no longer appear in my Itunes library (since the last update, March 2016)

  • Satellite Pro M10: compatible DVD - RW drive internal?

    Hello I was unable to find the compatible internal DVD - RW players on the Web site for my model. Is this possible? Could I get one to say a Tecra and press my machine or cannibalizes my current transmission case to make it fit? Thank you Michael

  • HP Recovery Manager - software list missing

    When I open my HP Recovery Manager and select 'Yes' to reinstall the software program, the select a window installer appears (as it should) EXCEPT that it's EMPTY! Where is the list of all the programs that we have installed on my computer when I use

  • ThinkPad Yoga rubber foot replacement

    One of the rubber feet on my Thinkpad Yoga came loose and I can not find. I tried the Lenovo store, Amazon etc. but can't seem to find anything. Anyone know where I can get replacements? Thank you