after configuring LDAPSync from OIM 11gR2pS2 to OID 10g below errors are showing up at the console when trying to add user after configuring LDAPSync.
IAM-2050243 : Orchestration process with id 2507, failed with error message IAM-3010201 : LDAP create event failed : Failed to find orclpwdexpirationdate in mandatory or optional attribute list. Root Cause: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Failed to find orclpwdexpirationdate in mandatory or optional attribute list.]; remaining name
IAM-2050243 : Orchestration process with id 2507, failed with error message IAM-3010201 : LDAP create event failed : Failed to find orclpwdchangerequired in mandatory or optional attribute list. Root Cause: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Failed to find orclpwdchangerequired in mandatory or optional attribute list.]; remaining name
IAM-2050243 : Orchestration process with id 2507, failed with error message IAM-3010201 : LDAP create event failed : Failed to find orclaccountlocked in mandatory or optional attribute list. Root Cause: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Failed to find orclaccountlocked in mandatory or optional attribute list.]; remaining name
Solution:
this error is because OID 10g is not compatible with OIM 11gR2PS2. above there attributes are not at OID 10g, in order to work around do the following.
create these three attributes in OID
orclPwdExpirationDate
orclaccountlocked
orclpwdchangerequired
create Object Class name orclIDXPerson as auxiliary and add Person and intOrgPerson as super class to this object class.
assign all above attributes to orclIDXPerson object class
test now adding new user now you should not see any error. if you see more attributes missing you can add same way to orclIDXPerson
IAM-2050243 : Orchestration process with id 2507, failed with error message IAM-3010201 : LDAP create event failed : Failed to find orclpwdexpirationdate in mandatory or optional attribute list. Root Cause: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Failed to find orclpwdexpirationdate in mandatory or optional attribute list.]; remaining name
IAM-2050243 : Orchestration process with id 2507, failed with error message IAM-3010201 : LDAP create event failed : Failed to find orclpwdchangerequired in mandatory or optional attribute list. Root Cause: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Failed to find orclpwdchangerequired in mandatory or optional attribute list.]; remaining name
IAM-2050243 : Orchestration process with id 2507, failed with error message IAM-3010201 : LDAP create event failed : Failed to find orclaccountlocked in mandatory or optional attribute list. Root Cause: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Failed to find orclaccountlocked in mandatory or optional attribute list.]; remaining name
Solution:
this error is because OID 10g is not compatible with OIM 11gR2PS2. above there attributes are not at OID 10g, in order to work around do the following.
create these three attributes in OID
orclPwdExpirationDate
orclaccountlocked
orclpwdchangerequired
create Object Class name orclIDXPerson as auxiliary and add Person and intOrgPerson as super class to this object class.
assign all above attributes to orclIDXPerson object class
test now adding new user now you should not see any error. if you see more attributes missing you can add same way to orclIDXPerson
No comments:
Post a Comment