Oracle® Identity Manager Connector Guide for Novell eDirectory Release 9.0.3 Part Number B32359-01 |
|
|
View PDF |
After you deploy the connector, you must test it to ensure that it functions as expected. This chapter discusses the following topics related to connector testing:
You can use the troubleshooting utility to identify the cause of problems associated with connecting to the target system and performing basic operations on the target system.
To use the troubleshooting utility:
Specify the required values in the global.properties
file.
This file is in the OIM_home
\xellerate\eDir\troubleshoot
directory. The following table describes the sections of this file in which you must provide information for running the tests.
Section | Information |
---|---|
Novell eDirectory Server Parameters | Parameters required to connect to Novell eDirectory
Refer to the "Defining IT Resources" section for information about the values that you must provide. |
Create User Parameters | Values required to create a user on the target system |
Modify User Parameters | Values required to modify a user |
Delete User Parameters | DN of the user to be deleted |
Add the following to the CLASSPATH
environment variable:
OIM_home\xellerate\lib\xlLogger.jar OIM_home\xellerate\lib\xlUtils.jar OIM_home\xellerate\JavaTasks\eDirProv.jar OIM_home\xellerate\JavaTasks\ldap.jar OIM_home\xellerate\ext\log4j-1.2.9.jar
Create an ASCII-format copy of the global.properties
file as follows:
Note:
You must perform this procedure every time you make a change in the contents of theglobal.properties
file.In a command window, change to the following directory:
OIM_home\xellerate\eDir\troubleshoot
Enter the following command:
native2ascii global.properties troubleshoot.properties
The troubleshoot.properties
file is created when you run the native2ascii
command. The contents of this file are an ASCII-format copy of the contents of the global.properties
file.
Run the following tests:
Enter the following command to create a Novell eDirectory user:
java -DpropertyFile=OIM_home\xellerate\eDir\troubleshoot\troubleshoot.properties -Dlog4j.configuration=file:\OIM_home\xellerate\eDir\troubleshoot\log.properties TroubleShootingUtilityLdap createUser
Enter the following command to modify a Novell eDirectory user:
java -DpropertyFile=OIM_home\xellerate\eDir\troubleshoot\troubleshoot.properties -Dlog4j.configuration=file:\OIM_home\xellerate\eDir\troubleshoot\log.properties TroubleShootingUtilityLdap modifyUser
Enter the following command to delete a Novell eDirectory user:
java -DpropertyFile=OIM_home\xellerate\eDir\troubleshoot\troubleshoot.properties -Dlog4j.configuration=file:\OIM_home\xellerate\eDir\troubleshoot\log.properties TroubleShootingUtilityLdap deleteUser
This section provides instructions for identifying and resolving some commonly encountered errors of the following types:
The following table provides solutions to some commonly encountered connection errors.
Problem Description | Solution |
---|---|
Oracle Identity Manager cannot establish a connection to Novell eDirectory.
Returned Error Message: LDAP connection exception Returned Error Code:
|
|
Target not available.
Returned Error Message: Connection error - unable to create initial LDAP Returned Error Code:
|
Ensure that the specified Novell eDirectory connection values are correct. |
Returned Error Message:
Connection error - unable to create initial LDAP. Returned Error Code:
|
Ensure that the specified Novell eDirectory connection values are correct. |
The following table provides solutions to some commonly encountered Create User errors.
Problem Description | Solution |
---|---|
Oracle Identity Manager cannot create a user.
Returned Error Message: Required information missing Returned Error Code:
|
|
Oracle Identity Manager cannot create a user.
Returned Error Message: User already exists Returned Error Code:
|
A user with the assigned ID already exists in Novell eDirectory. |
Oracle Identity Manager cannot create a user.
Returned Error Message: Connection error - unable to create initial LDAP context Returned Error Code:
|
|
Oracle Identity Manager cannot create a user.
Returned Error Message: User creation failed Returned Error Code:
|
The user cannot be created because one or more attribute values violate the schema definition. |
The Create User function failed because a value was being added to a nonexistent attribute.
Returned Error Message: Attribute does not exist Returned Error Code:
|
In the AttrName.Prov.Map.EDIR lookup definition, check if the decode values are valid attribute names in the target system. |
The Create User function failed because an invalid value was specified.
Returned Error Message: Invalid value specified for an attribute Returned Error Code:
|
Check the values specified during user creation. |
The following table provides solutions to some commonly encountered Modify User errors.
Problem Description | Solution |
---|---|
Oracle Identity Manager cannot modify the value of a user.
Returned Error Message: Invalid attribute value or state Returned Error Code:
|
Check the attribute ID and value that were specified. |
The Modify User function failed because a value was being added to a nonexistent attribute.
Returned Error Message: Attribute does not exist Returned Error Code:
|
|
The Modify User function failed because an invalid value was specified.
Returned Error Message: Invalid value specified for an attribute Returned Error Code:
|
Check the value entered. |
The Modify User function failed because a value was specified for an attribute that does not exist in the AttrName.Prov.Map.EDIR lookup definition.
Returned Error Message: One or more attribute mappings are missing Returned Error Code:
|
|
Error caused because a duplicate value was specified for an attribute.
Returned Error Message: Duplicate value Returned Error Code:
|
The attribute specified already exists for another user in the system. |
Oracle Identity Manager cannot move a user from one container to another.
Returned Error Message: Moving user to different container failed Returned Error Code:
|
Generic error. Review the log for more details. |
Oracle Identity Manager cannot add a user to a security group.
Returned Error Message: Group does not exist Returned Error Code:
|
The specified user security group does not exist in Novell eDirectory. |
Oracle Identity Manager cannot add a user to a security group.
Returned Error Message: User is already a member of this group Returned Error Code:
|
The user is already a member of the specified security group. |
Oracle Identity Manager cannot add the trustee right to a user.
Returned Error Message: Trustee tight already added Returned Error Code:
|
Check if the trustee right has already been assigned to the user in Novell eDirectory. |
Oracle Identity Manager cannot add a role to a user.
Returned Error Message: Role does not exist Returned Error Code:
|
The specified role for the user in Oracle Identity Manager does not exist in Novell eDirectory. Create the role in Novell eDirectory. |
Oracle Identity Manager cannot add a role to a user.
Returned Error Message: Error while updating user info Returned Error Code:
|
Generic error. Review the log for more details. |
Oracle Identity Manager cannot add a role to a user.
Returned Error Message: User has already been assigned this role Returned Error Code:
|
The user has already been assigned this role. |
Oracle Identity Manager cannot remove an assigned role from a user.
Returned Error Message: Removing assigned role failed Returned Error Code:
|
Generic error. Review the log for more details. |
Oracle Identity Manager cannot add a network restriction.
Returned Error Message: This network restriction already exists Returned Error Code:
|
The specified network restriction already exists for this user in Novell eDirectory. |
The following table provides solutions to a commonly encountered Delete User error.
Problem Description | Solution |
---|---|
Oracle Identity Manager cannot delete a user.
Returned Error Message: User does not exist in target Returned Error Code:
|
The specified user does not exist in Novell eDirectory. |