The following are known issues associated with the current release of the connector:
Bug 7226547
If you do not want to enable SSL communication between Oracle Identity Manager and Microsoft Active Directory, then you set the Use SSL IT resource parameter to no. Now, when you provision a Microsoft Active Directory user through Oracle Identity Manager, the password cannot be updated by using Oracle Identity Manager. To enable updates of passwords when the communication is not secured by SSL, you must disable any existing password policies in Microsoft Active Directory.
See "Enabling or Disabling Password Policies on Microsoft Active Directory" for information about the procedure that you must perform to address this limitation.
This limitation is also described in the "Troubleshooting" section.
Bug 7226622
If the MaintainHierarchy attribute is set to yes and the Root Context IT resource parameter does not begin with ou, then organization hierarchy might not be maintained during reconciliation. Therefore, to ensure that the MaintainHierarchy attribute works as expected, the value that you specify for the Root Context parameter must begin with ou.
Bug 7237564
Suppose password policies are enabled on the target system. On the Administration and User Console page, at the end of the Create User provisioning operation, the status of the AD User resource is Provisioned and the status of the Create User task is Completed even when the following tasks are rejected:
Password never expires Updated
User must change password at next logon Updated
Get Object GUID Created
Bug 7237572
If an invalid value is entered in the CustomizedReconQuery attribute of the ActiveDirectoryReconTask and TrustedADReconTask scheduled tasks, then a corresponding error message is not written to the log file during reconciliation.
Bug 7237580
During a particular reconciliation run, suppose all the created and modified user records are successfully reconciled. Now, suppose there are no user record changes on the target system up to the next reconciliation run.
During the next reconciliation run, the last user record that was reconciled in the previous reconciliation run is reconciled again.
Bug 7612861
The following tasks of the Create User provisioning operation fail if the last name specified ends in a comma (,):
User must change password at next logon Updated
Password never expires Updated