| Oracle® Identity Manager Connector Guide for Oracle Internet Directory Release 9.0.4 Part Number E10436-07 |
|
|
View PDF |
| Oracle® Identity Manager Connector Guide for Oracle Internet Directory Release 9.0.4 Part Number E10436-07 |
|
|
View PDF |
After you deploy the connector, you must test it to ensure that it functions as expected. This chapter discusses the following topics related to connector testing:
You can use the testing utility to identify the cause of problems associated with connecting to the target system and performing basic operations on the target system.
To use the testing utility:
Copy the contents of the test/troubleshoot directory on the installation media, to the OIM_HOME/xellerate/test/troubleshoot directory.
Specify the required values in the config.properties file.
This file is in the OIM_HOME/xellerate/test/troubleshoot directory. The following table describes the sections of this file in which you must provide information for running the tests.
| Section | Information |
|---|---|
| Oracle Internet Directory Connection Parameters | Connection parameters required to connect to the target system
The values that you provide are the same as those provided for the IT resources parameters. The procedure to configure the IT resource is described earlier in this guide. |
| Create User Information | Values required to create a user |
| Modify User Information | Values required to modify a user |
| Delete User Information | DN of the user to be deleted |
Add the following to the CLASSPATH environment variable:
OIM_HOME/xellerate/JavaTasks/OIDProv.jar OIM_HOME/xellerate/lib/xlLogger.jar OIM_HOME/xellerate/ext/log4j-1.2.8.jar OIM_HOME/xellerate/lib/xlUtils.jar
Perform the following tests:
Note:
When you run a BAT file to perform the corresponding test, the
global.properties file is automatically created in the same directory. You can view log details in the Troubleshoot.log file, which is created in the same directory when you run the tests.Create a user by running the testcreate.bat file.
After you run the BAT file, check if the user is created in Oracle Internet Directory with the details given in the config.properties file. If you run the BAT file from a command window, then the User_Creation_Successful message is displayed.
Modify the user by running the testmodify.bat file.
After you run the BAT file, check if the user is modified in Oracle Internet Directory with the details given in the config.properties file. If you run the BAT file from a command window, the User_Modification_Successful message is displayed.
Delete the user by running the testdelete.bat file.
After you run the BAT file, check if the, specified user is deleted from Oracle Internet Directory. If you run the BAT file from a command window, the User_Deletion_Successful message is displayed.
To test query-based reconciliation, you can specify the following types of query conditions as values for the CustomizedReconQuery parameter:
Query consisting of groups
Value assigned to the CustomizedReconQuery parameter: group=group1
All the users belonging to group1 are reconciled.
Query consisting of roles
Value assigned to the CustomizedReconQuery parameter: role=role1
All the users belonging to role1 are reconciled.
Query consisting of groups and basic user attributes
Value assigned to the CustomizedReconQuery parameter: sn=Doe&group=group1
The users with last name Doe and who belong to group1 are reconciled.
Value assigned to the CustomizedReconQuery parameter: sn=Doe&group=group1,group2
The users with last name Doe and who belong to both the groups group1 and group2 are reconciled.
Query consisting of roles and basic attributes
Value assigned to the CustomizedReconQuery parameter: sn=Doe&role=role1
The users with last name Doe and who belong to role1 are reconciled.
Value assigned to the CustomizedReconQuery parameter: sn=Doe&role=role1,role2
The users with last name Doe and who belong to both the roles role1 and role2 are reconciled.
Query consisting of groups, roles, and basic attributes
Value assigned to the CustomizedReconQuery parameter: sn=Doe&group=group1&role=role1
The users with last name Doe and who belongs to group1 as well as role1 are reconciled.
This section provides instructions for identifying and resolving some commonly encountered errors of the following types:
The following table provides solutions to some commonly encountered connection errors.
| Problem Description | Solution |
|---|---|
| Oracle Identity Manager cannot establish a connection with Oracle Internet Directory.
Returned Error Message: Connection error encountered Returned Error Code:
|
|
| Target not available
Returned Error Message: Target server not available Returned Error Code:
|
|
| Authentication error
Returned Error Message: Invalid or incorrect administrator password Returned Error Code:
|
Ensure that the specified Oracle Internet Directory connection password is correct. |
The following table provides solutions to some commonly encountered Create User errors.
| Problem Description | Solution |
|---|---|
| The Create User operation failed because an invalid value was being added.
Returned Error Message: Invalid value specified for an attribute Returned Error Code:
|
Check the values specified during user creation. |
| Oracle Identity Manager cannot create a user.
Returned Error Message: Required information missing Returned Error Code:
|
Ensure that the following information is provided:
|
| Oracle Identity Manager cannot create a user.
Returned Error Message: User already exists Returned Error Code:
|
A user with the specified ID already exists in Oracle Internet Directory. Assign a new ID to the user, and try again. |
| Oracle Identity Manager cannot create a user.
Returned Error Message: Naming exception encountered Returned Error Code:
|
Check if the specified user container value already exists in Oracle Internet Directory. |
| Oracle Identity Manager cannot create a user.
Returned Error Message: Could not create user Returned Error Code:
|
The user cannot be created because one or more attribute values violate the schema definition.
Check if the Oracle Internet Directory schema is correctly defined and contains all the object classes defined in the lookup definition. |
The following table provides solutions to some commonly encountered Delete User errors.
| Problem Description | Solution |
|---|---|
| Oracle Identity Manager cannot delete a user.
Returned Error Message: Required information missing Returned Error Code:
|
Ensure that the following information is provided:
|
| Oracle Identity Manager cannot delete a user.
Returned Error Message: User does not exist Returned Error Code:
|
The specified user ID does not exist in Oracle Internet Directory. |
The following table provides solutions to some commonly encountered Modify User errors.
| Problem Description | Solution |
|---|---|
| The Modify User operation failed because a value was being added to a nonexistent attribute.
Returned Error Message: Attribute does not exist Returned Error Code:
|
|
| Oracle Identity Manager cannot modify an attribute of a user.
Returned Error Message: Invalid attribute value or state Returned Error Code:
|
The attribute ID and value specified may be wrong. Check the specified values. |
The Modify User operation failed because a value was being added to an attribute that does not exist in the AttrName.Prov.Map.OID lookup definition.
Returned Error Message: One or more attribute mappings are missing Returned Error Code:
|
|
| Oracle Identity Manager cannot update information about a user.
Returned Error Message: Could not update user Returned Error Code:
|
Generic error. Review the log for more details. |
| Oracle Identity Manager cannot move a user from one container to another.
Returned Error Message: Could not move user Returned Error Code:
|
Generic error. Review the log for more details. |
The following table provides solutions to some commonly encountered Child Data errors.
| Problem Description | Solution |
|---|---|
| Oracle Identity Manager cannot add a user to a group.
Returned Error Message: Group does not exist Returned Error Code:
|
The specified user security group does not exist in Oracle Internet Directory. Check the group name. |
| Oracle Identity Manager cannot add a role to a user.
Returned Error Message: Role does not exist Returned Error Code:
|
The specified role for the user does not exist in Oracle Internet Directory. Check the role name. |
| The operation failed because a duplicate value was being added to an attribute.
Returned Error Message: Duplicate value encountered Returned Error Code:
|
The user has already been added to the specified group or role. |
| Oracle Identity Manager cannot add a user to a group.
Returned Error Message: Could not add user to group Returned Error Code:
|
Generic error. Review the log for more details. |
| Oracle Identity Manager cannot remove a user from a group.
Returned Error Message: Could not remove user from group Returned Error Code:
|
Generic error. Review the log for more details. |
| Oracle Identity Manager cannot add a user to a role.
Returned Error Message: Add user to Role failed Returned Error Code:
|
Generic error. Review the log for more details. |
| Oracle Identity Manager cannot remove a user from a role.
Returned Error Message: Removing assigned role failed Returned Error Code:
|
Generic error. Review the log for more details. |
|
 Copyright © 2009, Oracle and/or its affiliates. All rights reserved. Legal Notices |
|