Oracle® Fusion Middleware Troubleshooting Guide for Oracle Mobile Security Suite Release 3.0.1 Part Number E51929-03 |
|
|
PDF · Mobi · ePub |
This chapter describes troubleshooting tips for LDAP (Oracle Unified Directory and Active Directory) sync with the Mobile Security Administrative Console.
This chapter contains the following topics:
When you click Sync on the Mobile Security Administrative Console Settings->LDAP Settings tab, you see this message:
Error while executing LDAP sync Job! Please check the server".
This can happen when the scheduled AD sync task is disabled or deleted on the Mobile Security Administrative Console Server. Proceed as follows:
Go to the Mobile Security Administrative Console server and open Task Scheduler. Check whether the ldap_sync task scheduler is disabled under the Task scheduler Library listing.
If disabled enable it back.
Try to sync again.
When you click a Sync button on the Mobile Security Administrative Console Settings->LDAP Settings tab you see the message:
LDAP sync Job is already running.
This message indicates that the LDAP sync task is already running or the LDAP sync scheduled task is stopped during execution. Proceed as follows:
Try to sync again after a few minutes.
If the error message still appears, go to the Mobile Security Administrative Console server and delete the file:
install-dir\OMSS\ACP\config\*_sync_cron_running.log
Try to sync again.
If the LDAP User/Group is not showing on Mobile Security Administrative Console, proceed as follows:
Make sure the user/group is member of control group or role mapping groups.
Trigger a full sync by clicking Full Sync on Mobile Security Administrative Console Console Settings->LDAP Settings tab.
If deleted/Disabled users are still showing up on Mobile Security Administrative Console, trigger a full sync by clicking Sync Now
User role is mapped to end user role. Proceed as follows:
Make sure user is part of respective role mapping group.
Trigger full sync by clicking Full Sync on the Mobile Security Administrative Console Console Settings->LDAP settings tab.
If you cannot log in to the Mobile Security Administrative Console:
Make sure LDAP sync schedule task is complete. You can check the status of the sync in one of these log files:
install-dir\OMSS\ACP\logs\ldap-sync\ldap_sync_job_scheduler.log
or
install-dir\OMSS\ACP\logs\ad-sync\ad_sync_job_scheduler.log
If another admin user is allowed to log in, check for the failed user on Mobile Security Administrative Console console.
If the user does not show up on Mobile Security Administrative Console console, trigger a sync by clicking Full Sync on the Mobile Security Administrative Console's Settings->LDAP settings tab.
If you cannot register a Mobile Security Container and get the error:
Invalid username
Make sure the user is appearing on Mobile Security Administrative Console console and is part of the control group.