HII have a requirement where the adminisrator as to log in from end user page, search for users and any modiications made shoul be updated in LDAP and AD.I used the Find User form and Update User worflow. The form is showing up in the end user page, oce the admin clicks the find usr link. However, ...

I am using IDM6 HP-UX adapter to provisioning unix account by setting up "SUDO Authentication" as TRUE. When we tried to get all available login shell, we got error message "cat:Cannot open /etc/shells: Permission denied". In the adapter, I think "SUDO" is missing before cat command. Has anyone ...

I am using sun access manager 7 in realm mode with sun appserver 8 and sun directory server 5.2 with loadbalncer for AM access manager.Beacuse DUI bug that it can only handle top level realm and not the subrealm.....I was planing to use reverse proxy (this will also hold the PA) in DMZ to point to ...

Hi ......i want to create the accounts in different formates depending on availability in IDM Ex :fname.lname, fname_lname , lname.fname, lname_fname..................am able create the accountIds using flat file attribute but i want the accountIds dynaminc formate depending on availability.i tried ...

Hello allI'm trying to put sudo to work with LDAP. I found a web page ( http://sudo.p8ra.de/sudo/readme_ldap.html) with information about this technique and I want to check if someone had implemented this and if its working.Our environment is: - Solaris 6,7,8,9,10 with OpenSSH- Solaris 6,7 with ...

Hi,I need to populate the accountId field, when values for 2 other fields in the form are entered. I am using this piece of code to do that:<Field name='Account ID'><Display class='Text'> <Property name='required'><Boolean>true</Boolean> </Property> <Property ...

Hi all,(Sorry for my english, it's not very good)I want to use remote ldap for authentication purpose with Access Manager, actually I can authenticate users from the remote ldap, but I can't view users in tab "Subjects" in the sub-realm that i've created for this purpose, is it normally?. When a ...

Hellos,Its holiday season here. We had a FF Active Sync process that failed to start up.Ops noted an overheating CPU at 2am. Server was brought down.. App server stopped, Database stopped. Fan fixed and Server rebooted.. Database started Ok, App server started Ok.. according to AS Log idM started ...

Hi Everybody,We have a situation where we want to prevent resource accounts been deleted from a particular resource when the user is deleted from IAM. All other accounts to other resources can be deleted as normal.We are currently using version 5. Has anyone got any ideas on how to do this?I tried ...

<p>How can I enforce AM7.1 installed in realm mode to perform "soft" delete of the users? The property "Compliance User Deletion" is only available in Legacy mode.</p><p>Thanks</p>

I am setting up a Solaris computer to authenticate with a LDAP DS on Red Hat (RHDS7.1). I have gotten to the point where I can type getent passwd and get the list of users, but I can't log into them. I got a bunch of information below. If you need more information, just ask# getent ...

We are setting up a new Setup .For this we have our own legacy system through which we Install the Directory Server and al the Patches..( this is basically a unix script).The Sun provides us with the patch numbers to be installed as per the OS used..What is the backing up Mechanism incase the ...

<p>Hi,</p><p>The admin at my client place logs in through the end user interface. Is there a way to assign bulk load capabilities to this admin, so that he can load the users....all from end user page?</p><p>Any help is appreciated.</p><p>Thanks</p>

<p>Hello</p><p>DS Proxy server configuration allows me to have e-mail alerts sent when the server stop/start.</p><p>Is it possible to have the same for the DS server?</p>

Hi,I have a requirement where an admin has to perform some operations by logging into the end user page. One of them being, search for an account and modify the account.I saw some out-of-the box for "Find Account Form" and "Find Account Results Form" but not sure what workflow is being kicked off ...

I have directory server 6.0 up on solaris 9 system and I have a couple of solaris 9 system migrated to LDAP client. I need to configure ssh public key authentication on two Solaris 9 LDAP clients. However, I seem can't make it working. I have done 1) generate rsa public/private key pairs on one ...

Hi,Following successful authentication, my application has a requirement to search for users based on modifyTimestamp attribute. It look like this:AMOrganization org;...try{ AMSearchControl sc = new AMSearchControl(); sc.setTimeOut(1200); sc.setMaxResults(100); AMSearchResults sr = ...

I use idm version 5 and database is mysql . I found the problem bottle neck in mysql database . There are many corrupt. How do i increase the performance of IDM .this is the debug page form Show_JDBC.jsp Global connection pool:Pool version 1233 connections created.233 connections active.0 ...

How should I alter the session timeout length for unauthenticated sessions?For example, we've all been on the Access Manager login screen and been idle for more than a few minutes. When you come back and try to logon, you get the "Your session has timed out" error message.Will modifying the value ...

Iam trying to import our test DS with an ldif that has around 200,000 users...The import is fine till 100,000 and afterwards , am see the following errors and the entries are getting rejected..the database is also getting corrupted....The errors are as follows: ERROR<20775> - Backend Database - ...

Is anyone running it in a production environment that is replicated with a minimum of 250k entries. Any issues? How do you like it? Did anyone switch to all masters? The admin book recommended it so I thought I would consider it since we can do it now. I currently run 5.2p3 with 2 masters and 5 ...

The thing that I am trying to figure out for configuring audit logs in directory server is:1. Any attribute change except modifytimestamp is audited. This means that if *only modifytimestamp* attribute of any user record changes, *nothing* gets logged to audit log file. Can I have a configurable ...

I've got a workflow where I perform some checkoutView's at the end of the workflow and if the lock is not available I want to wait for a specified period of time for it to become available. I know I can do this in "checkoutObject", but I'd rather bundle this all into checkoutView. Is there some ...

I am having an issue with active sync not working. I am looking for updates from my resource every 5 minutes for changes. My enviornment is such:IdM Version 5App server: Weblogic 8.1.6IdM is looking at AD (2003) for changes.My log files look like such:2007-02-06T13:20:07.794-0500: Started, paused ...

I'm having the damnest problem, I can't login into anything.If I present bad credentials, it will show me the "bad login" page, but if I present good credentials (to AMServer, Portal, or whatever), it authenitcates and throws me right back to the login page (or in the case of portal, it just ...

<p>Guys,</p><p>I need to do SSO for an application running on SUN app server on AIX box.</p><p>I did the same for linux env but I dont see any agent installers supporting AIX.</p><p>Is there any agent available supported on AIX?</p><p>Please reply Its urgent!</p><p>Thanks,</p><p>Deepak.</p>

We're using Access Manager 7.1 and Policy Agent 2.2 to authenticate users for our BEA WL Portal 10 which contains all of our content and applications. The portal contains both anonymous pages and protected pages (for registered users).Problem: When an anonymous user who is going through a ...

I'm the phpwiki developer.Our company uses a Sun LDAP DS, and so far > 1000 users can successfully login in my php-4 app.But from time to time I get login failures reported, which seem to be related to quoting of some special characters.I've read in some LDAP protocol description that certain ...

Does any one know how IdM generates the id for the next step in a workflow?When you initiate a workflow IdM generates a URL similar to the following: http://10.84.1.155/idm/user/workItemEdit.jsp?id=%23ID%2351F4B46A5BC216A1%3ABE84 1C5%3A113F524AB6B%3A-7CE7&lang=en&cntry=USThe first, second ...

<p>I have a workflow which is only visible to admins, I wanted to make it visible to non-admin users too. Does anyone have any idea how should I do it? Thanks!</p>

Hello,When I try to install DS5.2 patch4 in Vista, I getting the following error. ERROR: Ldap authentication failed for url ldap://xxx.ad.adichn.eu.xxx.com:389/o=NetscapeRoot user id admin (151:Unknown error.)Fatal Slapd Did not add Directory Server information to Configuration ...

Hi,I have set up a monitoring tool (for finding replication issues) which looks for specific error message in the error log and will alert us. The problem is I was able to collect only a few of the replication error codes. The doc present in this site only gives a brief note of each error which is ...

All,I know Trusted HP-UX is not fully supported by SUN IDM, but we are trying to run recons against one and when I run a trace on it it seems to be getting screen scraping errors. Seems like it is moving along fine until all of a sudden it starts throw the below errors:Thread-3391(0x00f6c19e) ...

Hi,Sorry if I dont post on good forum.I've installed OpenSSO (so am 7.5) on tomcat 5.5. It uses a LDAP to identify users.On the same Tomcat, I have my application that I want to protect by OpenSSO.I've installed Agent J2EE, and I think it works. The agent make the good redirection on OpenSSO (I ...

After one unsuccessful attempt of installtion, we uninstalled the Access Manager7.1 and its related components( Directory Server EE6 and Web Server 7 etc. alongwith shared components)Now , I have reinstalled the Access Manager alongwith the above components.I hv also configured the amsamplesilent ...

Hi all,I am using IDM with Sun directory server as a LDAP resource. After creating user in IDM. User will login to " http://localhost:8080/idm/user" login option. In user's login, user will modify his inormation like entitlements :printer,scanner,internet etc. After click on save button, all ...

Hello,We are using the flatfile configuration and we want to export the configuration from one environment and then import it again in the new environment. We want to avoid as much as possible manual interactions to create the different sso instances, site information, realm configuration, ...

Hi, we have several custom workflows each of which has 2-3 approval steps and resource account updates at the end.On the administrator interface, and administrator can see results of any change he makes on a taskResults page.I need to add a similar step to our workflows, in order to let the last ...

<p>Hi,</p><p>Can anyone guide us how we can change the password of Directory Server. We are using Sun Access Manager 6.1 with Sun Directory Server 5.2.</p><p>thx,</p><p>ASN</p>

Hi all,I have a requirement that when an account is disbled in SIM then at the same time an attribute called accountStatus in LDAP should also be set at the value Disable.Is it possible to search the account ID from IDM whose accounts are disabled.If possible HOW?Please tell me how to do that with ...

Added the 4 directories below to the classpath. What else could cause this (Unsupported major.minor version 49.0)? Error below.A F:\j2ee_agents\am_wl9_agent\etc\amclientsdk63.jarA F:\j2ee_agents\am_wl9_agent\jce\jce1_2_2.jarA F:\j2ee_agents\am_wl9_agent\jce\local_policy.jarA ...

<p>Hi,</p><p>I have a XML file which has all employee details.</p><p>Can I use that XML file as a Resource in IDM?</p><p>If so please let me know the steps to do.</p><p>Please help me in this regard.</p><p>Thanks</p><p>RMS</p>

Hi all,I've got SSO mostly working between AM 7.1 and IDM 7.1.0.However, if the IM user I'm attempting to log in as is a user in an organization, rather than just being a member of 'Top' in IM, then the login fails (eg, load of /idm/user/login.jsp), with the error message "User ID not found in ...

<p>We have IDM 5 installed and use MS SQL server 2000 as repository. The old database is corrupted. We are going to move the old database to a new server. Does anyone have any idea how to make IDM connect to the new database?</p><p>Thanks!</p>

<p>can any body explain why we are going for Sun one Directory server than active directory .what are the advantages of Sun one Directory server than active directory .please let known the site where i can get docs on this.</p><p>Thanks</p><p>Message was edited by: </p><p>ap7926</p>

<p>Can I install the Access Manager 2005Q4 without installing the directory server?</p><p>The products selected for installation have dependency requirements or installation options as indicated below.</p><p>Sun Java(TM) System Directory Server 5 2005Q4</p>

I have directory server 6.0 set up on solaris 9 system. I convert a Solaris 8 system to be a ldap client. However, I can use ssh to authentication against LDAP server. Here is the output I got:# ssh -v user@localhostSSH Version 1.2.27 [sparc-sun-solaris2.8], protocol version 1.5.Standard version. ...

<p>Hi All,</p><p>I have a form, where user will be having the option to click the help icon. currently the help window prompts with Sun logo. I need to put a custom logo on the help window.</p><p>Which files I need to modify?</p><p>Thanks in advance</p>

Hi ,For Active Sync Flat File, we get the flat file dump from some other system which is copied tthrough FTP to the IDM server.Now to do FTP of cvs file it takes 5 min, Now How can I maks sure that my Active sync is scheduled and it starts only after the FTP is complete? I mean is there any way to ...

Hi Gurus,I am new to Java IDM and predictably failed in my first attempt to install Java IDM in a Windows machine with SQL Server 2000 SP3.I followed the Installation document step by step and I think I din' t miss any!!.. But still I got caught by an error, here it is:I successfully installed IDM ...