OAM Related Objectclasses Are Missing For Users Created in New OID 11g Realm DIT in OAM-OIM-OVD-OID Integrated Environment
(Doc ID 2033872.1)
Last updated on NOVEMBER 24, 2019
Applies to:
Oracle Virtual Directory - Version 11.1.1.0 and laterIdentity Manager - Version 11.1.1.3.0 and later
Information in this document applies to any platform.
Symptoms
11g Oracle Access Manager (OAM) - Oracle Identity Manager (OIM) integrated environment with LDAP Sync with 11g Oracle Virtual Directory (OVD) - Oracle Internet Directory (OID).
Created a new realm/container in OID using:
./oidrealm <OID_HOSTNAME> <OID_PORT> dc=<NEW_REALM>,dc=<COMPANY>,dc=com
(Default container is - dc=<ORIGINAL_REALM>,dc=<COMPANY>,dc=com)
Created OVD user adapters and changelog Adapters manually (as no documentation could be found for integration a new OID realm).
Modified the LDAPContainerRules.xml to move the users to respective container based on Role and that works. Added the below in LDAPContainerRules.xml:
Role=newrealm
cn=Users,dc=<NEW_REALM>,dc=<COMPANY>,dc=com
Newrealm User container
Users get created in new DIT.
But for the newly created users in new DIT in OID, Oblix related object classes are missing, such as OIMPersonPwdPolicy and OblixOrgPerson.
They are present for the users created in the default OID container.
Able to add object classes for existing users in the new container using the command, by running against a property file:
idmConfigTool.sh - upgradeLDAPUsersForSSO input_file=configfile.props
But for new users, it still does not add the OAM related objectclasses.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |
| References |