LDAP Role Membership Reconciliation Scheduled Job Deleting All Members From A Role
(Doc ID 2194890.1)
Last updated on JUNE 06, 2018
Applies to:Identity Manager - Version 220.127.116.11.0 and later
Information in this document applies to any platform.
OIM configured with ldapsync when a member is removed directly from a role in the LDAP backend after running the LDAP Role Membership Reconciliation scheduled job all the users are removed from the role in OIM.
Use case is the following:
A role has been created in OIM with several members
Ldapsync creates the role in OIM with its members (attribute uniquemember)
An application, user deletes one of the members directly from the LDAP backend
LDAP Role Membership Reconciliation schedule job is run to keep in sync OIM and LDAP
All the members from the role are deleted from OIM
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!