OIM User Status Is Always Coming "Active" For Trusted Reconciliation With OUD Even User Is Disabled In OUD

(Doc ID 2412908.1)

Last updated on JUNE 19, 2018

Applies to:

Identity Manager - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

Using OIM 11.1.2.3 and OUD connector 11.1.1.6.0 where OUD behaves both as Trusted and Target System for OIM.

While performing the trusted reconciliation, OIM receives the data and creates an OIM profile in "Active" status even when the "ds-pwp-account-disabled" attribute is set to "true" in OUD.
While performing the target reconciliation, OIM receives the status as "Disabled" and correctly links the user with the account in "Disabled" status.

Please advise which attribute in OUD does OIM refers to, to set the identity status (usr_status) as "Disabled" during trusted reconciliation and whats the resolution for this issue?

Due to this, while performing "Access Policy Harvesting", OIM errors out and doesn't harvest the accounts of users who are marked with "Disabled" account status with "Active" identity status.

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms