My Oracle Support Banner

Getting "The Logged-in User Does Not Have AddRoleMemberships Permission" Error With Role Assignment (Doc ID 2489532.1)

Last updated on JULY 21, 2021

Applies to:

Identity Manager - Version to [Release 11g]
Identity Manager - Version to [Release 12c]
Information in this document applies to any platform.


In a OIM-OAM Integrated setup with LDAP Sync:

Created a Role, for example cn=External Users,cn=Groups,ou=external,dc=example,dc=com and after that if one tries to add a user to the role, it seen a different container value such as cn=External Users,ou=groups,dc=example,dc=com and following error is seen:

Steps to reproduce:
1) Login as <OIM ADM SYS USER>
2) Create a Role (LDAP Sync with OUD. Check the Role in OUD)
3) Add a user to a External role and it would fail


This issue is similar to the issues in Note: 2167488.1 but is seen even after the fix from that note is applied.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.