LDAPContainers.xml User Rule Not Honored on User Creation
(Doc ID 2722436.1)
Last updated on OCTOBER 22, 2020
Applies to:
Identity Manager - Version 12.2.1.4.0 and laterInformation in this document applies to any platform.
Symptoms
In an OAM/OIM 12cPS4 integrated environment user's rules where defined in the LDAPContainers.xml as seen below:
<container-rules>
<user>
<rule>
<expression>Role=Temp</expression>
<container>ou=TEMP,dc=xxx,dc=xxx</container>
</rule>
<rule>
<expression>Role=Employee</expression>
<container>ou=Employees,dc=xxx,dc=xxx</container>
</rule>
<rule>
<expression>Default</expression>
<container>ou=People,dc=xxx,dc=xxx</container>
</rule>
</user>
<user>
<rule>
<expression>Role=Temp</expression>
<container>ou=TEMP,dc=xxx,dc=xxx</container>
</rule>
<rule>
<expression>Role=Employee</expression>
<container>ou=Employees,dc=xxx,dc=xxx</container>
</rule>
<rule>
<expression>Default</expression>
<container>ou=People,dc=xxx,dc=xxx</container>
</rule>
</user>
The above rules will make that when a user is created in OIM with a user type of:
- Temp it will be created in the underlying LDAP Organization (OU) TEMP
- Employee it will be created in the underlying LDAP Organization (OU) Employee
- Any other type (see Default) will be created in the underlying LDAP Organization (OU) People
On creating a user of type Temp
The user gets created immediately under the correct Organization (OU) in this case TEMP
but then immediately gets moved to the Default defined Organization (OU) which in this case is People
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |