LDAP Error 20 When Assigning Role to a User in OIM (Doc ID 1482704.1)

Last updated on SEPTEMBER 09, 2016

Applies to:

Oracle Fusion HCM Common Architecture - Version 11.1.4.0.0 and later
Oracle Fusion Applications Common Components Cloud Service - Version N/A and later
Information in this document applies to any platform.

Symptoms

When trying to assign a Role to a User in OIM, the error 'Failed to execute the handler'  pops up.

OIM diagnostic log file show the following error:

[2012-06-04T21:39:02.339-05:00] [oim_server1] [NOTIFICATION] [IAM-0080006] [oracle.iam.platform.kernel.impl] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: 004kR2DevcD5uX73VJqIR800079_000Qab,0:1] [APP: oim#11.1.1.3.0] [URI: /admin/faces/pages/Admin.jspx] Orchestration process moved to failed stage, and the corresponding error is - {0}[[
oracle.iam.platform.kernel.EventFailedException: IAM-3010003:Failed to execute the handler.:
at oracle.iam.ldapsync.impl.util.LDAPSyncUtil.createEventFailedException(LDAPSyncUtil.java:685)
at oracle.iam.ldapsync.impl.util.LDAPSyncUtil.createEventFailedException(LDAPSyncUtil.java:696)
......
Caused by: javax.naming.directory.AttributeInUseException: [LDAP: error code 20 - LDAP Error 20 : [LDAP: error code 20 - uniquemember attribute has duplicate value.]]; remaining name 'cn=FND_APPLICATION_DEVELOPER_JOB,cn=FusionGroups,cn=Groups,dc=us,dc=oracle,dc=com'
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3025)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2987)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2794)
at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1455)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes(ComponentDirContext.java:255)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(PartialCompositeDirContext.java:172)
at javax.naming.directory.InitialDirContext.modifyAttributes(InitialDirContext.java:153)
at oracle.iam.platform.entitymgr.provider.ldap.LDAPUtil.modifyAttributes(LDAPUtil.java:1080)
at oracle.iam.platform.entitymgr.provider.ldap.LDAPRelationshipProvider.create(LDAPRelationshipProvider.java:190)
at oracle.iam.platform.entitymgr.impl.EntityManagerImpl.addRelation(EntityManagerImpl.java:1103)
at oracle.iam.ldapsync.impl.eventhandlers.membership.UserMembershipCreateLDAPHandler.grantRoleMembership(UserMembershipCreateLDAPHandler.java:263)
... 114 more

 

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms