Cybersecurity
DevOps Cloud
IT Operations Cloud
Summary
ice.exe for eDirectory 9.2.7 crashed when importing a specific LDIF file. This issue does not happen on eDirectory 9.2.0.
Products
eDirectory (NetIQ eDirectory),Identity Manager (IDM)
Environment
NetIQ eDirectory 9.2.7 on Windows Server
Identity Manager (IDM) 4.8.6 on Windows Server
Situation
The LDIF file is defined as "<attribute name>: <attribute value>" without attribute value, like "<attribute name>: " in "changetype: add" section.
Here is sample LDIF file:
#This LDIF file was generated by NetIQ's ICE and the LDIF destination handler.
version: 1
dn: cn=test11,ou=sa,o=system
changetype: add
uid: test11
sn: test11
mail:
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: Person
objectClass: ndsLoginProperties
objectClass: Top
cn: test11
This is sample syntax for ice command:
ice -SLDIF -f <LDIF file> -DLDAP -slocalhost -dcn=admin,ou=sa,o=system -w<admin password>
When running the above command, the ice command aborted with the following message:
"Operation in progress ..." A pop-up message "ice.exe application has stopped working" can be seen.
Cause
This is a bug in eDirectory 9.2.7.
Resolution
Below are some workarounds:
1. Use ice.exe on Windows Server with eDirectory 9.2.0
2. Use ice on Linux with eDirectory 9.2.7 (or 9.x)
3. Remove all "<attribute name>: " lines from the LDIF file
4. Replace all "<attribute name>: " lines with "<attribute name>:" including no space character
Additional Information
eDirectory 9.2.0's ice can be executed in eDirectory 9.2.7 environment, Please copy all the related DLL files from the folder where ice.exe is located except DIBFiles folder to another folder in eDirectory 9.2.7 environment.
URL Name
KM000013644