• Password Reset Issue While Switching Remote Loader.

    Hello. We have three Remote Loader (RL) servers installed across three sites, with each RL connected to the respective site’s IDM and AD. Currently, one RL is in an active state, while the others are stopped. We are encountering issues when switching…
  • Master Replica changes on EBA & EBCA enabled environment.

    Hello, We have three servers (Server A, B, and C) configured in a Replica Ring, with EBA enabled on all of them. In this setup, Server A is designated as the Master Replica, while Server B serves as the EBCA. If Server A is shut down without first…
  • Identity Manager Engine Container fails with Failed to configure SAS service: unknown error -1266

    Hi all, Trying to play with IDM 4.9 and containers and failed on my first attempt to setup the identity manager engine. I am running Docker 27.3.1 on Red Hat 9.2. Below is the idmconfigure.log file. tail -f /data/idm/log/idmconfigure.log 2024-11…
  • Change self signed certificate to External CA signed certificate

    We are trying to change a self signed certificate that was created during our IDM installation process to a external CA signed certificate. Tried to followed the instuctions ( Enabling SSL with a External CA Signed Certificate - NetIQ Identity Manager…
  • Error Authentication Remote Loader Driver Azure AD

    Hello! I'm having the following error when trying to connect to Azure on the Remote Loader. Driver Azure AD 5.1.7.0300 Remote Loader 4.8.5 The test was done with the same parameters on the Driver using another Remote Loader and it works correctly…
  • Error Authentication Remote Loader Driver Azure AD

    Hello! I'm having the following error when trying to connect to Azure on the Remote Loader. Driver Azure AD 5.1.7.0300 Remote Loader 4.8.5 The test was done with the same parameters on the Driver using another Remote Loader and it works correctly…
  • Read createTimestamp attribute of User from Driver Policy

    I am trying to read the "createTimestamp" attribute value of User and for this I have the below policy. I have the User DN in the local variable but not sure how to read the attribute value directly from user dn that's why using the filter "(&(objectClass…
  • Unable to create user in AD after enable Entitlement package

    Hi, Today im testing out to use the AD entitlement package to enable Role based control for my IG, but after i enabled, deployed and restarted the AD driver, my ad unable to create user anymore. It keep getting vetoed due to "Veto account creation when…
  • java.net.NoRouteToHostException: No route to host (Host unreachable) - in OSP logs

    We are unable to connect to our environment after restarting tomcat . We have not done any changes in application level or OS level that we know of . But we see the below in Cataline log and OSP logs . Connectivity is from IDM ->(Firewall) -> access…
  • IDM 4.9 released

    Looks like it is out! Available in SLD as a new item in the third row as 4.9 List of featues I heard are: Support for "Microsoft Modern Authentication" - Introduces support for OAuth2 authentication specifically tailored for email accounts within…
  • SAP application being migrated to SAP S/4 HANA 2022

    Hello, community. We've developed SAP drivers to a client, SAP ECC and SAP BPC, this client is migrating all SAP instances to SAP S/4 HANA 2022. On the documentation of NetIQ Identity Manager Driver for SAP User Management Implementation Guide…
  • Block users by system in IDM

    Is there a fine-grained way to have users blocked in each sytem individually? For instance for each connected system an association is created and a user account entitlement is granted. Let's say I have 4 instances of SAP or AD and I want to have rules…
  • Multiple notifications for the same event

    k
  • Errors on catalina.out when opening some Forms in User Application

    Hello, community. The scenario we are dealing is: When opening some forms in UserApplication, the error on the end of this message is populated on catalina.out, the ambient is running on Windows Server 2019, at IDM 4.8.6. The thing is, we have…
  • Issue with Postgres IDM 4.8.7

    I have installed 4.8.7(SLES 15 SP5) in VM workstation. UserApp has stopped working post restarting the VM instanace due to below issue. Caused by: org.postgresql.util.PSQLException: Connection to 192.168.86.135:5432 refused. Check that the hostname…
  • Does the role and resource driver need to be on the master replica server?

    Hi there, Does the role and resource driver need to be on the master replica server? We've alway done it that way, but I was wondering if it can in fact run on another IdM server. It is pretty slow, and we need to see if we can get som more performace…
  • Delete object blocked by IRF

    Hi, I got a RequestDef (Workflow) blocked to edit by IRF the object has these ACLs, These configuration has blocked my admin user to modify it ndstrace log: 1567594240 LDAP: [2023/11/12 6:50:16.505] (135.208.61.237:36184)(0x0590:0x63) nds_back_search…
  • Change ACLs in workflow now can't modify any attribute

    Hi, I was modifying ACLs attributes in a workflow to show it for users but i made a mistake typing and set these values ACL: 1#subtree#[Inheritance Mask]#[Entry Rights] ACL: 1#subtree#cn=grp-access,ou=initiators,ou=workflows,ou=groups,o=data#[Entry…
  • JCException: request -714 ERR_NOT_IMPLEMENTED in driverset while upgrading to 4.8.7

    Hi I have installed IDM 4.8 on RHEL 7.9. Now after upgrading IDM engine to 4.8.7 but getting following error novell.jclient.JCException: request -714 ERR_NOT_IMPLEMENTED at novell.jclient.JClient.request(Native Method) at novell.jclient.JClient.ndsRequest…
  • View Role Approval Informationis no longer displayed in IDM 4.8.6

    We've upgraded from 4.8.3 to 4.8.6.0200 and noticed the View Role Approval Information is no longer available. The image below is from before the upgrade. Was this planned? It's not in any of the release notes. The only related change that I *might…
  • Different results in date conversion if different types of offset are used

    Here is an example: In the first date conversion, I am using a date conversion where input is a date in CTIME (in my example time in seconds representing “20231109205900” ), offset in seconds ( -30 *3600* 24) and output in yyyyMMdd. This is a working…
  • Creating Technical Roles in IGA through IDM Drivers

    Hello, community. The scenario is: IGA is being implemented in a customer and all solicitations, Request and Revoke, will be made through Access Request module. We would like to automatize the process of creating Technical Roles as much as possible…
  • How to get the name of the workflow initiator

    Hello. I'm trying to return the fullname of the form initiator in the onload event so that when the Service Desk technician clicks the submit button, the system checks if he is trying to grant himself roles and deny. I understand the logic for making…
  • Sendmail function for an EDS event in the SAP driver failed to send

    A sendmail function for an EDS event in the SAP driver failed to send and returned the following error Message: Code(-9195) Error in vnd.nds.stream: Couldn't send email: java.lang.NoSuchMethodError: com.novell.nds.dirxml.util.mail.SendMail.generateEMail…
  • Integration with oracle Retail Suite/Oracle ERP version 13 & version 16

    Due to limited information about both own hosted oracle Retail Suite/Oracle ERP version 13 & version 16 that can be found in oracle website, any idea what is the best integration approach for both of the oracle applications?