Symantec IGA

  • 1.  Unable to explore the users from the User Container(OID)

    Posted Jan 20, 2015 09:14 AM

    Hi All,

     

    We have created custom connector using connector Xpress OID(oracle internet directory) as endpoint and added respective object classes for orclcontainer, inetorgperson. When we perform explore and corelate we are able to see the containers, However unable to explore the users from the user container. even we don't see any issue when explore & corelate on. Any clue on what went wrong with our attribute configuration???

     

    My CA IDM R12.6 SP4

     

    Thanks

    Chiranjeevi



  • 2.  Re: Unable to explore the users from the User Container(OID)

    Posted Jan 20, 2015 09:49 PM

    Hi,

    Try checking :-

    Is ur OID have extended objectclass ?

    Objectclass define in Account Container(ConXP) is the same as OID ?

    Objecclass define in Organization Container(ConXP) is the same as OID ?

     

    can verify the objectclass in OID using jxplorer client tool.



  • 3.  Re: Unable to explore the users from the User Container(OID)

    Posted Jan 21, 2015 04:57 AM

    Hi William,

     

    Thanks for quick reply.

     

    Please find the attached screenshots of "Attribute Mapping" between CA IDM & OID.

    Are we missed anything else to map?

     

    Please have look once.

     

    Thanks

    Chiranjeevi

    map attr1.pngmap attr2.pngmap attr3.png



  • 4.  Re: Unable to explore the users from the User Container(OID)

    Posted Jan 21, 2015 07:13 AM

    Hi,

    The "Attribute Mapping" is just the attribute mapping between IDM & OID.

     

    In the ConnXP, show me the Containers->Account Container setting(screen shots). What objectclass is been defined to use ?

    The objectclass u defined in ConnXP, need to be the same as what been used in your OID(Oracle Internet Directory).

     

    As I mentioned, u need to find out the OID is using standard objectclass or extended objectclass.



  • 5.  Re: Unable to explore the users from the User Container(OID)

    Posted Jan 22, 2015 02:51 AM

    Hi William,

     

    Plz find the screenshots of the Account container in ConXP.

    I'm not sure how to verify that which object class using by the OID.

    But try to check with jxplorer and found in 3 objectclasses in object class section, domain,top,oraclsubscriber.

    Hence, OID using the standard objectclasses.

     

    Regards

    Chiranjeevi

    account container1.png

    account container2.png



  • 6.  Re: Unable to explore the users from the User Container(OID)

    Posted Feb 02, 2015 03:52 AM

    Hi,

    Sorry for late reply.

    Based on my custom LDAP endpoint on OID, We just required specify the based objectclass like Person, or inetorgperson for the Account Container.

    This normally represented as "CN=<Account Name>" or UID=<Account Name>.

     

    There is another container u need to build. which is the organization unit container. Eg. Ou=<Dept>

     

    regards,

    William