Symantec Access Management

  • 1.  IDM TEWS - Need sample SOAP request

    Broadcom Employee
    Posted May 20, 2016 04:25 PM

    Hi,

     

    Could anyone share TEWS sample SOAP request for Create user with group membership task.

     

    Regards

    Ashok



  • 2.  Re: IDM TEWS - Need sample SOAP request

    Broadcom Employee
    Posted May 21, 2016 01:26 PM

    You can load the wsdl using SOAP UI and it will show you sample SOAP requests for web services enabled task.



  • 3.  Re: IDM TEWS - Need sample SOAP request

    Broadcom Employee
    Posted May 23, 2016 02:22 PM

    Thank You for your response Praveen. I should have been more elaborative in my query and asked for SOAP request xml with sample data.

     

    Below are the 2 IDM tasks which I have:

     

    Task #1. CreateUserTews - required fields are (Organization, User ID, Password, Confirm Password, First Name, Last Name, Email, User Type) and does not have option to select group membership.

    task #2. Create user - required fields are (Organization, User ID, Password, Confirm Password, First Name, Last Name, Email, User Type) and has an additional option to select group membership.

     

    Task # 1 is working fine without any issue and having trouble while framing SOAP request xml for task #2.

     

    Task#1 SOAP request: ( Working fine)

    <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsdl="http://tews6/wsdl">

      <soapenv:Header/>

      <soapenv:Body>

          <wsdl:TaskContext>

            <wsdl:admin_id>tewsadmin</wsdl:admin_id>

          </wsdl:TaskContext>

          <wsdl:CreateUserTews>

            <wsdl:CreateUserTewsSearch>

                <wsdl:CreateNew>true</wsdl:CreateNew>

                <wsdl:Organization>

                  <wsdl:UniqueName>ou=example,ou=cam,o=ca</wsdl:UniqueName>

                  <wsdl:AndLower>false</wsdl:AndLower>

                </wsdl:Organization>

            </wsdl:CreateUserTewsSearch>

            <wsdl:CreateUserTewsProfileTab>

                <wsdl:_PCT_ORG_MEMBERSHIP_PCT_>ou=Application,ou=example,ou=cam,o=ca</wsdl:_PCT_ORG_MEMBERSHIP_PCT_>

                <wsdl:_PCT_USER_ID_PCT_>tewstest50</wsdl:_PCT_USER_ID_PCT_>

                <wsdl:_PCT_PASSWORD_PCT_>password</wsdl:_PCT_PASSWORD_PCT_>

                <wsdl:_BAR_passwordConfirm_BAR_>password</wsdl:_BAR_passwordConfirm_BAR_>

                <wsdl:_PCT_FIRST_NAME_PCT_>tewstest50</wsdl:_PCT_FIRST_NAME_PCT_>

                <wsdl:_PCT_LAST_NAME_PCT_>tewstest50</wsdl:_PCT_LAST_NAME_PCT_>

                <wsdl:_PCT_EMAIL_PCT_>tewstest50@gmail.com</wsdl:_PCT_EMAIL_PCT_>

                <wsdl:_PCT_USER_TYPE_PCT_>Business</wsdl:_PCT_USER_TYPE_PCT_>

            </wsdl:CreateUserTewsProfileTab>

          </wsdl:CreateUserTews>

      </soapenv:Body>

    </soapenv:Envelope>

     

    Task#2 SOAP request: ( Not Working)

     

    <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsdl="http://tews6/wsdl">

       <soapenv:Header/>

       <soapenv:Body>

          <wsdl:TaskContext>

             <wsdl:admin_id>tewsadmin</wsdl:admin_id>

          </wsdl:TaskContext>

          <wsdl:CreateUser>

             <wsdl:CreateUserSearch>

                <wsdl:CreateNew>true</wsdl:CreateNew>

                <wsdl:Organization>

                   <wsdl:UniqueName>ou=example,ou=cam,o=ca</wsdl:UniqueName>

                   <wsdl:AndLower>false</wsdl:AndLower>

                </wsdl:Organization>

             <wsdl:CreateUserProfileTab>

                <!--You may enter the following 19 items in any order-->

                <wsdl:_PCT_ORG_MEMBERSHIP_PCT_>ou=Application,ou=example,ou=cam,o=ca</wsdl:_PCT_ORG_MEMBERSHIP_PCT_>

                <wsdl:_PCT_USER_ID_PCT_>tewstest70</wsdl:_PCT_USER_ID_PCT_>

                <wsdl:_PCT_PASSWORD_PCT_>password</wsdl:_PCT_PASSWORD_PCT_>

                <wsdl:_BAR_passwordConfirm_BAR_>password</wsdl:_BAR_passwordConfirm_BAR_>

                 <wsdl:_PCT_FIRST_NAME_PCT_>tewstest70</wsdl:_PCT_FIRST_NAME_PCT_>

                <wsdl:_PCT_LAST_NAME_PCT_>tewstest70</wsdl:_PCT_LAST_NAME_PCT_>

                <wsdl:_PCT_EMAIL_PCT_>tewstest70@gmail.com</wsdl:_PCT_EMAIL_PCT_>          

                <wsdl:_PCT_USER_TYPE_PCT_>Business</wsdl:_PCT_USER_TYPE_PCT_>

                <!--Optional:-->

                </wsdl:CreateUserProfileTab>

             <!--Optional:-->

             <wsdl:CreateUserGroupsTab>

                <!--Optional:-->

                <wsdl:UserMemberGroups>

                   <!--Zero or more repetitions:-->

                   <wsdl:add index="1">

                      <!--You have a CHOICE of the next 2 items at this level-->

                      <wsdl:UniqueName>cn=Org01Group,ou=groups,ou=Org01,ou=example,ou=cam,o=ca</wsdl:UniqueName>

                     <wsdl:Name>Org01Group</wsdl:Name>

                   </wsdl:add>          

                </wsdl:UserMemberGroups>          

             </wsdl:CreateUserGroupsTab>

          </wsdl:CreateUser>

       </soapenv:Body>

    </soapenv:Envelope>

    And I get the below error response, since my IDM is front ended by a SPS server.

     

    <html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><title>Secure Proxy Server - Error Report</title><style type="text/css">.message { padding-right:2px;padding-left:2px;font-size:90%;color:#000000;font-family: verdana, arial, helvetica, sans-serif;} .tableRow { white-space: nowrap; font-size:15px; font-weight:lighter;font-family:helvetica; } </style></head><body style="font: normal 12px verdana;  margin: 0;  padding: 0;  border: 0 none; overflow: auto;  height: 100%;"><table style="width: 100%; border-radius: 4px;  background-color: white;  height: auto;"><tbody><tr><td style="font-family: ca-sans; padding-right: 4px; padding-left: 4px; height: 25px; font-weight: normal; color: #D7341A; font-size: 24px;"><hr>Secure Proxy Server - Error Report<hr></td></tr><tr><td></td></tr><tr><td><table class="tableRow"<tbody><tr class="message"><td class="tableRow">Error Type</td><td>:</td><td class="tableRow">Web server Error</td></tr><tr class="message"><td class="tableRow">Request URI</td><td>:</td><td>/iam/im/TEWS6/examplebeta</td></tr><tr class="message"><td class="tableRow">Error Code</td><td>:</td><td>500</td></tr><tr class="message"><td class="tableRow">Message</td><td>:</td><td>Internal Server Error. Server encountered an unexpected condition.</td><tr></table></td></tr></table></body></html>

     

    Let me know, if I am missing some attributes. Below is the IDM Log snippet, Logs is in Error Mode, I am not able to capture the DEBUG logs since it is a production environment.

    2016-05-23 16:33:17,215 ERROR [ims.connections] (http-0.0.0.0-8080-3) com.netegrity.llsdk6.imsapi.exception.NoSuchObjectException

    [facility=4 severity=2 reason=0 status=38 message=No items found]

            at com.netegrity.llsdk6.imsimpl.jdbcmanagedobject.JDBCManagedObjectProvider.getManagedObject(JDBCManagedObjectProvider.java:320)

            at com.netegrity.llsdk6.imsimpl.jdbcmanagedobject.JDBCManagedObjectProvider.getManagedObject(JDBCManagedObjectProvider.java:263)

            at com.netegrity.llsdk6.imsimpl.connectionmgr.ConnectionManagedObjectProvider.getConnectionManagedObject(ConnectionManagedObjectProvider.java:141)

            at com.netegrity.ims.util.ConnectionUtil.initAdministratorContext(ConnectionUtil.java:41)

            at com.netegrity.ims.tews6.ServiceServlet.initAdministratorContext(ServiceServlet.java:630)

            at com.netegrity.ims.tews6.ServiceServlet.doPost(ServiceServlet.java:332)

            at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)

            at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)

            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)

            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)

          

    2016-05-23 16:33:17,220 ERROR [ims.default] (http-0.0.0.0-8080-3) com.netegrity.llsdk6.imsapi.exception.NoSuchObjectException

    [facility=4 severity=2 reason=0 status=38 message=No items found]

            at com.netegrity.llsdk6.imsimpl.provider.AdminTaskProviderImpl.findByTag(AdminTaskProviderImpl.java:314)

            at com.netegrity.ims.tews6.TaskHandler.handleTask(TaskHandler.java:180)

            at com.netegrity.ims.tews6.ServiceServlet.doPost(ServiceServlet.java:336)

            at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)

            at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)

            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)

            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)



  • 4.  Re: IDM TEWS - Need sample SOAP request
    Best Answer

    Broadcom Employee
    Posted May 24, 2016 09:41 AM

    I managed to fix the issue those were minor mistakes made by me.

     

    Here is the working SOAP request:

     

    <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsdl="http://tews6/wsdl">

      <soapenv:Header/>

      <soapenv:Body>

          <wsdl:TaskContext>

            <wsdl:admin_id>tewsadmin</wsdl:admin_id>

          </wsdl:TaskContext>

          <wsdl:CreateUser>

            <wsdl:CreateUserSearch>

                <wsdl:CreateNew>true</wsdl:CreateNew>

                <wsdl:Organization>

                  <wsdl:UniqueName>ou=example,ou=cam,o=ca</wsdl:UniqueName>

                  <wsdl:AndLower>false</wsdl:AndLower>

                </wsdl:Organization>

          </wsdl:CreateUserSearch>

            <wsdl:CreateUserProfileTab>

                <!--You may enter the following 19 items in any order-->

                <wsdl:_PCT_ORG_MEMBERSHIP_PCT_>ou=Application,ou=example,ou=cam,o=ca</wsdl:_PCT_ORG_MEMBERSHIP_PCT_>

                <wsdl:_PCT_USER_ID_PCT_>tewstest70</wsdl:_PCT_USER_ID_PCT_>

                <wsdl:_PCT_PASSWORD_PCT_>password</wsdl:_PCT_PASSWORD_PCT_>

                <wsdl:_BAR_passwordConfirm_BAR_>password</wsdl:_BAR_passwordConfirm_BAR_>

                <wsdl:_PCT_FIRST_NAME_PCT_>tewstest70</wsdl:_PCT_FIRST_NAME_PCT_>

                <wsdl:_PCT_LAST_NAME_PCT_>tewstest70</wsdl:_PCT_LAST_NAME_PCT_>

                <wsdl:_PCT_EMAIL_PCT_>tewstest70@gmail.com</wsdl:_PCT_EMAIL_PCT_>         

                <wsdl:_PCT_USER_TYPE_PCT_>Business</wsdl:_PCT_USER_TYPE_PCT_>

                <!--Optional:-->

                </wsdl:CreateUserProfileTab>

            <!--Optional:-->

            <wsdl:CreateUserGroupsTab>

                <!--Optional:-->

                <wsdl:UserMemberGroups>

                  <!--Zero or more repetitions:-->

                  <wsdl:add index="?">

                      <!--You have a CHOICE of the next 2 items at this level-->

                      <wsdl:UniqueName>cn=Org01Group,ou=groups,ou=Org01,ou=example,ou=cam,o=ca</wsdl:UniqueName>

                    <wsdl:Name>Org01Group</wsdl:Name>

                  </wsdl:add>         

                </wsdl:UserMemberGroups>         

            </wsdl:CreateUserGroupsTab>

          </wsdl:CreateUser>

      </soapenv:Body>

    </soapenv:Envelope>