Category
Versão do produto
Tópico
Subtópico
Does Identity Manager require a license file? (4343356)
Identity Manager does not require a license file. ... However, it is a PSO mandatory product, which means that our Professional Services team must be engaged for the installation and implementation.
PowerShellComponent tasks fail when run on the Job Server (4378505)
When working with a custom process, a step that uses the PowerShellComponent / PowerShellComponentNet4 will freeze in the JobQueue with an error, but when running the same PowerShell manually on the Job Server, it will complete without any errors.
Where to update Connection Strings when AppServer certificate changes (4373076)
The certificate is hosted on the Application Server and will be changed on a regular cadence. ... For Identity Manager On Premise installations, this cadence is set by the Administrators. ... For Identity Manager On Demand and Identity Manager On Demand Starling Edition this is done on a yearly basis as part of our standard maintenance by the One Identity Operations team.<br><br>When configuring connections to the Application Server, there is an option for Administrators to enter the certificate for enhanced security (pinning a certificate).
Note regarding the use of the global.cfg file in production environments (4378383)
One Identity Manager allows the use of the global.cfg file to simplify distribution of configuration settings to endpoints such as fat clients, Job servers, and so on. ... The global.cfg file only provides weak encryption of configuration settings such as connection strings.
Error: 'SMTP:contact@domain.com' is not a valid SMTP mail address (4378335)
When attempting to synchronize a new ADSContact from an Active Directory target system, the record fails to be imported by the synchronization. ... The logs show the following error: ... [810091] Active Directory contacts: The value in Email address of object <ADSContact name>
JobQueueInfo filter: "The current filter was changed. Do you want to save it?" (4378200)
When choosing an existing filter a message pops up asking "The current filter was changed. ... The message occurs even when nothing was changed on the filter. ... When pressing "Yes" nothing happens.
How to import a Transport Hotfix in Identity Manager (4378108)
What are the steps to follow to import this hotfix into an Identity Manager environment? ... Support provides some hotfixes via a "Transport" file. ... The steps below can be used to import them into Identity Manager.
Insecure Direct Object Reference (IDOR) vulnerability (4378024)
An Insecure Direct Object Reference (IDOR) vulnerability has been identified in Identity Manager which in certain configurations may allow an individual to gain unauthorized privilege escalation.
How to setup Identity Manager with Safeguard SPP (4291749)
How should a user be setup in the Safeguard system for use in an Identity Manager synchronization project? ... Scroll down to the One Identity Manager section and verify that the module is installed:
Database Maintenance: ReIndexing (4374229)
#1 For tables that are less than 1GB, or have less than 1 million records, there is a built-in scheduled task called "Rebuild table index". ... The job runs nightly, if needed reconfigure its running schedule to run more often.
After a schema extension, "Enable Constraints 2" or "Disable Constraints 2" is "stuck" in DBQueue (4270990)
After a schema extension the tasks "Enable Constraints 2" or "Disable Constraints 2" are "stuck" in DBQueue, i.e.not processing. Database inconsistency <p>1. Restore the One Identity database from the backup taken before the schema change<br><br>OR<br><br>2. Repair the inconsistencies using the following Data Consistency Checks:</p>
Consistency Check Error: ITShop configured without any BO-node (4377540)
When running a database consistency check in Identity Manager, the following error is logged: ... What would cause this error, and how can it be resolved? ... This error means that there are IT Shops created that do not have any Shelves assigned.
Missing Tables or Columns in Identity Manager after a Schema Extension (4377171)
After attempting to extend the Identity Manager schema, either with a Database Transport or via the Schema Extension wizard, a column might have been created and is visible when viewing the table from SQL Management Studio (SSMS) but does not display when looking at the table from within the Identity Manager applications.
How to update the Angular portal to default to OAuth for the login (4373391)
How to update the Angular portal to default to OAuth for the login <p>Follow the steps below to set the authentication module to use only OAuthRoleBased for the angular portal:</p> ... <br>Please note that doing this changes the default login for all of the angular portals.<br><br>This will cause the Angular Password Reset Portal to only allow OAuth authentication, the Login with a passcode and Login by answering your password questions will not be available.
How to use Postman with Starling Connect (4376659)
What are the steps needed to use Starling Connect with Postman To test Postman against a Starling Connect connector:<br><br>1. ... a. Connect.Cloud.Oneidentity.com<br><br>2.
CreateSingleDbObject is not a member of IEntity (4376610)
During the compilation of a custom script with the DBCompiler, the error "CreateSingleDbObject is not a member of Ientity" is raised, but when editing the script in Visual Studio, the CreateSingleDbObject IS available and shows as a member of IEntity.
Does Identity Manager support extending the SAP HCM connector to use a custom Function Module in SAP? (4376621)
Does Identity Manager support the ability to extend the SAP HCM connector? <br><br>It may be required to write to the target system, but the SAP Administrator may only provide a custom FM which takes a structure as input parameter.<br><br>Is it possible to write the definition file to pass the structure to the FM?
Duplicated QBMWebApplication entries (4376446)
<br><br>The installer will search with the exact value in QBMWebApplication.BaseUrl. ... Without the trailing "/" it will not find a match because every QBMWebApplication.BaseUrl has a trailing slash (this is automatically added by the QBM Customizer).
You cannot call a method on a null-valued expression (4376316)
<p><img src="https://prod-support-images-cfm.s3.amazonaws.com/KB_kA06R000000AAXASA4_SynchronizationProject_ErrorMessage (1).jpg"></img></p> ... This is due to a multiline break in the Username or Password.
Expected Attestation approver is not showing up as available approver (4376279)
For a specific approver, the attestation query should find a user, and running the query to identify the approver manually works and returns the expected UID.<br><br>However, in the Web Portal, the approval is not calculated to that approver on the approval sequence.<br><br>For other users, the approval is shown correctly on the same attestation policy and approval workflow.<br><br>Both of the users are active and are able to access the web portal.
Inserting objects in target systems via SCIM Connector or Starling Connect Connector ending in failures or performance issues (4376292)
Having Identity Manager connected to an external HR system via SCIM Connector or Starling Connect Connector you may sometimes see the following SCIM provider replies when inserting new objects (new user accounts, employees, groups, etc.) into the connected system:
Approving requests with terms of use (4376242)
Terms of use that explain conditions of use for a product can be stored for individual service items (for example, software license conditions). ... When someone requests this product, the requester, and request recipient must accept the terms of use before the request can be finalized.
Control the reset behavior for Attestation Approval Workflows (4322288)
Changes to workflows should work similarly to changes to processes. ... For example, changes to processes do not affect running process instances, however, changes to approval workflows do affect running workflow instances.
Blocks in the database when DialogProcess is updated in parallel (4375933)
Jobs are processing slowly because of a dead lock issue created when there are thousands of jobs generated with same GenProcID.<br><br>The statement causing deadlocks:<br> ... <pre class="ckeditor_codeblock">
How to Enable TRACE Logging (4347342)
What are the required steps to enable TRACE level logging, as may be requested by Support, for additional troubleshooting? <p><strong>Please note that the logging for version 8.2 has changed slightly.<br><br>To enable TRACE level logging:</strong><br><br>1. Open the globallog.config file (located under C:\Program Files\One Identity\One Identity Manager) in a text editor. <br><br><strong>Please note that for Identity Manager On Demand/Starling Edition, the path for the on premise job server will be (C:\Program Files\One Identity\On Demand Client)</strong><br><br>2. Update as per the version:<br><br><em><strong>Version 8.2 and above (including 9.x and Identity Manager On Demand/Starling Edition):</strong></em><br><br>The variable, "logFileLevel" is used. So only the value for the variable needs to be updated from the variables section (line 5), e.g.:<br><br>variable name="logFileLevel" value="Info" (default)<br><br>Change to:<br><br>variable name="logFileLevel" value="Trace"<br><br>As instructed by Support.<br><br><br><em><strong>Version 8.1.5 and below:</strong></em><br><br>In the "rules" section change the following line from:<br><br><strong>logger name="*" minlevel="Info" writeTo="logfile"</strong><br><br>To<br><br><strong>logger name="*" minlevel="Trace" writeTo="logfile"</strong><br><br>So that the final result is:<br><br><strong><img alt="" src="https://prod-support-images-cfm.s3.amazonaws.com/KB_1-5GJ7F9M_rules.png"></img></strong><br><br>Then save the change. This is sufficient to generate TRACE level logging in the required log files.<br><br><br><strong>Please note that log files are generated in specific locations! </strong>(The locations below are also used for Identity Manager On Demand/Starling Edition)<br><br>For example, the Job Service log will be created under the <strong>AppData</strong> folder for the account under which the job service runs, e.g.:<br><br>C:\Users\<strong>serviceaccount</strong>\AppData\Local\One Identity\One Identity Manager\JobService<br><br>Note that additional folders exist under \AppData\Local\One Identity\One Identity Manager for various components, most notably, StdioProcessor.<br><br>If logs for a front-end application, such as Manager or the Sync Editor, are required, these will exist in the <strong>AppData</strong> folder of the currently logged in Windows (Active Directory) user, e.g.:<br><br>C:\Users\jsmith\AppData\Local\One Identity\One Identity Manager\Manager<br><br><strong>Please note that If the One Identity Manager service is running as Local System the logs will be in one of the following locations:</strong><br><br>C:\Windows\System32\config\systemprofile\AppData\Local\One Identity\One Identity Manager<br><br>C:\Windows\SysWOW64\config\systemprofile\AppData\Local\One Identity\One Identity Manager<br><br><br><strong>Additional Logging</strong><br><br>Support may ask that additional logging be enabled. This requires that the following commented section be un-commented:<br><br><strong>Commented:<br><br><img alt="" src="https://prod-support-images-cfm.s3.amazonaws.com/KB_1-5GJ7F9M_optional.png"></img><br><br>Un-commented:<br><br><img alt="" src="https://prod-support-images-cfm.s3.amazonaws.com/KB_1-5GJ7F9M_uncom.png"></img></strong><br><br>With this logging option enabled additional logs are created under the "debug" folder (created automatically), e.g.:<br><br>C:\Users\serviceaccount\AppData\Local\One Identity\One Identity Manager\JobService\debug<br><br>For more information about the logging options, please refer to the <a href="https://support.oneidentity.com/technical-documents/identity-manager/8.2/process-monitoring-and-troubleshooting-guide/11#TOPIC-1721436" target="_blank">Process Monitoring and Troubleshooting Guide</a>. </p> Please Note: For any web application\web portal debug or trace logging, the same process can be applied in each web application's respective Nlog.config file, e,g.:</br></br>
Associação de novos produtos
- Ferramentas de autoatendimento
- Base de conhecimento
- Notificações e alertas
- Suporte a produtos
- Downloads de software
- Documentação técnica
- Fóruns de usuário
- Tutorial em vídeo
- Feed RSS
- Conteúdo em destaque
- Update Connection Strings
- Impact of CVE-2021-44228
- Informações necessárias e etapas de solução de problemas do Identity Manager
- Como aplicar hotfixes
- Properly Interact with Support
- Fale conosco
- Suporte técnico
- Visualizar tudo