• Failed to authenticate user using OAuth2/Open ID Connect. System.ArgumentException: Invalid JSON primitive: .

    Hello All, 

    We're trying to connect One Identity Manger with Keycloak using openID Connect protocol. Once we enter the URL of the Web portal it redirects back to AM for authentication, after authentication it redirect back to the web portal but with…

  • Login via SSO to applications.

    Hello everyone,

    can anyone tell me how I can configure the login of applications (Manager, Designer, JobqueueInfo...) via SSO?

    Any help is welcome, thank you.

  • SQL Server 2022 support for Identity Manager 9.0 LTS CU3.

    The supported SQL version mentioned in the original Identity Manager 9.0 LTS Release Notes is SQL Server 2019, which is at this moment already some 5 years old. So for newly installing or upgrading from 8.x to 9.0 LTS, it would be preferred to use a more…

  • Poor documentation of the CMD tools

    I would like to ask is there any chance to get documentation up to date of the CMD tools. Those tools are used to automate many task, unfortunately many options are not described or information is poor. Examples:

    DBTransportTool v9.1

    -O Create hotfix…

  • Script for pwd gen and putting value into ADSAccount UserPassword field

    Hello,

    I've created a script to generate the password taking the xobjectkey as input and returning the password.

    Here's my script:

    Public Function CCC_Generate_Password_AD(ByVal accountXobjectKey As String) As String
    Dim entity As IEntity = Session…

  • Integrate Keycloak

    Hello, 

    We would like to integrate Keycloak with One Identity.

    There is anyone who tried to integrate it? If yes, by what mode?

    Gilson

  • Dpr_Shell_Migrate error after upgrade from 8.1.5 to 9.0

    Hello,

    After upgrading to 9.0 , DPR_Migrate_Shell passed for all Synchronization projects except for one, it is giving me the following error 

    ErrorMessages  (2024-02-01 14:12:50.877) Migrate all database schemas (SystemId: FTP#66CBC063-859C-4C05…
  • Powershell connector when a user is created

    Hi,

    I need to trigger 3 API calls (POST)  when a user is created. These calls are meant to assign a badge, computer, and phone to the user.

    In practice, I want to create a PowerShell connector that will run in the user creation process.

    How should this…

  • Disabled full managed AzureAD accounts license assignment

    Hi,

    Our customer wants to implement a functionality in One Identity that would remove all entitlements except one from the Azure AD accounts of users who are in the leaver process and are disabled. The accounts currently have account definitions assigned…

  • One Identity Manager On Demand - Servers On-Prem in DMZ

    Hello everyone,


    We would like to have a One Identity Manager On Demand installation with 2 job servers On-Prem to integrate different target systems. We were told that these 2 job servers would be in a DMZ.

    I just wanted to ask if this might be a problem…

  • Support of TLS 1.3

    Hello Team,

    We are using one identity 9.2 version.

    Can anybody let me know if one identity manager supports TLS 1.3 protocol for all the web applications including new angular web portal?

    Thanks,
    Chetan

  • Mail notification for bulk accounts expiration

    Hello everyone,

    I'm looking to set up a monthly email notification system for managers, informing them about users whose accounts are set to expire in the upcoming month.

    Currently, I have a process in place for individual email notifications, with…

  • How to handle custom attributes in SaaS solution (Oracle Fusion)when connecting via Starling Connect?

    Hello!

    We are implementing Starling Connect for Oracle Fusion on our OneIM 8.2 installation.

    I'm having a bit of trouble regarding some customization done in the Oracle Fusion (or other app) schema.

    In the Oracle Fusion schema that we use, several…

  • Modifying CAPTCHA agent character generation (Password Manager Portal)

    Hello,

    Is there a way to limit the characters for the CAPTCHA agent security code when authenticating into the Password Manager portal?  Customer wants to remove ambiguous characters such as capital "O" and zero "0". 

  • Cannot create Change Labels in Designer Tool (Version 9.0 LTS)

    Hi all,

    when i try to create a new change label, saving procedure fails with the following error: 

    InvalidArgument=Value of '-1' is not valid for 'index'.
    Parameter name: index
    at Designer.frmStateLog.OnClosing(CancelEventArgs e)
    at Designer…

  • We can not login to Api Server with active directory

    Hello,

    We can login Api Server with an identity , on the other hands we have been trying to login Api Server with acitve directory , but we couldn't. We have an active directory releated identity. We don't think that there is a problem fot active directory…

  • How to do version upgrade from 8.2 to 9.1?

    Hi Team,

    As part of our upgrade activity, we are planning to migrate One Identity from version 8.2 to 9.1 very soon.

    I was looking for any resource available which outlines the steps for performing the One Identity version upgrade activity.

    Any documental…

  • AAD Sync Project - Error on starting Initial Sync

    Hello everyone!

    I am using OIM v9.0 LTS. I transported a working Azure AD Project and adapted the connection variables according to the new environment. Browsing into the Targetsystem is possible so I assume that Application ID, Domain and Key are correct…

  • ADS_ADSDomain_Maintain_OtherSID frozen "Write permission denied for value Canonical Name"

    Hi all,

    We installed an OIM environment with multiple AD-Domains.

    three of these Domains are connected using an AppServer for SQL Connection and one is configured to connect to the Database directly.

    The sync with the "local" domain (direct Database…

  • SFtpComponent - Put

    Hello Experts,

    I'm trying to get a process orchestration in place to SFTP a file. I'm having issues and don't see much on documentation.

    When I ssh to the SFTP server I get the fingerprint and use that for the config parameter. Although when…

  • Oracle Database Connector error

    Hi,

    I'm using OneIdentity Manager version 9.1. I'm trying to connect an Oracle Database Enterprise Edition 9.2.0.8.0 but I get this error:

    "[Oracle.ManagedDataAccess.Client.OracleException] ORA-01017: invalid username/password; logon denied…

  • Webportal login with 2FA

    Hello,

    Has someone set up one identity web portal login with 2FA? Please give me some sources to set this up. Thank you.

  • how to show maintenance mode message in web portal

    Hi Team,

    I have planned a scheduled change in One Identity Manger v.8.2 and I want to display a maintenance window message in the web portal to users if anyone tries to use web portal during the change window. 

    Trying to display only a blank page with…

  • Unable to update person(Employee) data after modifying LDAP user account

    Hi, 
    I am unable to update person data after modifying LDAP user account. 

    Details: 

    I have configured LDAP connector on my local virtual machine, installed version is 8.2.  I am able to create and link the LDAP user account to Employee record, but after creation…

  • How: Allow a manager to create identities just for their department

    The default configuration allows for employees to be created without restricting the department, but by security reasons we need that the web portal allows each department manager to create new identities only for his department and not for other departments…