Hi OneID comunity,

I recently fired up my demo environment and the password was expired of the viadmin account when trying to setup a new password i got the following error: 
"Password policy processing failed. An Active Directory user account is required…

Some accounts are mysteriously being duplicated in IDM pointing to the ObjectGUID and SID of the original object, however not existing in IDM, not following the cause, has anyone experienced this or know of a solution? If so, what would be the best way…

Hello everyone

I haver developed a custom script in Designer. It updates certain attribute of the the users in Active Directory. It is a script designed to be executed once. I have compiled it and when I test the script it does not update the attribute…

Hi. 

We have OIM 9.1 and are using the new angular based web portal. We wish to extend the list of attributes for ADSAccount that are shown in Data Explorer view in the web portal. We have extended the list of editable properties for ADSAccount (ie. ServerConfig…

Hi Team,

I have a use case to reset password of ADSAccount after termination.

I have updated the on saving script of ADSAccount with below piece of code to reset password of ADSAccount.

CCC_CustomBool01 is a custom column in person table which gets true…

Hello 

I have a little problem with active directory group assignment.

I want the disable users group to be added to the active directory account when the user is disabled.

I also want it to be removed from all other groups except this group.

What should…

Hello,

OneIM Version 8.2.1

I have a requirement to move to deactivate accounts in different OU in AD. And I have to customize the template for ADSAccount.UID_ADSContainer to implement my requirement.

Can someone help me with the code to set in ADSAccount…

I'm trying to create users inside the "Manager", but not synchronize I get the message in the report: "The object of type (ADSAccount) was ignored during synchronization." - "Reason: The object has pending process steps".…

I would like to create an AD account in an organizational unit depending on the values given in the attributes given in the user file in OIM, that is if we have an A and B in the customattribute1 and 2 we create the account in the 'OR' A and if we have…

Hi Team,

ADS account update jobs are failing with error.

Error committing object 26d067ce-d586-4844-a479-a181d8143029.(Error: A constraint violation occurred.

Error in COM access layer: number: 8007202F, description: A constraint violation occurred.

Hi Experts,

We have few frozen jobs  ADS_ADSAccount_Update/(De-)activate with below error but object was already there in AD.

Is this error coming from AD or do you have any backlog report for this issue?

ErrorMessages (2021-10-07 12:05:40.850) [1777018…

Hello Dears,

I am integrating Active Directory with One identity Manager.

When I create a synchronization project through synchronization editor I am facing the following error

"ADSDomain: The following fields are compulsory and need to be filled: Forest…

Hi,

Using 8.1.3, how to remove "deferred deletion [days]" for ADSAccount?

Within Designer app, for ADS Account I can see the days set as 30, and making the value "0" means immediate delete.

How do i set it to not delete it indefinitely…

Hi all, Seeking for help! Is there a way to BULK Update a multi valued attribute? For example, there is an additional email addresses attribute in OIM. I want to update them with 1 or more value. And for 100 users. Tried using SQL but it does not work…

Hi,
Hope all are doing well and keep healthy.

A quick query. We want to move the AD account to different Container / OU before disabling a user. How do I configure this when a Person is disabled (temp or permanent)?
I believe I've to edit the ADS_ADAccount_Update…

Value of field distingushedname in designer is locked from change in ADSAccount table

Now AD accounts created by Account definition and looks like  :  CN=John Doe,OU=OUname,DC=domain,DC=com

I need add departments containers to the distinguishedname : CN=John…

Hello Experts,

Move Managed account task is not updating new personnel number in ADS record Employeenumber field.

I have included below comments in my code but still Employeenumber  is not updating in ADS.

Is re-apply template only the workaround for…

We are setting up an Email address for the AD account on the target side,  but when it is getting sync to Office 365, then a new SMTP is getting generated as firstname.lastname@##.com.

How to stop this from getting generated?

Hello all, 

I'm facing an issue and I tried many different ways to solve this, but the problème still exists. 

The problem is: after creating a user from the web portal, the user is created, get the AD account by the AccountDef and all things…

Hello, 

I'm actually in the following case:

When I create a user in the OiM WebPortal, the User is created in the Person Table in the DB. 

How can I do to send this user created to the ADSAccount table? 

I just want to automatically synchronize the user…

Hi,

We are using version 8.0. I have created a sync workflow to read the data from AD and update it in One IM. And object matching rule has ObjectGUID as primary rule. But few attributes like "Mail" is not getting updated in One IM while other attributes…

Hi All,

OneIM version it's 8.1

We have the next problem creating the ADSAccounts with an Account Definition:

ErrorMessages	(2020-05-29 12:05:31.517) [810023] Error during execution of statement: insert into QBMPwdHistory (DateInserted, HashValue,…

Hello,

I am facing issues when I am created new users with no managers assigned on person table, it creates ADSAccount according to the OU, but somehow, it is automatically assigning the manager on the adsaccount table but not on person table.

I am using…

Hello everyone,

I have created a sync project with an AD domain. I can dump the information into One Identity 8.1. The problem is that seems there is 400 accounts in the domain, however, I can only dump about 80 accounts into the system. I did not see…

Hello,

Can anyone tell me how I can mark ADSAccount protect from accidental deletion?

I see this is setup on containers but unable to decipher how this is setup and cannot duplicate it for ADSAccount.

I know how to extend the schema in ADSAccount and…