• Question about custom target systems and account tables

    Hi everyone,

    I'm working on a custom target system, and I noticed there's a table called UNSAccountB, but it doesn't follow the structure I need for my use case.

    Is it considered a good practice to extend the UNSAccountB table to meet custom…

  • Implementing Random Delay in Orchestrated Processes to Prevent API Overload

    Hi everyone,

    I'm working with an Orchestrated Process that calls an external API. Currently, all requests hit the endpoint simultaneously, causing it to return a 500 Internal Server Error due to overload. I'm seeing errors like this in the logs:…

  • Data Importer - Multi-Valued template

    Hello Experts,

    I have a table I need to pull data from and it has person records in it with them associated to multiple entries.

    I'm looking to create a multi-valued template to get them populated. Is there a way from data importer to populate all the…

  • UCIgroup3 table in UCI Connector is not getting update from SCIM Connector.

    Hello,

    I am trying to integrate Salesforce with Identity Manager using SCIM Connector. We are using 9.0 version. I created 2 sync projects:

    1. using SCIM Connector 

    2. using UCI connector to load data in CSM Tables

    The permission set groups are in UCIgroup3…

  • How to limit a "Spare Field" field to a maximum of 18 characters in a service item parameter on the web portal?

    Hi everyone,
    I'm configuring a service item on the web portal and I need to limit the "Nome de exibição da conta" (or a spare field) to accept a maximum of 18 characters. Is there a way to enforce this restriction, either through configuration, scripting…

  • How to synchronize existing One Identity Manager password to AD during account creation?

    Hi everyone,

    I have a scenario in One Identity Manager where a user already exists in the One Identity environment with a defined and valid password. However, this user does not yet exist in Active Directory.

    When I assign an Account Definition to trigger…

  • Problem setting up OAuth 2.0/OpenID Connect authentication

    Hi, I have some problem when setting up Oauth / OpenID authentication. The IDP is a ADFS on-prem server.

    I get this error in the log files on the Web server.

    ---> VI.Base.ViException: Invalid token
    at VI.DB.Auth.AuthToken.Validate(X509Certificate2…

  • re-throw in AAD_ZGroupInGroup

    In JobQueue/SystemJournal I get loads of these error messages:

    "(execute slot bulk)50000 0 re-throw in AAD_ZGroupInGroup Line 30
    547 0 The INSERT statement conflicted with the FOREIGN KEY constraint "AAD_RFRL109". The conflict occurred in database…

  • Cannot Connect to database because a system update is running.

    Hello Guys,

    I have a customer environment and it was working fine, then suddenly when I try to open any of the admin tools, it keeps telling me "Cannot connect to database because a system update is running".

    It has been into this state now…

  • How to connect to Peoplesoft?

    Hi all,

     

    I’m looking for a way to connect One Identity Manager 9.3 to PeopleSoft application. Due to not have an original connector, with best practice is recommended for: using psjoa.jar, directly to database or other?

     

    Thanks

  • Changing of Client secret in Entra ID

    Hi.

    I'm running Identity Manager 9.1.1 and have recently changed the client secret for the app that I'm using for the connector to EntraID. I've also deleted the old one.

    But now the delta sync gets frozen and the error message indicates that…

  • SAP connection error after upgrade from 9.2 to 9.3

    After upgrade from 9.2 to 9.3 we have an error connecting to SAP:

    [System.IO.FileNotFoundException] Could not load file or assembly 'sapnco, Version=3.1.0.42, Culture=neutral, PublicKeyToken=50436dca5c7f7d23'. The system cannot find the file specified…

  • Trying to add a SCIM schema override file always results in an error

    Hello,

    I am tasked with integrating user provisioning for an Appian applications platform in OIM 9.2. The responsible Appian dev team has installed an Appian community built SCIM module so I have a target SCIM Service provider that I can integrate with…

  • custom API Integration in angular portal

    We are using the Version 9.2 of one idenity and I have created the new page for contracts, and the API is also ready. I would like to integrate the API into the frontend. I typically handle API integration using the HttpClient in a service file. However…

  • Solution: Set a PWO DialogParameter Value via Script (Sharing is caring)

    As discussed in the hidden Gems session at the recent UNITE conference there is a simple script to retrieve the value of a DialogParameter of a Request (PersonWantsOrg).

    I faced now a situation to update a value (based on an External Decision) and want…

  • Concurrency in IDM with a Script

    Is it possible to use concurrency in IDM with a script? For example, a script that retrieves a list of central accounts from a CSV file, then obtains information via an API and writes that information to a product in IT Shop for auditing purposes.

    This…

  • Exchange field ForwardingSmtpAddress Sync and Lifecycle Management Options?

    We have a requirement to populate and manage the lifecycle (provision/sync/update/delete) of field ForwardingSmtpAddress. This is a different field than 'ForwardingAddress'.

    It's a valid field on the mailbox but I do not see it in the Sync Editor…

  • How to allow manager to renew an access request?

    Hi.

    I need to allow managers of identities to submit a renewal request on their behalf. Currently, out of the box, they can only do it for the requests they created so where they are set as UID_PersonInserted, I think.

    I tried creating a custom Permission…

  • Identity Manager New Web Portal

    Hello Everyone,

    I wanted to know how to install the new Identity Manager Web Portal like the one used in (One Identity Demo Lab).

    When I installed the app server, I only got the old looking Web Portal. I am Using Identity Manager 9.2.1

    Thank you all.

  • Error running synchronization.

    [2134003] Error running synchronization.
    [1777018] Error running synchronization project (Active Directory Domain (DC=AD-LAB,DC=LOCAL))'s workflow (Provisioning).
    [1777124] Error running synchronization step (computer) of synchronization configuration…

  • Process information - Role Based permissions

    Hello Experts,

    Can anyone point me to how to grant permissions to view Process Information to Role-Based Active Directory user? 

    Is this only something a system user can view?

    Thank you,

    Lu

  • "Slots" in JobQueue

    Hello.

    We're running version 9.2.1 and have only one jobserver. When I update more than five objects and the jobqueue queues up more than five processes, it only takes fiva each time.

    I've looked in the documentation and it says that in a production…

  • Odd template behavior in 9.3

    I have a template for UNSAccountB and when I create an account manually the template works fine, but when I do it using a business role it doesn't work.

    This is the relevant portion of the template (they are identical between FullManaged and Unmanaged…

  • REST API - Entities/Table/Count Body Format

    We have a use case for an Internal Application to make an API call to Identity Manager to retrieve the count of approvals pending a specific person.

    Has anyone managed to achieve this. My understanding would be that I would need to join for example AttestationCase…

  • Content of the DialogJournal MessageString field

    Dear Experts,

    My question is how the login/logout entries are entered in the DialogJournal table, for example. I am faced with a task where I need to extend the data entered here with additional data.

    Is there a way to do this? If so, how? What are my…