home / OIM

Category: OIM

Install Oracle Identity Manager (OIM) 11.1.1.5

  The steps required to install Oracle

HOW TO: Install Oracle Identity Manager (OIM) 11.1.1.5

  The step-by-step requirements to install OIM

HOW TO: Configure Oracle Identity Manager (OIM) 11.1.1.5

  The steps required after installing OIM

OIM Design Console Configuration

  The steps required to install OIM Design Console 11g on WLS + linux RHEL

Installing OIM 11g R2 (11.1.2.0) HOW TO

  An overview of all actions required to install OIM 11g R2. This post was constructed an environment with OIM 11.1.1.5 installed.

Installing OIM 10g (9.1.0.2)

  The steps required to install OIM 9.1.x on a RHEL environment using weblogic and an Oracle DB

Installing OIM 10g (9.1.0.2) Continued...

 

Learning OIM 10g (9.1.0.2)

  Back to basics and learning OIM and it's functionalities

HOW TO: take a full backup of OIM 10g (9.1.0.2) database

  Here are the steps that were taken to create a full backup of the Oracle Identity Manager 10g (9.0.1.2) database.

How to configure log files for OIM 10g (9101)

  A simple step-by-step blog on how to configure the OIM 10g (9101) logs into a file

Creating a custom report for OIM 10g

  The step-by-step guide on how to construct custom reports from within OIM 10g.

Creating a custom report for OIM 10g (Part 2)

  The other steps required to create a custom report within OIM 10g

Error with OIM 10g Custom Reports: RESOLVED

  I spend over a day starting at the reasons why I was getting this error when I was creating OIM 10g custom reports. When I put in a query, I would be presented with a white (blank) screen.

Issue importing Reconciliation files in OIM 10g (9.1.0.1)

  Even though it was indicating that the simple HR data feed import was successful, it was in fact failing with the following error:

OIM 10g reconciliation: tcUSR/eventPreInsert Error :Mandatory fields are blank or null

  I was following the Oracle learning when I came across this issue whilst attempting to construct a HR data feed reconciliation with OIM 9.0.1.2

OIM 10g createUserRecord issue: java.lang.NullPointerException

  I came across this issue when importing in HR data feeds into an OIM database.

OIM 10g resource terminologies

  I am always a true believer that you learn best when you build up your knowledge on existing information. I often find myself scratching my head when I'm left with knowledge gaps whilst learning the technicalities and terminologies of OIM.

Memory Allocation for OIM/SOA/OIA

  Memory is a pain-in-the-bum, especially when it comes to the new Oracle 11g fusion middleware stack.

HOW TO: Configure Weblogic 10.3.6 for OIM 11gR2

  The steps required to configure to configure a new base domain for the Oracle Identity management 11gR2 version.

HOW TO: Install OIM (11gR2) 11.1.2.0 on Linux 64bit

  The steps required to install OIM 11gR2

Set OIM database to AL32UTF8

  OIM 11.1.1.6 (11gR2) requires the Oracle database character set to be AL32UTF8. Here's how to make the alterations to your database.

HOW TO: configure OIM (11gR2) 11.1.2.0 on Linux 64bit

  The steps required to configure OIM 11gR2 on an Oracle linux environment

HOW TO: install OIM 11gR2 11.1.2.0 on Linux 64 bit.

  Here's a collection of blogs on how to install OIM 11gR2 (11.1.2.0) from the ground up on an Oracle linux 64 bit environment.

New OIM 11gR2 (11.1.2.0) GUI URL's

  So it turns out there's now 2 different web consoles available for different individuals.

OIM DesignConsole error: java.lang.NoClassDefFoundError: javax/ejb/CreateException

  You may notice the following error when you try and start up OIM design console:

OIM 11g Design Console startup issue: Caused by: javax.naming.NameNotFoundException: 'ejb.stateful.t

  After installing OIM 11g into a new environment, I noticed that I was experiencing issues logging into the design console.

HOW TO: Create a new user in OIM 11gR2 (11.1.2.0)

  To create a new user, you must first select the administration URL to be provided with the 'create user' functionality.

HOW TO: create a GTC Flat file HR import (Trusted Recon)

  With the intention to import many flat files in the future, I have created a stagingDR directory (with my initials included knowing that if I forget in the future, I know I created that) and within that directory I created another directory called Imports. This is where I will be dropping my data feed so OIM can acknowledge the file and import it.

HOW TO: Construct non-trusted Reconciliation OIM 11g with OID 11G LDAP

  Here is how to create a non-trusted reconciliation by using Oracle Identity Manager (OIM) 11.2.0.0 (11gR2) and Oracle Identity Directory (OID) 11.1.1.6.

OIM 11g GTC trusted Reconciliation - Flat File Feed

  I created the required steps to create a trusted Reconciliation and posted this on youtube back later 2012. I was just tired on following the Oracle documentation without them proof reading and making sure it works correctly. To counter this lazy approach that Oracle makes, I decided to make a video on this.

Starting up OIM managed server: java.lang.OutOfMemoryError: PermGen space

  Most people you will come across understand that the java arguments -ms, -mx, PermSize, MaxPermSize etc. need to be set in order for there to be sufficient java memory allocation for Oracle Identity Manager 11g to run. OIM 11g compared to OIM 10g requires a tremendous amount of java allocation. More often than not, when you're running your job schedulers, process forms, or even starting up the system, you may experience "java.lang.OutOfMemoryError: PermGen space". No worries, here are the simple steps to resolve the issue.

OIM OIA Integration issue: Unable to get current Data Collection Session ID

  Whilst connecting OIM with OIA, you may receive an error stating that you cannot receive the 'current Data Collection Session ID'. OIM data collection scheduler has to be enabled, which by default it is, though you may be experiencing the following error whilst attempting to import the usr or application data.

OIM Installation: ORA-00205: error in identifying control file, check alert log for more info

  ORA-00205: error in identifying control file, check alert log for more info

ORA-02095: specified initialization parameter cannot be modified

  After identifying that the registered control files are incorrect (after receiving the ORA-00205: error in identifying control file, check alert log for more info error) though after executing the system set control files, I would receive and ORA-02095: specified initialization parameter cannot be modified error

OIM11gR2 PS2 installation error: OPatch failed with error code 73

  The OIM11gR2 PS2 installation is 95% difference with the OIM11gR2 procedural installation. I was however aware that SOA patch is mandatory for the installation of OIM. When I executed the following command, I would receive the following error:

oim-config.xml was not found in MDS Repository

  Unable to find keystore "default-keystore.jks" in /config/fmwconfig/.

Oracle Identity Manager 11g R2 PS2 & SOA Installation & Configuration

  Note: Identity and Access Management 11g R2 PS2 installers can be downloaded from http://www.oracle.com/technetwork/middleware/id-mgmt/downloads/oid-11gr2-2104316.html

WLS 10.3.6 - Configure Database Security Store

  Need to do the security configuration first! (configureSecurityStore)

"oimOperationsDB": ORA-01034: ORACLE not available

  Received exception while creating connection for pool "oimOperationsDB": ORA-01034: ORACLE not available.

Caused By: oracle.mds.config.MDSConfigurationException: MDS-01330: unable to load MDS configuration

  When starting up the managed server for OIM on 11gR2 PS2 for the first time, I noticed that I was receiving the data source configuration error.

"oimOperationsDB": ORA-01034: ORACLE not available

  Received exception while creating connection for pool "oimOperationsDB": ORA-01034: ORACLE not available

ORA-27101: shared memory realm does not exist

  Could not create pool connection. The DBMS driver exception was: ORA-01034: ORACLE not available ORA-27101: shared memory realm does not exist

ERROR: LRM-00109: could not open parameter file '/opt/oracle/112/dbs/initorcl.ora'

  Error when starting up the Oracle SQL instance

OIM11g - (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated

  When progressing through the Oracle Identity and Access Management Configuration, the 'Configure OIM Server' status would fail with the error Exception occurred while encrypting the configuration and database, step Configure OIM Server failed

ERROR: LRM-00109: could not open parameter file opt oracle 112 dbs initorcl.ora

  ERROR: LRM-00109: could not open parameter file /opt/oracle/112/dbs/initorcl.ora

Steps to install OIM 11g R2 PS2

  The steps I took to get OIM11gR2PS2 installed and running on RHEL 6.3 using a VM

Ensure that Oracle Identity Manager (XE/EE) is configured properly in the domain

  When configuring my environment for OIM 11gR2PS2, I would receive the following error

OIM11gR2PS2 Error - Check the SOA version compatibility

  When attempting to configure OIM, I would receive the following error when trying to connect to the Weblogic instance 'Check the SOA version compatibility'

Error creating connection pool "oimOperationsDB" whilst trying to startup the OIM managed server

  When starting up the OIM WLS instance, I would receive the following error

Minimal Weblogic memory allocation for OIM 11gR2PS2

  I could not locate the absolute memory allocation for the Weblogic managed servers for OIM and SOA. Allocating the maximum allocation pool (-Xmx), heap size, does not allocate the total RAM memory to the Weblogic managed servers. Items outside the realms of the maximum allocations poll, such as thread stacks, perm sizes, and library memory allocations also need to be considered.

Starting up SOA - java.lang.OutOfMemoryError: Java heap space

  It's likely that you've either run out of memory, or that the heap size allocated is insufficient

ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated

  Whilst installing and configuring OIM 11gR2PS2, I experienced the following error:

Issues when initiating Oracle Database whilst installing OIM11gR2PS2

  I came across so many issues when trying to pack OIM 11gR2PS2 on my 7.5GB VM image. One alteration I had constantly manipulate was the control file.

OIM Weblogic Startup - ORA-04031: unable to allocate 264 bytes of shared memory

  When starting up the OIM managed server, I would receive the following error:

Installing OIM 11gR2PS2 Customization Installer JDeveloper Extension

  The steps required to use the exposed OIM 11gR2PS2 APIs from JDeveloper to your VM OIM instance, running on MAC and RHEL respectively. The example below goes through a quick demonstration on how to create a user using the exposed OIM APIs

Oracle Identity Manager (OIM) Terminologies

  A couple of years ago I submitted a blog on the OIM 10g Terminology. It was a little lightweight though now I've pulled together the OIM technologies. Hope this helps

Login errorjavax.security.auth.login.LoginException: No LoginModules configured for xellerate

  You need to include the system property of the 'java.security.auth.login.config'. The fastest way is to include the following System.setProperty line within your java code when authenticating against weblogic

How to use OIM 11g APIs

  Dont bother about Thor, just use Oracle apis instead, use the Oracle http://docs.oracle.com/cd/E21764_01/doc.1111/e14309/apis.htm#BCFBHAAD

Exception in thread "main" java.lang.RuntimeException: No information availabe for APPSERVER_TYPE

  Noticed this issue when connecting to the OIM 11g API

AD OIM 11gR2Ps2 integration for reconciliation users

  I'm blogging the process on how to integrate OIM 11gR2PS2 with AD by using the connector server.

OIM 11g/AD connector: The value for a key [IT Resource Name] is not defined in the provided map

  When starting work with the OIM/AD connector and following the step by step processes on and updated (yet incomplete) OIM/AD integrated documentation, I noticed I was getting the following error:

OIM 11g/AD connector: The value for a key [Host] is not defined in the provided map

  When starting work with the OIM/AD connector and following the step by step processes on and updated (yet incomplete) OIM/AD integrated documentation, I noticed I was getting the following error:

OIM AD Connector error: InvalidCredentialException: Remote framework key is invalid

  When setting up the identity connector, I would receive the following error when trying to run an ad-hoc schedule task

OIM AD recon Integration: 'Connector ConnectorKey not found'

  When integrating OIM with AD, I was receiving an 'Connector ConnectorKey not found' error when running the schedule task.

Purging the OIM 11g cache

  If you want to purge the cache before the allocated amount of time, use the PurgeCache utility in the OIM_HOME/bin directory. This utility purges all elements in the cache

OIM AD Connector Error: Unable to get the Directory Entry

  When working on the OIM AD integration, I came across the following error

Another solution for the OIM Design Console issue - 'An unknown error code was passed'

  When working on the configuration of the design console within OIM and when I encountered an error.

Could not find or load main class oracle.iam.platformservice.utils.PluginUtility

  Whilst using the ant command to implement the plugin, I experienced an issue a 'Could not find or load main class oracle.iam.platformservice.utils.PluginUtility' error when executing the ant register command

OIM: Unable to find LoginModule class: weblogic.security.auth.login.UsernamePasswordLoginModule

  When trying to deploy the custom plugins within OIM, I was getting the following error:

OIM ANT command: Could not find or load main class oracle.iam.platformservice.utils.PluginUtility

  Whilst using the ant command to implement the plugin, I experienced an issue a 'Could not find or load main class oracle.iam.platformservice.utils.PluginUtility' error when executing the ant register command

Caused by: oracle.iam.platform.pluginframework.PluginException: The plugin zip does not contain the

  When executing the ant command, I would get a error stating that the plugin class files does not reside within the zip file.

Preparing the OIM 11g Custom Plugin files within JDeveloper

  This blog below outlines the file structure recommended for your plugin for your custom scheduled task within an OIM environment.

How to unregister a custom plugin in OIM 11g

  Very simple step on how to unregister your custom plugin

HOW TO: Manually import the metadata for OIM 11g custom plugins

  It took my a while to determine why my custom-made scheduled tasks were not showing up after following the new 11g 'how to create a scheduled task via plugin'. Turns out the META-INF folder is an optional which contains the metadata (task definition). If you don't have this file, you need to import the metadata file into the MDS manually.

OIM Issue: MDS-91020: "OIMMetadata" is not available in server "oim_server1"

  MDS-91020: MDS Application runtime MBean for "OIMMetadata" is not available in server "oim_server1". Ensure server name and application name are correct. "exportMetadata" operation failure.

Plugin registering utility - java.lang.NullPointerException

  When running the plugin utility, I would discover the following java null exception:

WLSTException: java.lang.SecurityException: MBean operation access denied

  When trying to export the metadata, probably using something such as exportMetadata(application='OIMMetadata',server='oim_server1',toLocation='/home/oracle/Oracle/Middleware/tmp'), I would receive the following error:

OIM 10g Issue: LDAP: error code 49

  Came across this error log when trying to integrate AD with OIM 10g

MDS-91020: MDS Application runtime MBean for "OIMMetadata" is not available in server "oim_server1".

  MDS-91020: MDS Application runtime MBean for "OIMMetadata" is not available in server "oim_server1". Ensure server name and application name are correct. "importMetadata" operation failure

OIM Issue: Caused by: java.lang.ClassNotFoundException: oracle.jrf.PortabilityLayerException

  When running a java code, I would receive the following error: java.lang.ClassNotFoundException: oracle.jrf.PortabilityLayerException

OIM Executing operation: exportMetadata issue

  WLSTException: java.lang.SecurityException: MBean operation access denied.

OIM java.net.NoRouteToHostException: No route to host

  OIM java.net.NoRouteToHostException: No route to host org.identityconnectors.framework.common.exceptions.ConnectorException: java.net.NoRouteToHostException: No route to host

OIM 11g:The value for a key [IT Resource Name] is not defined in the provided map

  Came across this issue when attempting a recon with Active Directory into OIM 11g

icfcommon.exceptionException: The value for a key [Host] is not defined in he provided map

  Experienced a failed recon event between Oracle Identity Manager (OIM) and Active Directory. The following error was displayed:

OIM- AD Integration: InvalidCredentialException: Remote framework key is invalid

  Error occurred when trying to connector to the Active Directory Connector Server

LoggedIn userKey 'null' OR the passed user key 'null' is coming as NULL

  LoggedIn userKey 'null' OR the passed user key 'null' is coming as NULL

OIM 11g Error: IAM-3050021:The user with the key null does not exist.:null

  After only seeing 2 results in google, with no answers. I decided to consume up my Saturday night to resolve this issue

HOW TO: Configure OIM 11g AD/LDAP Authentication

  As always, you often find yourself scrummaging through the oracle documentation and google for hours to discover the procedural steps, which realistically should only be a 20 min job

HOW TO: Configure OIM 11g AD/LDAP Authentication Part 2

  The follow-up of the steps required for the OIM and AD authentication

MDS-91020: MDS Application runtime MBean for "OIMMetadata" is not available in server "oim_server1"

  MDS-91020: MDS Application runtime MBean for "OIMMetadata" is not available in server "oim_server1". Ensure server name and application name are correct. "exportMetadata" operation failure.

ERROR: transport error 202: bind failed: Address already in use

  When attempting to startup the weblogic managed server, I would receive an ERROR: transport error 202: bind failed: Address already in use error.

Issue when publishing a web service

  When calling the OIM client API, I would receive the weblogic.application.WrappedDeploymentException: oracle.iam.platform.OIMClient

OIM issue: IAM-2050243 Orchestration process with id xxx, failed with error message IAM-3010062

  When modifying an object within Oracle Identity Manager 11g, in this case, I was modifying/deleting an user, I would be getting the following error:

OIM Plugin issue: Class not found: oracle.iam.platform.utils.ant.PasswordInputHandler

  The following issue was as follows:

WLSTException: java.lang.SecurityException: MBean operation access denied.

  When using the export utility, the following error error will be as follows: WLSTException: java.lang.SecurityException: MBean operation access denied. would occur

HOW TO: Export metadata Oracle Identity Manager (OIM) 11g

  The majority of the Oracle Identity Manager (OIM) 11g configuration files are located within the Metadata Services (MDS) database.

OIM issue: IAM-2050243 Orchestration process with id xxx, failed with error message IAM-3010062

  When modifying an object within Oracle Identity Manager 11g, in this case, I was modifying/deleting an user, I would be getting the following error:

Access Denied when setting ICF connector key

  When setting up the connector server key, I would receive an 'access denied' with a System.UnauthorizedAccessException trace System.UnauthorizedAccessException: Access to the path 'C:\Program Files (x86)\Identity Connectors\Connector Server\r2dadszy.tmp' is denied.

OIM issue: IAM-2050243 Orchestration process with id xxx, failed with error message IAM-3010062

  When modifying an object within Oracle Identity Manager 11g, in this case, I was modifying/deleting an user, I would be getting the following error:

HOW TO: Never let OIM database users expire

  Pretty simple solution to avoid the constant

OIM 11g Connector Server - Access Denied

  The connector server is required to provide the interoperability to provision and to recon' between the target system and your OIM instance.

SOLVED. ADF_FACES-60098:Faces lifecycle receives unhandled exceptions java.lang.VirtualMachineError

  This error would occur within Oracle Identity Manager (OIM) 11g when selecting specific schedule tasks within the Admin GUI, I would receive an java.lang.VirtualMachineError

OIM issues: An error occurred while deploying plug-in to OIM

  Installer, I would often receive the following popup error, An error occurred while deploying plug-in to OIM.

OIM AD Issue - javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake

  Despite that the vague error, Remote host closed connection during handshake, maybe a result of multitude of possible reasons, the reason why this is occurring is because the remove client is dropping the connection. I notice this issue once the WLS admin was restarted after the schedule task became unresponsive and remaining in the Interrupt status despite that I bounced the WLS managed server.

OIM AD 11g Issue - The server does not support the requested critical extension

  The critical extension is the setting within you Active Directory when you're reconciling or provisioning using SSL.

OIM 11g Recon Error - Caused By: java.lang.InstantiationError java.lang.VirtualMachineError

  While integrating OIM 11g with the ICF connector resource for reconciliation, I would often get the following error, javax.servlet.ServletException: java.lang.InstantiationError: java.lang.VirtualMachineError after a couple of attempts:

SOLUTION OIM 11g - Data is Stale. Operation cannot be continued

  Often this issue occurs when you're trying to delete an old scheduled task or if you're performing an operation with a schedule task that may otherwise should be working though obviously it doesn't.

OIM Deployment Export issue - javax.servlet.ServletException: java.lang.NullPointerException

  When you get this issue, you must first close the browser. Any other actions you perform without closing the browser will ultimately close.

ConnectorServer.exe Error: 0 : Exception occured starting connector server

  Once reviewed within the connector server logs, I would see the following error: ConnectorServer.exe Error: 0 : Exception occured starting connector server

OIM issue - ORA-00001: unique constraint (PROD_OIM.PLUGINS_UNIQUE_NAME) violated

  The plugin that you are trying to deploy is conflicting with an existing plugin within your OIM environment.

How to delete files from the OIM MDS

  One thing I do admire about OIM is the GUI interfaces within em on the ranking order of each plugin. The example below will show you how to remove the unwanted process task

HOW TO: Export OIM plugin

  Jeff Smith's blog covered the generic understanding on how to export out the OIM plugins, which was very useful.

WrappedDeploymentException: oracle.iam.platform.OIMClient

  When deploying the OIM Client as a web service on weblogic from eclipse, I would get the following error:

Logging a custom connector and plugins within OIM 11g

  Here are the steps on how to enable your logging for your custom connector.

Comments