Hope you guys doing great!
Myself Facing error while trying to login CA Management Console. Tried checking the username and password in IM_AUTH_USER table and everything is fine.
One more issue also there with provisioning role.
I see case 01175349 was opened for this question and issue. I will review and discuss internally to find more information on how to drive this forward to resolution. Thank you.
Have you been able to Check in the "ucy_environment_settings.xml" file if it is updated as provisioning enabled="false" under "Provisioning" section?
Did you ensure Provisioning was enabled for this IME under Management Console > Advanced Settings > Provisioning and we will be able to utilize Provisioning Roles?
Let us know the results and continue to update and work through the case. I will also monitor this post for other information from our user community. Thank you.
Thanks for your response. what you have advised is very helpful. But the issue here is while logging into Management console.
Screenshot attached(IAM error1.png).
Only then we can try editing "***_environment_settings.xml" and change Management Console > Advanced Settings > Provisioning.
The problem is - Authentication directory MemberRule doesn't match with column name "ID" of table name "IM_AUTH_USER"
Please modify either authentication directory MemberRule to match with column "ID" of IM_AUTH_USER table, OR
Modify ID value according to MemberRule Auth directory.
For instance, if ID value is 0, then MemberRule should be "admin(0)"
where admin is username for management console
I can see same error if this is not matching.
Can you please help me with where can i find - Authentication directory MemberRule
Get the "UNIQUE_NAME" of Auth directory from "IM_DIRECTORY" table
REF_ID of "IM_DIRECTORY_LD" table is foreign key for "UNIQUE_NAME" of "IM_DIRECTORY" table
write SQL to get details where REF_ID = UNIQUE_NAME value
We can see the MEMBER_RULE attribute present in SECTION_NAME 'SETTINGS'
In my case - ID value is 0 and MemberRule is "Adminstrator(0)"
USER_NAME DISABLED ID
Administrator 0 0
REF_ID SECTION_NAME ATTRIBUTE_NAME ATTRIBUTE_VALUE
1 SETTINGS MEMBER_RULE Administrator(0)
As you said everything is perfect and same issue. Is there anything else to do. Please share your view.
In the management console, go to the advanced settings,
In the Provisioning Properties, select the property name "Enabled" ( Enable the check box - In the Value),
Give the information in the Inbound Administrator,
In the Provisioning Server, Select the directory and click Save,
Post this, you will be able to modify the provisioning role,
Thank You Anupam for the suggestions on this,