Symantec IGA

Expand all | Collapse all

Receiving error calling TEWS from SoapUI

  • 1.  Receiving error calling TEWS from SoapUI

    Posted 02-16-2016 05:46 AM

    Hi,

     

    I am testing TEWS by calling the service from SoapUI however I am receiving the following error when testing from SoapUI.

     

    <faultstring>Error performing operation.</faultstring>
    <tews:name>ERROR</tews:name>
    <tews:code>500</tews:code>
    <tews:description>big bug forbidden value ProcessStep::DataValidate TabName:  ERRORLEVEL::Error</tews:description>

     

     

    IDM version v12.6.5
    JBoss 6.2
    Java 1.7

     

     

    Any pointers?



  • 2.  Re: Receiving error calling TEWS from SoapUI

    Posted 02-17-2016 02:16 PM

    When you say "Testing TEWS" what do you mean?

     

    What are your settings in the management console:

    Home Environments <your IME name> Advanced Settings Web Services

     

    What IM task are you calling in SoapUI? Can you copy the XML here?

     

    The OOTB View user is pretty simple to use to make sure TEWS is working.

    I will work on an example from my environment, but please while you are waiting Post the settings and the XML here so that we have it.

     

    Thanks,

    Bill Patton



  • 3.  Re: Receiving error calling TEWS from SoapUI

    Posted 02-19-2016 09:31 AM

    Hi Bill,

     

    We have CA Identity Manager installed and the TEWS has not be accessed in a while, therefore I was testing it.

     

    Here is the XML

    <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsdl="http://tews6/wsdl">
       <soapenv:Header/>
       <soapenv:Body>
          <wsdl:TaskContext>
              <wsdl:admin_id>adminid</wsdl:admin_id>
             <!--Optional:-->
             <wsdl:admin_password>pwd</wsdl:admin_password>
          </wsdl:TaskContext>
          <wsdl:WSProvideprovisioningRoletouser>
             <wsdl:WSProvideprovisioningRoletouserSearch>
                 <wsdl:Filter index="0">
                   <wsdl:Field>%USER_ID%</wsdl:Field>
                   <wsdl:Op>EQUALS</wsdl:Op>
                   <wsdl:Value>user_id_value</wsdl:Value>
                </wsdl:Filter>
             </wsdl:WSProvideprovisioningRoletouserSearch>
             <!--Optional:-->
             <wsdl:WSProvideprovisioningRoletouserUserProfileTab>
                <!--You may enter the following 2 items in any order-->
                <!--Optional:-->
                <wsdl:st>-PR AD Change</wsdl:st>
                <!--Optional:-->
             </wsdl:WSProvideprovisioningRoletouserUserProfileTab>
          </wsdl:WSProvideprovisioningRoletouser>
       </soapenv:Body>
    </soapenv:Envelope>

     

    This should call our Assign Provisioning Role policy coded

    policy_xpress.PNG

     

    Here are the settings:

    ca_management_console.PNG

     

    Thanks

     

    Stuart



  • 4.  Re: Receiving error calling TEWS from SoapUI

    Posted 02-19-2016 12:58 PM

    Off the bat:

     

    These will need values:

             <wsdl:admin_id>adminid</wsdl:admin_id>

             <wsdl:admin_password>pwd</wsdl:admin_password>

     

             <wsdl:Value>user_id_value</wsdl:Value>

     

    The first two are required because of your screen shot from the management console states:

    Admin password is required

     

    under:

    Home Environments <your IME name>

     

    You will see: Public User

    Mine is:

    Unique Name:
    uid=SuperAdmin,ou=AppsAdmin,ou=Support,o=DEMOCORP,c=AU

    You will need this value (the whole DN) in the admin_id field and the password for that user in the admin_password field

     

    the user_id_value can be any valid user ID in your system.

     

    you can remove this for testing:

             <wsdl:st>-PR AD Change</wsdl:st>



  • 5.  Re: Receiving error calling TEWS from SoapUI

    Posted 02-22-2016 10:06 AM

    Hi Bill,

     

    I removed the credentials and any UID value from the XML as it is not good practice to include in posts.

     

    I will remove <wsdl:st>-PR AD Change</wsdl:st> and test.

     

    Thank you

     

    Stuart



  • 6.  Re: Receiving error calling TEWS from SoapUI

    Posted 03-23-2017 07:14 AM

    Hi Bill,

     

    Am receiving the following error while trying to create user, whereas am able to create user via SOAP for create user with generated password.

     

    <soapenv:Envelope xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ http://schemas.xmlsoap.org/soap/envelope/" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:tews="http://tews6/wsdl" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    <soapenv:Body>
    <soapenv:Fault>
    <faultcode>soapenv:Client</faultcode>
    <faultstring>Error performing operation.</faultstring>
    <detail>
    <tews:ImsException version="6.0">
    <tews:exception>
    <tews:name>Password</tews:name>
    <tews:code>500</tews:code>
    <tews:description>password should not contains userID ProcessStep::DataValidate TabName: Profile ERRORLEVEL::Error</tews:description>
    <tews:transaction>10fe6fe8-c96d0d10-61788500-073237</tews:transaction>
    </tews:exception>
    </tews:ImsException>
    </detail>
    </soapenv:Fault>
    </soapenv:Body>
    </soapenv:Envelope>



  • 7.  Re: Receiving error calling TEWS from SoapUI

    Posted 03-23-2017 10:55 AM

    Pravin,

      This Thread is over a year old. It is best practice to start a new thread for a new question.

      The above question was asked for testing tews and was passing in a incorrect attribute during initial contact.

     

      Your question is past that. I am not sure what you are setting the initial password to, but the error is pretty specific:

    <tews:description>password should not contains userID ProcessStep::DataValidate TabName: Profile ERRORLEVEL::Error</tews:description>

     

      Do not include the users ID in the password you are trying to generate.

     

      If this does not answer your question, Simply open a new question here, reply to this thread with the link, and someone will assist with answer for you.

     

    Thanks,

    Bill Patton