The AWI performs incorrect field validation for the
Email 1 field in LDAP-enabled USER objects.
Specifically, the AWI enforces the requirement that LDAP-enabled USER objects have a value in the
Email 1 field. In our environment have many
technical users (also known as
non-personal users) that are used to perform automated actions, and are not associated with physical persons. These users do not have email addresses in LDAP, and our LDAP administrators have informed us that it is not permitted to add email addresses for these users.
The
Java User Interface did not enforce the requirement that LDAP-enabled USER objects have a value in the
Email 1 field. We have been using the Automation Engine without email addresses in these users for almost a decade without any problems.
This bug means that we are not able to save changes to LDAP-enabled USER objects of technical (non-personal) users.
Work-aroundWe can work around the problem by exporting the USER object to XML, making the required changes, and re-importing it. On XML import, the Automation Engine
does not enforce the requirement that LDAP-enabled USER objects have a value in the
Email 1 field.
We opened a support ticket for this more than one year ago, but the problem was not fixed. Today, we opened a new support ticket for the problem.