• State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 94 subscribers
  • Views 4962 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

LDAP provisioning: "discarded due to an invalid combination of attribute and object class"

sayed.ashhad
over 6 years ago

Hi

 

I am getting this error in a RACF sync project when trying to update racfAddressLine1, racfAddressLine2 and racfAddressLine3 attributes. The error also appears if I try to make the change in Target System Browser and hit save.

If I log into an LDAP browser using the exact same credentials, and go to the user object to be updated, I cannot see these attributes but if I add a new attribute for racfAddressLine1 and populate it, then hit save, it saves.

And if I then attempt the sync again, those attributes do get populated - but only for that one row. The next account in the sync also needs these attributes refreshed but it throws the same error.

What could be causing this?

Thanks in advance

Parents
  • +1 over 6 years ago

    Hi,

    The error message you are getting is my fault!!!! It used to be the case that if you attempted an update on an attribute that was not part of the current objectclass combination, your update would succeed but actually fail silently!

    So I asked the developer to throw this error in those circumstances so that you at least had a chance of knowing that an error had occurred.

    In short, you have to ensure that the attribute you are updating is part of the objectclass heirarchy you have defined on the object (in 1IM and 'to' the TS). If it's not, you'll get this error.

    Now the bit I can't 100% remember is the correct mapping configuration in this scenario so you'll have to experiment I'm afraid ...... I think you just need objectclass from LHS mapped to objectclass on RHS with direction 'to' target system. As well as your other mapping(s).

    HTH, Barry.

Reply
  • +1 over 6 years ago

    Hi,

    The error message you are getting is my fault!!!! It used to be the case that if you attempted an update on an attribute that was not part of the current objectclass combination, your update would succeed but actually fail silently!

    So I asked the developer to throw this error in those circumstances so that you at least had a chance of knowing that an error had occurred.

    In short, you have to ensure that the attribute you are updating is part of the objectclass heirarchy you have defined on the object (in 1IM and 'to' the TS). If it's not, you'll get this error.

    Now the bit I can't 100% remember is the correct mapping configuration in this scenario so you'll have to experiment I'm afraid ...... I think you just need objectclass from LHS mapped to objectclass on RHS with direction 'to' target system. As well as your other mapping(s).

    HTH, Barry.

Children
No Data