Environment
Novell Identity Manager 3.6
Novell Identity Manager Driver - LDAPSituation
After an upgrade to IDM 3.6 x509 certificates will no longer sync from eDirectory to a Sun LDAP server. In the schema mapping, eDirectory's userCertificate attribute is mapped to LDAP userCertificate:binary. The handle binary option is turned on in the driver configuration.
Resolution
This has been reported to engineering.
A current workaround is to go back to the IDM 3.5.4 shim and then the userCertificate will once again synchronize.