Environment
NetIQ Identity Manager 4.0.2
NetIQ Identity Manager 4.0.2 Patch 3
NetIQ Identity Manager 4.0.2 Patch 4
NetIQ Identity Manager Engine
NetIQ Identity Manager Driver - Active Directory
NetIQ Identity Manager Roles Based Provisioning Module
NetIQ Designer for Identity Manager 4.0.2 AU4a
NetIQ Identity Manager 4.0.2 Patch 3
NetIQ Identity Manager 4.0.2 Patch 4
NetIQ Identity Manager Engine
NetIQ Identity Manager Driver - Active Directory
NetIQ Identity Manager Roles Based Provisioning Module
NetIQ Designer for Identity Manager 4.0.2 AU4a
Situation
After updating the "Active Directory Entitlement and Exchange Mailbox Support" package to version 2.1.0.20140219153152 (version at time of writing) or later.
The following things are observed:
- CODE MAP refresh have stopped working
- Entitlements are not being updated
- CODE MAP refresh does not work for a new driver
The following things are observed:
- CODE MAP refresh have stopped working
- Entitlements are not being updated
- CODE MAP refresh does not work for a new driver
Resolution
See Cause for more information.
To solve the issue do as follows:
1. Downgrade the "Active Directory Entitlement and Exchange Mailbox Support" package to a 1.0.x version which will put the "initEntitlementConfigurationResource" back into the Input Transformation - this is to get the driver back to a valid state (and the CODE MAP refresh will now work again if deployed in this state).
2. Install Identity Manager 4.0.2 Patch 3 or later.
3. Upgrade the Server version in Designer:
3.1. In Designer, selected the server in outline view and goto it's properties page.
3.2. Click "Update the Identity Manager Engine Version from a Live Server" icon which is located just to right-side of Identity Manager Version.
3.3. You will get dialog window saying "The Identity Manager version is already current". Click Ok.
3.4. Click Apply and Ok.
3.5. Save.
3.6. Close and reopen project.
4) Upgrade the "Active Directory Entitlement and Exchange Mailbox Support" package to the latest version.
To solve the issue do as follows:
1. Downgrade the "Active Directory Entitlement and Exchange Mailbox Support" package to a 1.0.x version which will put the "initEntitlementConfigurationResource" back into the Input Transformation - this is to get the driver back to a valid state (and the CODE MAP refresh will now work again if deployed in this state).
2. Install Identity Manager 4.0.2 Patch 3 or later.
3. Upgrade the Server version in Designer:
3.1. In Designer, selected the server in outline view and goto it's properties page.
3.2. Click "Update the Identity Manager Engine Version from a Live Server" icon which is located just to right-side of Identity Manager Version.
3.3. You will get dialog window saying "The Identity Manager version is already current". Click Ok.
3.4. Click Apply and Ok.
3.5. Save.
3.6. Close and reopen project.
4) Upgrade the "Active Directory Entitlement and Exchange Mailbox Support" package to the latest version.
Cause
The "Active Directory Entitlement and Exchange Mailbox Support" package
version 2.0.x or later have been specifically developed
for Identity Manager 4.0.2 Patch 3 or later (Engine version higher than
4.0.2.3), which introduces two new policy sets; "Startup" and
"Shutdown".
Using "Active Directory Entitlement and Exchange Mailbox Support" version 2.0.x, or later will move the "initEntitlementConfigurationResource" from the Input Transformation to the Startup Tranformation.
If the Startup Transformation is not available, which happens if Identity Manager 4.0.2 Patch 3 or later have not been installed, then this policy among others will not be executed during startup, and the Entitlement Configuration object will not get created or updated.
To see if the Startup Transformation is available do;
1. In designer click on a driver in the Outline
2. Click on Policy Set in the window below the Outline window
3. That will show the Policy Sets. And if Identity Manager 4.0.2 Patch 3 have been installed and the Designer Project have been updated with this information it will show the Startup and Shutdown Policies.
Using "Active Directory Entitlement and Exchange Mailbox Support" version 2.0.x, or later will move the "initEntitlementConfigurationResource" from the Input Transformation to the Startup Tranformation.
If the Startup Transformation is not available, which happens if Identity Manager 4.0.2 Patch 3 or later have not been installed, then this policy among others will not be executed during startup, and the Entitlement Configuration object will not get created or updated.
To see if the Startup Transformation is available do;
1. In designer click on a driver in the Outline
2. Click on Policy Set in the window below the Outline window
3. That will show the Policy Sets. And if Identity Manager 4.0.2 Patch 3 have been installed and the Designer Project have been updated with this information it will show the Startup and Shutdown Policies.