The following table lists the issues you might encounter and the suggested actions for working on these issues. If the problem persists, contact your NetIQ representative.
Issue |
Suggested Actions |
---|---|
The Roles and Self tasks widgets on the Dashboard page do not display any data. If you check in your browser’s Console, a 404 error is displayed. This issue is observed when the default IDMProv deployment context is changed to a custom context. |
To resolve this issue, you must change the REST API URL on the impacted widgets. Perform the following steps:
|
When Identity Applications installed in a cluster is upgraded and Tomcat is restarted, clustering does not work as expected. |
Perform the following actions in all the nodes of the cluster:
|
The upgrade process does not set the default Identity Applications Administrative account as cn=uaadmin.ou=sa.o=data. The following error is logged to the catalina.out file. AuthorizationManagerService [RBPM] Error occured calculating effective rights for attribute: nrfAccessMgrRevokeRole on object: cn=complianceAdmin,cn=System,cn=Level20,cn=RoleDefs,cn=RoleConfig,cn=AppConfig,cn=UserApplication,cn=Driver Set,o=system for trustee: cn=uaadmin,ou=sa,o=data.com.novell.srvprv.spi.security.IDMAuthorizationException: Error occured calculating effective rights for attribute: nrfAccessMgrRevokeRole on object: cn=complianceAdmin,cn=System,cn=Level20,cn=RoleDefs,cn=RoleConfig,cn=AppConfig,cn=UserApplication,cn=Driver Set,o=system for trustee: cn=uaadmin,ou=sa,o=data.at com.novell.idm.security.authorization.ldap.LdapRightsUtil.getPropertyRights(LdapRightsUtil.java:152) Unable to fetch roles from edirectory in the predefined time set. |
|
You want to modify one or more of the following the Identity Applications configuration settings created during installation:
|
Run the configuration utility independent of the installer. Run the following command from the installation directory (by default, C:\NetIQ\idm\apps\UserApplication\): configupdate.bat |
Starting Tomcat causes the following exception: port 8180 already in use |
Shut down any instances of Tomcat (or other server software) that might already be running. If you reconfigure Tomcat to use a port other than 8180, edit the config settings for the User Application driver. |
When Tomcat starts, the application reports it cannot find trusted certificates. |
Ensure that you start Tomcat by using the JDK specified during the installation of the Identity Applications. |
Cannot log in to the portal admin page. |
Ensure that the Identity Applications Administrator account exists. This account is not the same as your iManager administrator account. |
Cannot create new users even with administrator account. |
The Identity Applications Administrator must be a trustee of the top container and should have Supervisor rights. You can try setting the Identity Applications Administrator’s rights equivalent to the LDAP Administrator’s rights (using iManager). |
Starting application server throws keystore errors. |
Your application server is not using the JDK specified during the installation of the Identity Applications. Use the keytool command to import the certificate file: keytool -import -trustcacerts -alias aliasName -file certFile -keystore ..\lib\security\cacerts -storepass changeit
|
Email notification not sent. |
Run the configupdate utility to check whether you supplied values for the following Identity Applications configuration parameters: Email From and Email Host. Run the following command from the installation directory (by default, C:\NetIQ\idm\apps\UserApplication\): configupdate.bat |