Environment
Identity Manager 4.7
Identity Manager Driver - ID Provider
Identity Manager Driver - ID Provider
Situation
Receiving the following 601 no such object error when attempting to start the ID Provider driver.
[01/24/20 14:15:44.832]:ser-id-provider PT:IDProviderShim: Error starting
ID-Provider.javax.naming.NameNotFoundException: [LDAP: error code 32 - NDS
error: no such entry (-601)]; remaining name 'CN=id-policies,OU=ID-Provider,OU=DriverSet,O=SYSTEM'
Resolution
The syntax specified for the full distinguished name to the ID Provider policies container is incorrect. The driver and driver set are CN objects not OU objects.
Incorrect:
'CN=id-policies,OU=ID-Provider,OU=DriverSet,O=SYSTEM'
Correct:
'CN=id-policies,CN=ID-Provider,CN=DriverSet,O=SYSTEM'
Once the path was corrected in the Policy Container DN field in the Driver Settings, driver parameters section of the properties of the driver. The ID Provider started up without errors.
Cause
There appears to be an intermittent issue with browsing out and selecting the id-policies object with iManager. Depending upon what browser you are using and other factors which have yet to be identified, it can place OU= on the driver and driver set objects. Thereby invalidating the path. The path must be corrected manually, or you can try a different browser or use Designer.
This issue has not been seen when selecting the object in Designer.