A membership is created and then the "Account"-Object referenced by the DPRMemberShipAcion.ObjectKeyMember is deleted before the membership operations has been executed. The membership operations will then fail, because it cannot find the object any more. This can only happen when DeleteDelay=0 has been configured for the membership table.
Example (LDAP):
Please note that this issue can occur for all target systems.[2134002] Error running provisioning.
[1777018] Error executing synchronization project (LDAP Domain (
))'s workflow (Provisioning). [1777124] Error executing projection step (GroupOfNames) of projection configuration (Provisioning (Provisioning)).
[1777219] Error executing synchronization step (GroupOfNames)!
[1777239] The mapping rule (Members) was unable to execute synchronization between system objects (GroupOfNamesRoot) and (GroupOfNamesRoot) successfully!
[1777182] Error resolving references of property (vrtMember@LDAPGroup) for system object (GroupOfNamesRoot)!
[810029] Object of type LDAP user accounts does not exist in database or you do not have the relevant viewing permissions.
An enhancement request (#27589) has been created.
The following is a list of product versions and platforms compatible with this hotfix.
Product Name | Product Version |
---|---|
Identity Manager | 7.1.0 |
Identity Manager | 7.1.1 |
This hotfix will be included in the next release or service pack.
The following is a list of things updated in this hotfix.
SQL Scripts |
---|
DPR_FSQTriggerRIMemberShip |
DPR_FSQTriggerWatchMemberShip |
DPR_ZTriggerCreateMembership |
For general information on installing a hotfix please refer to the documentation here:
Installing a Hotfix in the One Identity Manager Database
To remove this hotfix:
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy