Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-3730

"Unable to create policy" when saving Referral without a rule in an external config store

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Won't Fix
    • Affects Version/s: 11.0.0
    • Fix Version/s: None
    • Component/s: policy
    • Labels:
    • Environment:
      OpenAM 11 with external OpenDJ 2.6 config store
    • Rank:
      1|hzoblz:
    • Support Ticket IDs:

      Description

      OpenAM 11 with external OpenDJ 2.6 config store.

      Trying to create a referral policy. When clicking on OK just after entering a name, the console shows the following error:

      "Unable to create policy test referral 2 in organization dc=forgerock,dc=example,dc=com."

      And the Configuration debug log shows:
      =======
      ERROR: SMSLdapObject.create() Error in creating entry: ou=test referral 2,ou=referrals,ou=default,ou=OrganizationConfig,ou=1.0,ou=sunEntitlementIndexes,ou=services,dc=forgerock,dc=example,dc=com
      By Principal: cn=dsameuser,ou=DSAME Users,dc=forgerock,dc=example,dc=com
      com.sun.identity.shared.ldap.LDAPException: error result (65); Entry ou=test referral 2,ou=referrals,ou=default,ou=OrganizationConfig,ou=1.0,ou=sunEntitlementIndexes,ou=services,dc=forgerock,dc=example,dc=com violates the Directory Server schema configuration because it includes attribute sunxmlKeyValue without any values
      at com.sun.identity.shared.ldap.LDAPConnection.checkMsg(LDAPConnection.java:5526)
      at com.sun.identity.shared.ldap.LDAPConnection.add(LDAPConnection.java:3237)
      at com.sun.identity.shared.ldap.LDAPConnection.add(LDAPConnection.java:3258)
      at com.sun.identity.shared.ldap.LDAPConnection.add(LDAPConnection.java:3184)
      at com.sun.identity.sm.ldap.SMSLdapObject.create(SMSLdapObject.java:363)
      at com.sun.identity.sm.ldap.SMSLdapObject.create(SMSLdapObject.java:339)
      ...
      =======

      The policy does actually get created, but as a normal policy, not as a referral.

      WORKAROUND: create a rule before saving the referral.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              nathalie.hoet Nathalie Hoet
            • Votes:
              1 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: