Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-16243

IDM password Sync documentation - IDM URL incorrect

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 7.0.0
    • Fix Version/s: 7.1.0, 7.0.2
    • Component/s: documentation
    • Labels:
      None
    • Target Version/s:
    • Verified Version/s:
    • Story Points:
      0.5
    • Sprint:
      IDM - 2021.3

      Description

      https://backstage.forgerock.com/docs/idm/7/pwd-plugin-guide/install-ad-password-sync-plugin.html#install-ad-password-sync-plugin

      The documentation for the Active Directory Password synchronisation plugin currently shows the IDM URL example as:
      https://localhost:8444/openidm/managed/user?_action=patch&_queryFilter=uid+eq+${samaccountname}
      Configuring the password capture plugin with this results in a HTTP 400 from IDM with the response: 

      {
       "code": 400,
       "reason": "Bad Request",
       "message": "For input string: "bradt""
      }

      There are 2 issues here:

      1. The samaccountname parameter should be enclosed in single or double quotes
      2. For most installations this queryFilter will fail because there is no uid in the default managed user object.

      The correct URL for this should be:

      https://localhost:8444/openidm/managed/user?_action=patch&_queryFilter=userName+eq+'${samaccountname}'

        Attachments

          Activity

            People

            Assignee:
            Lana Lana Frost
            Reporter:
            bradley.tarisznyas Brad Tarisznyas
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: