1. UNIFYBroker Forum
  2. UNIFYBroker/Microsoft Identity Manager
  3. Bugs
0
Fixed

Issue creating Identity Broker MA that has Boolean Attributes in Schema

Richard Courtenay 10 years ago in UNIFYBroker/Microsoft Identity Manager updated by anonymous 9 years ago 7

I've created a single Powershell Connector and Adapter as per the attached documents. If I attempt to create a new MA in FIM 2010 R2, I get the following error after entering my credentials and attempting to proceed from the connectivity portion of the FIM MA config:

Unable to retrieve schema. Error: An anchor attribute defined by the extension must not be of type Reference or Boolean. A multivalued attribute defined by the extension must not be of type Boolean.

In the event log I see:

Log Name: Application
Source: FIMSynchronizationService
Event ID: 6801
Level: Error


The extensible extension returned an unsupported error.
 The stack trace is:
 
 "System.Collections.Generic.KeyNotFoundException: The given key was not present in the dictionary.
   at System.Collections.Generic.Dictionary`2.get_Item(TKey key)
   at Unify.Product.IdentityBroker.SchemaEntryToAttributeTypeAdapter.Transform(String schemaEntry)
   at System.Linq.Enumerable.WhereSelectListIterator`2.MoveNext()
   at System.Linq.Enumerable.ToDictionary[TSource,TKey,TElement](IEnumerable`1 source, Func`2 keySelector, Func`2 elementSelector, IEqualityComparer`1 comparer)
   at System.Linq.Enumerable.ToDictionary[TSource,TKey,TElement](IEnumerable`1 source, Func`2 keySelector, Func`2 elementSelector)
   at Unify.Product.IdentityBroker.LdapConnectionProxy.get_Schema()
   at Unify.Product.IdentityBroker.UnifyLdapConnectorTypeProxy.GetSchema(KeyedCollection`2 configParameters)
Forefront Identity Manager 4.1.3627.0"

My DN is defined as UID=UFYGuid

That UFYGuid is not one of the Boolean attributes (it is type GUID).

If I change the schema of the connector so that the two Boolean attributes are of type string, then I can proceed to create the MA without any other changes.


IdB 5 Config.zip
ldap.png
Adam van Vliet 10 years ago

Please take a look at this Beau Harrison. Any questions please let me know.

Richard Courtenay 10 years ago

Should have mentioned it, but FIM is at version 4.1.3627.0

Beau Harrison (Senior Product Software Engineer) 10 years ago

I setup v5 with your config but I'm not having any problems creating a MA. Can you try a few things for me?

  1. If your IdB and FIM instances are on different machines, can your run Wireshark while attempting to create the MA and attach the capture?
  2. Can you browse the schema in a LDAP browser (I use Softera LDAP browser, and you can Schema > Schema Viewer)? Check the attribute types, you'll see your adapters attributes, and make sure the LDAP syntax they are using makes sense.
  3. If you recreate the adapter does the problem persist? Does it persist after recreating both adapter and connector?
Beau Harrison (Senior Product Software Engineer) 10 years ago

Discovered the cause of the issue you were having, it was a defect in the management agent. We'll release a new build shortly.

Richard Courtenay 10 years ago

1. IdB is on the FIM Server

2.

3. I've recreated the adapter and that didn't work. I'll look at recreating the connector also.

edit: Just saw your response Beau. I'll hold off on reconfiguring the connector

Beau Harrison (Senior Product Software Engineer) 10 years ago

OK, new DEV build of the MA is up: https://unifysolutions.jira.com/wiki/display/SUBIDBFIM/Downloads

Richard Courtenay 10 years ago

That appeared to work

1) Installed and replaced the existing FIM Adapter file
2) Restarted the Sync Service, and the Sync Service Manager
3) Selected my old MA and performed a 'Schema Refresh'. That completed and the new attrributes are available for selection
4) Went to create a new MA, and could proceed past the 'connection' stage. (didn't do the creation to the end, but got past where i was roadblocked to the attribute selection page).

Thanks, I'll let you know if I have further issues.

Customer support service by UserEcho