Project

General

Profile

Actions

Defect #1549

closed

Multiple accounts on system after sychronization

Added by Roman Kučera almost 6 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Vít Švanda
Category:
Synchronization
Target version:
Start date:
03/12/2019
Due date:
% Done:

100%

Estimated time:
Affected versions:
Owner:

Description

Use case:
I have AD system with provisioning mapping(identifier is username) and synchronization mapping(identifier username).
Then I'll configure synchronization with correlation attribute personal number and I want to load username from AD to IdM. I have default role for this synchronization which is assigning AD system.
When I run this synchronization the output is that, if user had different username in IdM and AD he has now two accounts for AD one with old username (which is not created when system is read only and I don't to create this account anyway) and one for new username (real working account)

This is probably caused when the default role is assigned during synchronization, then provisioning is called, but with the old username.

Possible workarounds - Don't configure provisioning mapping, before you run this first synchronization or don't assign system to the default role.


Related issues

Related to IdStory Identity Manager - Defect #1852: Synchronization with Do_not_link linked an account to an inactive identity, LINK_PROTECTED linked it without protectionClosedVít Švanda09/13/2019

Actions
Actions

Also available in: Atom PDF