Actions
Task #2789
closed
AD account can't be deleted
Start date:
04/30/2021
Due date:
% Done:
100%
Estimated time:
Owner:
Description
Tested on 11.0-RC2
After I removed the role for AD system, a delete operation failed with the following error:
The export of the system is attached.
The account exists - I can read it on the Entities tab.
org.identityconnectors.framework.common.exceptions.UnknownUidException: Object with Uid 'Attribute: {Name=__UID__, Value=[alena.peterova]}' and ObjectClass 'ObjectClass: __ACCOUNT__' does not exist!
at net.tirasa.connid.bundles.ldap.search.LdapSearches.findEntryDN(LdapSearches.java:121)
at net.tirasa.connid.bundles.ldap.search.LdapSearches.getEntryDN(LdapSearches.java:72)
at net.tirasa.connid.bundles.ad.crud.ADDelete.delete(ADDelete.java:51)
at net.tirasa.connid.bundles.ad.ADConnector.delete(ADConnector.java:250)
at org.identityconnectors.framework.impl.api.local.operations.DeleteImpl.delete(DeleteImpl.java:84)
at jdk.internal.reflect.GeneratedMethodAccessor3166.invoke(Unknown Source)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:566)
at org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:98)
at com.sun.proxy.$Proxy541.delete(Unknown Source)
at jdk.internal.reflect.GeneratedMethodAccessor3166.invoke(Unknown Source)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:566)
at org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:96)
at com.sun.proxy.$Proxy541.delete(Unknown Source)
at jdk.internal.reflect.GeneratedMethodAccessor3166.invoke(Unknown Source)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:566)
at org.identityconnectors.framework.impl.api.DelegatingTimeoutProxy.invoke(DelegatingTimeoutProxy.java:99)
at com.sun.proxy.$Proxy541.delete(Unknown Source)
at org.identityconnectors.framework.impl.api.AbstractConnectorFacade.delete(AbstractConnectorFacade.java:166)
at eu.bcvsolutions.idm.ic.connid.service.impl.ConnIdIcConnectorService.deleteObject(ConnIdIcConnectorService.java:141)
at eu.bcvsolutions.idm.ic.service.impl.DefaultIcConnectorFacade.deleteObject(DefaultIcConnectorFacade.java:75)
at eu.bcvsolutions.idm.acc.event.processor.provisioning.ProvisioningDeleteProcessor.processInternal(ProvisioningDeleteProcessor.java:64)
at eu.bcvsolutions.idm.acc.event.processor.provisioning.AbstractProvisioningProcessor.process(AbstractProvisioningProcessor.java:146)
at eu.bcvsolutions.idm.core.api.event.AbstractEntityEventProcessor.onApplicationEvent(AbstractEntityEventProcessor.java:239)
at eu.bcvsolutions.idm.core.api.event.AbstractEntityEventProcessor$$FastClassBySpringCGLIB$$df69624d.invoke(<generated>)
at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:218)
at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:752)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:93)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)
at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:691)
at eu.bcvsolutions.idm.acc.event.processor.provisioning.ProvisioningDeleteProcessor$$EnhancerBySpringCGLIB$$91f4b076.onApplicationEvent(<generated>)
at org.springframework.context.event.SimpleApplicationEventMulticaster.doInvokeListener(SimpleApplicationEventMulticaster.java:172)
at org.springframework.context.event.SimpleApplicationEventMulticaster.invokeListener(SimpleApplicationEventMulticaster.java:165)
at org.springframework.context.event.SimpleApplicationEventMulticaster.multicastEvent(SimpleApplicationEventMulticaster.java:139)
at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:403)
at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:373)
at eu.bcvsolutions.idm.core.model.service.impl.DefaultEntityEventManager.process(DefaultEntityEventManager.java:252)
at eu.bcvsolutions.idm.core.model.service.impl.DefaultEntityEventManager.process(DefaultEntityEventManager.java:179)
at eu.bcvsolutions.idm.core.model.service.impl.DefaultEntityEventManager$$FastClassBySpringCGLIB$$1694e58f.invoke(<generated>)
at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:218)
at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:752)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
at org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:295)
at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:98)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)
at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:691)
at eu.bcvsolutions.idm.core.model.service.impl.DefaultEntityEventManager$$EnhancerBySpringCGLIB$$65d7c8a1.process(<generated>)
at eu.bcvsolutions.idm.acc.service.impl.DefaultProvisioningExecutor$1.call(DefaultProvisioningExecutor.java:191)
at eu.bcvsolutions.idm.acc.service.impl.DefaultProvisioningExecutor$1.call(DefaultProvisioningExecutor.java:187)
at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
at eu.bcvsolutions.idm.core.config.DelegatingTransactionContextRunnable.run(DelegatingTransactionContextRunnable.java:39)
at org.springframework.security.concurrent.DelegatingSecurityContextRunnable.run(DelegatingSecurityContextRunnable.java:84)
at java.base/java.lang.Thread.run(Thread.java:834)
Files
Related issues
Updated by Alena Peterová almost 3 years ago
- Related to Task #2768: Testing and release of version 11.0 added
Updated by Vít Švanda almost 3 years ago
- Status changed from New to Needs feedback
- Assignee changed from Vít Švanda to Radek Tomiška
- Target version set to 11.0.0
- % Done changed from 0 to 90
The problem is that the system has wrong "Root suffixies". The "ou=newUsers,ou=specialOu,DC=piskoviste,DC=bcv" is needed for delete that account. It means the root is not enough root. This is a bit of an extreme a case.
I improved AD wizard for filling all containers (search, new, delete) to parameter "Root suffixies" (until now there was only search).
Commit: https://github.com/bcvsolutions/CzechIdMng/commit/7df69bda3cf41965a59cffe8469e59c67e55673a
Updated by Radek Tomiška almost 3 years ago
- Status changed from Needs feedback to Resolved
- Assignee changed from Radek Tomiška to Vít Švanda
- % Done changed from 90 to 100
I did test and code review, it works and code is nice, thx!
Updated by Radek Tomiška almost 3 years ago
- Status changed from Resolved to Closed
Actions