Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry.
Saviynt Copilot Icon

LDAP group import mapping

09
New Contributor III
New Contributor III

Hi, we are trying to import the LDAP groups to EIC. However am getting an arr error.

Below is groupImportMapping json:

 

 

 

{"entitlementTypeName": "isMemberOf", "groupAccountMappingAttributeName":"member", 
"performGroupAccountLinking": "true", "incrementalTimeField": "modifytimestamp", 
"groupObjectClass":"(|(objectclass=groupOfUniqueNames)(objectClass=groupOfNames)(objectClass=groupOfUniqueNames))",
"mapping":"entitlement_value:nameinnamespace_char,entitlementid:nameinnamespace_char,entitlement_glossary:description_char,
lastscandate:modifytimestamp_customDate--yyyyMMddHHmmss,updatedate:modifytimestamp_customDate--yyyyMMddHHmmss,
createdate:createtimestamp_customDate--yyyyMMddHHmmss,displayName:cn_char,description:description_char,
customProperty1:entryid_char,customProperty2:creatorsname_char,customProperty3:nsUniqueId_char,
customProperty4:dn_char,customProperty5:entrydn_char,customProperty6:nameinnamespace_char,RECONCILATION_FIELD:customProperty3"}

 

 

 



LOGS:

 

 

2023-06-11 22:11:01,244 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - groupImportMapping is not set properly
2023-06-11 22:11:01,244 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Groups Mapping is 
{"entitlementTypeName": "isMemberOf", "groupAccountMappingAttributeName":"member", 
"performGroupAccountLinking": "true", "incrementalTimeField": "modifytimestamp", 
"groupObjectClass":"(|(objectclass=groupOfUniqueNames)(objectClass=groupOfNames)(objectClass=groupOfUniqueNames))",
"mapping":"entitlement_value:nameinnamespace_char,entitlementid:nameinnamespace_char,entitlement_glossary:description_char,
lastscandate:modifytimestamp_customDate--yyyyMMddHHmmss,updatedate:modifytimestamp_customDate--yyyyMMddHHmmss,
createdate:createtimestamp_customDate--yyyyMMddHHmmss,displayName:cn_char,description:description_char,
customProperty1:entryid_char,customProperty2:creatorsname_char,customProperty3:nsUniqueId_char,
customProperty4:dn_char,customProperty5:entrydn_char,customProperty6:nameinnamespace_char,RECONCILATION_FIELD:customProperty3"}
2023-06-11 22:11:01,245 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Loading Start for Security System - LDAP_Employee New
2023-06-11 22:11:01,245 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Finding Endpoint for the security System - LDAP_Employee New
2023-06-11 22:11:01,247 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - Endpoint 'LDAP_Employee' found for the Security System 'LDAP_Employee New' with Endpointkey: 15
2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - EntitlementType 'isMemberOf' for Endpoint 'LDAP_Employee' found with EntitlementTypekey - 21
2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Import Json - {
     "envproperties" : {
          "com.sun.jndi.ldap.connect.timeout": "120000",
          "com.sun.jndi.ldap.read.timeout": "120000"
     }
}

2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - advanceGroupFilter is blank in groupimport mapping.
2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Enter getLDAPContext
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - enable_dclocator = false
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Exit getLDAPContext
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - objectclass: (objectclass=group)
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] ERROR services.AdImportService  - null
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG println.PrintlnToLogger  - Println ::[1;31m| Error[22;39mjava.lang.ArrayIndexOutOfBoundsException[m
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - Writing job history to import logs.
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - Number of log entries to be written : 3
2023-06-11 22:11:01,361 [quartzScheduler_Worker-2] DEBUG println.PrintlnToLogger  - Println :: Job ended at : Sun Jun 11 22:11:01 UTC 2023

 

Job History Detail Error message:

Error - Importing AD Data :
Error-Connecting-or-Importing-AD - null


LDAP Account import is working as expected. LDAP Access import is failing.

 

 

3 REPLIES 3

vivekmohanty_pm
Saviynt Employee
Saviynt Employee

Can you share the  EIC version and the debug logs where the error is getting printed?

09
New Contributor III
New Contributor III

v5.5sp3


2023-06-11 22:11:01,244 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - groupImportMapping is not set properly
2023-06-11 22:11:01,244 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Groups Mapping is 
{"entitlementTypeName": "isMemberOf", "groupAccountMappingAttributeName":"member", 
"performGroupAccountLinking": "true", "incrementalTimeField": "modifytimestamp", 
"groupObjectClass":"(|(objectclass=groupOfUniqueNames)(objectClass=groupOfNames)(objectClass=groupOfUniqueNames))",
"mapping":"entitlement_value:nameinnamespace_char,entitlementid:nameinnamespace_char,entitlement_glossary:description_char,
lastscandate:modifytimestamp_customDate--yyyyMMddHHmmss,updatedate:modifytimestamp_customDate--yyyyMMddHHmmss,
createdate:createtimestamp_customDate--yyyyMMddHHmmss,displayName:cn_char,description:description_char,
customProperty1:entryid_char,customProperty2:creatorsname_char,customProperty3:nsUniqueId_char,
customProperty4:dn_char,customProperty5:entrydn_char,customProperty6:nameinnamespace_char,RECONCILATION_FIELD:customProperty3"}
2023-06-11 22:11:01,245 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Loading Start for Security System - LDAP_Employee New
2023-06-11 22:11:01,245 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Finding Endpoint for the security System - LDAP_Employee New
2023-06-11 22:11:01,247 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - Endpoint 'LDAP_Employee' found for the Security System 'LDAP_Employee New' with Endpointkey: 15
2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - EntitlementType 'isMemberOf' for Endpoint 'LDAP_Employee' found with EntitlementTypekey - 21
2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Import Json - {
     "envproperties" : {
          "com.sun.jndi.ldap.connect.timeout": "120000",
          "com.sun.jndi.ldap.read.timeout": "120000"
     }
}

2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - advanceGroupFilter is blank in groupimport mapping.
2023-06-11 22:11:01,249 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Enter getLDAPContext
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - enable_dclocator = false
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - Exit getLDAPContext
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.AdImportService  - objectclass: (objectclass=group)
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] ERROR services.AdImportService  - null
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG println.PrintlnToLogger  - Println ::[1;31m| Error[22;39mjava.lang.ArrayIndexOutOfBoundsException[m
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - Writing job history to import logs.
2023-06-11 22:11:01,352 [quartzScheduler_Worker-2] DEBUG services.ImportUtilityService  - Number of log entries to be written : 3
2023-06-11 22:11:01,361 [quartzScheduler_Worker-2] DEBUG println.PrintlnToLogger  - Println :: Job ended at : Sun Jun 11 22:11:01 UTC 2023

09
New Contributor III
New Contributor III

it was acl issue. thanks i fixed it.