Symantec Identity Manager - Post upgrade issues - Logical Attribute: |enable| had error:

search cancel

Symantec Identity Manager - Post upgrade issues - Logical Attribute: |enable| had error:

book

Article ID: 248169

calendar_today

Updated On:

Products

CA Identity Manager

Issue/Introduction

We have upgraded to 14.4 and seeing the below issue

"Logical Attribute: |enable| had error: java.lang.NullPointerException" error is due to corrupted password data of the user.

"Logical Attribute: |forcePasswordReset| had error: java.lang.NullPointerException"

We followed the below KB article and are able to fix the user issue individually, but we need to fix the root cause. We will not be able to clear Password data attribute for all the users as suggested in the KB article below.

https://knowledge.broadcom.com/external/article/226254/modify-user-fails-with-logical-attribut.html

Environment

Release : 14.4

Component : IdentityMinder(Identity Manager)

Resolution

There is an issue with the decryption of the %Password_Data% attribute. If you still have the old policy server around please follow the below KB and IDM should now be able to decrypt the %Password_Data% attribute.

Refer to KB:

Password policy data consideration when Upgrading Siteminder

If you are not able to gather the older key, the only solution moving forward is to clear the %Password_Data% attribute on all users.

Feedback

thumb_up Yes

thumb_down No