Searching for a group fails with ERROR: Did not find definition for type GROUP findGroupsAdminCanManageInScope for context
search cancel

Searching for a group fails with ERROR: Did not find definition for type GROUP findGroupsAdminCanManageInScope for context

book

Article ID: 6152

calendar_today

Updated On: 10-13-2023

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On

Issue/Introduction

A group search in Identity Manager may fail with the following errors:

ERROR findGroupsAdminCanManageInScope for context

Facility=6 severity=3 reason=0 status=9 message=A bad expression was encountered

Environment

Identity Manager 12.6.x

Cause

This is due to a missing scope filter in the group search screen in question. In versions prior to IM 12.6, if there was no filter defined, all groups would be in scope.

Resolution

Modify the Group Search screen that is throwing the error.

Under the heading labelled "Show only objects meeting the following rules", add a valid filter that applies to your business logic.

If you want to show all groups that the logged in user is an administrator of, construct a filter like:

Group Name = *

You cannot leave this blank, as the code treats this scope filter as required.

Powered by Wolken Software