When user requests a role or any entity from catalog for other user, after submitting, request status goes to Request Failed with the following message:
IAM-2050014 : An error occurred while initiating approvals for request 00000. The corresponding error message is java.lang.RuntimeException: Caller doesn't have enough permission to call this method.
IAM-2050014 : An error occurred while initiating approvals for request 00000. The corresponding error message is java.lang.RuntimeException: Caller doesn't have enough permission to call this method.
SOLUTION:
In Enterprise Manager,
Go to OIMDomain > MBean Browser > Application Defined MBeans > oracle.iam > server: oim_server1 > Application: oim > XMLConfig > Config > XMLConfig.SOAConfig > SOAConfig > username
In OID, give appropriate permission to this user (eg. weblogic_idm) and make sure that the user is a part of Administrators Group*.
* >> (**just for reference**)
In enterprise manager if you go to >>> Weblogic Domain > OIMDomain > security > Application Roles > (Select soa-infra in Application Stripe) search
....for SOAAdmin SOAOperator and SOAMonitor, you can find Administrators Group in the membership *
_______________________________
Also,
if you approve the request and entity does not show up in the user profile: check the OIMFrontEndURL in Enterprise Manager. It should be a server URL and not any load balancer or proxy url.
_______________________________
_______________________________
No comments:
Post a Comment