Error messages and warnings

A warning or error message might be displayed in the user interface to provide information about the adapter or when an error occurs.

The table lists the error messages and warnings that might occur while performing the user account or group management tasks, where applicable.It also includes the corrective actions to resolve the errors.

Error message Corrective action
The login credential is missing or incorrect. Specify the values of the login attributes correctly. Ensure that:
  • The managed resource (AIX®, HP-UX, Solaris, or Linux®) is functioning and that you are connected to the correct resource.
  • The value of the Managed resource location attribute on the service form is specified correctly.
  • The name in the Administrator name field on the service form is specified correctly.
  • The value of the Password attribute on the service form is specified correctly.
  • The Secure Shell (SSH) is enabled and running on the managed resource. For information about installing and enabling the SSH, see the UNIX and Linux Adapter Installation and Configuration Guide.
The account exists. This error might occur when:
  • A request is made to add a user that exists. Create a user account with another user ID.
  • The UNIX and Linux operating system and IBM® Security Identity Manager are not synchronized. Schedule a reconciliation between the managed resource and IBM Security Identity Manager. For more information about scheduling a reconciliation, see the IBM Security Identity Manager product documentation.
  • The adapter does not have permission to add an account.
  • The adapter does not have permission to modify an account.
  • The adapter does not have permission to delete an account.
 The user specified in the Administrator name field on the service form does not have the permissions to add, modify, or delete the account. Perform one of the following actions:
  • Assign the appropriate privileges to the user whose name is specified in the Administrator name field.
  • Change the name in the Administrator name field to a name that has the appropriate privileges. For example, root.
    Note: The Administrator name attribute is a required attribute on the service form.
  • The required attributes are missing from the request.
  • There were no attributes passed to the adapter in the request.
  • One or more required attributes are missing in the request.
 One or more required attributes were not provided when a request was made to add, modify, delete, or search for a user. Ensure that the required User ID attribute is specified on the account form.
  • A system error occurred while adding an account. The account was not added.
  • A system error occurred while modifying an account. The account was not changed.
  • A system error occurred while deleting an account. The account was not deleted.
  • The search failed due to a system error.
 This error might occur for several reasons. Ensure that:
  • The name in the Administrator name field on the service form is specified correctly.
  • The value of the Password attribute on the service form is specified correctly.
  • The name in the Administrator name field has the appropriate privileges to add, modify, or delete a user account.
  • The account was added but some attributes failed.
  • The account was modified but some attributes failed.
  • The account was deleted successfully, but additional steps failed.
 The account was created, modified, or deleted, however some of the specified attributes in the request were not set. See the list of attributes that failed and the error message that explains why the attribute failed. Correct the errors associated with each attribute and perform the action again.
Note: You might need to review the documentation on the UNIX or Linux operating system to determine the correct values for some attributes.
The account is already suspended. This error occurs if an attempt is made to suspend an already suspended account.
The account was not suspended. The request to suspend the account failed. Ensure that:
  • The name in the Administrator name field on the service form is specified correctly.
  • The value of the Password attribute on the service form is specified correctly.
  • The name in the Administrator name field has the necessary privileges to suspend an account.
  • The user exists on the specified managed resource.

See the ibmdi.log file in the adapter solutions directory of the Security Directory Integrator server for specific details about the error.
The account is already restored. This error occurs if an attempt is made to restore an already restored account.
The account was not restored. The request to restore the account failed. Ensure that:
  • The name in the Administrator name field on the service form is specified correctly.
  • The value of the Password attribute on the service form is specified correctly.
  • The name in the Administrator name field has the necessary privileges to restore an account.
  • The user exists on the specified managed resource.

See the ibmdi.log file in the adapter solutions directory of the Security Directory Integrator server for specific details about the error.
The reconciliation is successful, but no accounts were added to your service. Check the ibmdi.log file to ensure that the usage of the shadow file is correct.
Note: If you want the adapter to perform the reconciliation operation by using the shadow file, select the Use Shadow File check box on the service form. Shadow files are available on the Linux and HP-UX operating systems.
The application could not establish a connection to hostname. Ensure that:
  • The SSH is enabled on the managed resource.
  • The managed resource is operational and connected to the network.
The group cannot be added because it exists. This error occurs when a request is made to add a group that exists. Create a group with another group name.
The group cannot be added because group with the GID Group ID number exists. This error occurs when a request is made to add a group with a group ID number that exists. Do either of the following:
  • Do not specify a group ID number.
  • Clear the Allow duplicate group IDs? checkbox if that option is supported for the managed resource.
The group Group name cannot be modified or deleted because it does not exist. This error occurs when a request is made to modify or delete a group that does not exist on the managed resource. Perform a reconciliation operation to ensure that the group exists on the managed resource.
An error occurred while creating, modifying, or deleting the Group name group. The application could not establish a connection to managed resource. Ensure the following on the service form:
  • The name in the Administrator name field on the service form is specified correctly.
  • The value of the Password attribute on the service form is specified correctly.
  • The managed resource is operational and connected to the network.
The IBM Security Directory Integrator detected the following error. Error: Connector parameter executeUserProfile has a value that is not valid: true. Clear the Execute user profile? check box for the service used in the operation.