Hi all,
I have groups, imported from an oracle database, in the metaverse. These have to be provisioned to the FIM portal.
When exporting to the FIM Portal, I always get an error "Policy prohibits the request from completing",
in detail: "No policy grants the Requestor permission to complete all changes."
I've looked in the FIM portal under "search requests" to see the detail.
It matches against the "Group management workflow: Group information validation for static groups".
(this management policy and its rule(s) are the default from installation, has not been modified in any way)
Ok, I guess I've forgotten one of the mandatory fields of a FIM (distribution) group. I've updated the "list" in the attribute flow already a few times, but it still gives me this error.
This is the data in the original request to the FIM portal (web)service:
<Calculated>false</Calculated><PropertyName>AccountName</PropertyName><Value xsi:type="xsd:string">GROUP2NJ</Value>
<Calculated>false</Calculated><PropertyName>DisplayName</PropertyName><Value xsi:type="xsd:string">GROUP2NJ</Value>
<Calculated>false</Calculated><PropertyName>Domain</PropertyName><Value xsi:type="xsd:string">ACME</Value>
<Calculated>false</Calculated><PropertyName>MembershipAddWorkflow</PropertyName><Value xsi:type="xsd:string">none</Value>
<Calculated>false</Calculated><PropertyName>MembershipLocked</PropertyName><Value xsi:type="xsd:boolean">false</Value>
<Calculated>false</Calculated><PropertyName>ObjectType</PropertyName><Value xsi:type="xsd:string">Group</Value>
<Calculated>false</Calculated><PropertyName>Scope</PropertyName><Value xsi:type="xsd:string">global</Value>
<Calculated>false</Calculated><PropertyName>Type</PropertyName><Value xsi:type="xsd:string">Distribution</Value>
<Calculated>true</Calculated><PropertyName>ObjectID</PropertyName><Value xsi:type="q1:guid">c4121c94-a46f-4b56-a137-6598591bd18d</Value>
<Calculated>true</Calculated><PropertyName>Creator</PropertyName><Value xsi:type="q1:guid">fb89aefa-5ea1-47f1-8890-abe7797d6497</Value>
<Calculated>false</Calculated><PropertyName>MVObjectID</PropertyName><Value xsi:type="xsd:string">{AC4F9570-C0BB-4DB3-BDDA-CA2D6DD78DBF}</Value>
What am I missing?
Regards,
David
PS: I'm not using FIM Portal rules for the provisioning. All is done via the FIM MA and the ORACLE MA.
