NetIQ Access Manager NMAS SAML authentication method installation process creates collision objects

  • 7011741
  • 01-Feb-2013
  • 01-Feb-2013

Environment

NetIQ Access Manager 3.2
Novell Access Manager 3.1

Situation

  • Novell Access Manager Console has been installed on SLES11SP1
  • Multiple replicate server has been added to the eDirectory userstore
  • checking the "Install NMAS SAML method" option causes the the installation process to fail.
  • collision objects have been created in the userstore (

Resolution

  • remove all replica servers except for one (best choice would be the master of root) from the eDirectory userstore configuation and uncheck the "Install NMAS SAML method" option

  • delete the collision objects and all affiliates from the "SAML Assertion" NMAS authentication method in the userstore using an iManager with the latest NMAS plugins installed

  • from with the Access Manager iManager check the option "Install NMAS SAML method" again with just having one replica server configured

  • now you can add the remaining replica servers back to your eDirectory userstore configuration

Cause

There is race condition installing the NMAS SAML Assertion authentication method / Affiliate Objects which should not happen causing collisions. The installation process will contact all configured replica servers at the same time in order to add the required method and Affiliate objects.

This issue has been addressed to engineering