gary.rasmussen

I ran in to this exact error today.

am> :load /opt/forgerock/binaries/Myinstallscript.amster
Configuration failed: Invalid Suffix for directory server cfg-1.dev.iam.toyota.com:2389. No Base Entity ou=am-config found., refer to install.log under for more information.

This appears to be an issues with the directory based on the error however it…[Read more]

Increase ulimit on your server for the user running tomcat.
To check ulimit use the ulimit -n command
To increase for current session use with a value you want to increase to like “ulimit -n 102400”
And you can make that permanent changing the /etc/security/limits.conf.

There are recommended settings in the installation guide for the…[Read more]

Hi Diedel,

The section you are referencing is more for if you want that new attribute displayed and modifiable by the user.

If you simply want to make another attribute available you can certainly just use an existing, unused attribute(such as ipNetworkNumber) or another of your choosing.
Alternately you can create a custom attribute in the user…[Read more]

HI Rasarkar

This doc may prove helpful for you if you plan to use SAML2 with OpenAM as the IDP and Juniper as the SP. Actually there are several docs out there for this method using other IDPs but the process is similar for all:

https://www.juniper.net/us/en/local/pdf/app-notes/3500213-en.pdf

Hi Visharad,

sounds like you are running in to this bug:

https://bugster.forgerock.org/jira/browse/OPENAM-8269

Thanks Peter,
there wasn’t a question there, it was more for notification.

In the particular use-case we are using AD as the identity repository to utilize the existing company administrators(AD group). The intent was to use a privileged admin group since AD will be considered read only from the OpenAM standpoint.

Since we cant write to…[Read more]