Can we convert an existing Agile user to an LDAP account?

I see a question in this forum asking how to convert an LDAP user to a DB user.  There appears to be some kind of script in the bin directory to help achieve this.  But how about the opposite?  Is it possible to convert a DB user to an LDAP user?  I don’t want to delete the user and lose all his history.

Add Comment
3 Answer(s)

Hi,

it’s possible to convert the DB user to LDAP user, off course username should be the same as it’s set in LDAP.
we have Agile PLM 9.3.1 environment, to convert user db to ldap
im using the SQL Plus (SQL CMD)  on DB server –
and im running the next commands – 
1. update agileuser set auth_src= ‘LDAP_Agile001’ where loginid in (‘username’);  
2. commit;

‘LDAP_Agile001’ it’s an attribute that can be different on each environment, depends on the setting.

you can use this command to see how it’s called in your side.
select user name already set on LDAP, you will get the ‘auth src’ of the user
select substr(loginid,1,30), auth_src from agileuser where loginid in (‘username’);

Agile Angel Answered on January 15, 2016.
Add Comment

Thanks, I also found this on the Oracle Support site, Document 568607.1

How to Convert a Database User to an LDAP User? (Doc ID 568607.1) 

APPLIES TO:
Oracle Agile PLM Framework – Version 9.2.1.0 and later
Information in this document applies to any platform.

GOAL
How to convert a database user to an LDAP user?
Users already exist prior implementing LDAP, now want to covert these users from using Agile Database authentication to LDAP authentication.

SOLUTION

IMPORTANT:
This solution requires a database edit.
Before any modification, please make sure you have a backup copy of production database.
Check with DBA or call Agile Support if any questions and concerns.

*** To convert ALL database users to LDAP users:

1. Go to AgileAgileDomainbin

2. Open a command window and run below command which will clear all agile users auth_src, guid values:
migrateUsersToDB -R

3. Run below command:
migrateUsersToDB

4. Restart Agile service.

*** To convert specific users from database authentication to LDAP authentication:

1. Connect to agile database in sqlplus

2. Find the current authentication values for this user

SELECT AUTH_SRC, GUID FROM AGILEUSER WHERE LOGINID='<User’s loginID>’;

If user is database authenticated, AGILEUSER.AUTH_SRC will have value “AGILE_DB”.
If user is LDAP authenticated, AGILEUSER.AUTH_SRC will have value value like LDAP_<ldap name configured in Java Client>

3. Update this user

UPDATE AGILEUSER SET AUTH_SRC=NULL WHERE LOGINID='<User’s loginID>’;
UPDATE AGILEUSER SET GUID=NULL WHERE LOGINID='<User’s loginID>’;
COMMIT;

4. Update the LDAP time stamp in Agile

UPDATE PROPERTYTABLE SET VALUE=’1970-01-01 00:00:00′ WHERE PROPERTYID=479 AND PARENTID=5004;
COMMIT;

5. Restart Agile service

6. Run refreshing users from LDAP.

Note: User attribute information controlled by LDAP will be updated with the information configured in LDAP
Note: There is no Agile API to update GUID and AUTH_SRC as these are internal only attributes. These changes must be done using sql.

 

Agile Talent Answered on January 15, 2016.
Add Comment

I had have just to  run the LDAP synch tool in the Java Client after removing the AUTH_SRC info in the DB and added user in the LDAP group.

problem is to converta LDAP user to DB user that is necessary a restart of the server instance

Agile Angel Answered on January 24, 2016.
Add Comment

Your Answer

By posting your answer, you agree to the privacy policy and terms of service.