Today i came across an issue with the DirXML-PasswordSynStatus not being
updated. Situation is a vault with Universal Password enabled,
synchronizing to Active Directory. The driver is using the distribution
password and the engine controle values are enabled for password
synchronization status reporting.

So I decided to test the password synchronization status reporting by
doing a password change:


Code:
--------------------

[10/28/10 19:56:55.981]:Fac-ADS ST: %13Cxsl:message -> [Fac-ADS] Stylesheet "Password Subscribe Failure Notification" ($Rev: 1679 $)
[10/28/10 19:56:55.982]:Fac-ADS ST:Policy returned:
[10/28/10 19:56:55.982]:Fac-ADS ST:
<nds dtdversion="1.1" ndsversion="8.7">
<source>
<product asn1id="" build="20090313_120000" instance="\IDVAULT-TREE\Meta\Services\DirXML\DirXML\Fac-ADS" version="3.5.5">AD</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<status event-id="pwd-subscribe" level="success">
<operation-data>
<password-subscribe-status>
<association>752e5eba00aea94982cc37a066798bf3</association>
</password-subscribe-status>
</operation-data>
</status>
</output>
</nds>
[10/28/10 19:56:55.983]:Fac-ADS ST:Applying schema mapping policies to input.
[10/28/10 19:56:55.984]:Fac-ADS ST:Applying policy: %+C%14CSchemaMapping%-C.
[10/28/10 19:56:55.984]:Fac-ADS ST:Resolving association references.
[10/28/10 19:56:55.984]:Fac-ADS ST:Processing returned document.
[10/28/10 19:56:55.984]:Fac-ADS ST:Processing operation <status> for .
[10/28/10 19:56:55.984]:Fac-ADS ST:
DirXML Log Event -------------------
Driver: \IDVAULT-TREE\Meta\Services\DirXML\DirXML\Fac-ADS
Channel: Subscriber
Object: \IDVAULT-TREE\Meta\Users\Employees\Active\xxxxxxxxxxx
Status: Success
[10/28/10 19:56:55.990]:Fac-ADS ST:Password synchronization event status recorded.
[10/28/10 19:56:55.990]:Fac-ADS ST:End transaction.

--------------------


Everything looking nice and smooth. Also verified login into AD with
the new password: this works perfectly.

Now, when I open up the DirXML-PasswordSyncStatus attribute on this
user there is no value for the Fac-ADS driver (double checked the assoc
value). However the trace shows "Password synchronization event status
recorded". What the *bleep*!?

Anybody else seen this behaviour? Is the password synchronization
status reporting buggy?


--
sveldhuisen
------------------------------------------------------------------------
sveldhuisen's Profile: http://forums.novell.com/member.php?userid=18142
View this thread: http://forums.novell.com/showthread.php?t=424626