I'm having some problems with setting mailNickname via IDM on exchange
2010 SP1

The customer wants to use a different value for mailNickname than the
default (which is to follow the samAccountName)

This works fine for mail enabling a user during an Active Directory add
operation, but I've had problems when the enable-mailbox is performed on
a modify. I know that you cannot send both a homeMDB and a mailNickname
in the same modify operation - this generates an Exchange error

What I have been trying to do is to first send the homeMDB (which is
translated to enable-mailbox by the driver shim) and then subsequently
update the mailNickname with the correct value in a separate modify
operation.

I've tried several variants of this (do-set-dest-attr-value
when="after") (a rule in the publisher input transform that triggers on
a successful set of homeMDB).

In each case, this second modify (of the mailNickname) is reportedly
successful per the remote loader trace. However it doesn't actually
change the mailNickname in AD for the user. Verified this via a LDAP
browser and also via the Exchange Management console.

I can change the value via ADSI (using vbscript or powershell), any
ideas why this the remote loader reports success but is not actually
changed?

Had some other strange behaviour also, a user that had been
mailbox-enabled, then subsequently ran disable-mailbox on the user (via
IDM).

Subsequent querying via IDM for the mailNickname attribute on this user
would return the same value as the sAMAccountName despite other LDAP
browsing tools indicating that the mailNickname attribute was not
actually present on the specific user.

Running - Active Directory driver version 3.5.10 Patch 5 and Engine and
Remote Loader patch for Identity Manager 3.6.1 patch 2

Anyone got any ideas??? Is this an Exchange 2010 bug/feature? I can
post a lot more traces if necessary, but I don't know yet if the problem
lies in the remote loader or with Exchange/AD.


Code:
--------------------
DirXML: [12/09/10 10:31:52.71]: Loader: Received 'subscriber execute' document
DirXML: [12/09/10 10:31:52.71]: Loader: XML Document:
DirXML: [12/09/10 10:31:52.71]: <nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.6.13.5349">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<modify event-id="LAB-IDM01-NDS#20101209093145#2#1">
<association>022a8d8c5da6824bb8f939061a2d1d41</association>
<modify-attr attr-name="mailNickname">
<remove-value>
<value type="string">1000000</value>
</remove-value>
</modify-attr>
<modify-attr attr-name="mailNickname">
<add-value>
<value type="string">test.username</value>
</add-value>
</modify-attr>
</modify>
</input>
</nds>
DirXML: [12/09/10 10:31:52.71]: Loader: Calling subscriptionShim->execute()
DirXML: [12/09/10 10:31:52.71]: Loader: XML Document:
DirXML: [12/09/10 10:31:52.71]: <nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.6.13.5349">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<modify event-id="LAB-IDM01-NDS#20101209093145#2#1">
<association>022a8d8c5da6824bb8f939061a2d1d41</association>
<modify-attr attr-name="mailNickname">
<remove-value>
<value type="string">1000000</value>
</remove-value>
</modify-attr>
<modify-attr attr-name="mailNickname">
<add-value>
<value type="string">test.username</value>
</add-value>
</modify-attr>
</modify>
</input>
</nds>
DirXML: [12/09/10 10:31:52.71]: ADDriver: parse command

className
destDN
eventId LAB-IDM01-NDS#20101209093145#2#1
association 022a8d8c5da6824bb8f939061a2d1d41
DirXML: [12/09/10 10:31:52.71]: ADDriver: parse modify class =
DirXML: [12/09/10 10:31:52.71]: Loader: subscriptionShim->execute() returned:
DirXML: [12/09/10 10:31:52.71]: Loader: XML Document:
DirXML: [12/09/10 10:31:52.71]: <nds ndsversion="8.7" dtdversion="1.1">
<source>
<product version="3.5.10" asn1id="" build="20100709_120000" instance="\LAB-TREE\IDVault\IDM\DriverSet\AD">AD</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<status level="success" event-id="LAB-IDM01-NDS#20101209093145#2#1"/>
</output>
</nds>
DirXML: [12/09/10 10:31:52.72]:
DirXML Log Event -------------------
Driver = \LAB-TREE\IDVault\IDM\DriverSet\AD
Thread = Subscriber Channel
Level = success
--------------------


--
alexmchugh
------------------------------------------------------------------------
alexmchugh's Profile: http://forums.novell.com/member.php?userid=40344
View this thread: http://forums.novell.com/showthread.php?t=427845