NW IDM Role based Provisioning to AD
I'm seeing an interesting issue occurring with IDM SP2 (6753-SQL-04.2008) on a SQL Server 2000 (SP) database. (Schema update: 198)
I have a job feeding new entries to the Identity Store database. The To IdentityStore pass works perfectly except for role assignment.
I pass the MSKEY of the Role using the MXREF_MX_ROLE attribute which has a privilege attached to a provisioning task that creates the user in AD. When the job is run, the users are created in the Identity Store, but not in AD. The task creating the AD user is never called and there is no entry in the job log.
I know that the AD task is ok since I disabled the MXREF_MX_ROLE attribute and attached the provisioning task to the entry type (MX_PERSON) which worked fine.
Is there something I'm missing in attaching the privilege to the role? Or could this be a bug?