Live tree - eDir to eDir driver - IDM tree - MAD driver - AD Domain
We have recently added first.last@ as our preferred email address, but still publish username@. and are now having issues when new accounts are created in eDirectory, they are not being created in AD due to the multiple values in the Internet email address attribute (Constraint Violation on the mail attribute).
If an account is manually created in eDirectory (providing username, given name, surname and password) all works fine. If I manually create the account in eDirectory, omitting the given name, then adding the given name after the email attribute is populated, the account won't be created in AD. Thus recreating the issue.
We use jrbimprt for the creation of accounts in eDirectory, which does not seem to provide the given name at the time of the account creation. The eDir-eDir driver logs show repeated vetos due to the given name missing, by the time the given name is populated, so is the Internet email address attribute (by GroupWise). Thus the account that is created in the IDM tree, has the multiple values in the email attribute, so the MAD driver kicks up the constraint violation error.
Unfortunately, our jrb guy is no longer with the organization, so we are not sure if there is an argument that we can use so that jrbimprt will set the given name on initial creation. Currently we are manually ignoring Internet Email Addresses in the MAD filter, migrating the accounts, setting Internet Email Addresses back to synchronize in the filter and migrating the accounts again.
Is there a way that I can have IDM ignore the Internet email address on an Add event, and trigger a sync after the account is created in AD?