On 08-05-2019 9:54 PM, oimastek wrote:
>
> Dear Experts,
>
> I'm trying to use the setPrincipalAttributes method in a custom
> authentication class but I'm getting exception as below.
>
> Exception occurred setPrincipalAttributes : Attempting to modify a user
> store object!
>
> According to the java class documentation at 'novell docs'
> (https://www.novell.com/documentation...tring%5b%5d%29)
> this method should: Sets attributes for a principal that has been
> authenticated. But it appears this is not allowed for some reason.
>
> The reason I'm trying this is because I would like to use this to set
> some attributes collected from the custom login form, so I can use them
> later in a SAML claim.
>
> Any comments on this is much appreciated.
>
> Thanks for your time.
>
>

has the service account rights to do this? Also, go to the IDP cluster | Liberty | click on the 'default one-to-one ldap attribute mapping'. I don't
fully understand what this mapping does but it mentions things like read-only so perhaps if your attribute is listed in here try setting it to read/write?



--
Cheers,
Edward