Hi, After the help and stating that I need to check my sync options. I went back to the documentation, but I'm unable to figure out what to do. I'm trying to sync the sAMAccount to uid, and mail entries for Active Directory users to my local Open LDAP server.
Please look at what what's wrong with my tasks since I can't see or understand
what I'm missing, the documentation is just to unclear.
The error I get is:
ERROR - Unable to get object for
id=CN=Username,OU=GSSIT,OU=Users,OU=JHB,OU=Infrastructure,OU=Divisions,DC=RTT,DC=co,DC=za
For every user it finds in the AD, where CN=Username is equal to the CN for
that user.
<task>
<name>ad-src-task</name>
<bean>org.lsc.beans.SimpleBean</bean>
<ldapSourceService>
<name>ad-src-service</name>
<connection reference="AD" />
<baseDn>ou=Divisions,dc=rtt,dc=co,dc=za</baseDn>
<pivotAttributes>
<string>samAccountName</string>
</pivotAttributes>
<fetchedAttributes>
<string>sAMAccountName</string>
<string>mail</string>
</fetchedAttributes>
<getAllFilter>(objectClass=person)</getAllFilter>
<getOneFilter>(&(objectClass=person)(uid={sAMAccountName}))</getOneFilter>
<getCleanFilter>(&(objectClass=person)(uid={sAMAccountName}))</getCleanFilter>
<interval>15</interval>
</ldapSourceService>
<ldapDestinationService>
<name>ldap-dst-service</name>
<connection reference="OpenLDAP" />
<baseDn>ou=Divisions,dc=rtt,dc=co,dc=za</baseDn>
<pivotAttributes>
<string>uid</string>
</pivotAttributes>
<fetchedAttributes>
<string>objectClass</string>
<string>uid</string>
<string>mail</string>
</fetchedAttributes>
<getAllFilter>(objectClass=inetorgperson)</getAllFilter>
<getOneFilter>((objectClass=inetorgperson))</getOneFilter>
<getCleanFilter>((objectClass=inetorgperson))</getCleanFilter>
</ldapDestinationService>
<propertiesBasedSyncOptions>
<mainIdentifier>srcBean.getMainIdentifier("sAMAccountName")</mainIdentifier>
<defaultDelimiter>;</defaultDelimiter>
<defaultPolicy>FORCE</defaultPolicy>
<dataset>
<name>objectClass</name>
<policy>FORCE</policy>
<forceValues>
<string>"top";"user";"person";"organizationalPerson"</string>
</forceValues>
</dataset>
<dataset>
<name>uid</name>
<policy>FORCE</policy>
<createValues>
<string>srcBean.getDatasetFirstValueById("sAMAccountName")</string>
</createValues>
</dataset>
</propertiesBasedSyncOptions>
</task>
[Description: Description: Description: image001]
[Description: Description: Description: image002]
Chris Visser
Linux/Network Infrastructure
|
Group IT
mobile
+ 27 83 645 2025
email
[email protected]
tel
+ 27 11 552 2644
Please consider the environment before printing this email
|
DISCLAIMER at
www.rtt.co.za<http://www.rtt.co.za/>
==================
Please read our Email Disclaimer :
http://www.rtt.co.za/disclaimer.html
<<inline: image001.jpg>>
<<inline: image002.jpg>>
<<inline: image003.jpg>>
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
