Seems you invert getOneFilter between source and destination. The error says that no object is found is source. If you look at your source directory log, you should see bad requests returning no entry.
2013/8/27 N E N U <[email protected]> > logs are below: > > > > Aug 27 09:03:02 - DEBUG - Loading XML configuration from: > /root/lsc-openldap2ad/etc/lsc.xml > Aug 27 09:03:02 - INFO - Reflections took 239 ms to scan 1 urls, > producing 60 keys and 226 values > Aug 27 09:03:02 - DEBUG - Importing XML schema file: > schemas/lsc-core-2.0.xsd > Aug 27 09:03:03 - INFO - Logging configuration successfully loaded from > /root/lsc-openldap2ad/etc/logback.xml > Aug 27 09:03:03 - INFO - LSC configuration successfully loaded from > /root/lsc-openldap2ad/etc/ > Aug 27 09:03:03 - INFO - Connecting to LDAP server ldap:// > 10.1.1.1:389/dc=xxx,dc=xxx as cn=Administrator,cn=Users,dc=xxx,dc=xxx > Aug 27 09:03:03 - INFO - Connecting to LDAP server ldap:// > 10.1.1.2/dc=yyyy,dc=yyy as cn=Manager,dc=yyyy,dc=yyy > Aug 27 09:03:03 - WARN - No clean filter has been specified for > task=FullAD. During the clean phase, LSC wouldn't be able to get the right > entries and may delete all destination entries ! > Aug 27 09:03:03 - INFO - Starting sync for FullAD > Aug 27 09:03:03 - DEBUG - Synchronizing FullAD for {uid=daemon} > Aug 27 09:03:03 - ERROR - Synchronization aborted because no source object > has been found ! > Aug 27 09:03:03 - DEBUG - Synchronizing FullAD for {uid=festival} > Aug 27 09:03:03 - DEBUG - Synchronizing FullAD for {uid=dhcpd} > Aug 27 09:03:03 - DEBUG - Synchronizing FullAD for {uid=bin} > Aug 27 09:03:04 - DEBUG - Synchronizing FullAD for {uid=at} > Aug 27 09:03:04 - ERROR - Synchronization aborted because no source object > has been found ! > [...] > Aug 27 09:03:04 - DEBUG - Synchronizing FullAD for {uid=nagios} > Aug 27 09:03:04 - ERROR - Synchronization aborted because no source object > has been found ! > > Aug 27 09:03:04 - ERROR - All entries: 549, to modify entries: 0, > successfully modified entries: 0, errors: 549 > Aug 27 09:03:04 - INFO - Starting clean for FullAD > Aug 27 09:03:04 - DEBUG - Using pagedResults control for 1000 entries at a > time > Aug 27 09:03:04 - ERROR - Empty or non existant destination (no IDs found) > > > > On Tue, Aug 27, 2013 at 8:57 AM, Clément OUDOT <[email protected]>wrote: > >> Try to send some logs (LSC and OpenLDAP) if you want us to help you. >> >> >> 2013/8/27 N E N U <[email protected]> >> >>> i updated but not working. >>> >>> >>> On Fri, Aug 23, 2013 at 2:27 AM, Clément OUDOT <[email protected]>wrote: >>> >>>> >>>> >>>> >>>> 2013/8/22 N E N U <[email protected]> >>>> >>>>> Hi, >>>>> >>>>> I am having trouble syncing users from openldap to AD, below is the >>>>> config i am using. >>>>> error: synchronization aborted because no source object has been found >>>>> ! can you direct me through my errors. >>>>> >>>>> lsc.xml >>>>> >>>>> >>>>> <?xml version="1.0" ?> >>>>> <lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.0.xsd"; id="1" >>>>> revision="0"> >>>>> <connections> >>>>> <ldapConnection> >>>>> <name>AD</name> >>>>> <url>xxxxxx</url> >>>>> <username>xxxxxxxx</username> >>>>> <password>xxxxxxxxx</password> >>>>> <authentication>SIMPLE</authentication> >>>>> <pageSize>1000</pageSize> >>>>> </ldapConnection> >>>>> <ldapConnection> >>>>> <name>openldap</name> >>>>> <url>xxxxxxxxxxxxxxxx</url> >>>>> <username>xxxxxxxxxxxxxxxxxxxxx</username> >>>>> <password>xxxxxxxxxxxxxxxxxxxx</password> >>>>> <authentication>SIMPLE</authentication> >>>>> <pageSize>1000</pageSize> >>>>> </ldapConnection> >>>>> </connections> >>>>> <tasks> >>>>> <task> >>>>> <name>FullAD</name> >>>>> <bean>org.lsc.beans.SimpleBean</bean> >>>>> <ldapSourceService> >>>>> <name>openldap-source-service</name> >>>>> <connection reference="openldap" /> >>>>> <baseDn>ou=People,dc=xx,dc=xx</baseDn> >>>>> <pivotAttributes> >>>>> <string>uid</string> >>>>> </pivotAttributes> >>>>> <fetchedAttributes> >>>>> <string>description</string> >>>>> <string>cn</string> >>>>> <string>sn</string> >>>>> <string>userPassword</string> >>>>> <string>objectClass</string> >>>>> <string>uid</string> >>>>> <string>mail</string> >>>>> </fetchedAttributes> >>>>> >>>>> <getAllFilter>(&(uid=*)(objectClass=inetOrgPerson))</getAllFilter> >>>>> >>>>> <getOneFilter>(&(objectClass=user)(sAMAccountName={uid}))</getOneFilter> >>>>> </ldapSourceService> >>>>> <ldapDestinationService> >>>>> <name>opends-dst-service</name> >>>>> <connection reference="AD" /> >>>>> <baseDn>ou=Users,ou=test,dc=yy,dc=yy</baseDn> >>>>> <pivotAttributes> >>>>> <string>saMAccountName</string> >>>>> </pivotAttributes> >>>>> <fetchedAttributes> >>>>> <string>description</string> >>>>> <string>cn</string> >>>>> <string>sn</string> >>>>> <string>userPassword</string> >>>>> <string>objectClass</string> >>>>> <string>uid</string> >>>>> <string>mail</string> >>>>> </fetchedAttributes> >>>>> >>>>> <getAllFilter>(&(sAMAccountName=*)(objectClass=user))</getAllFilter> >>>>> >>>>> <getOneFilter>(&(objectClass=inetOrgPerson)(uid={uid}))</getOneFilter> >>>>> </ldapDestinationService> >>>>> <propertiesBasedSyncOptions> >>>>> <mainIdentifier>"cn=" + srcBean.getDatasetFirstValueById("cn") + >>>>> ",ou=Users,ou=test,dc=yy,dc=yy"</mainIdentifier> >>>>> <defaultDelimiter>;</defaultDelimiter> >>>>> <defaultPolicy>FORCE</defaultPolicy> >>>>> <dataset> >>>>> <name>objectClass</name> >>>>> <policy>FORCE</policy> >>>>> <forceValues> >>>>> <string>"top";"user";"person";"organizationalPerson"</string> >>>>> </forceValues> >>>>> </dataset> >>>>> <dataset> >>>>> <name>sAMAccountName</name> >>>>> <policy>KEEP</policy> >>>>> <createValues> >>>>> <string>srcBean.getDatasetFirstValueById("uid")</string> >>>>> </createValues> >>>>> </dataset> >>>>> <dataset> >>>>> <!-- userPrincipalName = uid + "@lsc-project.org" --> >>>>> <name>userPrincipalName</name> >>>>> <policy>FORCE</policy> >>>>> <forceValues> >>>>> <string>srcBean.getDatasetFirstValueById("uid") + "@ >>>>> lsc-project.org"</string> >>>>> </forceValues> >>>>> </dataset> >>>>> <dataset> >>>>> <name>userAccountControl</name> >>>>> <policy>KEEP</policy> >>>>> <createValues> >>>>> <string>AD.userAccountControlSet( "0", >>>>> [AD.UAC_SET_NORMAL_ACCOUNT])</string> >>>>> </createValues> >>>>> </dataset> >>>>> <dataset> >>>>> <!-- pwdLastSet = 0 to force user to change password on next >>>>> connection --> >>>>> <name>pwdLastSet</name> >>>>> <policy>KEEP</policy> >>>>> <createValues> >>>>> <string>"0"</string> >>>>> </createValues> >>>>> </dataset> >>>>> <dataset> >>>>> <!-- unicodePwd = "changeit" at creation (requires SSL >>>>> connection to AD) --> >>>>> <name>unicodePwd</name> >>>>> <policy>KEEP</policy> >>>>> <createValues> >>>>> <string>AD.getUnicodePwd("changeit")</string> >>>>> </createValues> >>>>> </dataset> >>>>> </propertiesBasedSyncOptions> >>>>> </task> >>>>> </tasks> >>>>> </lsc> >>>>> >>>>> >>>>> >>>>> >>>>> sample ldap user ldif >>>>> >>>>> dn: uid=at,ou=People,dc=xx,dc=xx >>>>> uid: at >>>>> cn: Service Batch jobs daemon >>>>> sn: Service Batch jobs daemon >>>>> objectClass: person >>>>> objectClass: inetorgPerson >>>>> objectClass: organizationalPerson >>>>> objectClass: posixAccount >>>>> objectClass: top >>>>> objectClass: shadowAccount >>>>> userPassword: {crypt}! >>>>> shadowLastChange: 14265 >>>>> shadowMax: 99999 >>>>> shadowWarning: 7 >>>>> loginShell: /bin/bash >>>>> uidNumber: 25 >>>>> gidNumber: 25 >>>>> homeDirectory: /var/spool/atjobs >>>>> gecos: Service Batch jobs daemon >>>>> >>>>> >>>>> >>>> >>>> Hi, >>>> >>>> use pageSize -1 in OpenLDAP connection definition. >>>> >>>> >>>> Clément. >>>> >>> >>> >>> >>> -- >>> *--Sri* >>> * >>> * >>> *"Your imagination is your preview of life’s coming attractions.” ~ >>> Albert Einstein* >>> >> >> > > > -- > *--Sri* > * > * > *"Your imagination is your preview of life’s coming attractions.” ~ > Albert Einstein* >
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
