On 27/09/2013 15:58, Mathias Holdt wrote: > Hi > And sorry for interrupting, but I had a similar problem (on the AD > connector though). I could import users, edit them, and delete them, > but provisioning with a password resulted in an error (cant remember > the exact error, so I am not sure that you are experiencing the same > problem). > > The solution was quite easy though. It turned out that the connector > required SSL to provision users with a password. Once I enabled SSL > (and switched to port 636), provisioning started without errors.
Hi Mathias, this is only applicable to the AD connector; as reported by [1], in fact, SSL is needed to perform password provisioning, as required in turn by Active Directory. The configuration reported in [2] works out-of-the-box for different LDAP servers, and does actually propagate passwords, with no need for SSL (as the LDAPv3 protocol actually allows). Regards. [1] https://connid.atlassian.net/wiki/pages/viewpage.action?pageId=360482 [2] http://blog.tirasa.net/blogs/index.php/ilgrosso/unlock-full-ldap-features-in -- Francesco Chicchiriccò ASF Member, Apache Syncope PMC chair, Apache Cocoon PMC Member http://people.apache.org/~ilgrosso/
