Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-12227

we should update/replace provisioner.openicf-ad.json under samples/example-configurations

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 7.0.0
    • Fix Version/s: None
    • Component/s: _Samples
    • Labels:
      None

      Description

      When I tried to use the provisioner.openicf-ad.json under samples/example-configurations to test recon from AD to IDM, kept getting error system/ad/account not found. It worked when I used the provisioner file from IC(later realized we have a similar one under samples/livesync-with-ad/provisioner.openicf-realad.json)
      The one under samples/example-configurations has

      "configurationProperties" : {
              "DirectoryAdminName" : "EXAMPLE\\Administrator",
              "DirectoryAdminPassword" : "password",
              "ObjectClass" : "User",
              "Container" : "dc=example,dc=com",
              "CreateHomeDirectory" : true,
              "LDAPHostName" : "127.0.0.1",
              "SearchChildDomains" : false,
              "DomainName" : "example",
              "SyncGlobalCatalogServer" : null,
              "SyncDomainController" : null,
              "SearchContext" : ""
          },
      

      But the one(which works) from IC or under livesync-with-ad has

      "configurationProperties" : {
          "host" : "",
          "port" : "389",
          "ssl" : false,
          "principal" : "",
          "credentials" : null,
          "baseContexts" : [
          ],
          "baseContextsToSynchronize" : [
          ],
          "accountSearchFilter" : "(&(!(userAccountControl:1.2.840.113556.1.4.803:=2))(objectClass=User))",
          "accountSynchronizationFilter" : "(&(!(userAccountControl:1.2.840.113556.1.4.803:=2))(objectClass=User))",
          "groupSearchFilter" : "(&(!(cn=Domain Users))(objectClass=group))",
          "groupSynchronizationFilter" : "(&(!(cn=Domain Users))(objectClass=group))",
          "vlvSortAttribute" : "uid",
          "passwordAttribute" : "unicodePwd",
          "groupMemberAttribute" : "member",
          "uidAttribute" : "objectGUID",
          "changeNumberAttribute" : "changeNumber",
          "accountUserNameAttributes" : [
            "sAMAccountName"
          ],
      ...
      

      Not sure why we put one under example-configurations there in the first place, something we should update or replace?

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                Tinghua.Xu Tinghua.Xu
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: