[OPENIDM-12227] we should update/replace provisioner.openicf-ad.json under samples/example-configurations Created: 29/Nov/18  Updated: 17/Jul/19  Resolved: 17/Jul/19

Status: Closed
Project: OpenIDM
Component/s: _Samples
Affects Version/s: 7.0.0
Fix Version/s: None

Type: Bug Priority: Major
Reporter: Tinghua.Xu Assignee: Unassigned
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Relates
relates to OPENIDM-12182 Pull sample provisioner configuration... Closed

 Description   

When I tried to use the provisioner.openicf-ad.json under samples/example-configurations to test recon from AD to IDM, kept getting error system/ad/account not found. It worked when I used the provisioner file from IC(later realized we have a similar one under samples/livesync-with-ad/provisioner.openicf-realad.json)
The one under samples/example-configurations has

"configurationProperties" : {
        "DirectoryAdminName" : "EXAMPLE\\Administrator",
        "DirectoryAdminPassword" : "password",
        "ObjectClass" : "User",
        "Container" : "dc=example,dc=com",
        "CreateHomeDirectory" : true,
        "LDAPHostName" : "127.0.0.1",
        "SearchChildDomains" : false,
        "DomainName" : "example",
        "SyncGlobalCatalogServer" : null,
        "SyncDomainController" : null,
        "SearchContext" : ""
    },

But the one(which works) from IC or under livesync-with-ad has

"configurationProperties" : {
    "host" : "",
    "port" : "389",
    "ssl" : false,
    "principal" : "",
    "credentials" : null,
    "baseContexts" : [
    ],
    "baseContextsToSynchronize" : [
    ],
    "accountSearchFilter" : "(&(!(userAccountControl:1.2.840.113556.1.4.803:=2))(objectClass=User))",
    "accountSynchronizationFilter" : "(&(!(userAccountControl:1.2.840.113556.1.4.803:=2))(objectClass=User))",
    "groupSearchFilter" : "(&(!(cn=Domain Users))(objectClass=group))",
    "groupSynchronizationFilter" : "(&(!(cn=Domain Users))(objectClass=group))",
    "vlvSortAttribute" : "uid",
    "passwordAttribute" : "unicodePwd",
    "groupMemberAttribute" : "member",
    "uidAttribute" : "objectGUID",
    "changeNumberAttribute" : "changeNumber",
    "accountUserNameAttributes" : [
      "sAMAccountName"
    ],
...

Not sure why we put one under example-configurations there in the first place, something we should update or replace?



 Comments   
Comment by Travis Haagen [ 17/Jul/19 ]

Already fixed indirectly.

Generated at Tue Mar 31 19:54:40 UTC 2020 using Jira 7.13.12#713012-sha1:6e07c38070d5191bbf7353952ed38f111754533a.