Hello, Here is the structures of my directories :
OpenLDAP : dn: ou=Users, ou=securite,dc=mondomaine,dc=fr AD : dn: CN=Users, dc=mondomaine,dc=test And here is my lsc.properties file : ____________________________________ src.java.naming.security.principal=cn=manager,dc=mondomaine,dc=fr src.java.naming.security.credentials=motdepasse src.java.naming.security.authentication=simple src.java.naming.referral=ignore src.java.naming.provider.url=ldap://192.168.xxx.xxx:389/ou=Users,ou=securite,dc=mondomaine,dc=fr src.java.naming.ldap.version=3 src.java.naming.ldap.derefAliases=never src.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory src.database.username=sa src.database.url=jdbc:hsqldb:file:hsqldb/lsc src.database.password= src.database.driver=org.hsqldb.jdbcDriver #lsc.tasks=FirstTask, user lsc.tasks=user lsc.tasks.user.type=ldap2ldap lsc.tasks.user.srcService=org.lsc.jndi.SimpleJndiSrcService lsc.tasks.user.srcService.pivotAttrs=cn sn lsc.tasks.user.srcService.filterId=(sn={sn}) lsc.tasks.user.srcService.filterAll=(&(sn=*)(objectClass=inetOrgPerson)) lsc.tasks.user.srcService.baseDn=ou=Users,ou=securite lsc.tasks.user.srcService.attrs=description cn sn userPassword lsc.tasks.user.object=org.lsc.objects.inetOrgPerson lsc.tasks.user.dstService=org.lsc.jndi.SimpleJndiDstService lsc.tasks.user.dstService.pivotAttrs=cn sn lsc.tasks.user.dstService.filterId=(sn={sn}) lsc.tasks.user.dstService.filterAll=(&(sn=*)(objectClass=user)) lsc.tasks.user.dstService.baseDn=ou=Users lsc.tasks.user.dstService.attrs=description cn sn userPassword objectClass lsc.tasks.user.dn="cn=" + srcBean.getAttributeValueById("cn") + ",ou=Users" lsc.tasks.user.bean=org.lsc.beans.userBean #lignes ajout?es lsc.tasks.user.srcService.filterId = (&(objectClass=inetOrgPerson)(uid={uid})) lsc.tasks.user.srcService.pivotAttrs = uid lsc.tasks.user.dstService.filterId = (&(objectClass=user)(sAMAccountName={uid})) lsc.tasks.user.dstService.pivotAttrs = uid lsc.tasks.user.dn = "cn=" + srcBean.getAttributeValueById("cn") + ",ou=users" dst.java.naming.security.principal=cn=Administrateur,cn=Users,dc=mondomaine,dc=test dst.java.naming.security.credentials=motdepasse dst.java.naming.security.authentication=simple dst.java.naming.referral=ignore dst.java.naming.provider.url=ldap://192.168.xxx.xxx:389/cn=Users,dc=mondomaine,dc=test dst.java.naming.ldap.version=3 dst.java.naming.ldap.derefAliases=never dst.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory #mod dst.java.naming.ldap.pageSize = 1000 dn.real_root=cn=Users,dc=mondomaine,dc=test #Tue Oct 20 16:34:13 CEST 2009 #Re/set the Source LDAP properties # Synchronization options lsc.syncoptions.user = org.lsc.beans.syncoptions.PropertiesBasedSyncOptions lsc.syncoptions.user.default.action = F # Direct link - no need to specify syncoptions # uid <- uid # cn <- cn (done with DN generation) # sn <- sn # objectClass <- top/user/person/organizationalperson lsc.syncoptions.user.objectClass.action = F lsc.syncoptions.user.objectClass.force_value = "top";"user";"person";"organizationalPerson" # sAMAccountName <- uid lsc.syncoptions.user.sAMAccountName.create_value = srcBean.getAttributeValueById("uid") # userPrincipalName <- uid + "@linagora.lan" lsc.syncoptions.user.userPrincipalName.force_value = srcBean.getAttributeValueById("uid") + "@mondomaine.fr" # userAccountControl lsc.syncoptions.user.userAccountControl.create_value = AD.userAccountControlSet( "0", [AD.UAC_SET_NORMAL_ACCOUNT]) # pwdLastSet <- 0 to force user to change password on next connection lsc.syncoptions.user.pwdLastset.create_value = "0" # unicodePwd <- "changeit" at creation (requires SSL connection to AD) lsc.syncoptions.user.unicodePwd.create_value = AD.getUnicodePwd("changeit") __________________________________________ Also, I am running LSC on the AD Server, should I configure the SSL connection ? Well, maybe the subject of my internship is a bit too difficult for me, so don't hesitate to tell me if my questions are really too stupid :) I think i miss a lot of knowledge about all this, but I have to present my conclusions about directories synchronization by the end of the week... Cheers, S?bastien.
