Hi Alexey,
I understand that you are moving users in the AD, but from the cn=Users to
another OU (not a sub OU). When LSC looks for your users, it searches in
cn=Users (lsc.tasks.user.dstService.baseDn), doesn't find them and try to
recreate them. I suggest you may try to reconfigure LSC or to reorganize your
DIT.
Regards,
Le lundi 7 juin 2010 09:23:59, Alexey Wasilyev a écrit :
> sure.
> lsc.tasks.user.srcService = org.lsc.jndi.SimpleJndiSrcService
> lsc.tasks.user.srcService.baseDn = ou=people,ou=griddynamics
> lsc.tasks.user.srcService.filterAll = (&(uid=*)(objectClass=inetOrgPerson))
> lsc.tasks.user.srcService.pivotAttrs = uid
> lsc.tasks.user.srcService.filterId =
> (&(objectClass=inetOrgPerson)(uid={uid}))
> lsc.tasks.user.srcService.attrs = givenName cn sn uid
>
> 07.06.2010 11:17, Sebastien Bahloul пишет:
> > Hi Alexey,
> >
> > Can you provide the source section for your LSC configuration
> > (lsc.tasks.user.dstService ) ?
> >
> > Regards,
> >
> > Le lundi 7 juin 2010 09:12:55, Alexey Wasilyev a écrit :
> >> I can succesfuly sync users openldap to ad, to cn=users.
> >> I want to move different users to different ou, by hand.
> >> but for moved users lsc try to recreate it, whithout success, of course.
> >> how can i fix it?
> >>
> >> lsc.tasks.user.dstService = org.lsc.jndi.SimpleJndiDstService
> >> lsc.tasks.user.dstService.baseDn = cn=users
> >> lsc.tasks.user.dstService.filterAll =
> >> (&(sAMAccountName=*)(objectClass=user)(!(sAMAccountName=Administrator))(
> >> !(s AMAccountName=Guest))(!(sAMAccountName=krbtgt)))
> >> lsc.tasks.user.dstService.pivotAttrs = uid
> >> lsc.tasks.user.dstService.filterId =
> >> (&(objectClass=user)(sAMAccountName={uid}))
> >> lsc.tasks.user.dstService.attrs = cn sn objectClass sAMAccountName
> >> displayName userPrincipalName mail userAccountControl givenName uid
> >> pwdLastset unicodePwd
> >> lsc.tasks.user.bean = org.lsc.beans.SimpleBean
> >> lsc.tasks.user.dn = "cn=" + srcBean.getAttributeValueById("cn") +
> >> ",cn=users"
> >> #dn.real_root = ou=ldap,dc=ad,dc=griddynamics,dc=net
> >> lsc.syncoptions.user =
> >> org.lsc.beans.syncoptions.PropertiesBasedSyncOptions
> >> lsc.syncoptions.user.default.action = F
> >> lsc.syncoptions.user.objectClass.action = F
> >> lsc.syncoptions.user.objectClass.force_value =
> >> "top";"user";"person";"organizationalPerson"
> >> lsc.syncoptions.user.sAMAccountName.create_value =
> >> srcBean.getAttributeValueById("uid")
> >> lsc.syncoptions.user.userPrincipalName.force_value =
> >> srcBean.getAttributeValueById("uid") + "@ad.griddynamics.net"
> >> lsc.syncoptions.user.userAccountControl.create_value =
> >> AD.userAccountControlSet( "0", [AD.UAC_SET_NORMAL_ACCOUNT])
> >> lsc.syncoptions.user.pwdLastset.create_value = "0"
> >> lsc.syncoptions.user.unicodePwd.create_value =
> >> AD.getUnicodePwd("changeit")
--
Sebastien BAHLOUL
IAM and Security Solutions Manager
LINAGORA : http://www.linagora.com/
Tel / Phone : +33 810 251 251
Mobile : +33 (0)6 45 63 27 39
74/80 rue Roque de Fillol
92800 Puteaux
-----------
http://linid.org/ - http://linpki.org/
IAM and security Open Source projects
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
http://lists.lsc-project.org/listinfo/lsc-users
