Hi,
thanks to Jonathan for the fast bugfix!
Users can now be found in the whole AD structure.
But I now have another problem:
If I move a group to another ou lsc seems not to be able to find it and sync
the group members.
I have an ou "lsc". In this ou I have 4 sub ou´s "new", "group", "test1",
"test2".
Users are synced to "new" and groups to "group".
I can successfully move a user to "test1" and the group membership is still
synced.
But if I now move the group from ou "group" to ou "test1", the group membership
is no longer synced.
Here is my config:
#==============================================================================
# Task "group"
#==============================================================================
lsc.tasks.group.bean = org.lsc.beans.SimpleBean
lsc.tasks.group.dn = "cn=" + srcBean.getAttributeValueById("cn") +
",ou=group,ou=lsc"
lsc.tasks.group.srcService = org.lsc.jndi.SimpleJndiSrcService
lsc.tasks.group.srcService.attrs = cn description memberUid member
lsc.tasks.group.srcService.baseDn = ou=Groups
lsc.tasks.group.srcService.filterAll = (objectClass=posixGroup)
lsc.tasks.group.srcService.filterId = (&(objectClass=posixGroup)(cn={cn}))
lsc.tasks.group.srcService.pivotAttrs = cn
lsc.tasks.group.dstService = org.lsc.jndi.SimpleJndiDstService
lsc.tasks.group.dstService.attrs = cn description member objectClass
sAMAccountName
lsc.tasks.group.dstService.baseDn = ou=lsc
lsc.tasks.group.dstService.filterAll = (objectClass=group)
lsc.tasks.group.dstService.filterId = (&(objectClass=group)(cn={cn}))
lsc.tasks.group.dstService.pivotAttrs = cn
lsc.syncoptions.group = org.lsc.beans.syncoptions.PropertiesBasedSyncOptions
lsc.syncoptions.group.default.action = F
lsc.syncoptions.group.sAMAccountName.create_value =
srcBean.getAttributeValueById("cn")
lsc.syncoptions.group.objectClass.force_value = "top";"group"
lsc.syncoptions.group.member.delimiter = $
lsc.syncoptions.group.member.force_value = var umembers =
srcBean.getAttributeValuesById("memberUid").toArray() ; for (var i=0;
i<umembers.length; i++ ) { try { umembers[i] = ldap.attribute(ldap.search( "",
"(sAMAccountName=" + (umembers[i]) + ")").get(0), 'distinguishedname').get(0) }
catch (e) { umembers[i]=null } } var members = new Array(); var j=0; for (var
i=0; i<umembers.length; i++) { if (umembers[i]!=null) members[j++]=umembers[i]
} members
#==============================================================================
# End of Task "group"
#==============================================================================
Thank you!
Regards,
Gunter
-----Ursprüngliche Nachricht-----
Von: [email protected]
[mailto:[email protected]] Im Auftrag von Jonathan Clarke
Gesendet: Dienstag, 8. Juni 2010 15:09
An: [email protected]
Betreff: Re: [lsc-users] move user to different OU
On 08/06/2010 14:00, Alexey Wasilyev wrote:
> 08.06.2010 11:33, Jonathan Clarke пишет:
>> On 8 juin 2010, at 06:30, Alexey Wasilyev <[email protected]>
>> wrote:
>>
>>> And how we can change "ou=users" in ldap.search, if we want to search
>>> whole ad?
>>
>> Does using the empty string "" instead of "ou=users" not work?
> lsc crashed.
Oh dear.
Could you open a bug report on http://tools.lsc-project.org and copy
paste the configuration you used, and the output you get when it
crashes? We'll fix the bug ASAP.
Thanks,
Jonathan
--
--------------------------------------------------------------
Jonathan Clarke - [email protected]
--------------------------------------------------------------
Ldap Synchronization Connector (LSC) - http://lsc-project.org
--------------------------------------------------------------
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
http://lists.lsc-project.org/listinfo/lsc-users
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
http://lists.lsc-project.org/listinfo/lsc-users
