When creating new OUs, LSC seems to be omitting the objectClass attribute (at least in the audit LDIF and console output). Strangely, I have been able to synchronize users.
ERROR - Error while adding entry OU=Desktops,OU=US Scottsdale,dc=lsc-project,dc=org in directory :javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - 0000207B: UpdErr: DSID-030511CF, problem 6002 (OBJ_CLASS_VIOLATION), data 0 ]; remaining name 'OU=Desktops,OU=US Scottsdale' ERROR - Error while synchronizing ID OU=Desktops,OU=US Scottsdale,dc=lsc-project,dc=org: java.lang.Exception: Technical problem while applying modifications to the destination dn: OU=Desktops,OU=US Scottsdale,dc=lsc-project,dc=org changetype: add ou: Desktops description: OU=Desktops,OU=US Scottsdale,DC=xyz,DC=net name: Desktops The lsc.ldif shows the following: dn: OU=Desktops,OU=US Scottsdale,dc=lsc-project,dc=org changetype: add ou: Desktops description: OU=Desktops,OU=US Scottsdale,DC=montpelierre,DC=net name: Desktops My lsc.xml is below: <?xml version="1.0" ?> <lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.0.xsd"; revision="0"> <connections> <ldapConnection> <name>src-ldap</name> <url>ldap://xyz.net:389/dc=xyz,dc=net</url> <username>CN=Hugh Kelley,OU=Users,OU=US Woburn,DC=xyz,DC=net</username> <password>password</password> <authentication>SIMPLE</authentication> <referral>IGNORE</referral> <derefAliases>NEVER</derefAliases> <version>VERSION_3</version> <pageSize>1000</pageSize> <factory>com.sun.jndi.ldap.LdapCtxFactory</factory> <tlsActivated>false</tlsActivated> <saslMutualAuthentication>false</saslMutualAuthentication> <binaryAttributes> <string>objectGUID</string> </binaryAttributes> </ldapConnection> <ldapConnection> <name>dst-ldap</name> <url>ldap://localhost:389/dc=lsc-project,dc=org</url> <username>cn=lsc-exec,ou=clients,dc=lsc-project,dc=org</username> <password>password</password> <authentication>SIMPLE</authentication> <referral>IGNORE</referral> <derefAliases>NEVER</derefAliases> <version>VERSION_3</version> <pageSize>1000</pageSize> <factory>com.sun.jndi.ldap.LdapCtxFactory</factory> <tlsActivated>false</tlsActivated> <saslMutualAuthentication>false</saslMutualAuthentication> <binaryAttributes> <string>objectGUID</string> </binaryAttributes> </ldapConnection> </connections> <audits/> <tasks> <task> <name>MySyncTask-OUs</name> <bean>org.lsc.beans.SimpleBean</bean> <ldapSourceService> <name>MySyncTask-src</name> <connection reference="src-ldap"/> <baseDn>ou=US Scottsdale,dc=montpelierre,dc=net</baseDn> <pivotAttributes> <string>objectGUID</string> <string>distinguishedName</string> </pivotAttributes> <fetchedAttributes> <string>description</string> <string>ou</string> </fetchedAttributes> <getAllFilter> (&(!(isCriticalSystemObject=TRUE))(objectClass=organizationalUnit))</getAllFilter> <getOneFilter> (&(!(isCriticalSystemObject=TRUE))(objectClass=organizationalUnit)(distinguishedName={distinguishedName}))</getOneFilter> <getCleanFilter>(&(!(isCriticalSystemObject=TRUE))(objectClass=organizationalUnit)(distinguishedName={description}))</getCleanFilter> </ldapSourceService> <ldapDestinationService> <name>MySyncTask-dst</name> <connection reference="dst-ldap"/> <baseDn>ou=US Scottsdale,dc=lsc-project,dc=org</baseDn> <pivotAttributes> <string>description</string> </pivotAttributes> <fetchedAttributes> <string>description</string> <string>name</string> <string>ou</string> </fetchedAttributes> <getAllFilter> (&(!(isCriticalSystemObject=TRUE))(objectClass=organizationalUnit)))</getAllFilter> <getOneFilter> (&(!(isCriticalSystemObject=TRUE))(objectClass=organizationalUnit)(description={distinguishedName}))</getOneFilter> </ldapDestinationService> <propertiesBasedSyncOptions> <mainIdentifier>srcBean.getMainIdentifier().replaceAll("(?i)dc=montpelierre,dc=net","dc=lsc-project,dc=org")</mainIdentifier> <defaultDelimiter>;</defaultDelimiter> <defaultPolicy>FORCE</defaultPolicy> <dataset> <name>objectClass</name> <policy>FORCE</policy> <forceValues> <string>"organizationalUnit"</string> <string>"top"</string> </forceValues> <delimiter>,</delimiter> </dataset> <dataset> <name>name</name> <policy>FORCE</policy> <forceValues> <string>js:srcBean.getDatasetFirstValueById("ou")</string> </forceValues> </dataset> <dataset> <name>objectGUID</name> <policy>KEEP</policy> <forceValues> <string/> </forceValues> </dataset> <dataset> <name>description</name> <policy>FORCE</policy> <forceValues> <string>js:srcBean.getMainIdentifier()</string> </forceValues> </dataset> <dataset> <name>default</name> <policy>FORCE</policy> </dataset> </propertiesBasedSyncOptions> </task> </tasks> <security> <encryption> <algorithm>AES</algorithm> <strength>128</strength> </encryption> </security> </lsc>
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
