Sebastien,
One step forward and one step back. Got rid of the first error message but have a new one now...I replaced only the line you specified. May 10 18:16:13 - ERROR - Error while adding entry cn=accountname,ou=LDAPOU in directory :javax.naming.direc tory.InvalidAttributeValueException: [LDAP: error code 21 - objectClass: value #2 invalid per syntax]; remaini ng name 'cn=accountname,ou=LDAPOU' May 10 18:16:13 - ERROR - Error while synchronizing ID cn=accountname,ou=LDAPOU: java.lang.Exception: Techni cal problem while applying modifications to directory May 10 18:16:13 - DEBUG - java.lang.Exception: Technical problem while applying modifications to directory java.lang.Exception: Technical problem while applying modifications to directory Wendy From: Sébastien Bahloul [mailto:[email protected]] Sent: Thursday, May 10, 2012 5:41 PM To: Wendy Nevile Cc: [email protected] Subject: Re: [lsc-users] problem syncing from source AD and destination OpenLDAP Hi Wendy, It seems that the list of attributes to sync on destination is missing the objectClass value. Consider replacing lsc.tasks.ADSyncTask.dstService.attrs = uid givenName sn displayName description mail memberOf with lsc.tasks.ADSyncTask.dstService.attrs = uid givenName sn displayName description mail memberOf objectClass And it should work with this ! Regards, -- Sebastien BAHLOUL IAM / Security specialist Ldap Synchronization Connector : http://lsc-project.org Blog : http://sbahloul.wordpress.com/ 2012/5/10 Wendy Nevile <[email protected]> Not that familiar with LSC connector so I am hoping the problem is related to something simple that I am overlookingJ Error message and lsc.properties file are below....using OpenLDAP 2.4.30 and LSC 1.22 on Windows 7. ____________________________________________________________________________________________________ Error message (attributes were all found, left the listing of them out of the error message) May 10 11:34:19 - DEBUG - Synchronizing ADSyncTask for {samaccountname=accountname} May 10 11:34:19 - ERROR - Error while adding entry cn=accountname,ou=LDAPOU in directory :javax.naming.direc tory.SchemaViolationException: [LDAP: error code 65 - no objectClass attribute]; remaining name 'cn=accountname,ou=LDAPOU' May 10 11:34:19 - ERROR - Error while synchronizing ID cn=accountname,ou=LDAPOU: java.lang.Exception: Techni cal problem while applying modifications to directory May 10 11:34:19 - DEBUG - java.lang.Exception: Technical problem while applying modifications to directory java.lang.Exception: Technical problem while applying modifications to directory at org.lsc.AbstractSynchronize.synchronize2Ldap(AbstractSynchronize.java:399) [lsc-core-1.2.2.jar:na] at org.lsc.SimpleSynchronize.launchTask(SimpleSynchronize.java:272) [lsc-core-1.2.2.jar:na] at org.lsc.SimpleSynchronize.launch(SimpleSynchronize.java:155) [lsc-core-1.2.2.jar:na] at org.lsc.Launcher.run(Launcher.java:151) [lsc-core-1.2.2.jar:na] at org.lsc.Launcher.main(Launcher.java:123) [lsc-core-1.2.2.jar:na] dn: cn=accountname,ou=LDAPOU,dc=LDAPdc1,dc=LDAPdc2 changetype: add mail: [email protected] sn: LastName description: account description givenName: FirstName memberOf: CN=ADGroupName,OU=GlobalGroups,DC=ADdc1,DC=ADdc2 displayName: DisplayUsername _______________________________________________________________________________________________________________ Lsc.properties file is below __________________________________________________________________________________________________________ ######################################################################### # LDAP Synchronization Connector (LSC) - http://lsc-project.org # # Main configuration file # ######################################################################### ############################## # Destination LDAP directory # ############################## dst.java.naming.provider.url = ldap://ldapserver:389/dc=ldapdc1,dc=ldapdc2 dst.java.naming.security.authentication = simple dst.java.naming.security.principal = cn=ldapaccount,dc=ldapdc1,dc=ldapdc2 dst.java.naming.security.credentials = ldappassword dst.java.naming.referral = ignore dst.java.naming.ldap.derefAliases = never # Standard properties. These should not be changed. dst.java.naming.factory.initial = com.sun.jndi.ldap.LdapCtxFactory dst.java.naming.ldap.version = 3 ######################### # Source LDAP directory # ######################### src.java.naming.provider.url = ldap://adserver:389/dc=ADdc1,dc=ADdc2 src.java.naming.security.authentication = simple src.java.naming.security.principal = cn=ADaccount,ou=ADOU1,dc=ADdc1,dc=ADdc2 src.java.naming.security.credentials = ADpassword src.java.naming.referral = ignore src.java.naming.ldap.derefAliases = never src.java.naming.factory.initial = com.sun.jndi.ldap.LdapCtxFactory src.java.naming.ldap.version = 3 src.java.naming.ldap.pageSize = 1000 ####################### # Tasks configuration # ####################### lsc.tasks = ADSyncTask lsc.tasks.ADSyncTask.srcService = org.lsc.jndi.SimpleJndiSrcService ### SimpleJndiSrcService parameters lsc.tasks.ADSyncTask.srcService.baseDn = ou=ADOU2 ####Have also tried with this vale as (&(sAMAccountName=*)(objectClass=user)) and the error remains the same lsc.tasks.ADSyncTask.srcService.filterAll = (&(sAMAccountName=*)(objectCategory=Person)(|(objectClass=contact)(objectClass=user))(memberOf=cn=ADGroupName,ou=GlobalGroups,dc=ADdc1,dc=ADdc2)) lsc.tasks.ADSyncTask.srcService.pivotAttrs = sAMAccountName lsc.tasks.ADSyncTask.srcService.filterId = (&(objectClass=user)(sAMAccountName={sAMAccountName})) lsc.tasks.ADSyncTask.srcService.attrs = sAMAccountName givenName sn displayName description mail memberOf ### END of SimpleJndiSrcService parameters lsc.tasks.ADSyncTask.dstService = org.lsc.jndi.SimpleJndiDstService ### SimpleJndiDstService parameters # The parameters in this section only apply to the SimpleJndiDstService lsc.tasks.ADSyncTask.dstService.baseDn = ou=LDAPOU lsc.tasks.ADSyncTask.dstService.filterAll = (&(uid=*)(objectClass=inetOrgPerson)) lsc.tasks.ADSyncTask.dstService.pivotAttrs = uid lsc.tasks.ADSyncTask.dstService.filterId = (&(objectClass=inetOrgPerson)(sAMAccountName={uid})) lsc.tasks.ADSyncTask.dstService.attrs = uid givenName sn displayName description mail memberOf ### END of SimpleJndiDstService parameters lsc.tasks.ADSyncTask.bean = org.lsc.beans.SimpleBean # Construct a DN for new entries in the destination directory # This is a JavaScript expression, and can access any utility functions and the srcBean. # It should be relative to the LDAP context specified in dst.java.naming.provider.url #lsc.tasks.ADSyncTask.dn = "cn=" + srcBean.getAttributeValueById("sAMAccountName") + ",ou=UsersGeneral" dn.real_root = dc=LDAPdc1,dc=LDAPdc2 ############################# # Syncoptions configuration # ############################# # This section defines synchronization rules for each task, attribute by attribute # Synchronization options lsc.syncoptions.ADSyncTask = org.lsc.beans.syncoptions.PropertiesBasedSyncOptions lsc.syncoptions.ADSyncTask.default.action = F lsc.syncoptions.ADSyncTask.default.delimiter = $ # objectClass <- top/user/person/organizationalperson lsc.syncoptions.ADSyncTask.objectClass.action = F lsc.syncoptions.ADSyncTask.objectClass.force_value = "top";"user";"person";"organizationalPerson" Wendy _______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
