Hi Wendy, Check the various values you've specified for the objectClass. The third one (value #2 starting from #0 in the error message) seems to be either unknown or incorrect.
Regards, -- Sebastien BAHLOUL IAM / Security specialist Ldap Synchronization Connector : http://lsc-project.org Blog : http://sbahloul.wordpress.com/ 2012/5/11 Wendy Nevile <[email protected]> > Sebastien,**** > > ** ** > > ** ** > > One step forward and one step back. Got rid of the first error message but > have a new one now…I replaced only the line you specified.**** > > ** ** > > May 10 18:16:13 - ERROR - Error while adding entry > cn=accountname,ou=LDAPOU in directory :javax.naming.direc**** > > tory.InvalidAttributeValueException: [LDAP: error code 21 - objectClass: > value #2 invalid per syntax]; remaini**** > > ng name 'cn=accountname,ou=LDAPOU'**** > > May 10 18:16:13 - ERROR - Error while synchronizing ID > cn=accountname,ou=LDAPOU: java.lang.Exception: Techni**** > > cal problem while applying modifications to directory**** > > May 10 18:16:13 - DEBUG - java.lang.Exception: Technical problem while > applying modifications to directory**** > > java.lang.Exception: Technical problem while applying modifications to > directory**** > > ** ** > > > Wendy**** > > ** ** > > ** ** > > *From:* Sébastien Bahloul [mailto:[email protected]] > *Sent:* Thursday, May 10, 2012 5:41 PM > *To:* Wendy Nevile > *Cc:* [email protected] > *Subject:* Re: [lsc-users] problem syncing from source AD and destination > OpenLDAP**** > > ** ** > > Hi Wendy,**** > > ** ** > > It seems that the list of attributes to sync on destination is missing the > objectClass value. Consider replacing **** > > ** ** > > lsc.tasks.ADSyncTask.dstService.attrs = uid givenName sn displayName > description mail memberOf **** > > ** ** > > with **** > > ** ** > > lsc.tasks.ADSyncTask.dstService.attrs = uid givenName sn displayName > description mail memberOf objectClass**** > > ** ** > > And it should work with this !**** > > ** ** > > Regards,**** > > -- > Sebastien BAHLOUL > IAM / Security specialist > Ldap Synchronization Connector : http://lsc-project.org > Blog : http://sbahloul.wordpress.com/ > > > **** > > 2012/5/10 Wendy Nevile <[email protected]>**** > > Not that familiar with LSC connector so I am hoping the problem is related > to something simple that I am overlookingJ**** > > **** > > Error message and lsc.properties file are below….using OpenLDAP 2.4.30 and > LSC 1.22 on Windows 7.**** > > **** > > **** > > > ____________________________________________________________________________________________________ > **** > > **** > > Error message (attributes were all found, left the listing of them out of > the error message)**** > > **** > > May 10 11:34:19 - DEBUG - Synchronizing ADSyncTask for > {samaccountname=accountname}**** > > **** > > May 10 11:34:19 - ERROR - Error while adding entry > cn=accountname,ou=LDAPOU in directory :javax.naming.direc**** > > tory.SchemaViolationException: [LDAP: error code 65 - no objectClass > attribute]; remaining name 'cn=accountname,ou=LDAPOU'**** > > May 10 11:34:19 - ERROR - Error while synchronizing ID > cn=accountname,ou=LDAPOU: java.lang.Exception: Techni**** > > cal problem while applying modifications to directory**** > > May 10 11:34:19 - DEBUG - java.lang.Exception: Technical problem while > applying modifications to directory**** > > java.lang.Exception: Technical problem while applying modifications to > directory**** > > at > org.lsc.AbstractSynchronize.synchronize2Ldap(AbstractSynchronize.java:399) > [lsc-core-1.2.2.jar:na]**** > > at > org.lsc.SimpleSynchronize.launchTask(SimpleSynchronize.java:272) > [lsc-core-1.2.2.jar:na]**** > > at org.lsc.SimpleSynchronize.launch(SimpleSynchronize.java:155) > [lsc-core-1.2.2.jar:na]**** > > at org.lsc.Launcher.run(Launcher.java:151) [lsc-core-1.2.2.jar:na] > **** > > at org.lsc.Launcher.main(Launcher.java:123) [lsc-core-1.2.2.jar:na] > **** > > dn: cn=accountname,ou=LDAPOU,dc=LDAPdc1,dc=LDAPdc2**** > > changetype: add**** > > mail: [email protected]**** > > sn: LastName**** > > description: account description**** > > givenName: FirstName**** > > memberOf: CN=ADGroupName,OU=GlobalGroups,DC=ADdc1,DC=ADdc2**** > > displayName: DisplayUsername**** > > **** > > **** > > > _______________________________________________________________________________________________________________ > **** > > **** > > **** > > Lsc.properties file is below**** > > **** > > > __________________________________________________________________________________________________________ > **** > > **** > > #########################################################################* > *** > > # LDAP Synchronization Connector (LSC) - http://lsc-project.org #* > *** > > # Main configuration file #* > *** > > #########################################################################* > *** > > **** > > ##############################**** > > # Destination LDAP directory #**** > > ##############################**** > > **** > > dst.java.naming.provider.url = ldap://ldapserver:389/dc=ldapdc1,dc=ldapdc2 > **** > > **** > > dst.java.naming.security.authentication = simple**** > > **** > > dst.java.naming.security.principal = cn=ldapaccount,dc=ldapdc1,dc=ldapdc2* > *** > > **** > > dst.java.naming.security.credentials = ldappassword**** > > **** > > dst.java.naming.referral = ignore**** > > **** > > dst.java.naming.ldap.derefAliases = never**** > > **** > > # Standard properties. These should not be changed.**** > > dst.java.naming.factory.initial = com.sun.jndi.ldap.LdapCtxFactory**** > > dst.java.naming.ldap.version = 3**** > > **** > > #########################**** > > # Source LDAP directory #**** > > #########################**** > > **** > > src.java.naming.provider.url = ldap://adserver:389/dc=ADdc1,dc=ADdc2**** > > **** > > src.java.naming.security.authentication = simple**** > > **** > > src.java.naming.security.principal = > cn=ADaccount,ou=ADOU1,dc=ADdc1,dc=ADdc2**** > > **** > > src.java.naming.security.credentials = ADpassword**** > > **** > > src.java.naming.referral = ignore**** > > **** > > src.java.naming.ldap.derefAliases = never**** > > **** > > src.java.naming.factory.initial = com.sun.jndi.ldap.LdapCtxFactory**** > > src.java.naming.ldap.version = 3**** > > src.java.naming.ldap.pageSize = 1000**** > > **** > > #######################**** > > # Tasks configuration #**** > > #######################**** > > **** > > lsc.tasks = ADSyncTask**** > > **** > > lsc.tasks.ADSyncTask.srcService = org.lsc.jndi.SimpleJndiSrcService**** > > **** > > ### SimpleJndiSrcService parameters**** > > lsc.tasks.ADSyncTask.srcService.baseDn = ou=ADOU2**** > > **** > > ####Have also tried with this vale as > (&(sAMAccountName=*)(objectClass=user)) and the error remains the same**** > > lsc.tasks.ADSyncTask.srcService.filterAll = > (&(sAMAccountName=*)(objectCategory=Person)(|(objectClass=contact)(objectClass=user))(memberOf=cn=ADGroupName,ou=GlobalGroups,dc=ADdc1,dc=ADdc2)) > **** > > **** > > lsc.tasks.ADSyncTask.srcService.pivotAttrs = sAMAccountName**** > > **** > > lsc.tasks.ADSyncTask.srcService.filterId = > (&(objectClass=user)(sAMAccountName={sAMAccountName}))**** > > **** > > lsc.tasks.ADSyncTask.srcService.attrs = sAMAccountName givenName sn > displayName description mail memberOf**** > > ### END of SimpleJndiSrcService parameters**** > > **** > > **** > > **** > > lsc.tasks.ADSyncTask.dstService = org.lsc.jndi.SimpleJndiDstService**** > > **** > > **** > > ### SimpleJndiDstService parameters**** > > # The parameters in this section only apply to the SimpleJndiDstService*** > * > > **** > > lsc.tasks.ADSyncTask.dstService.baseDn = ou=LDAPOU**** > > **** > > lsc.tasks.ADSyncTask.dstService.filterAll = > (&(uid=*)(objectClass=inetOrgPerson))**** > > **** > > lsc.tasks.ADSyncTask.dstService.pivotAttrs = uid**** > > **** > > lsc.tasks.ADSyncTask.dstService.filterId = > (&(objectClass=inetOrgPerson)(sAMAccountName={uid}))**** > > **** > > lsc.tasks.ADSyncTask.dstService.attrs = uid givenName sn displayName > description mail memberOf**** > > **** > > ### END of SimpleJndiDstService parameters**** > > **** > > **** > > lsc.tasks.ADSyncTask.bean = org.lsc.beans.SimpleBean**** > > **** > > # Construct a DN for new entries in the destination directory**** > > # This is a JavaScript expression, and can access any utility functions > and the srcBean.**** > > # It should be relative to the LDAP context specified in > dst.java.naming.provider.url**** > > #lsc.tasks.ADSyncTask.dn = "cn=" + > srcBean.getAttributeValueById("sAMAccountName") + ",ou=UsersGeneral"**** > > **** > > dn.real_root = dc=LDAPdc1,dc=LDAPdc2**** > > **** > > #############################**** > > # Syncoptions configuration #**** > > #############################**** > > # This section defines synchronization rules for each task, attribute by > attribute**** > > **** > > # Synchronization options**** > > **** > > lsc.syncoptions.ADSyncTask = > org.lsc.beans.syncoptions.PropertiesBasedSyncOptions**** > > **** > > lsc.syncoptions.ADSyncTask.default.action = F**** > > **** > > lsc.syncoptions.ADSyncTask.default.delimiter = $**** > > **** > > # objectClass <- top/user/person/organizationalperson**** > > **** > > lsc.syncoptions.ADSyncTask.objectClass.action = F**** > > lsc.syncoptions.ADSyncTask.objectClass.force_value = > "top";"user";"person";"organizationalPerson"**** > > **** > > **** > > **** > > Wendy**** > > **** > > **** > > **** > > **** > > > _______________________________________________________________ > Ldap Synchronization Connector (LSC) - http://lsc-project.org > > lsc-users mailing list > [email protected] > http://lists.lsc-project.org/listinfo/lsc-users**** > > ** ** >
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
