Hello, I'm a beginner student and my project is to install an openldap server and to synchronise it with an AD so i followed the demo that is in the LSC website and everything was working well. Then i was trying to sync some attributes from AD to openDj, at first everything seemed simple but when i tried to sync some multi-values attributes it didn't work and i had this message error:
mars 14 09:31:48 - ERROR - Error while modifying entry mail= [email protected],ou=Sample,dc=lsc-project,dc=org in directory :javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Entry [email protected],ou=Sample,dc=lsc-project,dc=org cannot not be modified because the resulting entry would have violated the server schema: Entry [email protected],ou=Sample,dc=lsc-project,dc=org violates the Directory Server schema configuration because it includes attribute member which is not allowed by any of the objectclasses defined in that entry]; remaining name '[email protected],ou=Sample' mars 14 09:31:48 - ERROR - Error while synchronizing ID mail= [email protected],ou=Sample,dc=lsc-project,dc=org: java.lang.Exception: Technical problem while applying modifications to the destination dn: [email protected],ou=Sample,dc=lsc-project,dc=org changetype: modify replace: member member: CN=GG_Commercial,OU=LEVALLOIS,OU=Groupe_Securite,DC=meyclub,DC=net member: CN=GG_ALL,OU=Groupe_Securite,DC=meyclub,DC=net So I realy need some help understanding this problem, you find enclosed my configuration file. Thanking you in advance for your help. Best regards *___________________________________________________________* ** *Aziza Lichir* * <%2B33753130699>* **
<?xml version="1.0" ?> <lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.0.xsd"; revision="0"> <connections> <ldapConnection> <name>dst-ldap</name> <url>ldap://localhost:389/dc=meyclub,dc=net</url> <username>cn=root,dc=meyclub,dc=net</username> <password>Proweb</password> <authentication>SIMPLE</authentication> <referral>IGNORE</referral> <derefAliases>NEVER</derefAliases> <version>VERSION_3</version> <pageSize>-1</pageSize> <factory>com.sun.jndi.ldap.LdapCtxFactory</factory> <tlsActivated>false</tlsActivated> <saslMutualAuthentication>false</saslMutualAuthentication> </ldapConnection> <ldapConnection> <name>src-ad</name> <url>ldap://srv-ad-06.meyclub.net:389/dc=meyclub,dc=net</url> <username>cn=Aziza LICHIR,ou=Informatique,ou=SMH,ou=Utilisateurs,dc=meyclub,dc=net</username> <password>Proweb38</password> <authentication>SIMPLE</authentication> <pageSize>1000</pageSize> </ldapConnection> </connections> <audits/> <tasks> <task> <name>MySyncTask</name> <bean>org.lsc.beans.SimpleBean</bean> <ldapSourceService> <name>MySyncTask-src</name> <connection reference="src-ad" /> <baseDn>ou=STRASBOURG,ou=Utilisateurs,dc=meyclub,dc=net</baseDn> <pivotAttributes> <string>mail</string> </pivotAttributes> <fetchedAttributes> <string>cn</string> <string>sn</string> <string>givenName</string> <string>mail</string> <string>sAMAccountName</string> <string>memberOf</string> </fetchedAttributes> <getAllFilter>(&(mail=*)(objectClass=user))</getAllFilter> <getOneFilter>(&(objectClass=organizationalPerson)(mail={mail}))</getOneFilter> <cleanFilter>(&(objectClass=organizationalPerson)(mail={mail}))</cleanFilter> <interval>6</interval> </ldapSourceService> <ldapDestinationService> <name>MySyncTask-dst</name> <connection reference="dst-ldap"/> <baseDn>ou=people,dc=meyclub,dc=net</baseDn> <pivotAttributes> <string>mail</string> </pivotAttributes> <fetchedAttributes> <string>cn</string> <string>sn</string> <string>objectClass</string> <string>givenName</string> <string>mail</string> <string>uid</string> <string>member</string> </fetchedAttributes> <getAllFilter>(objectClass=inetOrgPerson)</getAllFilter> <getOneFilter>(&(objectClass=inetOrgPerson)(mail={mail}))</getOneFilter> </ldapDestinationService> <propertiesBasedSyncOptions> <mainIdentifier>"mail=" + srcBean.getDatasetFirstValueById("mail") + ",ou=people,dc=meyclub,dc=net"</mainIdentifier> <defaultDelimiter>;</defaultDelimiter> <defaultPolicy>FORCE</defaultPolicy> <dataset> <name>objectClass</name> <policy>FORCE</policy> <forceValues> <string>"inetOrgPerson"</string> <string>"organizationalPerson"</string> <string>"person"</string> <string>"top"</string> </forceValues> <delimiter>,</delimiter> </dataset> <dataset> <name>uid</name> <policy>FORCE</policy> <forceValues> <string> srcBean.getDatasetFirstValueById("sAMAccountName")</string> </forceValues> </dataset> <dataset> <name>member</name> <policy>FORCE</policy> <forceValues> <string> srcBean.getDatasetValuesById("memberOf")</string> </forceValues> </dataset> <dataset> <name>default</name> <policy>FORCE</policy> </dataset> </propertiesBasedSyncOptions> </task> </tasks> </lsc>
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
