On 04/02/14 18:58, Clément OUDOT wrote:
<snip>
Hi,
you can check your configuration with this command:
./bin/lsc -f etc -v
If you can't fix your configuration, send it to the list so we can help.
Hi,
The -v check doesn't show me much:
~/tmp/lsc-2.0.3 $ ./bin/lsc -f etc -v
Feb 05 08:54:23 - DEBUG - Loading XML configuration from:
/home/staff/geoffc/tmp/lsc-2.0.3/etc/lsc.xml
Feb 05 08:54:23 - INFO - Reflections took 78 ms to scan 1 urls,
producing 51 keys and 103 values
Feb 05 08:54:23 - DEBUG - Importing XML schema file:
schemas/lsc-core-2.0.xsd
Feb 05 08:54:23 - INFO - Logging configuration successfully loaded from
/home/staff/geoffc/tmp/lsc-2.0.3/etc/logback.xml
Feb 05 08:54:23 - INFO - LSC configuration successfully loaded from
/home/staff/geoffc/tmp/lsc-2.0.3/etc/
Feb 05 08:54:23 - INFO - Configuration and environment successfully
checked !
I've attached my configuration (sanitised of a password).
Thanks!
<?xml version="1.0" ?>
<lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.0.xsd"; revision="0">
<connections>
<ldapConnection>
<name>AD</name>
<url>ldap://adlds.test-dc04.trinity.unimelb.edu.au:389/dc=trinity,dc=unimelb,dc=edu,dc=au</url>
<username>cn=Administrator</username>
<password>XXXXXXXXX</password>
<authentication>SIMPLE</authentication>
<referral>IGNORE</referral>
<derefAliases>NEVER</derefAliases>
<version>VERSION_3</version>
<pageSize>1000</pageSize>
<factory>com.sun.jndi.ldap.LdapCtxFactory</factory>
<tlsActivated>false</tlsActivated>
</ldapConnection>
<ldapConnection>
<name>openldap</name>
<url>ldap://ldap.trinity.unimelb.edu.au:389/dc=trinity,dc=unimelb,dc=edu,dc=au</url>
<username></username>
<password></password>
<authentication>NONE</authentication>
<referral>IGNORE</referral>
<derefAliases>NEVER</derefAliases>
<version>VERSION_3</version>
<pageSize>1000</pageSize>
<factory>com.sun.jndi.ldap.LdapCtxFactory</factory>
<tlsActivated>false</tlsActivated>
</ldapConnection>
</connections>
<tasks>
<task>
<name>adUser</name>
<bean>org.lsc.beans.SimpleBean</bean>
<ldapSourceService>
<name>openldap-src-service</name>
<connection reference="openldap" />
<baseDn>ou=People</baseDn>
<pivotAttributes><string>uid</string></pivotAttributes>
<getAllFilter>(&(uid=*)(objectClass=inetOrgPerson)(status=c))</getAllFilter>
<getOneFilter>(&(objectClass=user)(sAMAccountName={uid}))</getOneFilter>
<cleanFilter>(&(objectClass=inetorgperson)(mail={mail}))</cleanFilter>
</ldapSourceService>
<ldapDestinationService>
<name>ad-dst-service</name>
<connection reference="AD" />
<baseDn>cn=Users</baseDn>
<pivotAttributes><string>sAMAccountName</string></pivotAttributes>
<getAllFilter>(&(sAMAccountName=*)(objectClass=user))</getAllFilter>
<getOneFilter>(&(objectClass=inetOrgPerson)(uid={uid}))</getOneFilter>
</ldapDestinationService>
<propertiesBasedSyncOptions>
<mainIdentifier>"cn=" + srcBean.getDatasetValueById("cn") + ",ou=users"</mainIdentifier>
<defaultDelimiter>;</defaultDelimiter>
<defaultPolicy>FORCE</defaultPolicy>
<conditions>
<create>true</create>
<update>true</update>
<delete>true</delete>
<changeId>false</changeId>
</conditions>
<dataset>
<name>objectClass</name>
<policy>FORCE</policy>
<forceValues><string>"top";"user";"person";"organizationalPerson"</string></forceValues>
</dataset>
<dataset>
<name>sAMAccountName</name>
<policy>KEEP</policy>
<createValues>
<string>srcBean.getDatasetFirstValueById("uid")</string>
</createValues>
</dataset>
<dataset>
<name>userPrincipalName</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("uid") + "@trinity.unimelb.edu.au"</string>
</forceValues>
</dataset>
<dataset>
<name>userAccountControl</name>
<policy>KEEP</policy>
<createValues>
<string>AD.userAccountControlSet( "0", [AD.UAC_SET_NORMAL_ACCOUNT])</string>
</createValues>
</dataset>
<dataset>
<name>pwdLastSet</name>
<policy>KEEP</policy>
<createValues>
<string>"0"</string>
</createValues>
</dataset>
</propertiesBasedSyncOptions>
</task>
</tasks>
<security>
<encryption>
<keyfile>etc/lsc.key</keyfile>
<algorithm>AES</algorithm>
<strength>128</strength>
</encryption>
</security>
</lsc>
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
lsc-users@lists.lsc-project.org
http://lists.lsc-project.org/listinfo/lsc-users
