I am new to LSC. I am trying to migrate from Novell eDirectory to AD
with LSC.
On my testing server, I am able to sync the user object from eDir to
AD, with lsc -f myconf -s all.
However, when i run lsc -f myconf -s all -c all, it will create users
then delete them all.
Moreover, I would like to know if LSC can sync user password from eDir
to AD?
Here is my lsc.xml
------------------------------------------------------------------------
<?xml version="1.0" ?>
<lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.1.xsd"; revision="0">
<connections>
<ldapConnection>
<name>eDir-source</name>
<url>ldaps://edirserver/o=mycomp</url>
<username>myediruser</username>
<password>edirpassword</password>
<authentication>SIMPLE</authentication>
<referral>IGNORE</referral>
<derefAliases>NEVER</derefAliases>
<version>VERSION_3</version>
<pageSize>-1</pageSize>
<factory>com.sun.jndi.ldap.LdapCtxFactory</factory>
<tlsActivated>0</tlsActivated>
</ldapConnection>
<ldapConnection>
<name>AD-dest</name>
<url>ldaps://ad/ou=of ad</url>
<username>aduser</username>
<password>adpassword</password>
<authentication>SIMPLE</authentication>
<referral>IGNORE</referral>
<derefAliases>NEVER</derefAliases>
<version>VERSION_3</version>
<pageSize>-1</pageSize>
<factory>com.sun.jndi.ldap.LdapCtxFactory</factory>
<tlsActivated>0</tlsActivated>
</ldapConnection>
</connections>
<tasks>
<task>
<name>People</name>
<bean>org.lsc.beans.SimpleBean</bean>
<ldapSourceService>
<name>eDir-SC-source</name>
<connection reference="eDir-source" />
<baseDn>ou=in eDir</baseDn>
<pivotAttributes>
<string>cn</string>
</pivotAttributes>
<fetchedAttributes>
<string>description</string>
<string>cn</string>
<string>sn</string>
<string>userPassword</string>
<string>objectClass</string>
<string>uid</string>
<string>mail</string>
<string>gidNumber</string>
<string>homeDirectory</string>
<string>uidNumber</string>
<string>loginShell</string>
<string>fullName</string>
</fetchedAttributes>
<getAllFilter>(objectClass=organizationalPerson)</getAllFilter>
<getOneFilter>(&(objectClass=organizationalPerson)(cn={cn}))</getOneFilter>
<cleanFilter>(&(objectClass=organizationalPerson)(cn={cn}))</cleanFilter>
</ldapSourceService>
<ldapDestinationService>
<name>ad-dst-service</name>
<connection reference="AD-dest" />
<baseDn>ou=in AD</baseDn>
<pivotAttributes>
<string>samAccountName</string>
</pivotAttributes>
<fetchedAttributes>
<string>description</string>
<string>cn</string>
<string>sn</string>
<string>givenName</string>
<string>objectClass</string>
<string>samAccountName</string>
<string>mail</string>
<string>gidNumber</string>
<string>homeDirectory</string>
<string>uid</string>
<string>uidNumber</string>
<string>loginShell</string>
<string>displayName</string>
<string>msSFU30Name</string>
<string>msSFU30NisDomain</string>
</fetchedAttributes>
<getAllFilter>(objectClass=user)</getAllFilter>
<getOneFilter>(&(objectClass=user)(samAccountName={uid}))</getOneFilter>
</ldapDestinationService>
<propertiesBasedSyncOptions>
<mainIdentifier>"CN=" +
srcBean.getDatasetFirstValueById("cn") +
",ou=ShortCourse,OU=Student,ou=user,ou=comp,dc=Forest,dc=edu,dc=hk"</mainIdentifier>
<defaultDelimiter>;</defaultDelimiter>
<defaultPolicy>FORCE</defaultPolicy>
<dataset>
<name>description</name>
<policy>FORCE</policy>
<forceValues>
<string>js:srcBean.getDatasetFirstValueById("description") +
srcBean.getDatasetFirstValueById("sn").toUpperCase() + " (" + srcBean.getDatasetFirstValueById("mail") +
")" </string>
</forceValues>
</dataset>
<dataset>
<name>samAccountName</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("uid")</string>
</forceValues>
</dataset>
<dataset>
<name>msSFU30NisDomain</name>
<policy>FORCE</policy>
<forceValues>
<string>"Forest"</string>
</forceValues>
</dataset>
<dataset>
<name>msSFU30Name</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("uid")</string>
</forceValues>
</dataset>
<dataset>
<name>objectClass</name>
<policy>FORCE</policy>
<forceValues>
<string>"top";"person";"organizationalPerson";"user"</string>
</forceValues>
</dataset>
<dataset>
<name>unicodePwd</name>
<policy>KEEP</policy>
<forceValues>
<string>"Passw0rd"</string>
</forceValues>
</dataset>
<dataset>
<name>gidNumber</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("gidNumber")</string>
</forceValues>
</dataset>
<dataset>
<name>uidNumber</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("uidNumber")</string>
</forceValues>
</dataset>
<dataset>
<name>homeDirectory</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("unixHomeDirectory")</string>
</forceValues>
</dataset>
<dataset>
<name>loginShell</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("loginShell")</string>
</forceValues>
</dataset>
<dataset>
<name>sn</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("sn")</string>
</forceValues>
</dataset>
<dataset>
<name>uid</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("uid")</string>
</forceValues>
</dataset>
<dataset>
<name>displayName</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("fullName")</string>
</forceValues>
</dataset>
<dataset>
<name>mail</name>
<policy>FORCE</policy>
<forceValues>
<string>srcBean.getDatasetFirstValueById("mail")</string>
</forceValues>
</dataset>
</propertiesBasedSyncOptions>
</task>
</tasks>
</lsc>
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
http://lists.lsc-project.org/listinfo/lsc-users
