2015-02-25 20:41 GMT+01:00 Jephte Clain <[email protected]>: > hello, > > Thanks to your previous answers, I've been able to get the group > synchronisation working. > ... but, there are some subtle problems: > > - my groups are dynamic (i.e. groupOfURLs). asynchronous sync does not > work indeed, because lsc as no way to know that a group have been > updated... > To solve this problem, special support would have to be written I > guess (for example, a sync (e.g group sync) may be dependant upon > another (e.g user sync), so if any user is updated asynchronously, it > triggers the group sync) >
In this case, group sync must be run synchronously. > - anyway, the problem can be "solved" by running group sync > synchronously at regular interval... but it seems that with the code > given with the tutorial, the group in AD is recreated each time, even > if it didn't change in OpenLDAP. is this expected or is it a bug? This should be a bug in your configuration. Check the pivot between your source group and you destination group. > > - Out of curiosity, is there a limit to the size of groups that can be > synchronised with the code given by the tutorial? > Does lsc support paged results from AD in case, e.g, AD returns a > group with 20 000 members? > Pages result are for a number of entries, it is configurable in <connection>. For a number of values inside an attribut, which is called range, you can use this piece of code: http://lsc-project.org/wiki/documentation/howto/adrangescript Clément. _______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
