Hi,
It is exactly what I want. Sync only the userPassword.
My objective is to use two tasks:
1 - Synchronize the attributes
cn,sn,objectClass,uid,mail,givenName,userPassword from the base A to base B
- This works perfectly.
2 - Synchronize only the B userPassword from de base B to base A - This
does not work when I change the attribute value in the base B.
The details:
I have tested the same configuration on a different server:
Description: Ubuntu 14.04.1 LTS
java version "1.6.0_33"
OpenJDK Runtime Environment (IcedTea6 1.13.5) (6b33-1.13.5-1ubuntu0.14.04)
OpenJDK 64-Bit Server VM (build 23.25-b01, mixed mode)
And it worked:
Jun 05 09:21:11 - DEBUG - In object
"uid=felipe.silva,ou=test,ou=users,dc=my,dc=corp": List of attributes
considered for writing in destination: [userPassword]
Jun 05 09:21:11 - DEBUG - In object
"uid=felipe.silva,ou=test,ou=users,dc=my,dc=corp": Attribute
"userPassword" is in FORCE status
Jun 05 09:21:11 - DEBUG - In object
"uid=felipe.silva,ou=test,ou=users,dc=my,dc=corp": Replacing attribute
"userPassword": source values are [[B@64ba3fc1], old values were
[[B@6e5d9c6d], new values are [[B@64ba3fc1]
.
.
.
Jun 05 09:21:11 - INFO - # Updating object
uid=felipe.silva,ou=test,ou=users,dc=my,dc=corp for rnp2pop
# Fri Jun 05 09:21:11 BRT 2015
dn: uid=felipe.silva,ou=test,ou=users,dc=my,dc=corp
changetype: modify
replace: userPassword
userPassword: {ssha}d3VJVsrx56macmFyQv5mLeEvIFWyovnZeOl4LQ==
-
.
.
.
Jun 05 09:21:11 - INFO - All entries: 7, to modify entries: 1,
successfully modified entries: 1, errors: 0
But does not work in Debian server:
debian_version
7.8
$ java -version
java -version
java version "1.7.0_79"
OpenJDK Runtime Environment (IcedTea 2.5.5) (7u79-2.5.5-1~deb7u1)
OpenJDK 64-Bit Server VM (build 24.79-b02, mixed mode)
Nothing is synchronized:
2015/06/05 10:47:22 [lsc] Starting LSC
Jun 05 10:47:24 - INFO - Logging configuration successfully loaded from
/etc/lsc/test/logback.xml
Jun 05 10:47:24 - INFO - LSC configuration successfully loaded from
/etc/lsc/test/
Jun 05 10:47:24 - INFO - Connecting to LDAP server
ldap://ldap.local/dc=my,dc=corp as cn=sync,ou=app,ou=users,dc=my,dc=corp
Jun 05 10:47:24 - INFO - Connecting to LDAP server
ldaps://ldap.remote/ou=EXT,dc=corp,dc=remote as
uid=app.w,ou=app,ou=EXT,dc=corp,dc=remote
Jun 05 10:47:26 - INFO - All entries: 8, to modify entries: 0,
successfully modified entries: 0, errors: 0
2015/06/05 10:47:26 [lsc] LSC finished running
Any idea?
Thanks.
2015-06-05 5:11 GMT-03:00 Clément OUDOT <[email protected]>:
> 2015-06-03 20:49 GMT+02:00 Anderson <[email protected]>:
> > Hi All,
> >
> > While running the ISC does not replicate the changes. They can help me
> with
> > this?
> >
> > #lsc -s all
> >
> >
> > My config file:
> >
> > <?xml version="1.0" encoding="UTF-8"?>
> > <lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.1.xsd"; revision="0">
> > <connections>
> > <ldapConnection>
> > <name>CONEX-BASE-LOCAL</name>
> > <url>ldap://ldap.local/dc=my,dc=corp</url>
> > <username>cn=sync,ou=app,ou=users,dc=my,dc=corp</username>
> > <password>mypass</password>
> > <authentication>SIMPLE</authentication>
> > <referral>IGNORE</referral>
> > <derefAliases>NEVER</derefAliases>
> > <version>VERSION_3</version>
> > <pageSize>-1</pageSize>
> > <factory>com.sun.jndi.ldap.LdapCtxFactory</factory>
> > <tlsActivated>false</tlsActivated>
> > </ldapConnection>
> > <ldapConnection>
> > <name>CONEX-BASE-REMOTE</name>
> > <url>ldaps://ldap.remote/ou=EXT,dc=corp,dc=remote</url>
> > <username>uid=app.w,ou=app,ou=EXT,dc=corp,dc=remote</username>
> > <password>otherpass</password>
> > <authentication>SIMPLE</authentication>
> > <referral>IGNORE</referral>
> > <derefAliases>NEVER</derefAliases>
> > <version>VERSION_3</version>
> > <pageSize>-1</pageSize>
> > <factory>com.sun.jndi.ldap.LdapCtxFactory</factory>
> > <tlsActivated>false</tlsActivated>
> > </ldapConnection>
> > </connections>
> >
> > <tasks>
> > <task>
> > <name>pwsync</name>
> > <bean>org.lsc.beans.SimpleBean</bean>
> > <ldapSourceService>
> > <name>SRC-SERVICE</name>
> > <connection reference="CONEX-BASE-REMOTE"/>
> > <baseDn>ou=EXT,dc=corp,dc=remote</baseDn>
> > <pivotAttributes>
> > <string>uid</string>
> > </pivotAttributes>
> > <fetchedAttributes>
> > <string>objectClass</string>
> > <string>uid</string>
> > <string>userPassword</string>
> > <string>modifyTimestamp</string>
> > </fetchedAttributes>
> >
> > <getAllFilter>(objectClass=inetorgperson)</getAllFilter>
> >
> >
> <getOneFilter>(&(objectClass=inetorgperson)(uid={uid}))</getOneFilter>
> >
> > <cleanFilter>(&(objectClass=inetorgperson)(uid={uid}))</cleanFilter>
> > </ldapSourceService>
> > <ldapDestinationService>
> > <name>DST-SERVICE</name>
> > <connection reference="CONEX-BASE-LOCAL"/>
> > <baseDn>ou=test,ou=users,dc=my,dc=corp</baseDn>
> > <pivotAttributes>
> > <string>uid</string>
> > </pivotAttributes>
> > <fetchedAttributes>
> > <string>userPassword</string>
> > </fetchedAttributes>
> >
> > <getAllFilter>(objectClass=inetorgperson)</getAllFilter>
> >
> >
> <getOneFilter>(&(objectClass=inetorgperson)(uid={uid}))</getOneFilter>
> > </ldapDestinationService>
> > <propertiesBasedSyncOptions>
> > <mainIdentifier>
> > dn = srcBean.getMainIdentifier();
> > old_base = "ou=EXT,dc=corp,dc=remote";
> > new_base =
> > "ou=test,ou=users,dc=my,dc=corp";
> > dn = dn.replace(old_base,
> new_base);
> > </mainIdentifier>
> > <defaultDelimiter>;</defaultDelimiter>
> > <defaultPolicy>FORCE</defaultPolicy>
> > <conditions>
> > <create>true</create>
> >
> > <update>srcBean.getDatasetFirstValueById('modifyTimestamp') >
> > dstBean.getDatasetFirstValueById('modifyTimestamp')</update>
> > <delete>true</delete>
> > <changeId>false</changeId>
> > </conditions>
> > </propertiesBasedSyncOptions>
> > </task>
> > </tasks>
> > </lsc>
>
>
> You just set userPassword in fetched attributes of you destination
> service. In this case, only userPassword attribute will be updated.
>
>
>
> Clément.
>
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
http://lists.lsc-project.org/listinfo/lsc-users
