Hi Clément, You'll find attached a modified version of the LSC configuration file, for privacy reasons. I hope not to have introduced further issues... :) Please find below the detailed error message:
-- mars 29 11:17:30 - ERROR - Error while adding entry CN=ABCD efgh,CN=users-fr,CN=koinobori,C=fr in directory :javax.naming.directory.NoSuchAttributeException: [LDAP: error code 16 - 00000057: LdapErr: DSID-0C090C30, comment: Error in attribute conversion operation, data 0, v1db0]; remaining name 'CN=ABCD efgh,CN=users-fr' mars 29 11:17:30 - ERROR - Error while synchronizing ID CN=ABCD efgh,CN=users-fr,CN=koinobori,C=fr : java.lang.Exception: Technical problem while applying modifications to the destination # Tue Mar 29 11:17:30 CEST 2016 dn: CN=ABCD efgh,CN=users-fr,CN=koinobori,C=fr changetype: add mail: [email protected] givenName: abcd objectClass: top objectClass: organizationalPerson objectClass: person objectClass: inetOrgPerson objectClass: user cn: AFGH abcd mailNickName: ABCD efgh Paul, Smith SIC Admin uid: abcd.efgh company: Blabla sn: efgh -- Best regards! 2016-03-25 18:31 GMT+01:00 Clément OUDOT <[email protected] >: > > > Le 25/03/2016 16:15, Patrice M. a écrit : > > Hi everyone, > > I'm facing problems while synchronizing with ADLDS, from OpenLDAP. > When I send user entries with very minimal attributes set (cn, > sAMAccountName, objectClasses), all works pretty well, but when I add other > attributes (even only one: mail for example) I'm stuck with an error: *[ldap: > error code 16 - 00000057 ...* > > Of course, I've verified the required objectClasses and declared them in > this configuration set: > <dataset> > <name>objectClass</name> > <policy>KEEP</policy> > <createValues> > <string>"top"</string> > <string>"organizationalPerson"</string> > <string>"person"</string> > <string>"inetOrgPerson"</string> > <string>"user"</string> > </createValues> > </dataset> > > Do you know where it can come from? I'm very surprized by this behaviour. > > > You need to show us the full error message and also your lsc.xml so can > have enough information to help you. > > > -- > Clément OUDOT > Consultant en logiciels libres, Expert infrastructure et sécurité > Savoir-faire Linux > 87, rue de Turbigo - 75003 PARIS > Blog: http://sflx.ca/coudot > > > _______________________________________________________________ > Ldap Synchronization Connector (LSC) - http://lsc-project.org > > lsc-users mailing list > [email protected] > http://lists.lsc-project.org/listinfo/lsc-users >
<?xml version="1.0" ?> <lsc xmlns="http://lsc-project.org/XSD/lsc-core-2.1.xsd"; revision="0"> <connections> <!-- Annuaire Source --> <ldapConnection> <name>ldap-frops-ro</name> <url>ldap://10.0.100.20:389/dc=fr</url> <username>cn=admin,dc=fr</username> <password>change_me</password> <authentication>SIMPLE</authentication> <referral>IGNORE</referral> <derefAliases>NEVER</derefAliases> <version>VERSION_3</version> <pageSize>100</pageSize> <factory>com.sun.jndi.ldap.LdapCtxFactory</factory> <tlsActivated>false</tlsActivated> </ldapConnection> <!-- Annuaire pages blanches Destination --> <ldapConnection> <name>ldap-balard-rw</name> <url>ldap://10.0.100.51:389/CN=frops,OU=mindef,C=fr</url> <username>CN=adminadlds,CN=koinobori,C=fr</username> <password>change_me</password> <authentication>SIMPLE</authentication> <referral>IGNORE</referral> <derefAliases>NEVER</derefAliases> <version>VERSION_3</version> <pageSize>1000</pageSize> <factory>com.sun.jndi.ldap.LdapCtxFactory</factory> <tlsActivated>false</tlsActivated> <recursiveDelete>true</recursiveDelete> </ldapConnection> </connections> <!-- Fichier d'audit des synchronisations --> <audits> <csvAudit> <name>csv_audit</name> <append>true</append> <operations>create, delete</operations> <file>/tmp/dump.csv</file> <datasets>cn, dn</datasets> <separator>,</separator> </csvAudit> </audits> <tasks> <!-- ==============================--> <!-- Source vers depot LSC --> <!-- ======= (Utilisateurs) =======--> <task> <name>get-source-users</name> <bean>org.lsc.beans.SimpleBean</bean> <ldapSourceService> <name>get-source-users-src-ldap</name> <connection reference="ldap-source-ro" /> <baseDn>dc=fr</baseDn> <pivotAttributes> <string>uid</string> </pivotAttributes> <fetchedAttributes> <string>sn</string> <string>cn</string> <string>uid</string> <string>givenName</string> <string>displayName</string> <string>ou</string> <string>departmentNumber</string> <string>title</string> <string>st</string> <string>l</string> <string>telephoneNumber</string> <string>mail</string> <string>description</string> <string>o</string> <string>userCertificate;binary</string> <string><hidden></string> <string><hidden></string> <string><hidden></string> <string><hidden></string> <string><hidden></string> </fetchedAttributes> <getAllFilter><![CDATA[(objectClass=inetOrgPerson)]]></getAllFilter> <getOneFilter><![CDATA[(&(objectClass=inetOrgPerson)(uid={uid}))]]></getOneFilter> <cleanFilter><![CDATA[(&(uid={uid})(objectClass=inetOrgPerson))]]></cleanFilter> </ldapSourceService> <!-- Peuplement du DIT cible --> <ldapDestinationService> <name>get-source-users-dst-ldap</name> <connection reference="ldap-dest-rw" /> <baseDn>CN=users-fr,CN=koinobori,C=fr</baseDn> <pivotAttributes> <string>uid</string> </pivotAttributes> <fetchedAttributes> <string>objectClass</string> <string>cn</string> <string>uid</string> <string>sAMAccountName</string> <string>givenName</string> <string>initials</string> <string>sn</string> <string>displayName</string> <string>mailNickName</string> <string>streetAddress</string> <string>co</string> <string>mail</string> <string>company</string> <string>department</string> <string>physicalDeliveryOfficeName</string> <string>telephoneNumber</string> <string>facsimileTelephoneNumber</string> <string>homePhone</string> <string>mobile</string> </fetchedAttributes> <getAllFilter><![CDATA[(objectClass=user)]]></getAllFilter> <getOneFilter><![CDATA[(&(objectClass=user)(uid={uid}))]]></getOneFilter> </ldapDestinationService> <!-- Regles de synchronisation --> <propertiesBasedSyncOptions> <mainIdentifier>"CN=" + srcBean.getDatasetFirstValueById("cn") + ",CN=users-fr,CN=koinobori,C=fr";</mainIdentifier> <defaultDelimiter>;</defaultDelimiter> <defaultPolicy>KEEP</defaultPolicy> <conditions> <create>true</create> <update>true</update> <delete>true</delete> <changeId>true</changeId> </conditions> <dataset> <name>objectClass</name> <policy>KEEP</policy> <createValues> <string>"top"</string> <string>"organizationalPerson"</string> <string>"person"</string> <string>"inetOrgPerson"</string> <string>"user"</string> </createValues> </dataset> <dataset> <name>mailNickname</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById(" <hidden>")</string> </createValues> </dataset> <dataset> <name>company</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById("<hidden>")</string> </createValues> </dataset> <dataset> <name>department</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById("<hidden>")</string> </createValues> </dataset> <dataset> <name>physicalDeliveryOfficeName</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById("<hidden>")</string> </createValues> </dataset> <dataset> <name>homePhone</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById("<hidden>")</string> </createValues> </dataset> <dataset> <name>info</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById("<hidden>")</string> </createValues> </dataset> <dataset> <name>co</name> <policy>KEEP</policy> <createValues> <string>srcBean.getDatasetFirstValueById("<hidden>")</string> </createValues> </dataset> </propertiesBasedSyncOptions> </task> </tasks> </lsc>
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
