Hi,
We are going to put a connector in production environment. It works well except
the user clean task .. => It cleans all users each time (Groups are OK).
The sync is done AD => OpenLDAP with LSC 2.1
The filters seems OK to me...
Any idea of why ?
Thank guys !
<task>
<name>UsersSync</name>
<bean>org.lsc.beans.SimpleBean</bean>
<ldapSourceService>
<name>samba4Srv-users</name>
<connection reference="samba4" />
<baseDn>CN=Users,DC=ads,DC=it-optics,DC=com</baseDn>
<pivotAttributes>
<string>sAMAccountName</string>
</pivotAttributes>
<fetchedAttributes>
<string>cn</string>
<string>sAMAccountName</string>
<string>displayName</string>
<string>dc</string>
<string>description</string>
<string>dn</string>
<string>mail</string>
<string>uidNumber</string>
<string>gidNumber</string>
<string>unixHomeDirectory</string>
<string>o</string>
<string>objectClass</string>
<string>ou</string>
<string>sn</string>
<string>departmentNumber</string>
<string>employeeNumber</string>
<string>facsimileTelephoneNumber</string>
<string>gecos</string>
<string>givenName</string>
<string>homeDirectory</string>
<string>homePhone</string>
<string>homePostalAddress</string>
<string>loginShell</string>
<string>mail</string>
<string>memberUid</string>
<string>mobile</string>
<string>personalTitle</string>
<string>postalAddress</string>
<string>preferredLanguage</string>
<string>pwdLastSet</string>
<string>roomNumber</string>
<string>shadowExpire</string>
<string>shadowLastChange</string>
<string>shadowMax</string>
<string>shadowMin</string>
<string>telephoneNumber</string>
<string>labeleduri</string>
<string>forceLogoff</string>
<string>groupType</string>
<string>homeDrive</string>
<string>profilePath</string>
<string>lockoutDuration</string>
<string>lockoutObservationWindow</string>
<string>lockoutThreshold</string>
<string>logonHours</string>
<string>maxPwdAge</string>
<string>minxPwdAge</string>
<string>minPwdLength</string>
<string>otherMailBox</string>
</fetchedAttributes>
<getAllFilter>(&(objectclass=user)(objectClass=posixAccount))</getAllFilter>
<getOneFilter>(&(sAMAccountName={sAMAccountName})(objectClass=user))</getOneFilter>
<cleanFilter>(&(sAMAccountName={sAMAccountName})(objectClass=user))</cleanFilter>
</ldapSourceService>
<ldapDestinationService>
<name>openldapSrv-users</name>
<connection reference="openldap" />
<baseDn>ou=people,dc=it-optics,dc=net</baseDn>
<pivotAttributes>
<string>uid</string>
</pivotAttributes>
<fetchedAttributes>
<string>dc</string>
<string>description</string>
<string>objectClass</string>
<string>uid</string>
<string>dn</string>
<string>sn</string>
<string>cn</string>
<string>uidNumber</string>
<string>gidNumber</string>
<string>userPassword</string>
<string>o</string>
<string>ou</string>
<string>sn</string>
<string>departmentNumber</string>
<string>employeeNumber</string>
<string>facsimileTelephoneNumber</string>
<string>gecos</string>
<string>givenName</string>
<string>homeDirectory</string>
<string>homePhone</string>
<string>homePostalAddress</string>
<string>loginShell</string>
<string>mail</string>
<string>memberUid</string>
<string>mobile</string>
<string>personalTitle</string>
<string>postalAddress</string>
<string>preferredLanguage</string>
<string>roomNumber</string>
<string>shadowExpire</string>
<string>shadowLastChange</string>
<string>shadowMax</string>
<string>shadowMin</string>
<string>telephoneNumber</string>
<string>uid</string>
<string>academicTitle</string>
<string>gosaDefaultLanguage</string>
<string>gosaMailAlternateAddress</string>
<string>gosaMailDeliveryMode></string>
<string>sambaPwdCanChange</string>
<string>shadowExpire</string>
<string>shadowLastChange</string>
<string>shadowMax</string>
<string>shadowMin</string>
<string>labeleduri</string>
</fetchedAttributes>
<getAllFilter>(objectclass=posixAccount)</getAllFilter>
<getOneFilter>(&(objectClass=inetOrgPerson)(uid={sAMAccountName}))</getOneFilter>
</ldapDestinationService>
Regards,
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
