Thank you clément, it works ! Note: your emails (from mailing list) are dropped by our mail server because of missing PTR record :
Mar 17 10:08:13 zimbra postfix/smtpd[1431]: NOQUEUE: filter: RCPT from unknown[163.172.47.55]: <[email protected]>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10026; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<dionysos.oodo.net> Mar 17 10:08:13 zimbra postfix/smtpd[1431]: NOQUEUE: filter: RCPT from unknown[163.172.47.55]: <[email protected]>: Sender address triggers FILTER smtp-amavis:[127.0.0.1]:10024; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<dionysos.oodo.net> Mar 17 10:08:13 zimbra postfix/smtpd[1431]: NOQUEUE: reject: RCPT from unknown[163.172.47.55]: 450 4.7.1 Client host rejected: cannot find your reverse hostname , [163.172.47.55]; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<dionysos.oodo.net> ----- Mail original ----- De: "Gaetan SLONGO" <[email protected]> À: [email protected] Envoyé: Vendredi 17 Mars 2017 10:07:58 Objet: Sync AD => OpenLDAP, clean task deletes all users Hi, We are going to put a connector in production environment. It works well except the user clean task .. => It cleans all users each time (Groups are OK). The sync is done AD => OpenLDAP with LSC 2.1 The filters seems OK to me... Any idea of why ? Thank guys ! <task> <name>UsersSync</name> <bean>org.lsc.beans.SimpleBean</bean> <ldapSourceService> <name>samba4Srv-users</name> <connection reference="samba4" /> <baseDn>CN=Users,DC=ads,DC=it-optics,DC=com</baseDn> <pivotAttributes> <string>sAMAccountName</string> </pivotAttributes> <fetchedAttributes> <string>cn</string> <string>sAMAccountName</string> <string>displayName</string> <string>dc</string> <string>description</string> <string>dn</string> <string>mail</string> <string>uidNumber</string> <string>gidNumber</string> <string>unixHomeDirectory</string> <string>o</string> <string>objectClass</string> <string>ou</string> <string>sn</string> <string>departmentNumber</string> <string>employeeNumber</string> <string>facsimileTelephoneNumber</string> <string>gecos</string> <string>givenName</string> <string>homeDirectory</string> <string>homePhone</string> <string>homePostalAddress</string> <string>loginShell</string> <string>mail</string> <string>memberUid</string> <string>mobile</string> <string>personalTitle</string> <string>postalAddress</string> <string>preferredLanguage</string> <string>pwdLastSet</string> <string>roomNumber</string> <string>shadowExpire</string> <string>shadowLastChange</string> <string>shadowMax</string> <string>shadowMin</string> <string>telephoneNumber</string> <string>labeleduri</string> <string>forceLogoff</string> <string>groupType</string> <string>homeDrive</string> <string>profilePath</string> <string>lockoutDuration</string> <string>lockoutObservationWindow</string> <string>lockoutThreshold</string> <string>logonHours</string> <string>maxPwdAge</string> <string>minxPwdAge</string> <string>minPwdLength</string> <string>otherMailBox</string> </fetchedAttributes> <getAllFilter>(&(objectclass=user)(objectClass=posixAccount))</getAllFilter> <getOneFilter>(&(sAMAccountName={sAMAccountName})(objectClass=user))</getOneFilter> <cleanFilter>(&(sAMAccountName={sAMAccountName})(objectClass=user))</cleanFilter> </ldapSourceService> <ldapDestinationService> <name>openldapSrv-users</name> <connection reference="openldap" /> <baseDn>ou=people,dc=it-optics,dc=net</baseDn> <pivotAttributes> <string>uid</string> </pivotAttributes> <fetchedAttributes> <string>dc</string> <string>description</string> <string>objectClass</string> <string>uid</string> <string>dn</string> <string>sn</string> <string>cn</string> <string>uidNumber</string> <string>gidNumber</string> <string>userPassword</string> <string>o</string> <string>ou</string> <string>sn</string> <string>departmentNumber</string> <string>employeeNumber</string> <string>facsimileTelephoneNumber</string> <string>gecos</string> <string>givenName</string> <string>homeDirectory</string> <string>homePhone</string> <string>homePostalAddress</string> <string>loginShell</string> <string>mail</string> <string>memberUid</string> <string>mobile</string> <string>personalTitle</string> <string>postalAddress</string> <string>preferredLanguage</string> <string>roomNumber</string> <string>shadowExpire</string> <string>shadowLastChange</string> <string>shadowMax</string> <string>shadowMin</string> <string>telephoneNumber</string> <string>uid</string> <string>academicTitle</string> <string>gosaDefaultLanguage</string> <string>gosaMailAlternateAddress</string> <string>gosaMailDeliveryMode></string> <string>sambaPwdCanChange</string> <string>shadowExpire</string> <string>shadowLastChange</string> <string>shadowMax</string> <string>shadowMin</string> <string>labeleduri</string> </fetchedAttributes> <getAllFilter>(objectclass=posixAccount)</getAllFilter> <getOneFilter>(&(objectClass=inetOrgPerson)(uid={sAMAccountName}))</getOneFilter> </ldapDestinationService> Regards,
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
