Le 11/06/2018 à 15:34, Paulo Sergio a écrit : > you're right Clément.. I believe I was using the wrong destination > attribute (ntUserAuthFlags)...the correct one should be ntUserFlags > which gives the basic possibilities for the AD account status: > > # 0x0002: Account disabled > # 0x0010: Account currently locked > # 0x0020: Password not required > # 0x0040: User cannot change password > # 0x10000: Password should never expire > > those values are the same as Active Directory (as far as I know). Now > my problem is how to write to destination (389-ds ldap).
You need to use some javascript with AD.userAccountControlSet() https://lsc-project.org/javadoc/2.1-SNAPSHOT/org/lsc/utils/directory/AD.html#userAccountControlSet-int-java.lang.String:A- -- Clément Oudot | Identity Solutions Manager [email protected] Worteks | https://www.worteks.com
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
