Hi,
I'm trying to sync groups from AD to external scripts which I was able
to do in the past.
The problem now is that the update script is called with 'cn= ' only,
without the group name even though the get script is called with the
group name.
Any idea what's going on?
Jun 12 08:35:51 - INFO - Starting sync for SyncCreateGroupTask
Jun 12 08:35:51 - DEBUG - Using pagedResults control for 1000 entries at a time
Jun 12 08:35:51 - DEBUG - Lauching '/usr/local/bin/ad_get.sh
CN=Management,OU=Microsoft Exchange,DC=TEST,DC=LOCAL '
Jun 12 08:35:51 - DEBUG - Writing to STDIN cn: Management
Jun 12 08:35:51 - DEBUG - Waiting for command to stop ...
Jun 12 08:35:53 - DEBUG - Messages dump on stderr by script:
Jun 12 08:35:53 - WARN - The ldif file is empty
Jun 12 08:35:53 - WARN - The ldif file is empty
Jun 12 08:35:53 - ERROR - Entries count: 0
Jun 12 08:35:53 - DEBUG - Unsupported scripting engine: Oracle Nashorn
Jun 12 08:35:54 - DEBUG - In object "cn=": List of attributes
considered for writing in destination: [member, objectClass, cn]
Jun 12 08:35:54 - DEBUG - In object "cn=": Attribute "member" is in
FORCE status
Jun 12 08:35:54 - DEBUG - In object "cn=": Adding attribute "member"
with values [CN=Joe Doe, OU=Operation, OU=Test, DC=TEST, DC=LOCAL,
CN=John Dough, CN=Test Test2]
Jun 12 08:35:54 - DEBUG - In object "cn=": Attribute "objectClass" is
in KEEP status
Jun 12 08:35:54 - DEBUG - In object "cn=": Attribute "objectClass"
will not be written to the destination
Jun 12 08:35:54 - DEBUG - In object "cn=": Attribute "cn" is in KEEP status
Jun 12 08:35:54 - DEBUG - In object "cn=": Attribute "cn" will not be
written to the destination
Jun 12 08:35:54 - DEBUG - Lauching '/usr/local/bin/ad_connector.py cn= '
<task>
<name>SyncCreateGroupTask</name>
<bean>org.lsc.beans.SimpleBean</bean>
<ldapSourceService>
<name>SyncGroupTask-src</name>
<connection reference="ldap-src-conn" />
<baseDn>dc=test,dc=local</baseDn>
<pivotAttributes>
<string>cn</string>
</pivotAttributes>
<fetchedAttributes>
<string>member</string>
</fetchedAttributes>
<getAllFilter>(&(objectClass=group))</getAllFilter>
<getOneFilter><![CDATA[(&(objectClass=group)(cn={cn}))]]></getOneFilter>
<cleanFilter><![CDATA[(&(objectClass=group)(cn={cn}))]]></cleanFilter>
</ldapSourceService>
<pluginDestinationService
implementationClass="org.lsc.plugins.connectors.executable.ExecutableLdifDestinationService">
<name>SyncTask-dst</name>
<connection reference="executable" />
<exec:executableLdifDestinationServiceSettings>
<name>SyncGroupTask-service</name>
<connection reference="executable" />
<exec:listScript>/usr/local/bin/ad_list.sh</exec:listScript>
<exec:getScript>/usr/local/bin/ad_get.sh</exec:getScript>
<exec:addScript>/usr/local/bin/ad_connector.py</exec:addScript>
<exec:updateScript>/usr/local/bin/ad_connector.py</exec:updateScript>
<exec:removeScript>/usr/local/bin/ad_delete.sh</exec:removeScript>
<exec:renameScript>/usr/local/bin/ad_rename.sh</exec:renameScript>
<exec:fetchedAttributes>
<string>member</string>
<string>objectClass</string>
<string>cn</string>
</exec:fetchedAttributes>
</exec:executableLdifDestinationServiceSettings>
</pluginDestinationService>
<propertiesBasedSyncOptions>
<mainIdentifier>js:"cn=" +
javax.naming.ldap.Rdn.escapeValue(srcBean.getDatasetFirstValueById("cn"))</mainIdentifier>
<defaultDelimiter>,</defaultDelimiter>
<defaultPolicy>KEEP</defaultPolicy>
<conditions>
<create>true</create>
<update>false</update>
<delete>true</delete>
<changeId>true</changeId>
</conditions>
<dataset>
<name>member</name>
<policy>FORCE</policy>
<forceValues></forceValues>
</dataset>
</propertiesBasedSyncOptions>
</task>
Thanks in Advance,
Lior.
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
