Le 02/04/2020 à 12:09, Arnaud Gymnase a écrit :
>
> I delete all my entries, change the mainIdentifer using cn= and
> createa a new user.
>
> At first run, my user has been added into my LDAP, no problem.
>
> /# Thu Apr 02 11:46:27 CEST 2020
> dn: cn=Barbara Michel,ou=Users,ou=Accounts,dc=GFB,dc=LAN
> changetype: add
> userPassword: {sha}Ux0iyV2/Azpr1sjfpgQ+Xl5T/uk=
> preferredLanguage: FR
> mail: [email protected]
> SambaBadPasswordCount: 0
> SambaDomainName: GFB
> SambaPwdLastSet: 1585820786
> uid: barbara.michel
> givenname: Barbara
> clearSHA1Password: 531d22c95dbf033a6bd6c8dfa6043e5e5e53fee9
> clearSHAPassword: {sha}Ux0iyV2/Azpr1sjfpgQ+Xl5T/uk=
> sn: Michel
> SambaBadPasswordTime: 0
> SambaSID: S-1-5-21-3459211373-2572735173-4185727138-14200
> homeDirectory: /users/barbara.michel
> clearMicrosoftNTPassword: F696AFA354223132583D5C3A1136ADFC
> clearAccountStatus: enabled
> SambaNTPassword: F696AFA354223132583D5C3A1136ADFC
> objectClass: top
> objectClass: posixAccount
> objectClass: InetOrgPerson
> objectClass: shadowAccount
> objectClass: clearAccount
> objectClass: sambaSamAccount
> cn: Barbara Michel
> sambaAcctFlags: [U ]
> employeeType: Lehrer
> uidNumber: 14200
> SambaPrimaryGroupSID:
> S-1-5-21-3459211373-2572735173-4185727138-513
> businessCategory: GBSL
> gidNumber: 63000
> /
>
>
> I then edited my database and changed the /sn /and /givenname /values
> and restarted the process :
>
> /
> //avr. 02 11:56:10 - INFO - Logging configuration successfully loaded
> from /etc/lsc/logback.xml/
> /avr. 02 11:56:10 - INFO - LSC configuration successfully loaded from
> /etc/lsc//
> /avr. 02 11:56:10 - INFO - Connecting to LDAP server
> ldap://localhost:389/dc=GFB,dc=LAN as
> cn=manager,ou=Internal,dc=GFB,dc=LAN/
> /avr. 02 11:56:10 - INFO - Starting sync for ClearOS-IBM/
> /avr. 02 11:56:12 - INFO - All entries: 1, to modify entries: 0,
> successfully modified entries: 0, errors: 0/
>
> Nothing found to modify
>
> I checked my filters and everything seems to be fine ...
>
>
> <getAllFilter>(&(objectClass=PosixAccount)(sambaDomainName=GFB))</getAllFilter>
>
> <getOneFilter>(&(objectClass=Posixaccount)(uidnumber={uidnumber}))</getOneFilter>
>
>
>
Maybe not important for your current issue, but it would be better to
have to correct case for the objectClass values. Use "posixAccount" in
your filters. Use also "uidNumber".
> I checked the configuration file of the connexion to my database,
> problem should come from here I think but ...
>
> <sqlMap namespace="InetOrgPerson">
> <select id="getInetOrgPerson"
> resultClass="java.util.HashMap" parameterClass="java.util.Map">
> Select
> pers.EventoID as uidnumber,
> pers.Login as uid,
> pers.Vorname as givenName,
> pers.Nachname as sn,
> pers.Mailadresse as mail,
> CONCAT(pers.VorName , ' ',pers.Nachname) as cn,
> pers.Login as HomeDirectory,
> pers.Veranstalter as businessCategory,
> pers.Typ as employeeType,
> pers.Sprache as preferredLanguage
> FROM Evento pers WHERE pers.EventoID = #uidnumber#
> </select>
>
> <select id="checkPersonForClean"
> resultClass="java.util.HashMap" parameterClass="java.util.Map">
> Select pers.EventoID as uidnumber
> FROM Evento pers WHERE pers.EventoID = #uidnumber#
> </select>
>
> <select id="getInetOrgPersonList"
> resultClass="java.util.HashMap">
> SELECT pers.EventoID as uidnumber
> FROM Evento pers
> </select>
> </sqlMap>
>
>
> Thanks very very much
>
Could you send also your full lsc.xml (minus passwords)? Check the
defaultPolicy and also the policy of each dataset.
--
Clément Oudot | Identity Solutions Manager
[email protected]
Worteks | https://www.worteks.com
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
