On Fri, May 14, 2021 at 7:27 AM Francesco Chicchiriccò
wrote:
>
> At a first glance, there seems to be some difference between
> "membValue.toString()" from [4] - logged as
>
> uid=roger,ou=People,dc=flat,dc=https:/
> /cloud,dc=services,dc=vnet
>
> and "membValue" as reported by log statement at
On Mon, May 10, 2021 at 9:04 AM Francesco Chicchiriccò
wrote:
Got my Groovy script working, good progress!
There was still one thing lingering around that I forgot the come back to:
> Secondly, some of the organisation DN's contain (forward) slashes in the
> dc part of their DN, which makes con
On Tue, May 11, 2021 at 4:52 PM Francesco Chicchiriccò
wrote:
> You can have a look at what can be done in a PropagationActions class by
> looking at matching classes under
>
>
> https://github.com/apache/syncope/tree/2_1_X/core/provisioning-java/src/main/java/org/apache/syncope/core/provisioning
hicchiriccò
wrote:
> On 10/05/21 14:05, Martin van Es wrote:
>
>
>
> On Mon, May 10, 2021 at 9:07 AM Francesco Chicchiriccò <
> ilgro...@apache.org> wrote:
>
>> On 07/05/21 19:50, Martin van Es wrote:
>>
>> Another question.
>> How would
On Mon, May 10, 2021 at 9:07 AM Francesco Chicchiriccò
wrote:
> On 07/05/21 19:50, Martin van Es wrote:
>
> Another question.
> How would I print debug (core.log) statements in a Groovy propagation
> action script?
>
> Not very related to the subject, but you can find a
Another question.
How would I print debug (core.log) statements in a Groovy propagation
action script?
Best regards,
Martin
On Fri, May 7, 2021 at 1:49 PM Martin van Es wrote:
> Hi,
>
> I've been playing around with Syncope again and was trying to sync a src
> LDAP sch
Hi,
I've been playing around with Syncope again and was trying to sync a src
LDAP scheme that contains multiple organizations, which contain multiple
Groups and People branches. All of these branches contain organisation
specific users, possibly sharing the same uid (login name). You might call
th
Hi Francesco,
Thx for the quick reply!
On Wed, Oct 7, 2020 at 11:18 AM Francesco Chicchiriccò
wrote:
> Hi Martin,
> so you'd want to keep different counters for different External Resources,
> and inject appropriate values from such counters during propagation, to
> populate attributes like as
Hi,
It's been a while since I last took a look at Syncope but we have recently
decided that it may fill a gap in our provisioning landscape.
Our project is brought to life to enable collaborative organisations for
research projects in the Netherlands. As is normal in the education world,
authoris
ssage:
InvalidEntityException: JPAGroup [InvalidName]
Best regards,
Martin
On Tue, May 8, 2018 at 9:53 AM Martin van Es wrote:
> I see that renaming Realms isn't forbidding in console, so keeping track
of
> the o's via entryUUID and renaming Realms should be possible if only I
knew
&g
acter?
Best regards,
Martin
On Mon, May 7, 2018 at 4:50 PM Martin van Es wrote:
> The only minor remaining problem: 'o' moves are not detected, because
> there's no way I can find a way to link the realm to the source's
entryUUID?
> The result is there is a stale oldnam
The only minor remaining problem: 'o' moves are not detected, because
there's no way I can find a way to link the realm to the source's entryUUID?
The result is there is a stale oldname realm left, and a new newname realm
created.
On Mon, May 7, 2018 at 4:25 PM Martin van Es
Fixed it. Setting 'Uid Attribute' = 'o', did the trick!
Thx!
Best regards,
Martin
On Mon, May 7, 2018 at 3:45 PM Martin van Es wrote:
> Thx for the answer.
> I inspected the resource-ldap-orgunit and discoverd the omission of the
> fullpath mapping for real
syncope-console/ or by downloading and
> running the standalone distribution.
> Regards.
> On 07/05/2018 11:23, Martin van Es wrote:
> > Still stuck.
> > It would be really nice if somebody could explain how to create a REALM
> > pull policy or tell me that it's not a po
TES Correlation Rule attribute
in Pull Policy 'Realm' which I can apply to the REALM Resource that pulls
in the realms, but I keep getting u_realm_name unique name constraints
violations on all following pulls.
Best regards,
Martin
On Thu, May 3, 2018 at 10:31 PM Martin van Es wrote:
>
se 'name', but then the policy doesn't
work or apply?
Also, I tried add a REALM key to AnyTypes to contain the 'name' attribute,
but that's forbidden.
Best regards,
Martin
On Thu, May 3, 2018 at 2:12 PM Martin van Es wrote:
> Hi,
> On Thu, May 3, 2018 at
Hi,
On Thu, May 3, 2018 at 12:43 PM Andrea Patricelli <
andreapatrice...@apache.org> wrote:
> > Realms created in the root realm:
> > CREATE SUCCESS (key/name): 3a3370df-3aa2-4787-b370-df3aa2278786///Foobar
> > CREATE SUCCESS (key/name):
38d90785-ab9c-4fc8-9907-85ab9c2fc8e4///Foobar2
> > CREATE S
Hi,
This is related to my earlier question about creating Realms based on
dynamic VO's (organized as o= entities in LDAP).
I'm trying to get FULL RECONCILIATION working, which succeeds for the first
time, but results in unique "u_realm_name" constraint violations on second
attempt, even though I
Hi,
I was playing around with syncope to manage people in dynamically created
virtual organisations. Would it be possible to deduce their VO and
dynamically assign realm only by their DN (from ,o=,) without syncope
coding effort and without having to create a new resource? Someting like a
regular
On Tue, Jan 24, 2017 at 10:03 AM, Francesco Chicchiriccò
wrote:
>> So, you suggest I turn to Connid now for my functional issues with CSVDir?
>
>
> I would first clarify if there is something wrong ongoing (as suggested
> above), then possibly report to ConnId.
I was referring to the required exp
On Mon, Jan 23, 2017 at 4:36 PM, Francesco Chicchiriccò
wrote:
> but essentially, the "mandatory condition" can be specified both at Schema
> level (hence value(s) must be provided globally) or at mapping level (hence
> value(s) must be provided when provisioning to / from that external
> resource
On Mon, Jan 23, 2017 at 1:47 PM, Francesco Chicchiriccò
wrote:
>> I can't select target columns that are designated for key, status and
>> delete by the connector. Is this by-design?
>
> I think it is somewhat by design, but I am not sure it is for good; for the
> moment, please use:
>
> * __NAME_
Hi,
Finally, I've taken the time and went ahead (re)installing Syncope to
try and play with 2.0.
First: it's a nice improvement (on the admin interface). Well done!
I've (re) created my test LDAP connector and am able to
provision/activate/enable/disable users and groups/groupMembership
from admi
Hi,
On Tue, Jan 26, 2016 at 8:51 AM, Francesco Chicchiriccò wrote:
> On 22/01/2016 14:11, Martin van Es wrote:
>
>> Hoping nobody minds stealing this thread I'd like to ask how (simple)
>> approvals are enabled in the first place? I've updated to 1.2.7 and both
>&
Hoping nobody minds stealing this thread I'd like to ask how (simple)
approvals are enabled in the first place? I've updated to 1.2.7 and both
created a user in self-service and assigned a role to an existing one, but
neither triggered an approval task for admin (and both tasks completely
finished)
Hmm... can't reproduce since Chrome update and restart.
Consider mail below as unsent, or just listnoise ;)
Best regards,
Martin
On Tue, Dec 15, 2015 at 4:00 PM, Martin van Es wrote:
> Hi,
>
> I just reinstalled my syncope test installation (1.2.6) and succesfully
>
Hi,
I just reinstalled my syncope test installation (1.2.6) and succesfully
reconfigured LDAP provisioning including groupmembership. Getting better at
this every time ;)
But!
If I try to remove a user from a role, the "delete" link is dead, it
doesn't do anything (really nothing happpens in Syn
On Tue, Aug 25, 2015 at 6:28 AM, Francesco Chicchiriccò
wrote:
> That sounds quite strange: so you are
>
> 1. setting cipher algorithm to AES in conf
> 2. creating user with no resources
> 3. creating role with LDAP resource assigned
> 4. giving role to user and having error above
> 5. removing ro
artin
On Mon, Aug 24, 2015 at 9:59 AM, Francesco Chicchiriccò
wrote:
> On 23/08/2015 13:01, Martin van Es wrote:
>>
>> On Sun, Aug 23, 2015 at 12:11 PM, Francesco Chicchiriccò
>> wrote:
>>>
>>> On 2015-08-23 10:45 Martin van Es wrote:
>>>>
On Sun, Aug 23, 2015 at 12:11 PM, Francesco Chicchiriccò
wrote:
> On 2015-08-23 10:45 Martin van Es wrote:
>>
>> Hi,
>>
>> I'm trying to configure a role membership attribute, but it doesn't
>> show while adding a user to a role,
>
>
> "I
Hi,
I'm trying to configure a role membership attribute, but it doesn't
show while adding a user to a role, so I thought I had to update the
role membership layout, but then I hit the following error:
I can't save layouts in the configuration tab. Console says "Error:
NotFound [Conf schema admin.
Aha! :)
That's the trick.
Could use some love in the wiki about the debs installation?
Thx!
Martin
On Fri, Aug 21, 2015 at 5:08 PM, Francesco Chicchiriccò
wrote:
> On 2015-08-21 16:50 Martin van Es wrote:
>>
>> Hi,
>>
>> I followed the instructions o
regards,
Martin van Es
--
If 'but' was any useful, it would be a logic operator
HI Francesco,
On Thu, Nov 6, 2014 at 5:36 PM, Francesco Chicchiriccò
wrote:
>
> Ok, then you need a synchronization action class that, when synchronizing
> from LDAP will inspect the password value and remove it from synchronization
> attributes if the password values starts with {SSHA}.
I was h
Hi Francesco,
On Thu, Nov 6, 2014 at 4:34 PM, Francesco Chicchiriccò
wrote:
> On 05/11/2014 19:09, Martin van Es wrote:
>> Hope this clarifies my endavours a bit.
>
>
> Only a bit, actually :-)
>
> But still I don't get why you are not just using AES on Syncope: a
cesco Chicchiriccò
wrote:
> On 02/11/2014 21:31, Martin van Es wrote:
>
> Hi Fransesco,
>
> On closer investigation it's not as good as I hoped. It's close, but not
> close enough.
>
> I have two test resources. One LDAP and one CSVdir (only push). When I set
> pas
her equivalent of AES, never sync hashed?) just like it is when
pushing the hashed password to LDAP.
Best regards,
Martin
On Tue, Oct 28, 2014 at 12:30 PM, Martin van Es wrote:
> Hi Francesco,
>
> I managed to set pwd in PWM (cleartext in LDAP), sync (full reconcile)
> to Syncope and
ice to host a page on our wiki under
> the "How do I...?" section [3].
>
> Regards.
>
> [1] https://cwiki.apache.org/confluence/display/SYNCOPE/Synchronization
> [2] https://connid.atlassian.net/browse/LDAP-1
> [3]
> https://cwiki.apache.org/confluence/pages/view
7, 2014 at 7:53 PM, Martin van Es wrote:
> Hi,
>
> I'd like to use PWM for Password Self-service management, but that
> will only let me set passwords for users in an LDAP server.
>
> https://code.google.com/p/pwm/
>
> How would I make (Open)LDAP password leading fo
Hi,
I'd like to use PWM for Password Self-service management, but that
will only let me set passwords for users in an LDAP server.
https://code.google.com/p/pwm/
How would I make (Open)LDAP password leading for all passwords, but
keep Syncope for propagating users (including passwords) to target
Thx, workaround 1 did the job! ;)
Regards,
Martin
On Mon, Oct 27, 2014 at 1:39 PM, Francesco Chicchiriccò
wrote:
> On 27/10/2014 13:17, Martin van Es wrote:
>>
>> Hi,
>>
>> I've just started looking at Syncope again and installed 1.2.0 from
>> debian pack
Hi,
I've just started looking at Syncope again and installed 1.2.0 from
debian packages on a fresh ubuntu 14.04LTS server. All works well, and
I'm able to propagate a test user to a test OpenLDAP server, but not
without reentering the user's password.
I thought Syncope had acquired possibility to
Hi Francesco,
On Fri, Apr 19, 2013 at 8:27 AM, Francesco Chicchiriccò wrote:
> On 18/04/2013 20:12, Martin van Es wrote:
>
> On Tue, Apr 16, 2013 at 2:37 PM, Francesco Chicchiriccò <
> ilgro...@apache.org> wrote:
>
>> On 16/04/2013 14:26, Martin van Es wrote:
>
Hi Fransesco,
On Tue, Apr 16, 2013 at 2:37 PM, Francesco Chicchiriccò wrote:
> On 16/04/2013 14:26, Martin van Es wrote:
>
>> I was wondering if it's possible to automatically provisioin certain
>> resource for one account based on a condition (attribute) set in
resources to a role.
Regards,
Martin
On Tue, Apr 16, 2013 at 5:38 PM, Francesco Chicchiriccò wrote:
> On 16/04/2013 17:19, Martin van Es wrote:
>
> I don't know how to check what version of the Class I'm running, the logs
> aren't telling me, but I do know I copied the c
or a build that happened today?
I do a "mvn clean package -Dlog.directory=/var/lib/tomcat7/logs
-Dconnid.location=file:/opt/syncope/bundles", should I do something else
instead?
Martin
On Tue, Apr 16, 2013 at 4:37 PM, Francesco Chicchiriccò wrote:
> On 16/04/2013 16:05, Martin va
Hi Francesco,
On Tue, Apr 16, 2013 at 2:59 PM, Francesco Chicchiriccò wrote:
> A couple of bugs have been found in Apache Syncope 1.1.0, already fixed
> in 1.1.1-SNAPSHOT, including the one you are reporting above.
> Please take a look at [3] for a workaround until 1.1.1 is released.
>
>
> I ap
me if the roles can't contain resources
assignments?
Best regards,
Martin
On Tue, Apr 16, 2013 at 2:37 PM, Francesco Chicchiriccò wrote:
> On 16/04/2013 14:26, Martin van Es wrote:
>
>> I was wondering if it's possible to automatically provisioin certain
>> re
I was wondering if it's possible to automatically provisioin certain
resource for one account based on a condition (attribute) set in the source
resource.
A hypothetical situation:
A CSVdir synchronisation resource contains all my users, some of which
initially need to have an LDAP account propag
49 matches
Mail list logo