Il 27/09/2013 15:53, Mihai Radau ha scritto:
I fast followed the indications in the guide and here is how the
settings of my connector look right now.
I'm waiting for some suggestions and than try to make some changes.
If I won't be able to make it work this way, I will try to rebuild
ldap schema and reconfigure syncope from the begging following the
guide step by step.
Hi, maybe your problem is on "Account Object Classes" configuration
parameter.
You have to be sure to be able to create a user by specifying
"SimpleSecurityObject" only.
I suggest you to try it out via a specific ldif.
Best regards,
F.
On Fri, Sep 27, 2013 at 4:01 PM, Massimiliano Perrone
<[email protected]
<mailto:[email protected]>> wrote:
On 27/09/2013 14:51, Mihai Radau wrote:
Thank you for your fast replay.
You are welcome.
First of all, have you seen this [1] wonderful guide?
Following guide you can see how to correctly configure an LDAP
resource (e.g. maybe the error is that you haven't set an
objcetclass).
I'm waiting for news.
[1]
http://blog.tirasa.net/blogs/index.php/ilgrosso/unlock-full-ldap-features-in
Massi
This is the configuration for my Open Ldap Resource
Resource Details
Name: resursa
Connector: ldap demo connector
Enforce mandatory condition - checked
Propagation primary - checked
Propagation priority - 0
Propagation mode - ONE_PHASE
Generate random passwords when missing - checked
Actions class -
org.apache.syncope.core.propagation.impl.LDAPMembershipPropagationActions
Create trace level - ALL
Update trace level - ALL
Delete trace level - ALL
Synchronization trace level - ALL
Reset token - unchecked
User mappings
USER username true account_ID_checked BOTH
USER password true Pasword_checked BOTH
Role Mappings
- not configured yet
Connector Properties
Host 192.168.0.11
TCP Port 389
Principal cn=admin,dc=doc-company,dc=com
Password ******
Base Contexts ou=Users,ou=Groups
Password Attribute userPassword
LDAP Filter for Retrieving Accounts uid=*
Uid Attribute
Security
Password Policy Choose one
Account Policy Choose one
Sync Policy Choose one
The core.log and console.log are attached to this email (only the
error part).
If you wish, I can send some print screens with my Resource
configuration.
If necessary, I can also send the .ldif files and ldap.conf file.
I suppose that there is a problem with the Attribute mappings. I
know that there are not configured yet, but for the beginning I
wish to be able at least to change the password for an existing
ldap user and than I will take care of all other attributes.
Thank you.
On Fri, Sep 27, 2013 at 3:13 PM, Massimiliano Perrone
<[email protected]
<mailto:[email protected]>> wrote:
Hi,
can you send your open ldap resource configuration and mapping?
And core logs are always well-accepted :)
Massi
On 27/09/2013 13:58, mihai8624 wrote:
Hi,
I need some help with Apache Syncope and open LDAP on
Debian Wheezy.
I configured Apache Syncope and I can synchronize it.
When I execute the
synchronization task, syncope gets the users from open
ldap, and I can see
the users.
If I wish, i can delete any user from syncope, and after
synchronization the
user is also deleted from ldap.
The problem is that I can't create new ldap users or
modify existing users
using syncope. If I do any change to an existing user,
when I try to save
it, I get "Error {Propagation}".
Can you please help me.
Thank you.
--
Massimiliano Perrone
Tel+39 393 9121310 <tel:%2B39%20393%209121310>
Tirasa S.r.l. Viale D'Annunzio 267 - 65127 Pescara Tel +39
0859116307 <tel:%2B39%200859116307> / FAX +39 0859111173
<tel:%2B39%200859111173> http://www.tirasa.net Apache Syncope PMC
Member http://people.apache.org/~massi/
<http://people.apache.org/%7Emassi/> "L'apprendere molte cose non
insegna l'intelligenza" (Eraclito)
