On 07/11/2013 23:52, jeverling wrote:
Hello Ilgrosso,
I thought you might be interested in this thing I discovered tonight.
If I create a user and assign a resource (APDS with the LDAP connector)
every goes well. I can change attributes of the user, activate and
deactivate the user and every change shows up perfectly at APDS.
When I remove the resource, it says that the entry is removed from the ldap.
But it's still there.
After reassigning the resource it gives the error below. In orde to fix the
entry I have to completely remove the account and create it again. Just
removing the LDAP entry doesn't suffice.
The strange thing is... all goes well when i just delete the entire user.
Then it is being removed properly.
I did not found any related issue on this forum, so I thought you might be
interested.
Or is this a configuration issue? It did not seem that way, but correct me
if I am wrong.
Hi,
de-assigning a resource from a user triggers removal from the actual
external resource (LDAP in your case): specifically for this type of
resource there are some integration tests proving that this should be
normally working, so it might be something in you specific use case
(configuration, input data, ...).
I invite you to compare your configuration with the one of the blog post
I've linked yesterday; anyway, please provide some more details to give
some more insight of your problem:
1. which LDAP server are you dealing with?
2. LDAP connector configuration
3. LDAP resource configuration (especially user mapping)
4. input data of the user to which the LDAP resource is assigned
Regards.
--
Francesco Chicchiriccò
ASF Member, Apache Syncope PMC chair, Apache Cocoon PMC Member
http://people.apache.org/~ilgrosso/
