Hi all, When I pull Realms from Active Directory (AD), all fetched Realms are placed into destination realm (from pull task) and hierarchy is flat, BUT in AD the org units have some hierarchy. To preserve hierarchy I have implemented custom PullActions (ADRealmsPullActions, https://github.com/Tirasa/syncopeWithActiveDirectory/blob/master/core/src/main/java/org/apache/syncope/core/provisioning/java/pushpull/ADRealmsPullActions.java ) This article helped me a lot http://blog.tirasa.net/syncope-basics-manage-active-directory.html, BUT connObjectLink should be like syncope:fullPath2Dn(fullPath, 'ou') + ',o=isp' (see https://syncope.apache.org/docs/reference-guide.html#mapping).
The questions: 1. Why when I pull Realms/Users/Groups by default they are placed into destination realm without preserving the hierarchy (with flat hierarchy)? Why PullActions like ADRealmsPullActions are not included in syncope by default? 2. When I pull Realms, the OU that presents in Root suffixes (OU=BY,DC=sesdev,DC=lab) is also pulled, but as I understand, only the realms below BaseDn (Root suffixes) should be pulled. Best Regards, Alexander Tsvetkov
