Re: [syncope-users] Digest for syncope-users@googlegroups.com - 1 Message in 1 Topic
10 views
Skip to first unread message
deepika panwar
Feb 7, 2012, 1:53:44 AM2/7/12
to syncop...@googlegroups.com
Hi Fabio,
I have successfully connected to AD, the error is resolved now.
But I am facing a synchronization error now.
I have created a "synchronization task" in console, but while manually executing it i get the following error:
22:44:37.998 DEBUG org.identityconnectors.framework.api.operations.SyncApiOp.sync Exception:
org.identityconnectors.framework.common.exceptions.ConnectorException: UID attribute not found
at org.connid.ad.sync.ADSyncStrategy.getSyncDelta(ADSyncStrategy.java:462) ~[na:na]
at org.connid.ad.sync.ADSyncStrategy.handleSyncDelta(ADSyncStrategy.java:375) ~[na:na]
at org.connid.ad.sync.ADSyncStrategy.sync(ADSyncStrategy.java:210) ~[na:na]
at org.connid.ad.ADConnector.sync(ADConnector.java:131) ~[na:na]
at org.identityconnectors.framework.impl.api.local.operations.SyncImpl.sync(SyncImpl.java:63) ~[framework-internal-1.3.1.jar:na]
at sun.reflect.GeneratedMethodAccessor379.invoke(Unknown Source) ~[na:na]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) ~[na:1.6.0_26]
at java.lang.reflect.Method.invoke(Unknown Source) ~[na:1.6.0_26]
at org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:93) ~[framework-internal-1.3.1.jar:na]
at $Proxy110.sync(Unknown Source) ~[na:na]
at sun.reflect.GeneratedMethodAccessor379.invoke(Unknown Source) ~[na:na]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) ~[na:1.6.0_26]
at java.lang.reflect.Method.invoke(Unknown Source) ~[na:1.6.0_26]
at org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:107) ~[framework-internal-1.3.1.jar:na]
at $Proxy110.sync(Unknown Source) ~[na:na]
at sun.reflect.GeneratedMethodAccessor379.invoke(Unknown Source) ~[na:na]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) ~[na:1.6.0_26]
at java.lang.reflect.Method.invoke(Unknown Source) ~[na:1.6.0_26]
at org.identityconnectors.framework.impl.api.BufferedResultsProxy$BufferedResultsHandler.run(BufferedResultsProxy.java:162) ~[framework-internal-1.3.1.jar:na]
My configuration details:
Connector configuration -
all connection parameters like base context,principle name,password etc are correct as i can connect to AD with this parameters.
On Tue, Feb 7, 2012 at 11:54 AM, <syncop...@googlegroups.com> wrote:
Group: http://groups.google.com/group/syncope-users/topics
Fabio Martelli <fabio.m...@gmail.com> Feb 06 11:29AM +0100
Il giorno 04/feb/2012, alle ore 16.49, deepika panwar ha scritto:
> Thanks Fabio and Francesco :)
> I will try to configure AD with SSL and will let you know if its working in that case.
> but out of curiosity want to ask that is this the case with Syncope only because I have configured AD with other IDM products also ?
Hi Deepika,
SSL is required in order to perform password management on Active Directory.
Probably this can be avoided if and only if the client resides on the same host of Active Directory.
In fact, if I well remember, Sun IdM used to connect Active Directory through a .NET connector server (called gateway at that time) located on the same host of Active Directory.
However, I am sure that, without LDAPs our Java JNDI connector cannot be able to create active users because user passwords cannot be valued.
This is the reason why we choose to put in place this constraint to connect to an Active Directory.
Best regards,
F.
You received this message because you are subscribed to the Google Group syncope-users.
You can post via email.
To unsubscribe from this group, send an empty message.
For more options, visit this group.
deepika panwar
Feb 7, 2012, 1:59:48 AM2/7/12
to syncop...@googlegroups.com
Hi Fabio,
from the check boxes i have checked only "trust all certs" and unchecked others.
in capabilities I have selected all capabilities including one-phase,two-phase,sync,resolve and search
Resource Configuration-
Not checked any text box.
propogation mode :one-phase
schema mapping: attached screen shot
Kindly let me know if I have done something wrong
Thanks,
Deepika
Fabio Martelli
Feb 7, 2012, 2:50:49 AM2/7/12
to syncop...@googlegroups.com
Hi Deepika, this is a strange behavior.
It seems that sAMAccountName is missing or uidAttribute name (sAMAccountName by default) is missing.
Could you provide your configuration screenshot? I need:
1. AD connector general sub-tab
2. AD connector configuration sub-tab.
3. AD connector capabilities sub-tab
Regards,
F.
Thanks,DeepikaOn Tue, Feb 7, 2012 at 11:54 AM, <syncop...@googlegroups.com> wrote:
Group: http://groups.google.com/group/syncope-users/topics
Fabio Martelli <fabio.m...@gmail.com> Feb 06 11:29AM +0100
Il giorno 04/feb/2012, alle ore 16.49, deepika panwar ha scritto:
> Thanks Fabio and Francesco :)
> I will try to configure AD with SSL and will let you know if its working in that case.
> but out of curiosity want to ask that is this the case with Syncope only because I have configured AD with other IDM products also ?
Hi Deepika,
SSL is required in order to perform password management on Active Directory.
Probably this can be avoided if and only if the client resides on the same host of Active Directory.
In fact, if I well remember, Sun IdM used to connect Active Directory through a .NET connector server (called gateway at that time) located on the same host of Active Directory.
However, I am sure that, without LDAPs our Java JNDI connector cannot be able to create active users because user passwords cannot be valued.
This is the reason why we choose to put in place this constraint to connect to an Active Directory.
Best regards,
F.
You received this message because you are subscribed to the Google Group syncope-users.
You can post via email.
To unsubscribe from this group, send an empty message.
For more options, visit this group.
<schema mapping1.JPG>
Reply all
Reply to author
Forward
0 new messages