[lsc-users] modify does not work / mysql > openldap

Sébastien Bahloul sebastien.bahloul at gmail.com
Wed Sep 14 23:10:23 CEST 2011


Hi Michael,

The reason why you are encountering this issue is because the LSC is trying
to add an existing entry. This probably means that the information you are
using to identify the entry inside OpenLDAP are incorrect. I thinks the
issue is related to the base DN value : with the 1.X LSC version, we are
using JNDI which adds the context DN to the base DN. Thus if you set up your
directory connection with an URL like ldap://XXX/dc=abk-stuttgart,dc=de then
your base dn must be empty or LSC will try to search with a base
like dc=abk-stuttgart,dc=de,dc=abk-stuttgart,dc=de. If you have access to,
try to give a look at the OpenLDAP logs, you should see why the request does
not return the existing entry.

Regards,

2011/9/14 Michael Frank <m.frank at abk-stuttgart.de>

> Hello,
>
> when i change data in the mysql (sn,mail) there is no sync to the openldap.
>
> this data changed in mysql / sync Log:
> ##############################**######
>
> Sep 14 18:26:22 - ERROR - Error while adding entry
> cn=xxxxx.xxxxper,ou=vbk,ou=**studenten in directory :javax.naming.**NameAlreadyBoundException:
> [LDAP: error code 68 - Entry Already Exists]; remaining name
> 'cn=Michael.Stopper,ou=vbk,ou=**studenten'
> Sep 14 18:26:22 - ERROR - Error while synchronizing ID
> cn=Michael.Stopper,ou=vbk,ou=**studenten: java.lang.Exception: Technical
> problem while applying modifications to directory
> dn: cn=xxxxxx.xxxx,ou=vbk,ou=**studenten
> sn: Stopper
> cn: Michael.Stopper
>
> ########
>
> Call:
>
> ./lsc -f /root/02_lsc/lsc-2.0-SNAPSHOT/**lsc-trunk-SNAPSHOT/etc/  -s
> studenten_vbk
>
> ########
>
> Config:
>
> lsc.tasks.studenten_vbk.**srcService = org.lsc.service.**
> SimpleJdbcSrcService
> lsc.tasks.studenten_vbk.**srcService.requestNameForList =
> getInetOrgPersonList_stud_vbk
> lsc.tasks.studenten_vbk.**srcService.**requestNameForObject =
> getInetOrgPerson_stud_vbk
> lsc.tasks.studenten_vbk.**dstService = org.lsc.jndi.**SimpleJndiDstService
> lsc.tasks.studenten_vbk.**dstService.baseDn = dc=abk-stuttgart,dc=de
> lsc.tasks.studenten_vbk.**dstService.filterAll = (cn=*)
> lsc.tasks.studenten_vbk.**dstService.pivotAttrs = cn
> lsc.tasks.studenten_vbk.**dstService.filterId = (cn={cn})
> lsc.tasks.studenten_vbk.**dstService.attrs =  cn uid mail sn userPassword
> description objectClass
> lsc.tasks.studenten_vbk.bean = org.lsc.beans.SimpleBean
> lsc.tasks.studenten_vbk.dn = "cn=" + srcBean.**
> getAttributeFirstValueById("**cn") + ",ou=vbk,ou=studenten"
> dn.real_root = dc=abk-stuttgart,dc=de
> lsc.syncoptions.studenten_vbk = org.lsc.beans.syncoptions.**
> PropertiesBasedSyncOptions
> lsc.syncoptions.studenten_vbk.**objectClass.create_value = "inetOrgPerson"
> lsc.syncoptions.studenten_vbk.**objectClass.action = F
> lsc.syncoptions.studenten_vbk.**default.action = K
> lsc.syncoptions.studenten_vbk.**default.delimiter = $
> lsc.syncoptions.studenten_vbk.**sn.action = F
> lsc.syncoptions.studenten_vbk.**userPassword.action = F
> lsc.syncoptions.studenten_vbk.**mail.action = F
> lsc.syncoptions.studenten_vbk.**userPassword.default_value =
> SecurityUtils.hash(**SecurityUtils.HASH_SHA1, "defaultPassword")
>
> best regards,
> micha
> ______________________________**______________________________**___
> Ldap Synchronization Connector (LSC) - http://lsc-project.org
>
> lsc-users mailing list
> lsc-users at lists.lsc-project.**org <lsc-users at lists.lsc-project.org>
> http://lists.lsc-project.org/**listinfo/lsc-users<http://lists.lsc-project.org/listinfo/lsc-users>
>



-- 
Sebastien BAHLOUL
IAM / Security specialist
Ldap Synchronization Connector : http://lsc-project.org
Blog : http://sbahloul.wordpress.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lsc-project.org/pipermail/lsc-users/attachments/20110914/ddf2b6c8/attachment-0001.htm>


More information about the lsc-users mailing list