[midPoint] Error while Synchronization

Ivan Noris ivan.noris at evolveum.com
Fri Apr 11 13:27:10 CEST 2014 

Hi Nitin,


> Thanks Ivan again for such a detailed explanation.I have made the
> changes as per your suggestion but still is not working
>
>  
>
> I get below error if I try to enable my DB account on the user and try
> to save it.
>
>  
>
> Subresult
> com.evolveum.midpoint.provisioning.ucf.api.ConnectorInstance.modifyObject
> of operation
> com.evolveum.midpoint.provisioning.api.ProvisioningService.modifyObject is
> still UNKNOWN during cleanup; during handling of exception
> com.evolveum.midpoint.util.exception.SystemException:
> java.lang.NullPointerException: null, Couldn't add object. Object
> already exists: Account already exists on the resource:
> javax.naming.NameAlreadyBoundException([LDAP: error code 68 - The
> entry uid=200395948546,ou=people,o=nhs cannot be added because an
> entry with that name already exists])
>
>  
>
> My requirement is  a user is available in DB needs to synchronized
> with LDAP
>
>  
>
> A user in DB  is getting provisioned in Midpoint i.e both ways Midpt
> to DB and DB to Midpt and LDAP account is also assigned after making
> changes[object template and system configuration as per your suggestion
>
> ]but not from Midpt to LDAP
>
>  
>
> I tried to manually assign the account but still getting above error.I
> am not able to understand why midpoint is trying to create account in
> LDAP which is already available ideally it should update is that correct?
>
>  
>

MidPoint has discovered already existing object (account) in your LDAP.
midPoint does not know (you have not configured it) what to do and
deliberately fails.
Please see <synchronization> .. </synchronization> section in our LDAP
samples and use it. You need to know how to correlate existing users
(correlation expression). This way it allows to pair the existing
account when discovered during the provisioning and will essentially
update it instead of create.

You can also delete the account now, and try to create it from midPoint,
if you need uncomplicated and easy setup.

Regards,
Ivan

-- 
  Ing. Ivan Noris
  Senior Identity Management Engineer
  evolveum.com
  ___________________________________________
           "Idem per idem - semper idem Vix."

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20140411/8bab77e7/attachment.htm>

More information about the midPoint mailing list