[midPoint] AD Connector

[Sam Verboven]

Dear,

I’ve been looking at Midpoint as a candidate for an upcoming IDM project.
However, I’m having some difficulties connecting to AD.
I started on Friday using the latest the latest snapshot. I’ll first
describe the changes need to get to my current problem.


1) Following
https://wiki.evolveum.com/display/midPoint/.NET+Connector+Server I found
out the offered version (1.4.0.14) of connid was not recent enough.
SerializeBinary.cs had a version mismatch: 1 was expected, 2 was offered. I
could not find the sourcecode on the midpoint sites, but I managed to find
a newer version on the forgerock repo:

*svn checkout https://svn.forgerock.org/openicf/trunk/
<https://svn.forgerock.org/openicf/trunk/>*

Compiling the code gave me a compatible connector.


2) Following
https://wiki.evolveum.com/display/midPoint/Active+Directory#ActiveDirectory-ConnectorHostConfigurationand
https://wiki.evolveum.com/display/midPoint/ConnectorHostType I got stranded
again trying to add a ConnectorHost. After some trial and error I found a
working configuration by changing common-2a to common-3, adding
protecConnection and removing the clearValue tags:

*<?xml version="1.0" encoding="UTF-8" standalone="yes"?>*


*<object xsi:type="ConnectorHostType"*

* xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3
<http://midpoint.evolveum.com/xml/ns/public/common/common-3>"*

* xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance
<http://www.w3.org/2001/XMLSchema-instance>"*

* oid="91919191-76e0-59e2-86d6-44cc44cc44cc >*

*    <name>ICF Connector server on rd.local:8759</name>*

*    <hostname> 192.168.102.107</hostname>*

*    <port>8759</port>*

*    <sharedSecret>My secret</sharedSecret>*

*    <protectConnection>true</protectConnection>*

*</object>*



3) Currently I’m stuck trying to add the actual connector. I’ve tried
modifying the examples that are included in the snapshot:

*midpoint-2.3-SNAPSHOT\samples\resources\ad\ad-resource-simple.xml*


Using the default xml file configured for my setup, I get XML problems:

*Validation error: cvc-complex-type.2.4.a: Invalid content was found
starting with element 'resource'. One of
'{"http://midpoint.evolveum.com/xml/ns/public/common/common-3
<http://midpoint.evolveum.com/xml/ns/public/common/common-3>":object}' is
expected.*


If I replace the object tag by a resource tag, I get slightly further:

*[ SHOW ERROR STACK ] Collapse all Expand all Export to XML*

*ok - Schema validation*

*ok - Basic checks*

*ok - Resource namespace check*

*ok -
operation.com.evolveum.midpoint.model.controller.ModelController.searchObjects*

*ok - Execute changes (Model)*


*error - Connector reference missing in the resource
resource:91919191-76e0-59e2-86d6-44cc44cc44cc(Basic Active Directory)*


Configuration:

*<resource
xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3
<http://midpoint.evolveum.com/xml/ns/public/common/common-3>"*

*             xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance
<http://www.w3.org/2001/XMLSchema-instance>"*

*             xmlns:xsd="http://www.w3.org/2001/XMLSchema
<http://www.w3.org/2001/XMLSchema>"*

*
 xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3
<http://midpoint.evolveum.com/xml/ns/public/resource/instance-3>"*

*
 xmlns:icfc="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/connector-schema-3
<http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/connector-schema-3>"*

*
 xmlns:idfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3
<http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3>"*

*             xmlns:my="http://myself.me/schemas/whatever
<http://myself.me/schemas/whatever>"*

*             xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3
<http://prism.evolveum.com/xml/ns/public/query-3>"*

*             oid='91919191-76e0-59e2-86d6-44cc44cc44cc'>*


*                           <!-- Resource name. It will be displayed in
GUI.  -->*

*                           <name>Basic Active Directory</name>*

*…..*


I understand that the snapshots are not yet a finished product, but any
help would be greatly appreciated.
I think it would be helpful for others to figure out the problem and modify
the wiki steps once the issue has been sorted out.

Regards,
Sam Verboven
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20140505/78018f4d/attachment.htm>