[midPoint] (no subject)
kamardina.v at esapro.ru
kamardina.v at esapro.ru
Thu Dec 14 08:44:15 CET 2023
Hi!
Thank you so much!
I'm glad you helped me!
I found a solution to my problem:
https://lists.evolveum.com/pipermail/midpoint/2020-May/006245.html
https://stackoverflow.com/questions/76587622/cant-create-user-in-ad
From: Fabian Noll-Dukiewicz <fabian.noll-dukiewicz at veryfy.gmbh>
Sent: Tuesday, December 12, 2023 2:08 PM
To: Камардина Виктория <kamardina.v at esapro.ru>; midPoint General Discussion <midpoint at lists.evolveum.com>; Davy Priem <davy.priem at vives.be>
Cc: Камардина Виктория <kamardina.v at esapro.ru>; midPoint General Discussion <midpoint at lists.evolveum.com>
Subject: AW: [midPoint] (no subject)
Hi,
please try „fullName“ (N in upper case) instead of „fullname”. For attributes you can check the object type reference.
* https://www.evolveum.com/downloads/midpoint/4.1/midpoint-4.1-schemadoc/http---midpoint-evolveum-com-xml-ns-public-common-common-3/object/UserType.html
Kind regards,
Fabian
--
Fabian Noll-Dukiewicz
Spezialist Identity & Access Management | Geschäftsführer
Tel.: +49 152 244 63 211
Email: fabian.noll-dukiewicz at veryfy.gmbh <mailto:fabian.noll-dukiewicz at veryfy.gmbh>
Web: <https://veryfy.gmbh> https://veryfy.gmbh
Von: midPoint <midpoint-bounces at lists.evolveum.com <mailto:midpoint-bounces at lists.evolveum.com> > im Auftrag von Камардина Виктория via midPoint <midpoint at lists.evolveum.com <mailto:midpoint at lists.evolveum.com> >
Datum: Dienstag, 12. Dezember 2023 um 12:04
An: Davy Priem <davy.priem at vives.be <mailto:davy.priem at vives.be> >
Cc: Камардина Виктория <kamardina.v at esapro.ru <mailto:kamardina.v at esapro.ru> >, midPoint General Discussion <midpoint at lists.evolveum.com <mailto:midpoint at lists.evolveum.com> >
Betreff: Re: [midPoint] (no subject)
Hi!
I changed the "name" field to "fullname" in the dn and in the Groovy script. Now many errors appear. This may be due to a space in the "fullname" field. I removed the space, but it is not removed.
Errors:
Groovy Evaluation Failed: No such property: fullname for class: instance-3}dn_in_resource_aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active_Directory)(null (focus, user)=user:776a28f2-92ae-4359-8fe4-f2e335ecf40f(clon); resource=resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory); configuration=systemConfiguration:00000000-0000-0000-0000-000000000001(SystemConfiguration); fullName=PPV(PolyString:clon clon); source=resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory); iterationToken=; containingObject=resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory); actor=user:00000000-0000-0000-0000-000000000002(administrator); assignmentPath=null; legal=true; iteration=0; assigned=true; projection (shadow, account)=shadow:null(null); thisObject=null; operation=add; ) in expression in mapping in outbound mapping for attribute {.../resource/instance-3}dn in resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory)
Error
Groovy Evaluation Failed: No such property: fullname for class: instance-3}dn_in_resource_aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active_Directory)(null (focus, user)=user:776a28f2-92ae-4359-8fe4-f2e335ecf40f(clon); resource=resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory); configuration=systemConfiguration:00000000-0000-0000-0000-000000000001(SystemConfiguration); fullName=PPV(PolyString:clon clon); source=resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory); iterationToken=; containingObject=resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory); actor=user:00000000-0000-0000-0000-000000000002(administrator); assignmentPath=null; legal=true; iteration=0; assigned=true; projection (shadow, account)=shadow:null(null); thisObject=null; operation=add; ) in expression in mapping in outbound mapping for attribute {.../resource/instance-3}dn in resource:aabbcf1c-4987-4d74-bc88-bc332a861c6d(Active Directory)
[ SHOW ERROR STACK ]
<https://www.crosstech.su/>
Виктория Камардина
Ведущий аналитик
<tel:%20+79996362256> +7 (999) 636-22-56
_____
+7 (495) 741-88-64 | <https://www.crosstech.su/> crosstech.su
Понедельник, 11 декабря 2023, 15:14 +03:00 от Davy Priem <davy.priem at vives.be <mailto:davy.priem at vives.be> >:
Hi,
In your mapping you have ‘fullname’ as CN whereas you use ‘name’ in the DN.
Van: Камардина Виктория <kamardina.v at esapro.ru <file://compose%3fTo=kamardina.v@esapro.ru> >
Verzonden: Monday, 11 December 2023 11:56
Aan: Davy Priem <davy.priem at vives.be <file://compose%3fTo=davy.priem@vives.be> >
CC: ondar.r at esapro.ru <mailto:ondar.r at esapro.ru> ; midPoint General Discussion <midpoint at lists.evolveum.com <file://compose%3fTo=midpoint@lists.evolveum.com> >
Onderwerp: Re: [midPoint] (no subject)
I installed version 4.6 of docker, but the application says that version 4.9 is used…
<attribute id="23">
<ref>ri:dn</ref>
<outbound>
<source>
<path>$focus/name</path>
</source>
<expression>
<script>
<language>http://midpoint.evolveum.com/xml/ns/public/expression/language#Groovy <http://midpoint.evolveum.com/xml/ns/public/expression/language#Groovy%3C/language> </language>
<code>
'CN='+ name +',CN=Users,DC=OPS,DC=local'
</code>
</script>
</expression>
</outbound>
</attribute>
<https://www.crosstech.su/>
Виктория Камардина
Ведущий аналитик
<tel:%20+79996362256> +7 (999) 636-22-56
_____
+7 (495) 741-88-64 | <https://www.crosstech.su/> crosstech.su
Понедельник, 11 декабря 2023, 13:40 +03:00 от Davy Priem <davy.priem at vives.be <file://e.mail.ru/compose/%3fmailto=mailto%253adavy.priem@vives.be> >:
Hi,
Sorry, my error. Can you share your resource config (outgoing for DN)?
PS : Is there a specific reason why you use 4.9? Latest release is 4.8.
Van: Камардина Виктория <kamardina.v at esapro.ru <mailto:kamardina.v at esapro.ru> >
Verzonden: Monday, 11 December 2023 11:21
Aan: Davy Priem <davy.priem at vives.be <mailto:davy.priem at vives.be> >
CC: ondar.r at esapro.ru <file://e.mail.ru/compose/%3fmailto=mailto%253aondar.r@esapro.ru> ; midPoint General Discussion <midpoint at lists.evolveum.com <mailto:midpoint at lists.evolveum.com> >
Onderwerp: Re: [midPoint] (no subject)
Thank you!
But I looked in the active directory when choosing dn. I can also create users from the Midpoint account in the Active directory itself. This means that the Midpoint user has sufficient rights.
<https://www.crosstech.su/>
Виктория Камардина
Ведущий аналитик
<tel:%20+79996362256> +7 (999) 636-22-56
_____
+7 (495) 741-88-64 | <https://www.crosstech.su/> crosstech.su
Понедельник, 11 декабря 2023, 13:00 +03:00 от Davy Priem <davy.priem at vives.be <http://e.mail.ru/compose/?mailto=mailto%3adavy.priem@vives.be> >:
Hi,
I think you made an error : 'CN='+ name +',CN=Users,DC=OPS,DC=local' => CN=Users should be OU=Users
Best regards
Davy Priem
Van: midPoint <midpoint-bounces at lists.evolveum.com <file://e.mail.ru/compose/%3fmailto=mailto%253amidpoint%252dbounces@lists.evolveum.com> > Namens ????????? ???????? via midPoint
Verzonden: Monday, 11 December 2023 10:55
Aan: midpoint at lists.evolveum.com <file://e.mail.ru/compose/%3fmailto=mailto%253amidpoint@lists.evolveum.com>
CC: Камардина Виктория <kamardina.v at esapro.ru <file://e.mail.ru/compose/%3fmailto=mailto%253akamardina.v@esapro.ru> >; ondar.r at esapro.ru <file://e.mail.ru/compose/%3fmailto=mailto%253aondar.r@esapro.ru>
Onderwerp: [midPoint] (no subject)
Hello,
I can get a list of users from Active Directory. But I also need to add users to Active Directory.
Figure 1 shows the mapping for sending a user to Active Directory. My script for outbound mapping:
'CN='+ name +',CN=Users,DC=OPS,DC=local'
Picture 2 shows the process of adding a user to an Active Directory resource
When adding a user to an Active Directory resource, the following error occurs (Picture 3): Error adding LDAP entry CN=clon,CN=Users,DC=OPS,DC=local: validDNSyntax: 00002081: NameErr: DSID-03050EB3, problem 2003 (BAD_ATT_SYNTAX) . , data 0, best match:??'CN=clon,CN=Users,DC=OPS,DC=local'?? (34)
Tell me, please, how this can be solved?
Thanks
Midpoint version : 4.9
Java version: 17.0.8.1
<https://www.crosstech.su/>
Виктория Камардина
Ведущий аналитик
<tel:%20+79996362256> +7 (999) 636-22-56
_____
+7 (495) 741-88-64 | <https://www.crosstech.su/> crosstech.su
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 203736 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0007.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image005.png
Type: image/png
Size: 25553 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0008.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image006.png
Type: image/png
Size: 153032 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0009.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image007.png
Type: image/png
Size: 118817 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0010.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image008.png
Type: image/png
Size: 5509 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0011.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image009.png
Type: image/png
Size: 183667 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0012.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image010.png
Type: image/png
Size: 12528 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20231214/e07c0393/attachment-0013.png>
More information about the midPoint
mailing list