[midPoint] Error while Synchronization

Nitin G. Prabhu Nitin.Prabhu at mastek.com
Thu Apr 10 21:46:52 CEST 2014


Hi Ivan,

It was because of I have not specified the inbound mappings so it was not getting synchronized from DB table to Midpoint.after doing so DB table to midpoint and midpoint to DB table is getting synchronized.

However still midpoint to LDAP is not getting synchronized,
Can you please let me know how exactly midpoint works .As per my understanding midpoint works as below

After all the configurations and tasks are in place [live synchronization] once any change in the DB table[based on the changelogColumn which is timestamp] midpoint detects the change and synchronizes the change from DB to Midpoint database

Once this is done it will synchronize from Midpoint to Ldap is this understanding correct or do we need to configure another live synchronization tasks which synchronizes from midpoint to LDAP

Can you please clear my understanding

Regards,
Nitin
From: midpoint-bounces at lists.evolveum.com [mailto:midpoint-bounces at lists.evolveum.com] On Behalf Of Nitin G. Prabhu
Sent: 10 April 2014 20:13
To: midPoint General Discussion
Subject: Re: [midPoint] Error while Synchronization

Thanks a lot Ivan for such a nice explanation. Now all the tasks are running fine but still DB table  to LDAP is not synchronizing.

All users in DB[4 users got created in midpoint which were in DB] are getting reflected in Midpoint but only name field is getting populated all other fields[first name and last name]even though mapping is present is not getting mapped

I have both resource xml files which I am using for DB table and LDAP.

Can you please let me know if anything is wrong with the configuration

[cid:image002.png at 01CF54FE.00AB81E0]

Regards,
Nitin

From: midpoint-bounces at lists.evolveum.com<mailto:midpoint-bounces at lists.evolveum.com> [mailto:midpoint-bounces at lists.evolveum.com] On Behalf Of Ivan Noris
Sent: 10 April 2014 19:34
To: midpoint at lists.evolveum.com<mailto:midpoint at lists.evolveum.com>
Subject: Re: [midPoint] Error while Synchronization

Hi Nitin,

I believe this error is caused by a missing user/name property after your user is synchronized and should be created in midPoint. This property is null.

If there is no user/name (i.e. name attribute of the new user) the synchronization cannot create user.

I don't know what resource object are you using, but this is typically because you're missing <inbound> on resource attribute that has <target>user/name</target>.

Typically this is the unique attribute of the source resource that is to become the user/name in midPoint.

                                <attribute>
                                        <ref>icfs:name</ref>
                                        <!-- Readable name for the attribute. This will be used in GUI -->
                                        <displayName>Name</displayName>
                                        <limitations>
                                                <minOccurs>0</minOccurs>
                                                <access>
                                                        <create>true</create>
                                                        <read>true</read>
                                                        <update>true</update>
                                                </access>
                                        </limitations>
                                        <inbound>
                                                <target>
                                                        <path>$user/name</path>
                                                </target>
                                        </inbound>
                                </attribute>


... this is from our sample localhost-dbtable-advanced-sync.xml - I'm sure you have seen it before. The icfs:name (corresponding to dbtable attribute configured as keyColumn) will be synced to user/name attribute.

To make it short, and useful for other in similar situation:

The synchronization must succeed in the following steps to create new user from resource account:
1. synchronization must be configured (<synchronization> section)
2. for livesync, LiveSync task must be running
3. correlation rule must be in resource <synchronization> section
4. reaction for "unmatched" situation must be set to "addUser"
5. at least user/name attribute must be filled during synchronization by inbound expression (see above).
6. password must be generated for new midPoint user during synchronization by inbound expression (<generate/> - as answered earlier today)

Hope this helps.

Regards,
Ivan
On 04/10/2014 04:53 PM, Nitin G. Prabhu wrote:
Hi ,

Resolved the below issue by changing the default password configuration.

But now getting below error .I am missing any configuration


Internal Error: Synchronization error: com.evolveum.midpoint.util.exception.SystemException: Synchronization action failed, reason: Focus UserType:null(null) does not have a name after inbound and user policy


Regards,
Nitin
From: midpoint-bounces at lists.evolveum.com<mailto:midpoint-bounces at lists.evolveum.com> [mailto:midpoint-bounces at lists.evolveum.com] On Behalf Of Nitin G. Prabhu
Sent: 10 April 2014 15:04
To: midPoint General Discussion
Subject: Re: [midPoint] Error while Synchronization


Thanks Ivan,



That issue is resolved now but now I am getting below error.



[cid:image003.png at 01CF54FE.00AB81E0]



-----Original Message-----
From: midpoint-bounces at lists.evolveum.com<mailto:midpoint-bounces at lists.evolveum.com> [mailto:midpoint-bounces at lists.evolveum.com] On Behalf Of Ivan Noris
Sent: 10 April 2014 14:37
To: midpoint at lists.evolveum.com<mailto:midpoint at lists.evolveum.com>
Subject: [midPoint] Error while Synchronization



Hi Nitin,



you get "Found more than one account with the identifier..." error because livesync thinks there are multiple accounts with to-be-unique attribute "uid".



If this is DB Table: Please check the "keyColumn" configuration parameter in your db table resource. It seems you have configured this incorrectly...



Regarding your problem with "timestamp" type, can you please post how your database table was constructed so that we can replicate this?



Regards,

Ivan



--

  Ing. Ivan Noris

     IT Architect

  nLight, s.r.o.

  ___________________________________________________

  "Semper cautus - semper paratus - semper idem Vix."



_______________________________________________

midPoint mailing list

midPoint at lists.evolveum.com<mailto:midPoint at lists.evolveum.com>

http://lists.evolveum.com/mailman/listinfo/midpoint

MASTEK LTD.
In the US, we're called MAJESCOMASTEK

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Opinions expressed in this e-mail are those of the individual and not that of Mastek Limited, unless specifically indicated to that effect. Mastek Limited does not accept any responsibility or liability for it. This e-mail and attachments (if any) transmitted with it are confidential and/or privileged and solely for the use of the intended person or entity to which it is addressed. Any review, re-transmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. This e-mail and its attachments have been scanned for the presence of computer viruses. It is the responsibility of the recipient to run the virus check on e-mails and attachments before opening them. If you have received this e-mail in error, kindly delete this e-mail from desktop and server.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



MASTEK LTD.
In the US, we're called MAJESCOMASTEK

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Opinions expressed in this e-mail are those of the individual and not that of Mastek Limited, unless specifically indicated to that effect. Mastek Limited does not accept any responsibility or liability for it. This e-mail and attachments (if any) transmitted with it are confidential and/or privileged and solely for the use of the intended person or entity to which it is addressed. Any review, re-transmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. This e-mail and its attachments have been scanned for the presence of computer viruses. It is the responsibility of the recipient to run the virus check on e-mails and attachments before opening them. If you have received this e-mail in error, kindly delete this e-mail from desktop and server.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




_______________________________________________

midPoint mailing list

midPoint at lists.evolveum.com<mailto:midPoint at lists.evolveum.com>

http://lists.evolveum.com/mailman/listinfo/midpoint


--

  Ing. Ivan Noris

  Senior Identity Management Engineer

  evolveum.com

  ___________________________________________

           "Idem per idem - semper idem Vix."

MASTEK LTD.
In the US, we're called MAJESCOMASTEK

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Opinions expressed in this e-mail are those of the individual and not that of Mastek Limited, unless specifically indicated to that effect. Mastek Limited does not accept any responsibility or liability for it. This e-mail and attachments (if any) transmitted with it are confidential and/or privileged and solely for the use of the intended person or entity to which it is addressed. Any review, re-transmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. This e-mail and its attachments have been scanned for the presence of computer viruses. It is the responsibility of the recipient to run the virus check on e-mails and attachments before opening them. If you have received this e-mail in error, kindly delete this e-mail from desktop and server.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


MASTEK LTD.
In the US, we're called MAJESCOMASTEK

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Opinions expressed in this e-mail are those of the individual and not that of Mastek Limited, unless specifically indicated to that effect. Mastek Limited does not accept any responsibility or liability for it. This e-mail and attachments (if any) transmitted with it are confidential and/or privileged and solely for the use of the intended person or entity to which it is addressed. Any review, re-transmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. This e-mail and its attachments have been scanned for the presence of computer viruses. It is the responsibility of the recipient to run the virus check on e-mails and attachments before opening them. If you have received this e-mail in error, kindly delete this e-mail from desktop and server.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20140411/a4a7a8b8/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 36451 bytes
Desc: image002.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20140411/a4a7a8b8/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.png
Type: image/png
Size: 34202 bytes
Desc: image003.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20140411/a4a7a8b8/attachment-0001.png>


More information about the midPoint mailing list