[midPoint] distinguishedName required to outbound - WHY?

[oleg okunev]

Hi 

interesting thing
when i add projection of ad ldap to user in midpoint
it says 'distinguishedName' is required.

1.my config
Active Directory Medusa (MS AD LDAPS)
---
<attribute>
<ref>ri:dn</ref>
<displayName>distinguishedName</displayName>
<matchingRule>mr:distinguishedName</matchingRule>
<outbound>
<source>
<path>$user/fullName</path>
</source>
<expression>
<script>
<code>
'CN=' + fullName + iterationToken + ',CN=Users,DC=abb-test,DC=com'
</code>
</script>
</expression>
</outbound>
</attribute>
---

2.field with asterisk
distinguishedName   *  
and i find this in GUI 
look image/

i think something wrong with matching rule

also if i manualy write this field it works and after show me in projection TWO same fields



Name
Display name
Native attribute name
Min/max occurs
Order
Returned by default
Displaying 31 to 40 of 334 matching result.
departmentNumber  
departmentNumber
0/-1
1860
description  
description
0/-1
590
esktopProfile  
desktopProfile
0/1
3120
destinationIndicator  
destinationIndicator
0/-1
2160
directReports  
directReports
0/-1
1420
displayName  
displayName
0/1
1080
displayNamePrintable  
displayNamePrintable
0/1
2480
distinguishedName  
distinguishedName
0/1
3360
division  
division
0/1
1410
dn
distinguishedName
dn
1/1
110



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160929/ee1cdb41/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 1.PNG
Type: image/png
Size: 45381 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160929/ee1cdb41/attachment.png>