[midPoint] Generation of $user/name on reconcilitation of new account
Roman Pudil - AMI Praha a.s.
roman.pudil at ami.cz
Mon May 15 15:59:42 CEST 2017
Hi Glenn,
you can achieve this in two simple steps:
1) map accountFirstName in resource as inbound mapping to givenName
attrib in IdM, map accountLastName in resource as inbound mapping to
familyName attrib in IdM
2) create mapping in template (example is in midPoint project here:
/samples/demo/user-template.xml) and create ref to this template in
recource (ref example to template is in midPoint project here:
/samples/resources/ad/ad-resource-advanced-sync.xml)
Regards
Roman Pudil
solution architect
gsm: [+420] 775 663 666
e-mail: roman.pudil at ami.cz
AMI Praha a.s.
Pláničkova 11
162 00 Praha 6
tel./fax: [+420] 274 783 239
web: www.ami.cz
<http://www.ami.cz/reseni-a-sluzby/bezpecnost-dat/identity-management>
Textem tohoto e-mailu podepisující neslibuje uzavřít ani neuzavírá za
společnost AMI Praha a.s.
jakoukoliv smlouvu. Každá smlouva, pokud bude uzavřena, musí mít
výhradně písemnou formu.
------ Původní zpráva ------
Od: "BOSCHMANS Glenn" <gboschmans at cibg.brussels>
Komu: "midpoint at lists.evolveum.com" <midpoint at lists.evolveum.com>
Odesláno: 15.5.2017 15:36:26
Předmět: [midPoint] Generation of $user/name on reconcilitation of new
account
>Hi all,
>
>
>
>We are creating a new environment in which midPoint will be used as IDM
>and WSO2 IS as IdP. When a user registers in the IdP (through Just In
>Time-provisioning with a federated IdP) this will be based on their
>eID. A username is not created, and thus not stored in the database
>userstore.
>
>The next step is to add those users in midPoint. We planned on doing
>reconciliation during live synchronization. However, as the username is
>null in the database, we don’t have a value for the $user/name
>attribute and so the creation of the new user fails.
>
>
>
>Is there a possibility in the schema handling to configure the first
>name and last name to generate a username? For example:
>
>accountFirstName: Glenn
>
>accountLastName: Boschmans
>
>
>
>-> $user/name: gboschmans
>
>
>
>I thought about using a Groovy script in the inbound of accountUsername
>to see if the attribute accountUsername is null. If not null return the
>value of the accountUsername attribute. If it is null, then I want to
>generate the username based on attributes accountFirstName and
>accountLastName. However, I’m not sure if it is possible to get the
>values of attributes accountFirstName and accountLastName.
>
>
>
>Any ideas?
>
>
>
>Thanks in advance!
>
>
>
>Best regards,
>
>Glenn Boschmans
>
>Glenn Boschmans
>Consultant
>Business Integrated Solutions
>Kunstlaan 21, 1000 Brussel - cibg.brussels - disclaimer
><http://cibg.brussels/disclaimer-1>
>+32 2 282 47 70 |
>Be green, leave it on the screen !
> <http://www.linkedin.com/company/cirb_cibg>
><https://twitter.com/CIRB_CIBG>
><http://www.leefmilieu.brussels/themas/duurzame-stad/label-ecodynamische-onderneming>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170515/be40567a/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: cibg_aee22c14-e9ed-4d7b-8c27-f6c4a26e7736.png
Type: image/png
Size: 20570 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170515/be40567a/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ln_e679eb12-caaa-4d0d-b64d-b39c820c309b.png
Type: image/png
Size: 722 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170515/be40567a/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: tw_20cfb408-d952-4ea7-a757-a8716eaac012.png
Type: image/png
Size: 464 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170515/be40567a/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo_eco_mail_e3e2fbdd-9cbf-4a5b-b0c1-1624e00ef4cd.jpg
Type: image/jpeg
Size: 1260 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170515/be40567a/attachment.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4373 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170515/be40567a/attachment.bin>
More information about the midPoint
mailing list