[midPoint] LDAP role/group inducement
Ivan Noris
ivan.noris at evolveum.com
Tue Jan 28 10:35:35 CET 2020
I have forgotten to add that after updating the Resource I tested the
connection to fetch the capabilities. So step 1C is Test OpenDJ resource.
Sorry.
Ivan
On 28. 1. 2020 10:32, Ivan Noris wrote:
>
> Hi Jan,
>
> so I pirated my own free time, ran the docker downloaded from your
> repository and found out the following:
>
> 1. the OpenDJ resource was not working for me from the beginning: only
> "dn" attribute in all projections was displayed. My fix was to:
>
> a. remove <capabilities><native> and its content (keeping only
> configured capabilities)
>
> b. adding the following to the resource's <connectorConfiguration>:
>
> <icfc:resultsHandlerConfiguration>
>
> <icfc:enableNormalizingResultsHandler>false</icfc:enableNormalizingResultsHandler>
>
> <icfc:enableFilteredResultsHandler>false</icfc:enableFilteredResultsHandler>
>
> <icfc:enableAttributesToGetSearchResultsHandler>false</icfc:enableAttributesToGetSearchResultsHandler>
> </icfc:resultsHandlerConfiguration>
>
> This immediately helped me to see all resource account attributes
>
--
Ivan Noris
Senior Identity Engineer
evolveum.com
More information about the midPoint
mailing list