[midPoint] LDAP group sync

mceylan mrveceylan at gmail.com
Wed Mar 4 08:36:22 CET 2020 

Jason, thanks for your answer
So I added this role in the same way, how will the scenario be?

1. AD and LDAP connected to midpoint as source
2. AD is a reliable source and the user added there occurs in midpoint and
LDAP.
3. Create manual group and add user in AD. The same group should occur
automatically in midpoint and LDAP. How will it happen when I add the
metarole? What task will I run?

Thanks,

Jason Everling <jeverling at bshp.edu>, 3 Mar 2020 Sal, 18:17 tarihinde şunu
yazdı:

> Yes, since you have midpoint setup to sync Active Directory and OpenLDAP
> then when you create a group in Active directory it gets created via live
> sync in midpoint which in turn then gets created in openldap because you
> have a metarole that says it should. We do this currently.
>
>
>
> See attached metarole, you must have inbound group sync working for booth
> AD and OpenLDAP.
>
>
>
>
>
>
>
> *From: *mceylan <mrveceylan at gmail.com>
> *Sent: *Tuesday, March 3, 2020 8:50 AM
> *To: *midPoint General Discussion <midpoint at lists.evolveum.com>
> *Subject: *Re: [midPoint] LDAP group sync
>
>
>
> Hi,
>
>
>
> No, When I open the group manually in Active Directory, I want to
> automatically create the same group in openldap and synchronize the users
> within the groups. So both group synchronization and user.
>
>
> We can assign a group to the user via midpoint with the role, but that's
> not what I want.
>
>
>
> Thanks,
>
>
>
> Gómez Martínez, Elsa <egomezm at minsait.com>, 3 Mar 2020 Sal, 14:22
> tarihinde şunu yazdı:
>
> Hi!
>
>
>
> Could you explain with more detail?
>
> Did you mean the next flow:
>
> Users in AD à MidPoint à Ldap?
>
>
>
> Elsa
>
>
>
> *De:* midPoint <midpoint-bounces at lists.evolveum.com> *En nombre de *Jason
> Everling
> *Enviado el:* lunes, 2 de marzo de 2020 20:26
> *Para:* midPoint General Discussion <midpoint at lists.evolveum.com>
> *Asunto:* Re: [midPoint] LDAP group sync
>
>
>
> You just add both constructions/inducements to the metarole that creates
> the group and members, you could have as many different ldap servers as
> possible
>
>
>
>
>
>
>
>
>
> On Mon, Mar 2, 2020 at 9:51 AM mceylan <mrveceylan at gmail.com> wrote:
>
> Hi,
>
>
>
> I am trying to synchronize groups between AD and ldap.
> I want it to automatically create the group created in AD over midpoint in
> ldap. Can you help with this?
>
>
>
> Thanks,
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> https://lists.evolveum.com/mailman/listinfo/midpoint
>
>
>
>
> --
>
> Merve CEYLAN
>
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> https://lists.evolveum.com/mailman/listinfo/midpoint
>


-- 
Merve CEYLAN
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200304/dace3121/attachment.htm>

More information about the midPoint mailing list