[midPoint] ConnectorException - AdLdapConnector - Can not update AD account when using ConnectorServer

Loïc Schamber lschamber at serial.ch
Mon May 4 12:13:51 CEST 2020 

Hi Radovan,

I understand that the current situation is a bit complex and such problem can not be resolved in a short time.
The customer does have a subscription so I will open a Jira ticket.
Meanwhile I will convince him to authorize direct LDAP request from Midpoint servers.

Thanks a lot for your answer.

Best regards,

Loïc Schamber  | Junior IT Consultant

[logo]<https://www.serial.ch/>

lschamber at serial.ch<mailto:lschamber at serial.ch> |  +41 22 555 27 69<tel:+41%2022%20555%2027%2069>
Chemin du Pré-Fleuri 5 - CH 1228 Plan-les-Ouates
[LinkedIn]<https://www.linkedin.com/company/redcactus-by-positivethinkingcompany>  [Instagram] <https://www.instagram.com/positivethinkingcompany>
Redcactus by SERIAL www.serial.ch<www.serial.ch>
www.positivethinking.co

________________________________
Help save paper, do you really need to print this email?
The content of this email and any attachments are confidential and are intended solely for the person and/or company to whom they are addressed. The information may also be legally privileged. No employee or agent is authorized to conclude any binding agreement on behalf of SERIAL with another party by email without express written confirmation. If you have received this email in error, any use, reproduction or dissemination of this transmission is strictly prohibited. If you are not the intended recipient, please immediately notify the sender by return E-mail and delete this message, its attachments and all copies from your system. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. Thank you for your cooperation.

From: midPoint <midpoint-bounces at lists.evolveum.com> On Behalf Of Radovan Semancik
Sent: lundi, 4 mai 2020 11:27
To: midpoint at lists.evolveum.com
Subject: Re: [midPoint] ConnectorException - AdLdapConnector - Can not update AD account when using ConnectorServer

Hi Loïc,

I'm afraid that Connector Server is a bit undermaintained ConnId component. We had plans to update Java Connector Server as part of ConnId2 initiative, but due to corona and other issues we had to postpone our ConnId2 plans.

The technical problem is that the ConnId framework and ConnId server are not able to communicate about delta-based update operations. This was obvious an oversight when we have developed the updateDelta operation. I see that this makes connector server useless for use with LDAP connector, which is obviously not good. However, it would be quite difficult to fit this fix into development plans as they are quite full already. Does your customer have midPoint subscription? This is pushing the boundary of our support services due to the "gray zone" status of ConnId connector servers. However, I would tend to treat this as a bug if you customer has an active support subscription. Which will make that this issue can be prioritized and fixed.



--

Radovan Semancik

Software Architect

evolveum.com


On 5/1/20 2:26 PM, Loïc Schamber wrote:
Hi everyone.

I am (once more) back with another issue that I do not know how to manage.

I have the following setup in production: Midpoint(4.0.1) -> Java Connector Server( 1.5.0.10 ) ->ADLdapConnector (2.4)
This configuration works great for reading of AD accounts and creation of new one. Sadly it won't allow the modification of existing account as I get the following error:

org.identityconnectors.framework.common.exceptions.ConnectorException: No serializer for class: class org.identityconnectors.framework.common.objects.AttributeDelta

I used the same configuration for my AD resource in a test environment and update worked as expected
Sadly, the customer needs to go through java connector server due to security policy so can not simply remove the connector server..

I saw a similar issue on the mailing list archive but sadly it has no answer https://lists.evolveum.com/pipermail/midpoint/2019-July/005647.html

This is a very important issue for us as we are supposed to be production ready in a few days..

Thanks for your help,

Best regards,

Loïc Schamber  | Junior IT Consultant

[logo]<https://www.serial.ch/>

lschamber at serial.ch<mailto:lschamber at serial.ch> |  +41 22 555 27 69<tel:+41%2022%20555%2027%2069>
Chemin du Pré-Fleuri 5 - CH 1228 Plan-les-Ouates
[LinkedIn]<https://www.linkedin.com/company/redcactus-by-positivethinkingcompany>  [Instagram] <https://www.instagram.com/positivethinkingcompany>
Redcactus by SERIAL www.serial.ch<www.serial.ch>
www.positivethinking.co

________________________________
Help save paper, do you really need to print this email?
The content of this email and any attachments are confidential and are intended solely for the person and/or company to whom they are addressed. The information may also be legally privileged. No employee or agent is authorized to conclude any binding agreement on behalf of SERIAL with another party by email without express written confirmation. If you have received this email in error, any use, reproduction or dissemination of this transmission is strictly prohibited. If you are not the intended recipient, please immediately notify the sender by return E-mail and delete this message, its attachments and all copies from your system. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. Thank you for your cooperation.




_______________________________________________

midPoint mailing list

midPoint at lists.evolveum.com<mailto:midPoint at lists.evolveum.com>

https://lists.evolveum.com/mailman/listinfo/midpoint

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200504/d03f88fc/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 6827 bytes
Desc: image001.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200504/d03f88fc/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 451 bytes
Desc: image002.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200504/d03f88fc/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.png
Type: image/png
Size: 1129 bytes
Desc: image003.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200504/d03f88fc/attachment-0002.png>

More information about the midPoint mailing list