[midPoint] How to Create Active Directory Distribution Group

Gus Lou gugalou38 at gmail.com
Tue Oct 13 16:26:42 CEST 2020 

Thank you Pavol and Ethan
I ignored the message and tried to create a group using Midpoint. When
creating the role, in the customizable field I informed the value 2 for
creating a distribution group in AD.
But I got the error:

Expected in type, but got class java.math.BigInter in outbound mapping for
{... / resource / instance-3} grouType in resource: xxxxxxxxx (Active
Directory)

I'm checking to see if value is being passed as an integer from midpoint to
Active Directory

Note: I can change the value of the Active Directory groupType field using
Midpoint:

Resources -> Active Directory -> Entitlements ---> Some Object ->
groupType from: -2147483646 to: 2

This changes the object in Active Directory from security group to
distribution group.

Regards
Gus

Em ter., 13 de out. de 2020 às 10:11, Pavol Mederly via midPoint <
midpoint at lists.evolveum.com> escreveu:

> Hello Gus,
>
> these messages originate from Validator component of the Resource Wizard.
> It is an experimental piece of code that I once (many years ago) made as an
> attempt to improve the usability of the wizard. And it was not much updated
> since then, so it can sometimes produce imprecise or even incorrect
> warning/error messages. My fault is that it is not marked as experimental;
> as far as I know.
>
> I think you can safely ignore these errors, if they do not make sense to
> you. (As is probably the case here.)
>
> Overall, I am not sure about the current status of the Resource Wizard and
> future plans for its development. Radovan or Katka would know better.
>
> Best regards,
>
> Pavol Mederly
> Software developerevolveum.com
>
> On 13/10/2020 14:44, Gus Lou via midPoint wrote:
>
> Hi Pavol
>
> Thank you for your help
>
> I made the change, but now the MP displays the message:
> Invalid source for outbound mapping for "ri: group" in schema handling for
> "AD Group (kind: ENTITLEMENT, intent: group)": No definition for 'extension
> / grouptype' in user
>
> I have other custom fields mapped to AD fields and I used
> $user/extension/field name
>
> They worked, only the grouptype custom field mapping is having a problem
>
> Regards
> Gus
>
>
> Em sáb., 10 de out. de 2020 às 05:45, Pavol Mederly via midPoint <
> midpoint at lists.evolveum.com> escreveu:
>
>> Hello Gus,
>>
>> please replace $user with $focus. That should help.
>>
>> Best regards,
>>
>> Pavol Mederly
>> Software developerevolveum.com
>>
>> On 10/10/2020 02:24, Gus Lou via midPoint wrote:
>>
>> Hi Guys
>>
>> I'm trying to create a distribution group in Active Directory through
>> midpoint.
>> I'm following the idea of this thread:
>> https://lists.evolveum.com/pipermail/midpoint/2014-December/000672.html
>>
>> To achieve this goal I did the following:
>> *1-I created a custom field named grouptype:*
>> <xsd:complexType name="RoleTypeExtensionType">
>> <xsd:annotation>
>> <xsd:appinfo>
>> <a:extension ref="c:RoleType"/>
>> </xsd:appinfo>
>> </xsd:annotation>
>> <xsd:sequence>
>> <xsd:element name="grouptype" type="xsd:integer" minOccurs="0" maxOccurs=
>> "1">
>> <xsd:annotation>
>> <xsd:appinfo>
>> <a:indexed>false</a:indexed>
>> <a:displayName>Group Type</a:displayName>
>> </xsd:appinfo>
>> </xsd:annotation>
>> </xsd:element>
>> </xsd:sequence>
>> </xsd:complexType>
>> </xsd:schema>
>>
>> *I created the outbound mapping to receive the value of the grouptype
>> field*
>> <attribute id="99">
>> <c:ref xmlns:ri="
>> http://midpoint.evolveum.com/xml/ns/public/resource/instance-3">
>> ri:groupType</c:ref>
>> <exclusiveStrong>false</exclusiveStrong>
>> <outbound>
>> <authoritative>false</authoritative>
>> <exclusive>false</exclusive>
>> <strength>normal</strength>
>> <source>
>> <c:path>$user/extension/grouptype</c:path>
>> </source>
>> </outbound>
>> </attribute>
>>
>> But when I try to save the mapping, I get the following message:
>> Invalid source for outbound mapping for "ri:groupType" in schema handling
>> for "AD Group (Kind: ENTITLEMENT,intent:group)":No definition for
>> 'extension/grouptype" in user
>>
>> Does anyone know what could be wrong? I'm in the right way?
>>
>> Best regards
>>
>> Gus
>>
>>
>>
>>
>> _______________________________________________
>> midPoint mailing listmidPoint at lists.evolveum.comhttps://lists.evolveum.com/mailman/listinfo/midpoint
>>
>> _______________________________________________
>> midPoint mailing list
>> midPoint at lists.evolveum.com
>> https://lists.evolveum.com/mailman/listinfo/midpoint
>>
>
> _______________________________________________
> midPoint mailing listmidPoint at lists.evolveum.comhttps://lists.evolveum.com/mailman/listinfo/midpoint
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> https://lists.evolveum.com/mailman/listinfo/midpoint
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20201013/3d8aec52/attachment.htm>

More information about the midPoint mailing list