[midPoint] posixGroups add to memberUID

Joshua Williams jwilliams+list at globalnaz.org
Mon Jul 19 23:19:07 CEST 2021 

Good afternoon,
I have a service that requires posixGroups.  I have followed the guide at https://docs.evolveum.com/midpoint/reference/samples/ldap-posixaccount-and-posixgroup-management/ <https://docs.evolveum.com/midpoint/reference/samples/ldap-posixaccount-and-posixgroup-management/>.  

I used the resource, roles and metaroles from here https://github.com/Evolveum/midpoint-samples/tree/master/samples/stories/unix-ldap <https://github.com/Evolveum/midpoint-samples/tree/master/samples/stories/unix-ldap> as a guide.  I copied and pasted the samples, modifying them for our infrastructure.

OpenLDAP running on Ubuntu 20.04
MidPoint version 4.3 (docker for testing)

When I add the Role, the LDAP posixgroup is created successfully.

When I add a LDAP user, the user is created successfully.  It has the proper UID and GID.  
However, when it tries to write the uid to the memberUID of the posixGroup, I get the error at the end of this message.

It looks like it is saying that either the posixGroup (cn=unix user,ou=posixgroups,dc=example,dc=org) or the posixAccount (usertest) doesn’t exist, but both do.

I have googled and experimented for days, but haven’t found a solution.  

Thank you for your suggestions.

Josh

Operation     operation.org.identityconnectors.framework.api.ConnectorFacade.updateDelta 

Message    Unknown UID: LDAP entry for UID Attribute: {Name=__UID__, Value=[376952f8-7d1a-103b-93f9-3953ef0343f1], NameHint=Attribute: {Name=__NAME__, Value=[cn=unix user,ou=posixgroups,dc=example,dc=org]}} was not found

Parameters
    uid	[376952f8-7d1a-103b-93f9-3953ef0343f1]
    attributesDelta	[[Attribute: {Name=memberUid, ValuesToAdd=[usertest], ValuesToRemove=null, ValuesToReplace=null}]]
    objectClass	[crOCD+ ({http://midpoint.evolveum.com/xml/ns/public/resource/instance-3 <http://midpoint.evolveum.com/xml/ns/public/resource/instance-3>}posixGroup)]
    options	[OperationOptions: {}]

Context
    connector	[class org.identityconnectors.framework.impl.api.local.LocalConnectorFacadeImpl]
Error
    org.identityconnectors.framework.common.exceptions.UnknownUidException(LDAP entry for UID Attribute: {Name=__UID__, Value=[376952f8-7d1a-103b-93f9-3953ef0343f1], NameHint=Attribute: {Name=__NAME__, Value=[cn=unix user,ou=posixgroups,dc=example,dc=org]}} was not found)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20210719/33911d3b/attachment.htm>

More information about the midPoint mailing list