[midPoint] Issue with AD connector

Fabian Noll-Dukiewicz fabian.noll-dukiewicz at fndit.de
Fri Sep 23 17:12:21 CEST 2022 

Hi Patrik,

try to download the resource configuration using the midpoint studio (IntelliJ IDEA + midpoint plugin). After that remove the schema section completely. Add the following lines to only load the schema for object classes user and group. Then you need to upload the configuration file and reload the schema.

<schema>
        <generationConstraints>
            <generateObjectClass>ri:user</generateObjectClass>
            <generateObjectClass>ri:group</generateObjectClass>
        </generationConstraints>
<schema>

Hope that helps!

Kind regards
Fabian

Fabian Noll-Dukiewicz
Spezialist Identity & Access Management | Geschäftsführer
Tel.: +49 152 244 63 211
Email: fabian.noll-dukiewicz at fndit.de
Web: https://www.fndit.de

--
veryfy GmbH
(ehem. FND IT Solutions UG (haftungsbeschränkt))
Kaiser-Friedrich-Str. 16B
14469 Potsdam
Sitz der Gesellschaft: Potsdam
Registergericht: Amtsgericht Potsdam, HRB 34452
Geschäftsführer: Fabian Noll-Dukiewicz


Von: Davy Priem <davy.priem at vives.be>
Datum: Donnerstag, 22. September 2022 um 13:34
An: midPoint General Discussion <midpoint at lists.evolveum.com>
Cc: Pratik Barve <barvepratik7721 at gmail.com>
Betreff: Re: [midPoint] Issue with AD connector
Hi,

Did you limit the AD schema? See https://docs.evolveum.com/connectors/resources/active-directory/active-directory-ldap/#full-active-directory-schema

Best regards
Davy Priem

Van: midPoint <midpoint-bounces at lists.evolveum.com> Namens Pratik Barve via midPoint
Verzonden: Thursday, 22 September 2022 12:53
Aan: midpoint at lists.evolveum.com
CC: Pratik Barve <barvepratik7721 at gmail.com>
Onderwerp: [midPoint] Issue with AD connector

Hi all,
I am using Midpoint to import users from AD and then control their access to various resources. I am having some issues with importing user accounts from Active Directory.
Issues I am facing:

  1.  AD connector takes a lot of time to process 'test connection'
  2.  XML file in AD resource(AD connector) is not opening. The browser keeps loading that file until the browser displays an error ('Aw, Snap' in Chrome).
Things I tried:

  1.  Changing database from H2 to Postgres
  2.  Tried Ldap connector connecting to LDAP resource and XML gets loaded within few seconds.
  3.  Tried connecting to the same AD instance from 3rd party tools and data was getting displayed within a few seconds.
FYI:

  1.  The machine is running with 16GB of RAM.
  2.  The browser I used are Chrome and Internet Explorer
Can you please tell me where I am going wrong?

Thanks and Regards
Pratik
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20220923/09ca9e71/attachment.htm>

More information about the midPoint mailing list