[midPoint] Manager

[mikhail.nikolaenko]

Hello midPoint Community,

I need some advice for one feature I am currently implementing.

The requirement: every external employee should have a manager, and this should be provisioned into the AD manager attribute.

What I’ve done so far:

- Added a custom attribute managerRef in the schema (object reference type).
- On the UI I can select any object (will later try to restrict to users).

Where I’m stuck:

- How to provision this into AD? Since managerRef is stored as an object reference, I assume I need to resolve it to the DN of the shadow object, or maybe reuse the DN calculation logic from the resource adapter.
- How to reconcile the AD manager attribute back into midPoint? I guess I need to search for the user in the midpoint based on a naming attribute from the manager's DN.

Has anyone implemented something similar? I have feeling that this could be done in more smarter way... Any tips, examples, or best practices would be really helpful.

With best regards,
Mike
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20251217/8d684e30/attachment.htm>