<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Hello Jason,<br>
<br>
as far as I know, in Active Directory CN is not updateable. It
suffices to create/update icfs:name attribute, and CN is updated
automatically.<br>
<br>
So, I would suggest to drop outbound mapping from CN attribute,
i.e. this one:<br>
<br>
<outbound><br>
<source><br>
<path>$focus/name</path><br>
</source><br>
</outbound><br>
<br>
Best regards,<br>
Pavol<br>
<br>
On 27. 11. 2014 19:23, Jason Everling wrote:<br>
</div>
<blockquote
cite="mid:CAFkZXY7-OKt0dJUkCPyk-3XrDRVGcGPYC=cOvkttOpmW145MqA@mail.gmail.com"
type="cite">
<div dir="ltr">I cannot figure this one out, I followed the groups
sync in the wiki and from the github samples along with the
metarole and role template.
<div><br>
</div>
<div>When creating a role in Midpoint it attempts to create the
group in AD but I get an error, look at the debug page it has
the correct DN and CN.</div>
<div><br>
</div>
<div><span class="" id="idde6"
style="padding:0px;font-weight:bold;color:rgb(185,74,72);font-family:'Helvetica
Neue',Helvetica,Arial,sans-serif;font-size:12px;line-height:17.142858505249px;background-color:rgb(242,222,222)"><span
id="ide4c">operation.com.evolveum.midpoint.model.impl.lens.ChangeExecutor.execute</span></span><span
style="color:rgb(185,74,72);font-family:'Helvetica
Neue',Helvetica,Arial,sans-serif;font-size:12px;line-height:17.142858505249px;background-color:rgb(242,222,222)"></span>
<div class="" id="idde6_content"
style="padding-left:30px;color:rgb(185,74,72);font-family:'Helvetica
Neue',Helvetica,Arial,sans-serif;font-size:12px;line-height:17.142858505249px;background-color:rgb(242,222,222)">
<ul style="margin:0px;list-style:none outside
none;padding:0px">
<li style="padding:1px 0px;list-style:none outside
none;margin:0px;text-overflow:ellipsis;overflow:auto"><span
class="">Security violation during processing shadow
shadow: null (OID:null): Attempt to add shadow with
non-createable attribute {<a moz-do-not-send="true"
href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3%7Dcn">http://midpoint.evolveum.com/xml/ns/public/resource/instance-3}cn</a></span></li>
<li class="" title="Fatal error" style="padding:2px 0px
1px 25px;list-style:none outside none;margin:5px 0px
0px;text-overflow:ellipsis;overflow:auto;background-image:url(http://10.200.0.155/midpoint/img/messages-error-icon.png);background-repeat:no-repeat"><span
class="" style="margin-top:0px">Security violation
during processing shadow shadow: null (OID:null):
Attempt to add shadow with non-createable attribute {<a
moz-do-not-send="true"
href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3%7Dcn">http://midpoint.evolveum.com/xml/ns/public/resource/instance-3}cn</a></span></li>
</ul>
</div>
</div>
<div>
<div><br>
</div>
<div>
<table class=""
style="border-collapse:collapse;border-spacing:0px;max-width:100%;width:auto;margin-bottom:20px;border:1px
solid
rgb(221,221,221);color:rgb(51,51,51);font-family:'Helvetica
Neue',Helvetica,Arial,sans-serif;font-size:14px;line-height:20px">
<tbody>
<tr>
<th
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid
rgb(221,221,221);background-color:rgb(249,249,249)">Activity</th>
<th
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid
rgb(221,221,221);background-color:rgb(249,249,249)">Status</th>
<th
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid
rgb(221,221,221);background-color:rgb(249,249,249)">Resource
object (if applicable)</th>
</tr>
<tr>
<td
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid rgb(221,221,221)"><span>Computing projections
of the focus object</span></td>
<td
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid rgb(221,221,221)"><span class=""
title="SUCCESS"
style="color:rgb(70,136,71);display:inline-block;font-family:FontAwesome;line-height:0.75em;font-size:1.33333333333333em;vertical-align:-15%;width:1.28571428571429em;text-align:center"></span><br>
</td>
<td
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid rgb(221,221,221)"><span></span><br>
</td>
</tr>
<tr>
<td
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid
rgb(221,221,221);background-color:rgb(249,249,249)"><span>Entitlement
(group) on Active Directory</span></td>
<td
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid
rgb(221,221,221);background-color:rgb(249,249,249)"><span
class="" title="FATAL_ERROR"
style="color:rgb(185,74,72);display:inline-block;font-family:FontAwesome;line-height:0.75em;font-size:1.33333333333333em;vertical-align:-15%;width:1.28571428571429em;text-align:center"></span><br>
</td>
<td
style="padding:5px;line-height:1.428571429;vertical-align:top;border:1px
solid
rgb(221,221,221);background-color:rgb(249,249,249)"><span>Add:Fatal
error -> cn=TESTER,ou=Groups,dc=test,dc=local</span></td>
</tr>
</tbody>
</table>
</div>
<div><br>
</div>
<div>I attached the AD Resource, Role Template, and MetaRole</div>
</div>
</div>
<br>
<font size="2"><br>
<br>
CONFIDENTIALITY NOTICE:<br>
This e-mail together with any attachments is proprietary and
confidential; intended for only the recipient(s) named above and
may contain information that is privileged. You should not
retain, copy or use this e-mail or any attachments for any
purpose, or disclose all or any part of the contents to any
person. Any views or opinions expressed in this e-mail are those
of the author and do not represent those of the Baptist School
of Health Professions. If you have received this e-mail in
error, or are not the named recipient(s), you are hereby
notified that any review, dissemination, distribution or copying
of this communication is prohibited by the sender and to do so
might constitute a violation of the Electronic Communications
Privacy Act, 18 U.S.C. section 2510-2521. Please immediately
notify the sender and delete this e-mail and any attachments
from your computer. </font><br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="http://lists.evolveum.com/mailman/listinfo/midpoint">http://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
</blockquote>
<br>
</body>
</html>