<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<div class="moz-cite-prefix">Hello, again, not really solved because
mp does not send out the extra password to the resource (but it
saves a hash).<br>
At your wiki
<a class="moz-txt-link-freetext" href="https://wiki.evolveum.com/display/midPoint/Custom+Schema+Extension">https://wiki.evolveum.com/display/midPoint/Custom+Schema+Extension</a>
the ProtectedStringType is listed (as a secondaryPassword).<br>
So how can I implement this to sync to a LDAP (OpenLDAP) resource
account?<br>
Changes of other (extension) attributes are detected and are
provided to the resource in contrast to that type.<br>
Thanks for any help.<br>
Regards<br>
Rene Zeipelt<br>
<br>
Am 10.11.2020 um 08:08 schrieb Rene Zeipelt via midPoint:<br>
</div>
<blockquote type="cite"
cite="mid:9a696773-d9dc-8237-f5b4-fe47b84b247b@uni-wuppertal.de">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<div class="moz-cite-prefix">Hello, solved by a extra resource
definition with its own credentials sync:<br>
<font face="monospace">...<br>
<credentials><br>
<password><br>
<outbound><br>
<source><br>
<path>$focus/extension/fa_vpn_pwd_1</path><br>
</source><br>
</outbound><br>
</password><br>
</credentials><br>
...</font><br>
Role inducement for extra account link to the new resource and
correlation aims to the new extra uid.<br>
Sorry for noise.<br>
Best Regards<br>
Rene Zeipelt<br>
<br>
Am 09.11.2020 um 14:44 schrieb Rene Zeipelt via midPoint:<br>
</div>
<blockquote type="cite"
cite="mid:69d3ae58-6c80-b380-c18a-8f08d918ef98@uni-wuppertal.de">Hello,
<br>
we are testing to save a second accounts with extra uid and
password for a LDAP resource. <br>
So we extend the UserType to save the values and define a role
with the inducement <br>
account construction. In the LDAP resource schema handling we
set <br>
... <br>
<credentials> <br>
<password> <br>
<outbound/> <br>
</password> <br>
</credentials> <br>
... <br>
Now we want to override that password by the role inducement
account construction. <br>
Is this handle by the userPassword attribute or is it not
possible to change it in that way? <br>
Thanks for any help. <br>
Regards <br>
Rene Zeipelt <br>
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com" moz-do-not-send="true">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint" moz-do-not-send="true">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
</blockquote>
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
</blockquote>
<br>
<br>
<pre class="moz-signature" cols="72">--
_________________________________________________________
BERGISCHE UNIVERSITÄT WUPPERTAL
Zentrum fuer Informations- und Medienverarbeitung - ZIM
Gaussstr. 20
D-42097 Wuppertal (Germany)
room : P.06.09
phone : +49 202 439 2236
fax : +49 202 439 2910
e-mail: <a class="moz-txt-link-abbreviated" href="mailto:zeipelt@uni-wuppertal.de">zeipelt@uni-wuppertal.de</a>
_________________________________________________________</pre>
</body>
</html>