<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <div class="moz-cite-prefix">Hello, problem solved by attribute
      mapping. But schema read on OpenLDAP does not import userPassword
      attribut, so it have to add to config after first schema read
      (test connection).<br>
      Best Rene Zeipelt<br>
      <br>
      <br>
      Am 11.11.2020 um 11:29 schrieb Rene Zeipelt via midPoint:<br>
    </div>
    <blockquote type="cite"
      cite="mid:cf57f2ea-c5cc-1296-391c-26b5b1ce7d16@uni-wuppertal.de">
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
      <div class="moz-cite-prefix">Hello, again, not really solved
        because mp does not send out the extra password to the resource
        (but it saves a hash).<br>
        At your wiki <a class="moz-txt-link-freetext"
href="https://wiki.evolveum.com/display/midPoint/Custom+Schema+Extension"
          moz-do-not-send="true">https://wiki.evolveum.com/display/midPoint/Custom+Schema+Extension</a>
        the ProtectedStringType is listed (as a secondaryPassword).<br>
        So how can I implement this to sync to a LDAP (OpenLDAP)
        resource account?<br>
        Changes of other (extension) attributes are detected and are
        provided to the resource in contrast to that type.<br>
        Thanks for any help.<br>
        Regards<br>
        Rene Zeipelt<br>
        <br>
        Am 10.11.2020 um 08:08 schrieb Rene Zeipelt via midPoint:<br>
      </div>
      <blockquote type="cite"
        cite="mid:9a696773-d9dc-8237-f5b4-fe47b84b247b@uni-wuppertal.de">
        <meta http-equiv="Content-Type" content="text/html;
          charset=UTF-8">
        <div class="moz-cite-prefix">Hello, solved by a extra resource
          definition with its own credentials sync:<br>
          <font face="monospace">...<br>
            <credentials><br>
              <password><br>
                <outbound><br>
                  <source><br>
                   
            <path>$focus/extension/fa_vpn_pwd_1</path><br>
                  </source><br>
                </outbound><br>
              </password><br>
            </credentials><br>
            ...</font><br>
          Role inducement for extra account link to the new resource and
          correlation aims to the new extra uid.<br>
          Sorry for noise.<br>
          Best Regards<br>
          Rene Zeipelt<br>
           <br>
          Am 09.11.2020 um 14:44 schrieb Rene Zeipelt via midPoint:<br>
        </div>
        <blockquote type="cite"
          cite="mid:69d3ae58-6c80-b380-c18a-8f08d918ef98@uni-wuppertal.de">Hello,
          <br>
          we are testing to save a second accounts with extra uid and
          password for a LDAP resource. <br>
          So we extend the UserType to save the values and define a role
          with the inducement <br>
          account construction. In the LDAP resource schema handling we
          set <br>
          ... <br>
          <credentials> <br>
            <password> <br>
              <outbound/> <br>
            </password> <br>
          </credentials> <br>
          ... <br>
          Now we want to override that password by the role inducement
          account construction. <br>
          Is this handle by the userPassword attribute or is it not
          possible to change it in that way? <br>
          Thanks for any help. <br>
          Regards <br>
          Rene Zeipelt <br>
          <br>
          <br>
          <fieldset class="mimeAttachmentHeader"></fieldset>
          <pre class="moz-quote-pre" wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com" moz-do-not-send="true">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint" moz-do-not-send="true">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
        </blockquote>
        <br>
        <br>
        <fieldset class="mimeAttachmentHeader"></fieldset>
        <pre class="moz-quote-pre" wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com" moz-do-not-send="true">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint" moz-do-not-send="true">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
      </blockquote>
      <br>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <pre class="moz-quote-pre" wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
    </blockquote>
    <br>
    <br>
  </body>
</html>