<html><body><div style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000"><div>Hi</div><div><br></div><div>Just a wild guess, but it can happen - if you tried to access the resource with a previous configuration that was not right, midPoint created shadows with a wrong object class that can now stand in the way.</div><div>In main menu go to <strong>Repository objects</strong> / <strong>All objects</strong> and choose <strong>Shadow</strong> in the type select box, also <strong>select your resource</strong>. Then you can use the little down arrow on the right in the table header:</div><div><img src="cid:bc90b4dd7c355a90d6d299217957dd7a6ba7aff2@zimbra" data-mce-src="cid:bc90b4dd7c355a90d6d299217957dd7a6ba7aff2@zimbra"></div><div>After this try to list the accounts on your resource again. If it's set up right, it should help. If it doesn't, then there is still resource configuration problem.<br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Regards<br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Richard Richter<br data-mce-bogus="1"></div><div>Software Developer<br data-mce-bogus="1"></div><div>Evolveum<br data-mce-bogus="1"></div><div><br></div><hr id="zwchr" data-marker="__DIVIDER__"><div data-marker="__HEADERS__"><b>From: </b>"midPoint General Discussion" <midpoint@lists.evolveum.com><br><b>To: </b>"midPoint General Discussion" <midpoint@lists.evolveum.com><br><b>Cc: </b>"MERCEDES ONCINA DELTELL" <moncina@um.es><br><b>Sent: </b>Thursday, February 10, 2022 9:50:25 PM<br><b>Subject: </b>Re: [midPoint] Synchronizating roles between a database table and midPoint</div><div><br></div><div data-marker="__QUOTED_TEXT__"><p>In the schema handling I assign icfs:uid, which is associated with the primary key of the table (TREL_CODIGO) in the resource configuration, with the "name" attribute, so, both "uid" and "name" have the same value: TREL_CODIGO.<br><br>On the other hand, I have tried this:<br><em><correlation><br> <q:equal xmlns=""><br> <q:path>name</q:path><br> <expression><br> <path>$projection/attributes/trel_codigo</path><br> </expression><br> </q:equal><br></correlation></em></p><div>And I get the same error:<br><em>Message: Could not import account shadow:b18c3e63-f2c5-461c-b6c0-27b91e0aa2bb(01)<br>Error: No object class found for the shadow</em><br><br>I admit that I don't really understand the variables that can be used inside the expression, I have seen $user, $focus and $projection, but I am not very sure when each one should be used.<br><br>In the rest of the resources, I use $focus in the correlation expression, both for input and output resources and it runs fine.<br><br>Thanks in advance.<br> </div><blockquote style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;" data-mce-style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;"><p>please check you correlation. In the path-Tag you need to refer to an<br>attribute of the projection/account, not to an attribute of the focus<br>object.<br><br>You could try this:<br><br><correlation> <q:equal xmlns=""> <q:path>name</q:path> <expression> <path>$projection/attributes/<a target="_blank">ri:/TREL_CODIGO/</a></path> </expression> </q:equal> </correlation></p></blockquote><p><br><a href="mailto:midpoint-request@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midpoint-request@lists.evolveum.com">midpoint-request@lists.evolveum.com</a> escribió:</p><blockquote style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;" data-mce-style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;"><p><br>------------------------------<br><br>Message: 2<br>Date: Thu, 10 Feb 2022 14:14:51 +0100<br>From: Mercedes Oncina Deltell <<a href="mailto:moncina@um.es" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:moncina@um.es">moncina@um.es</a>><br>To: <a href="mailto:midpoint@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a><br>Subject: Re: [midPoint] Synchronizating roles between a database table<br> and midPoint<br>Message-ID: <<a href="mailto:7b623c6f-989c-1cd2-74ad-08e159063317@um.es" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:7b623c6f-989c-1cd2-74ad-08e159063317@um.es">7b623c6f-989c-1cd2-74ad-08e159063317@um.es</a>><br>Content-Type: text/plain; charset="utf-8"; Format="flowed"<br><br>I have configured it as you wrote and I can see the entitlements from de<br>resource in midPoint, but when I try to import them, I get the now<br>familiar error:<br><br>Message<br> Could not import account shadow:b18c3e63-f2c5-461c-b6c0-27b91e0aa2bb(01)<br><br>Error<br> No object class found for the shadow<br><br>My configuration is:<br><br> /* <schemaHandling>*<br> <objectType id="16"><br> * <kind>entitlement</kind>**<br> ** <intent>default</intent>**<br> ** <default>true</default>**<br> **<objectClass>ri:AccountObjectClass</objectClass>*<br> <attribute id="17"><br> <ref>icfs:uid</ref><br> <tolerant>true</tolerant><br> <inbound id="19"><br> <authoritative>true</authoritative><br> <exclusive>false</exclusive><br> <strength>normal</strength><br> <target><br> <path>name</path><br> </target><br> </inbound><br> </attribute><br> <attribute id="18"><br> <ref>ri:TREL_DESCRIPCION</ref><br> <tolerant>true</tolerant><br> <exclusiveStrong>false</exclusiveStrong><br> <inbound id="20"><br> <authoritative>true</authoritative><br> <exclusive>false</exclusive><br> <strength>normal</strength><br> <target><br> <path>displayName</path><br> </target><br> </inbound><br> </attribute><br> </objectType><br> </schemaHandling><br> * <synchronization>*<br> <objectSynchronization><br> <name>SynchroRoles</name><br> *<objectClass>AccountObjectClass</objectClass>**<br> ** <kind>entitlement</kind>**<br> ** <intent>default</intent>**<br> **<focusType>c:RoleType</focusType>**<br> ** <enabled>true</enabled>*<br> * <correlation>*<br> <q:equal xmlns=""><br> <q:path>name</q:path><br> <expression xmlns=""><br> <path>$focus/attributes/trel_codigo</path><br> </expression><br> </q:equal><br> <q:description>CheckUIDwithCODIGO</q:description><br> </correlation><br> <reconcile>false</reconcile><br> <reaction><br> <situation>deleted</situation><br> <synchronize>true</synchronize><br> <action><br> <handlerUri><a href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink">http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink</a></handlerUri><br> </action><br> </reaction><br> <reaction><br> <situation>linked</situation><br> <synchronize>true</synchronize><br> <reconcile>false</reconcile><br> </reaction><br> <reaction><br> <situation>unlinked</situation><br> <synchronize>true</synchronize><br> <action><br> <handlerUri><a href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#link" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#link">http://midpoint.evolveum.com/xml/ns/public/model/action-3#link</a></handlerUri><br> </action><br> </reaction><br> <reaction><br> <situation>unmatched</situation><br> <synchronize>true</synchronize><br> <reconcile>false</reconcile><br> <action><br> <handlerUri><a href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus">http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus</a></handlerUri><br> </action><br> </reaction><br> </objectSynchronization><br> </synchronization>/<br><br>The Oracle table is:<br><br> /CREATE TABLE TIPO_RELACIONES<br> (<br> TREL_CODIGO VARCHAR2(2 BYTE),<br> TREL_DESCRIPCION VARCHAR2(60 BYTE),<br> TREL_UNIVERSITARIO VARCHAR2(1 BYTE),<br> TREL_PRIORIDAD NUMBER(2),<br> TREL_DURACION DATE,<br> TREL_MESES NUMBER(4),<br> TREL_TIPO_DURACION VARCHAR2(1 BYTE),<br> TREL_VIGENTE VARCHAR2(1 BYTE),<br> TREL_RESPONSABLE VARCHAR2(8 BYTE),<br> TREL_TIPO_EMAIL VARCHAR2(1 BYTE),<br> TREL_EXTERNO VARCHAR2(1 BYTE)<br> )/<br><br>I only want it for importing and synchronizing data into midPoint (inbound).<br><br><br>El 10/02/2022 a las 12:00, <a href="mailto:midpoint-request@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midpoint-request@lists.evolveum.com">midpoint-request@lists.evolveum.com</a> escribió:</p><blockquote style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;" data-mce-style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;"><p><schemaHandling> <objectType> <objectClass>ri:AccountObjectClass</objectClass> <default>true</default> <kind>*entitlement*</kind> <intent>default</intent> ...<br><synchronization> <objectSynchronization> <objectClass>AccountObjectClass</objectClass> <kind>*entitlement*</kind> <intent>default</intent> <focusType>RoleType</focusType> <enabled>true</enabled><br><br>...</p></blockquote>--<br>Mercedes Oncina Deltell<br>Servicio de Infraestructuras TICS<br>ATICA - Universidad de Murcia<br>Telf: +34 868881983<br>-------------- next part --------------<br>An HTML attachment was scrubbed...<br>URL: <<a href="https://lists.evolveum.com/pipermail/midpoint/attachments/20220210/51943c85/attachment-0001.htm" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="https://lists.evolveum.com/pipermail/midpoint/attachments/20220210/51943c85/attachment-0001.htm">https://lists.evolveum.com/pipermail/midpoint/attachments/20220210/51943c85/attachment-0001.htm</a>><br><br>------------------------------<br><br>Message: 3<br>Date: Thu, 10 Feb 2022 16:46:51 +0100<br>From: Marc Fueller <<a href="mailto:marc.fueller@daasi.de" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:marc.fueller@daasi.de">marc.fueller@daasi.de</a>><br>To: Mercedes Oncina Deltell via midPoint <<a href="mailto:midpoint@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a>><br>Subject: Re: [midPoint] Synchronizating roles between a database table<br> and midPoint<br>Message-ID: <<a href="mailto:831e49ab-7b01-c992-9916-ec01841df301@daasi.de" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:831e49ab-7b01-c992-9916-ec01841df301@daasi.de">831e49ab-7b01-c992-9916-ec01841df301@daasi.de</a>><br>Content-Type: text/plain; charset="utf-8"; Format="flowed"<br><br>Hi,<br><br>please check you correlation. In the path-Tag you need to refer to an<br>attribute of the projection/account, not to an attribute of the focus<br>object.<br><br>You could try this:<br><br><correlation> <q:equal xmlns=""> <q:path>name</q:path> <expression> <path>$projection/attributes/<a target="_blank">ri:/TREL_CODIGO/</a></path> </expression> </q:equal> </correlation><br><br><br>You also need to make sure that you are also mapping TREL_CODIGO to the<br>midPoint "name" property in the schema handling.<br><br>HTH<br><br>Marc<br><br><br>Am 10.02.22 um 14:14 schrieb Mercedes Oncina Deltell via midPoint:<blockquote style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;" data-mce-style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;"><p>I have configured it as you wrote and I can see the entitlements from<br>de resource in midPoint, but when I try to import them, I get the now<br>familiar error:<br><br>Message<br> Could not import account<br> shadow:b18c3e63-f2c5-461c-b6c0-27b91e0aa2bb(01)<br><br>Error<br> No object class found for the shadow<br><br>My configuration is:<br><br> /* <schemaHandling>*<br> <objectType id="16"><br> * <kind>entitlement</kind>**<br> ** <intent>default</intent>**<br> ** <default>true</default>**<br> **<objectClass>ri:AccountObjectClass</objectClass>*<br> <attribute id="17"><br> <ref>icfs:uid</ref><br> <tolerant>true</tolerant><br> <inbound id="19"><br> <authoritative>true</authoritative><br> <exclusive>false</exclusive><br> <strength>normal</strength><br> <target><br> <path>name</path><br> </target><br> </inbound><br> </attribute><br> <attribute id="18"><br> <ref>ri:TREL_DESCRIPCION</ref><br> <tolerant>true</tolerant><br> <exclusiveStrong>false</exclusiveStrong><br> <inbound id="20"><br> <authoritative>true</authoritative><br> <exclusive>false</exclusive><br> <strength>normal</strength><br> <target><br> <path>displayName</path><br> </target><br> </inbound><br> </attribute><br> </objectType><br> </schemaHandling><br> * <synchronization>*<br> <objectSynchronization><br> <name>SynchroRoles</name><br> *<objectClass>AccountObjectClass</objectClass>**<br> ** <kind>entitlement</kind>**<br> ** <intent>default</intent>**<br> **<focusType>c:RoleType</focusType>**<br> ** <enabled>true</enabled>*<br> * <correlation>*<br> <q:equal xmlns=""><br> <q:path>name</q:path><br> <expression xmlns=""><br> <path>$focus/attributes/trel_codigo</path><br> </expression><br> </q:equal><br> <q:description>CheckUIDwithCODIGO</q:description><br> </correlation><br> <reconcile>false</reconcile><br> <reaction><br> <situation>deleted</situation><br> <synchronize>true</synchronize><br> <action><br> <handlerUri><a href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink">http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink</a></handlerUri><br> </action><br> </reaction><br> <reaction><br> <situation>linked</situation><br> <synchronize>true</synchronize><br> <reconcile>false</reconcile><br> </reaction><br> <reaction><br> <situation>unlinked</situation><br> <synchronize>true</synchronize><br> <action><br> <handlerUri><a href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#link" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#link">http://midpoint.evolveum.com/xml/ns/public/model/action-3#link</a></handlerUri><br> </action><br> </reaction><br> <reaction><br> <situation>unmatched</situation><br> <synchronize>true</synchronize><br> <reconcile>false</reconcile><br> <action><br> <handlerUri><a href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus">http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus</a></handlerUri><br> </action><br> </reaction><br> </objectSynchronization><br> </synchronization>/<br><br>The Oracle table is:<br><br> /CREATE TABLE TIPO_RELACIONES<br> (<br> TREL_CODIGO VARCHAR2(2 BYTE),<br> TREL_DESCRIPCION VARCHAR2(60 BYTE),<br> TREL_UNIVERSITARIO VARCHAR2(1 BYTE),<br> TREL_PRIORIDAD NUMBER(2),<br> TREL_DURACION DATE,<br> TREL_MESES NUMBER(4),<br> TREL_TIPO_DURACION VARCHAR2(1 BYTE),<br> TREL_VIGENTE VARCHAR2(1 BYTE),<br> TREL_RESPONSABLE VARCHAR2(8 BYTE),<br> TREL_TIPO_EMAIL VARCHAR2(1 BYTE),<br> TREL_EXTERNO VARCHAR2(1 BYTE)<br> )/<br><br>I only want it for importing and synchronizing data into midPoint<br>(inbound).<br><br><br>El 10/02/2022 a las 12:00, <a href="mailto:midpoint-request@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midpoint-request@lists.evolveum.com">midpoint-request@lists.evolveum.com</a> escribió:</p><blockquote style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;" data-mce-style="border-left: 2px solid blue; margin-left: 2px; padding-left: 12px;"><p><schemaHandling> <objectType> <objectClass>ri:AccountObjectClass</objectClass> <default>true</default> <kind>*entitlement*</kind> <intent>default</intent> ...<br><synchronization> <objectSynchronization> <objectClass>AccountObjectClass</objectClass> <kind>*entitlement*</kind> <intent>default</intent> <focusType>RoleType</focusType> <enabled>true</enabled><br><br>...</p></blockquote>--<br>Mercedes Oncina Deltell<br>Servicio de Infraestructuras TICS<br>ATICA - Universidad de Murcia<br>Telf: +34 868881983<br><br>_______________________________________________<br>midPoint mailing list<br><a href="mailto:midPoint@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a><br><a href="https://lists.evolveum.com/mailman/listinfo/midpoint" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="https://lists.evolveum.com/mailman/listinfo/midpoint">https://lists.evolveum.com/mailman/listinfo/midpoint</a><br data-mce-bogus="1"></blockquote>--<br>Marc Füller<br>Consultant<br><br>DAASI International GmbH<br>Europaplatz 3<br>D-72072 Tübingen<br>Germany<br><br>phone: +49 7071 407109-0<br>fax: +49 7071 407109-9<br>email:marc.fueller@daasi.de<br>web:<a href="http://www.daasi.de" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="http://www.daasi.de">www.daasi.de</a><br>Sitz der Gesellschaft: Tübingen<br>Registergericht: Amtsgericht Stuttgart, HRB 382175<br>Geschäftsleitung: Peter Gietz<br>-------------- next part --------------<br>An HTML attachment was scrubbed...<br>URL: <<a href="https://lists.evolveum.com/pipermail/midpoint/attachments/20220210/6cf285e3/attachment.htm" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="https://lists.evolveum.com/pipermail/midpoint/attachments/20220210/6cf285e3/attachment.htm">https://lists.evolveum.com/pipermail/midpoint/attachments/20220210/6cf285e3/attachment.htm</a>><br><br>------------------------------<br><br>Subject: Digest Footer<br><br>_______________________________________________<br>midPoint mailing list<br><a href="mailto:midPoint@lists.evolveum.com" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a><br><a href="https://lists.evolveum.com/mailman/listinfo/midpoint" target="_blank" rel="nofollow noopener noreferrer" data-mce-href="https://lists.evolveum.com/mailman/listinfo/midpoint">https://lists.evolveum.com/mailman/listinfo/midpoint</a><br><br><br>------------------------------<br><br>End of midPoint Digest, Vol 118, Issue 19*****************************************</blockquote><p><br> </p><br>_______________________________________________<br>midPoint mailing list<br>midPoint@lists.evolveum.com<br>https://lists.evolveum.com/mailman/listinfo/midpoint</div></div></body></html>