<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Hello Wenzel,</p>
<p><br>
</p>
<p>the documented way is to write a <a moz-do-not-send="true"
href="https://docs.evolveum.com/midpoint/reference/support-4.10/resources/manual/itsm-plugin/">custom
ITSM plugin</a> but that requires a custom overlay build of
midPoint. Comparing to your approach, it provides an ability to
get a direct feedback from Jira when the administrator closes a
ticket (see "queryOperationStatus" method). </p>
<p><br>
</p>
<p>But as you are using semi-manual approach with the feedback
provided via LDAP itself, this may not be so significant.</p>
<p><br>
</p>
<p>Maybe other members of the community could comment on this as
well. Actually I'd be interested to know what is the percentage of
users writing their own ITSM connectors vs those using
notifications with custom transport to create the tickets. :-)</p>
<p><br>
</p>
<p>As a last note, in 4.11 we are going to solve the problem with
manual/semi-manual connectors more seriously, as was presented on
the Community Meetup last week. See <a moz-do-not-send="true"
href="https://docs.evolveum.com/talks/files/2026-05-mcm-macik-manual-connector-development.pdf"
class="moz-txt-link-freetext">https://docs.evolveum.com/talks/files/2026-05-mcm-macik-manual-connector-development.pdf</a>.</p>
<p><br>
</p>
<p>Best regards,</p>
<pre class="moz-signature" cols="72">--
Pavol Mederly
Interim Chief Product Officer
evolveum.com</pre>
<div class="moz-cite-prefix">On 21/05/2026 09:51, Pilar von Pilchau
Wenzel - AKDB via midPoint wrote:<br>
</div>
<blockquote type="cite"
cite="mid:DB8P193MB0533754E3C04B6484CE1BC20830E2@DB8P193MB0533.EURP193.PROD.OUTLOOK.COM">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<style type="text/css" style="display:none;">P {margin-top:0;margin-bottom:0;}</style>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
Hi,</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
<br>
</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
We want to start using midpoint. We have a working on-prem AD
that is managed manually at the moment and that we can not
connect directly to midpoint. This might change in the future
but for now we are not allowed to write to it.</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
So, what we want to do right now is to propagate changes via
jira tickets to the administrators.</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
<br>
</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
I did some research and the solution that I found is to use a
semi-manual connector in midpoint so that we can read from the
AD but not write back directly. I tested a custom transport that
is triggered by a simple workflow notifier event handler and
creates jira tickets.</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
<br>
</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
My question is, is this the right approach? And in a later
stage, when we are allowed to write to our AD directly, can this
semi-manual connector easily be switched to an AD-connector.</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
I also tested an Ad-connector with only read permissions, but
then I was not able to create shadows.</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
<br>
</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
Appreciate any feedback.</div>
<div class="elementToProof"
style="font-family: Aptos, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 11pt; color: rgb(0, 0, 0);">
<br>
</div>
<div id="Signature">
<table cellspacing="0" cellpadding="0"
style="text-align: left; color: rgb(0, 0, 0); box-sizing: border-box; border-collapse: collapse; border-spacing: 0px;">
<tbody>
<tr>
<td
style="text-align: left; padding-right: 15px; vertical-align: top;">
<table cellspacing="0" cellpadding="0"
style="text-align: left; box-sizing: border-box; border-collapse: collapse; border-spacing: 0px;">
<tbody>
<tr>
<td
style="text-align: left; color: rgb(0, 57, 121);">
<div
style="text-align: left; font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt;">
<b>Dr. Wenzel Pilar von Pilchau</b></div>
</td>
</tr>
<tr>
<td
style="text-align: left; color: rgb(0, 57, 121);">
<div
style="text-align: left; font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt;">
Prozessanalyst<br>
Process Management & Digitalisation</div>
</td>
</tr>
<tr>
<td style="text-align: left; padding-top: 4px;"><span
style="font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);"><img
alt="Mobile" width="14" height="14"
style="width: 14px; height: 14px;"
data-outlook-trace="F:1|T:1"
src="cid:part1.LSZ2lHe9.6pGc3sxQ@evolveum.com" class="">
</span><span
style="font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt; color: rgb(0, 57, 121);">+49
162 2530060</span></td>
</tr>
<tr>
<td style="text-align: left; padding-top: 4px;"><span
style="font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);"><img
alt="Email" width="14" height="14"
style="width: 14px; height: 14px;"
data-outlook-trace="F:1|T:1"
src="cid:part2.U0DQfJ6d.tvheF6VE@evolveum.com" class="">
</span><span
style="font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt; color: rgb(0, 57, 121);"><a
href="mailto:Pilar-von-Pilchau.Wenzel@akdb.de"
id="OWA56175ca8-fdd8-4894-2329-4a3e4505e5d9"
class="OWAAutoLink moz-txt-link-freetext"
style="color: rgb(0, 57, 121); text-decoration: none;"
moz-do-not-send="true">Pilar-von-Pilchau.Wenzel@akdb.de</a></span></td>
</tr>
<tr>
<td
style="text-align: left; padding-top: 8px; color: rgb(0, 57, 121);">
<div
style="text-align: left; font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt;">
<b>AKDB</b> · Anstalt des öffentlichen Rechts<br>
Hansastraße 12-16 · 80686 München<br>
<span style="color: rgb(0, 57, 121);"><a
href="https://www.akdb.de/"
id="OWA9d4565db-39f6-74d6-7cf3-ebec047d3546" class="OWAAutoLink"
style="color: rgb(0, 57, 121); text-decoration: none;"
moz-do-not-send="true">www.akdb.de</a></span></div>
</td>
</tr>
<tr>
<td style="text-align: left; padding-top: 8px;"><span
style="font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);"><img
alt="AKDB Logo" width="120"
style="width: 120px; height: auto;"
data-outlook-trace="F:1|T:1"
src="cid:part3.AzuaMXAP.wv3bh6bN@evolveum.com" class=""></span></td>
</tr>
</tbody>
</table>
</td>
<td style="text-align: left; vertical-align: top;"><span
style="font-family: "Segoe UI", Tahoma, Geneva, Verdana, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);"><img
alt="Great Place to Work Certified" width="80"
style="width: 80px; height: auto;"
data-outlook-trace="F:1|T:1"
src="cid:part4.dCkbu8J1.w0PZt6Al@evolveum.com"
class=""></span></td>
</tr>
</tbody>
</table>
<div
style="font-family: Aptos; font-size: 11pt; color: rgb(0, 0, 0);"><br>
</div>
</div>
<br>
<fieldset class="moz-mime-attachment-header"></fieldset>
<pre wrap="" class="moz-quote-pre">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
</blockquote>
</body>
</html>