Home Forums Identity Governance Problem buiding Primary Principal in LDAP Connector Reply To: Problem buiding Primary Principal in LDAP Connector

#1547

Hi Suneet,

Thanks for your response. This is the status of the Managed System:

AD Managed System ACTIVE ldaps://vs01dc01.joopbox.local 23494@127.0.0.1 Last Date:08/31/2020 09:03:32

Here is the config for the Managed System:

Managed System Name: AD Managed System
Description:Active Directory Managed System
Active
URL: ldaps://vs01dc01.testnet.local
Port: 636
Password Policy: Defult Pwd Policy
Communication Protocol: SSL
Login Id: CN=adminiam,CN=Users,DC=testnet,DC=local
Password: ••••••
Object Primary Key for User: sAMAccountName
Base DN for User: OU=Usuarios,DC=testnet,DC=local
Search Base DN for User: OU=Usuarios,DC=testnet,DC=local
Search Filter for User: (&(objectclass=user)(sAMAccountName=?))
Object Primary Key for Group: cn
Base DN for Group: OU=Grupos,DC=testnet,DC=local
Search Base DN for Group: OU=Grupos,DC=testnet,DC=local
Search Filter for Group: (&(objectclass=user)(cn=?))
Search Scope: Subtree
Target System Type: ACTIVE DIRECTORY
Category: DIRECTORIES

Attributes
Attribute Name MetaData Element Attribute Value Actions
MANAGER_FIELD_NAME manager
PASSWORD_FIELD_NAME unicodePwd
GROUP_MEMBERSHIP_ENABLED Y
INCLUDE_IN_PASSWORD_SYNC Y
ON_DELETE DELETE
MEMBER_FIELD_NAME member

Authentication Providers
No Authentication Providers found

The policy Map associated with this managed system is this one (the one comming with the default connector):

PRINCIPAL sAMAccountName POLICY ad-sAMAccountName STRING
USER accountExpires POLICY ad-accountExpires STRING
USER c POLICY ad-c STRING
USER cn POLICY ad-cn STRING
USER co POLICY ad-co STRING
USER company POLICY ad-company STRING
USER department POLICY ad-department STRING
USER displayName POLICY ad-displayName STRING
USER division POLICY ad-division STRING
USER employeeID POLICY ad-employeeId STRING
USER employeeNumber POLICY ad-employeeNumber STRING
USER employeeType POLICY ad-employeeType STRING
USER givenName POLICY ad-givenName STRING
USER homeDirectory POLICY ad-homeDirectory STRING
USER homeDrive POLICY ad-homeDrive STRING
USER initials POLICY ad-initials STRING
USER l POLICY ad-l STRING
USER mail POLICY ad-mail STRING
USER manager POLICY ad-manager STRING
USER memberOf POLICY ad-memberOf STRING
USER mobile POLICY ad-mobile STRING
USER objectClass POLICY ad-objectClass STRING
USER ou POLICY ad-ou STRING
USER postalCode POLICY ad-postalCode STRING
USER sn POLICY ad-sn STRING
USER st POLICY ad-st STRING
USER streetAddress POLICY ad-streetAddress STRING
USER telephoneNumber POLICY ad-telephoneNumber STRING
USER thumbnailPhoto POLICY ad-thumbnailPhoto STRING
USER title POLICY ad-title STRING
USER userPrincipalName POLICY ad-userPrincipalName STRING
PASSWORD unicodePwd POLICY ad-unicodePwd STRING
USER userAccountControl POLICY ad-userAccountControl STRING

I have not customized any of these mappings nor any groovy script.

If you need any other info I’ll be pleased to send it.

Thanks in advanced,

Xisco.