Tagged: AD synchronization
September 30, 2021 at 7:38 am #2426
The AD synchronization for user or group works perfectly from openiam to AD but not the other way around.
I don’t have any errors in the logs.
Please note that i am able to create AD users and groups from webconsole and get provisioned to AD correctly.September 30, 2021 at 7:24 pm #2427suneet_shahKeymaster
Glad to hear that you have AD provisioning working.
Can you post some details about synch configuration from AD to OpenIAM?
Also, which connector are you using?October 1, 2021 at 12:24 am #2428
Thanks for the reply.
I am using powershell connector.
Check attached the user and group ad sync config
Attachments:You must be logged in to view attached files.October 11, 2021 at 5:14 am #2438
Did you have the chance to look my config?
VasilisOctober 12, 2021 at 5:13 am #2446
I have just read in the documentation that in the managed system field i need to put openiam as the target system but it can’t connect to it…
The openiam managed system under Managed Systems is not configured by default and i can’t find any info on how to make it connect to it self. I have a docker installationOctober 12, 2021 at 12:45 pm #2449suneet_shahKeymaster
Can you take a look at the configuration at the attachment?
You need to setup the managed system in the synchronization configuration to you AD managed system. Otherwise it will not pull the data from that connector.
Attachments:You must be logged in to view attached files.October 12, 2021 at 11:40 pm #2452
This is what i have in my configuration (please check my screenshots) and it is not syncing.
The thing is that you are writing to add OPENIAM in your documentation which i tried and i am getting an error:
https://docs.openiam.com/docs-22.214.171.124/admin/5-lifecycle/1-synchOctober 13, 2021 at 12:11 am #2453
The only difference with your config was the “Attribute Names Lookup” option. I have changed it to “/attribute-lookup/ADAttibuteNamesLookup.groovy” but its failing with the following error:
can’t retrieve lineObjects from target systemclass ADAttributeNamesLookup cannot be cast to class org.openiam.sync.service.AttributesScript (ADAttributeNamesLookup is in unnamed module of loader groovy.lang.GroovyClassLoader$InnerLoader @5cc8e87c; org.openiam.sync.service.AttributesScript is in unnamed module of loader org.springframework.boot.loader.LaunchedURLClassLoader @9629756)
- You must be logged in to reply to this topic.