AnsweredAssumed Answered

Intregrated redhat ldap but Partially ONLY

Question asked by barrykfl on Aug 25, 2014
I successully integrated by follow the video in forum but i found some usenames still not appear .any idea ???

I saw some error when they expanding group but i already include admin , password ALSO i found it very slow on sync is it normal ?

e.g. org.alfresco.repo.security.authority.UnknownAuthorityException: 07252474 An authority was not found for GROUP__finance

my config in ldap1 's propeties

ldap.authentication.active=true
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=uid=%s,cn=users,cn=accounts,dc=abc,dc=com
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
ldap.authentication.java.naming.provider.url=ldap://server.abc.com:389
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.escapeCommasInBind=false
ldap.authentication.escapeCommasInUid=false
ldap.authentication.defaultAdministratorUserNames=uid=admin,cn=users,cn=accounts,dc=abc,dc=com
ldap.synchronization.active=true
ldap.synchronization.java.naming.security.authentication=simple
ldap.synchronization.java.naming.security.principal=uid=admin,cn=users,cn=accounts,dc=abc,dc=com
ldap.synchronization.java.naming.security.credentials=1234
ldap.synchronization.queryBatchSize=0
ldap.synchronization.attributeBatchSize=0
ldap.synchronization.groupQuery=(objectclass\=groupOfNames)
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=groupOfNames)(!(modifyTimestamp<\={0})))
ldap.synchronization.personQuery=(objectclass\=person)
ldap.synchronization.personDifferentialQuery=(&(objectclass\=person)(!(modifyTimestamp<\={0})))
ldap.synchronization.groupSearchBase=cn=groups,cn=accounts,dc=abc,dc=com
ldap.synchronization.userSearchBase=cn=users,cn=accounts,dc=abc,dc=com
ldap.synchronization.groupIdAttributeName=cn
ldap.synchronization.groupDisplayNameAttributeName=description
ldap.synchronization.groupType=groupOfNames
ldap.synchronization.personType=person
ldap.synchronization.groupMemberAttributeName=member
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
ldap.synchronization.userIdAttributeName=uid
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.userOrganizationalIdAttributeName=ou
#ldap.synchronization.defaultHomeFolderProvider=largeHomeFolderProvider
ldap.synchronization.enableProgressEstimation=true
ldap.authentication.java.naming.read.timeout=0

Outcomes