Homepage | Products | OX Knowledge Base | Support | Try Now | Contact | Company
OX Logo
Page 1 of 3 123 LastLast
Results 1 to 10 of 22
  1. #1

    Default Error by first sync

    Hello,

    I*ve installed the ldapsync according to the HowTo.
    But at the first sync I get an Error abd I don't know why.
    /opt/oxldapsync/sbin/oxldapsync.pl -c "1" -A administrator -f ldapsync.conf -P xxxxxx -v -s

    The Error is "Error on search : No such object at /opt/oxldapsync/sbin/../lib/OX/LDAPConnector/ldap.pm line 150, <DATA> line 403."

    Can anybody help me? Where should I start to find the error? It seems that theres now request on the LDAP-Server.



    Regards


    Danniel

  2. #2

    Default

    Ok, the Sync is working now. My fault, I forgot to enter the correct Group-DN.

    But now I can't log in with my Username and my Password. There are no entrys in any log about this process.
    Can anybody help me to debug this?

  3. #3
    Carsten Hoeger is offline Open-Xchange Professional Services
    Join Date
    Mar 2007
    Posts
    703

    Default

    Did you install open-xchange-authentication-ldap instead of open-xchange-authentication-database?
    What show the logs?
    OXpedia.org - the answer to almost all questions.

  4. #4

    Default

    Yes, open-xchange-authentication-ldap is installed.
    The logs don't schow anything. I did a ll on /var/log/open-xchange, but the size of the Files didn't change.

    Waht Information is taken from the ldapsync out of the directory-tree? Do I have to add new Users in OX or are the Users taken from the LDAP-Tree?

    Regards

    Daniel

  5. #5

    Default

    Ok, the Error is still in the ldapsync, but I don't know why. I tried a lot, but something seems to be wrong.

    Here me ldapsync.conf:
    Code:
    ldapuri                 = ldap://10.3.100.12
    
    # OxSync variable opt directory
    vardirectory            = /var/opt/oxldapsync
    
    # Open Xchange sbin Directory
    oxpath                  = /opt/open-xchange/sbin
    
    # Logfile
    logfile                 = /var/log/oxldapsync.log
    
    # Where to search for users
    userbasedn              = ou=people,dc=test,dc=de
    
    # Where to search for groups
    groupbasedn             = ou=group,dc=test,dc=de
    
    # User dn for Connection to LDAP
    ldapuserdn              = cn=Administrator,dc=test,dc=de
    
    # Password for Connecting to ldap
    ldapuserpassword        = secret
    
    # Mapping file for ldap values > ox parameters
    mappingfile             = /opt/oxldapsync/etc/mapping.openldap.conf
    
    # Type of ldap (class to load)
    ldaptype                = openldap
    
    # shall groups get updated
    updateGroups            = yes
    
    # use modifyTimestamp to speed up synchronization
    usemodifytimestamp      = no
    
    # Custom filter for finding user
    userFilter              = 
    
    #Custom filter for finding groups
    groupFilter             =
    
    #Should mail addresses of an existing user synced with source
    updateAliases           = no
    
    # shall non-existing users in LDAP be deleted in OX
    deleteusers             = yes
    
    # shall non-existing and empty groups in LDAP be deleted in OX
    deletegroups            = yes
    # shall non-existing and empty groups in LDAP be deleted in OX
    deletegroups            = yes
    
    # unique id Attribute
    uidAttribute            = uid
    
    # user ids in OX which should not be deleted
    dontModifyUids          = admin oxadmin
    
    # Attributename of groups for member
    groupMemberAttribute    = memberUid
    
    # Is attribute a distinguished name
    memberAttributeIsDN     = no
    
    # unique name attribute for group
    groupNameAttribute      = cn
    
    # displayname attribute for group
    groupDisplayNameAttribute = cn
    
    # unique number attribute for group
    groupNumberAttribute    = gidNumber
    
    # attribute name where a users primary is stored
    userPrimaryGroupAttribute = uid
    A user in LDap looks as follows:
    Code:
    dn: uid=testuser, ou=people, dc=test,dc=de
    userPassword:: e2NyeXB0fTJUIPy55eklYYnpQRHM=
    loginShell: /usr/uti/bash
    uidNumber: 2015
    gidNumber: 52
    objectClass: account
    objectClass: posixAccount
    objectClass: top
    uid: testuser
    gecos: test testing,office,27
    cn: test testing
    homeDirectory: /home/testuser
    The group-Entry:
    Code:
    dn: cn=users, ou=group, dc=test,dc=de
    gidNumber: 100
    memberUid: testuser
    memberUid: testuser1
    memberUid: testuser2
    memberUid: testuser3
    userPassword:: e2NuuXB0fSE=
    objectClass: posixGroup
    objectClass: top
    cn: users
    What is wrong with my ldapsync.conf?
    I can bind to the ldapserver anonymously for searching it.

    Regards

    Daniel

  6. #6
    Join Date
    Sep 2008
    Posts
    28

    Default

    Quote Originally Posted by Daniel26 View Post

    A user in LDap looks as follows:
    Code:
    dn: uid=testuser, ou=people, dc=test,dc=de
    userPassword:: e2NyeXB0fTJUIPy55eklYYnpQRHM=
    loginShell: /usr/uti/bash
    uidNumber: 2015
    gidNumber: 52
    objectClass: account
    objectClass: posixAccount
    objectClass: top
    uid: testuser
    gecos: test testing,office,27
    cn: test testing
    homeDirectory: /home/testuser
    There we have the problem. ldapsync uses an implicit filter to find user objects. It searches for all entries which have at least objectClass=inetOrgPerson. When you can't add the class to the entries you can give an alternative user filter by modifying the userFilter option in the ldapsync.conf. Then the script should find some users and try to add them to OX.

    Regards
    Norbert

  7. #7

    Default

    Ok, Try to change it. What is the Syntax about this entry?

    Regards

    Daniel

  8. #8
    Join Date
    Sep 2008
    Posts
    28

    Default

    The Syntax is like LDAP-filter. So you can write "(objectClass=posixAccount)" (with brackets but without quotation marks).

    Norbert

  9. #9

    Default

    Ok, Filter is set, but now I get
    Could not get current userlist! Username and Password correct?

    Does the ldapsync an simple-Bind?

    It will be great to get ldapsync more verbose than the "-v"-Switch.

    Regards
    Daniel

  10. #10
    Join Date
    Sep 2008
    Posts
    28

    Default

    There has to be a problem with calling /opt/open-xchange/sbin/listuser.
    The Synctool calls /opt/open-xchange/sbin/listuser -c "1" -A administrator -P xxxxxx --csv .
    It should work manually.

    Norbert

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •