Opendj 自定义用户对象的ForgeRock OpenIDM同步
我在ForgeRock openIDM中创建了一个自定义用户对象。在openIDM中创建用户时,它在openDJ中同步。但当我更新时,用户数据没有同步 当我删除openIDM和openDJ的映射并创建新映射时,sync会在一段时间内正常工作,稍后就会停止工作。同样,我必须删除旧映射并创建新映射。有没有办法解决这个问题?如果有人知道修理方法,请帮助我 openIDM中托管/用户到系统/ldap/帐户的Sync.json映射如下所示Opendj 自定义用户对象的ForgeRock OpenIDM同步,opendj,openidm,Opendj,Openidm,我在ForgeRock openIDM中创建了一个自定义用户对象。在openIDM中创建用户时,它在openDJ中同步。但当我更新时,用户数据没有同步 当我删除openIDM和openDJ的映射并创建新映射时,sync会在一段时间内正常工作,稍后就会停止工作。同样,我必须删除旧映射并创建新映射。有没有办法解决这个问题?如果有人知道修理方法,请帮助我 openIDM中托管/用户到系统/ldap/帐户的Sync.json映射如下所示 { "enableSync" : true
{
"enableSync" : true,
"source" : "managed/user",
"onCreate" : {
"source" : "target.dn='uid='+source.loginId+','+source.ou",
"type" : "text/javascript"
},
"name" : "managedUser_sourceLdapAccount",
"target" : "system/ldap/account",
"properties" : [
{
"source" : "givenName",
"target" : "givenName"
},
{
"source" : "description",
"target" : "description"
},
{
"source" : "familyName",
"target" : "familyName"
},
{
"source" : "gender",
"target" : "gender"
},
{
"source" : "mobilePhone",
"target" : "mobilePhone"
},
{
"source" : "emailAddress",
"target" : "mail"
},
{
"source" : "homePhone",
"target" : "homePhone"
},
{
"source" : "workPhone",
"target" : "workPhone"
},
{
"source" : "_id",
"target" : "userUUID"
},
{
"source" : "middleName",
"target" : "sn"
},
{
"source" : "birthDay",
"target" : "birthDay"
},
{
"source" : "country",
"target" : "pcountry"
},
{
"target" : "cn",
"source" : "",
"transform" : {
"source" : "source.displayName||(source.givenName+' '+source.familyName)",
"type" : "text/javascript"
}
},
{
"target" : "userPassword",
"transform" : {
"source" : "openidm.decrypt(source)",
"type" : "text/javascript"
},
"source" : "password",
"condition" : {
"source" : "object.password!=null",
"type" : "text/javascript"
}
},
{
"source" : "displayName",
"target" : "displayName"
}
],
"policies" : [
{
"action" : "CREATE",
"situation" : "ABSENT"
},
{
"action" : "IGNORE",
"situation" : "ALL_GONE"
},
{
"action" : "EXCEPTION",
"situation" : "AMBIGUOUS"
},
{
"action" : "UPDATE",
"situation" : "CONFIRMED"
},
{
"action" : "UPDATE",
"situation" : "FOUND"
},
{
"action" : "EXCEPTION",
"situation" : "FOUND_ALREADY_LINKED"
},
{
"action" : "EXCEPTION",
"situation" : "LINK_ONLY"
},
{
"action" : "UNLINK",
"situation" : "MISSING"
},
{
"action" : "IGNORE",
"situation" : "SOURCE_IGNORED"
},
{
"action" : "EXCEPTION",
"situation" : "SOURCE_MISSING"
},
{
"action" : "IGNORE",
"situation" : "TARGET_IGNORED"
},
{
"action" : "EXCEPTION",
"situation" : "UNASSIGNED"
},
{
"action" : "DELETE",
"situation" : "UNQUALIFIED"
}
]
}
尝试添加onUpdate,在脚本上,它应该如下所示:
"onUpdate" : {
"source" : "target.dn='uid='+source.loginId+','+source.ou",
"type" : "text/javascript"
},
在idm文档中,他们声明只有在创建新对象时才调用onCreate。您使用的是哪个版本的OpenIDM?当托管用户中的更新未触发LDAP中的任何更新时,您是否可以检查audit/recon.csv文件中是否有任何条目记录,以帮助我们了解是否触发了同步,但由于某种原因失败?Am使用openIDM3.1.0Am使用openIDM3.1.0。当删除现有的recon.csv文件时,它甚至不再被创建。