Appian Community
Site
Search
Sign In/Register
Site
Search
User
DISCUSS
LEARN
SUCCESS
SUPPORT
Documentation
AppMarket
More
Cancel
I'm looking for ...
State
Not Answered
Replies
4 replies
Subscribers
5 subscribers
Views
1988 views
Users
0 members are here
Share
More
Cancel
Related Discussions
Home
»
Discussions
»
Plug-Ins
LDAP User Profile With Usernames Synchronization Plugin. I am having
allenk
over 9 years ago
LDAP User Profile With Usernames Synchronization Plugin.
I am having a few issues with this node in a process. I have setup the node to get the users from a specific group to create new users which worked well, The issue I am having is to do the same to disable users or re-activate users. Below is the configuration information i used (I have removed username, password and the LDAP server info)
Authentication Base DN: ="OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com"
Authentication Type: simple
Authentication User Name: *********
Authentication User Password: ********
Connection Referral: follow
Connection Timeout: 2000
Connection Type: simple
Connection Url: correct LDAP server information
Connection Usepool: True
Page Control Page Size: 1000
Page Control Supported: False
Synch Lowercase Username: True
Synch User Deactivated Base D N: ="OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com"
Synch User Deactivated Filter:="(&(objectcategory=user)(membero...
OriginalPostID-116852
OriginalPostID-116852
Discussion posts and replies are publicly visible
0
allenk
over 9 years ago
...f=CN=ICPAppianUsersToRemove,OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com))"
Synch User Filter: ="(&(objectcategory=user)(memberof=CN=ICPAppianUsers,OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com))"
Synch User Reactivate: True
User Email: mail
User First Name: givenName
User Last Name: sn
User Username: sAMAccountName
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
Eduardo Fuentes
Appian Employee
over 9 years ago
To troubleshoot issues with this plug-in:
1. Open <APPIAN_HOME>\\runtime_ear|ear\\suite.ear\\resources\\appian_log4j.properties
2. Add this line to any location, e.g. line 20
log4j.logger.com.appian.directory=DEBUG
3. Wait at least 5 minutes
4. Run the synchronization
5. Review the application-server.log. This will now have DEBUG entries from this plug-in that will let you know the root cause.
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
allenk
over 9 years ago
I've tried this and posted the results below. I have made sure of the following before running the process
1. There are users in CN ICPAppianUsers that are de-activated in Appian currently, in an attempt to re-activate them
2. There are users in CN ICPAppianUsersToRemove that are active in Appian in an attempt to de-activate them.
The results below
2014-07-23 13:01:08,718 [default-threads - 23] INFO com.appian.directory.ADUserSynchronization - Synchronizing user accounts... this may take a few minutes
2014-07-23 13:01:08,776 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Connection Properties:
2014-07-23 13:01:08,776 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.factory.initial: com.sun.jndi.ldap.LdapCtxFactory
2014-07-23 13:01:08,777 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.provider.url: ***ldap://ldapserver:Port/***
2014-07-23 13:01:08,777 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - com.sun.jndi.ldap.connect.pool: true
2014-07-23 13:01:08,778 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.referral: follow
2014-07-23 13:01:08,778 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - com.sun.jndi.ldap.connect.timeout: 2000
2014-07-23 13:01:08,779 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.security.authentication: simple
2014-07-23 13:01:08,779 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.security.principal: ***USERNAME***
2014-07-23 13:01:09,197 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Getting accounts to activate
2014-07-23 13:01:09,198 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Attempting to get UserProfile objects from directory search. basedn: OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com - filter: (&(objectcategory=user)(memberof=CN=ICPAppianUsers,OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com)) - scope: 2
2014-07-23 13:01:09,211 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Search returned no results
2014-07-23 13:01:09,212 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Getting accounts to deactivate
2014-07-23 13:01:09,212 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Attempting to get UserProfile objects from directory search. basedn: OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com - filter: (&(objectcategory=user)(memberof=CN=ICPAppianUsersToRemove,OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com)) - scope: 2
2014-07-23 13:01:09,216 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Search returned no results
2014-07-23 13:01:09,216 [default-threads - 23] DEBUG com.appian.directory.service.Synchroniza from LDAP have been synchedtionService - resolving accounts
2014-07-23 13:01:09,223 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - All user accounts retrieved
2014-07-23 13:01:09,235 [default-threads - 23] INFO com.appian.directory.ADUserSynchronization - The synchronization task completed in 451 milliseconds
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
allenk
over 9 years ago
Just wondering if anyone has any ideas, as there didn't seem to be any errors in the results from the above suggestion....
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel