• State Not Answered
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 1988 views
  • Users 0 members are here
Related Discussions
Home » Discussions » Plug-Ins

LDAP User Profile With Usernames Synchronization Plugin. I am having

allenk
LDAP User Profile With Usernames Synchronization Plugin.

I am having a few issues with this node in a process. I have setup the node to get the users from a specific group to create new users which worked well, The issue I am having is to do the same to disable users or re-activate users. Below is the configuration information i used (I have removed username, password and the LDAP server info)
Authentication Base DN: ="OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com"
Authentication Type: simple
Authentication User Name: *********
Authentication User Password: ********
Connection Referral: follow
Connection Timeout: 2000
Connection Type: simple
Connection Url: correct LDAP server information
Connection Usepool: True
Page Control Page Size: 1000
Page Control Supported: False
Synch Lowercase Username: True
Synch User Deactivated Base D N: ="OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com"
Synch User Deactivated Filter:="(&(objectcategory=user)(membero...

OriginalPostID-116852

OriginalPostID-116852

  Discussion posts and replies are publicly visible

  • 0
    ...f=CN=ICPAppianUsersToRemove,OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com))"
    Synch User Filter: ="(&(objectcategory=user)(memberof=CN=ICPAppianUsers,OU=ICP,OU=Appian,OU=Applications,dc=company,dc=com))"
    Synch User Reactivate: True

    User Email: mail
    User First Name: givenName
    User Last Name: sn
    User Username: sAMAccountName
  • 0
    Appian Employee
    To troubleshoot issues with this plug-in:

    1. Open <APPIAN_HOME>\\runtime_ear|ear\\suite.ear\\resources\\appian_log4j.properties
    2. Add this line to any location, e.g. line 20

    log4j.logger.com.appian.directory=DEBUG

    3. Wait at least 5 minutes
    4. Run the synchronization
    5. Review the application-server.log. This will now have DEBUG entries from this plug-in that will let you know the root cause.
  • 0
    I've tried this and posted the results below. I have made sure of the following before running the process
    1. There are users in CN ICPAppianUsers that are de-activated in Appian currently, in an attempt to re-activate them
    2. There are users in CN ICPAppianUsersToRemove that are active in Appian in an attempt to de-activate them.
    The results below


    2014-07-23 13:01:08,718 [default-threads - 23] INFO com.appian.directory.ADUserSynchronization - Synchronizing user accounts... this may take a few minutes
    2014-07-23 13:01:08,776 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Connection Properties:
    2014-07-23 13:01:08,776 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.factory.initial: com.sun.jndi.ldap.LdapCtxFactory
    2014-07-23 13:01:08,777 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.provider.url: ***ldap://ldapserver:Port/***
    2014-07-23 13:01:08,777 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - com.sun.jndi.ldap.connect.pool: true
    2014-07-23 13:01:08,778 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.referral: follow
    2014-07-23 13:01:08,778 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - com.sun.jndi.ldap.connect.timeout: 2000
    2014-07-23 13:01:08,779 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.security.authentication: simple
    2014-07-23 13:01:08,779 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - java.naming.security.principal: ***USERNAME***
    2014-07-23 13:01:09,197 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Getting accounts to activate
    2014-07-23 13:01:09,198 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Attempting to get UserProfile objects from directory search. basedn: OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com - filter: (&(objectcategory=user)(memberof=CN=ICPAppianUsers,OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com)) - scope: 2
    2014-07-23 13:01:09,211 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Search returned no results
    2014-07-23 13:01:09,212 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Getting accounts to deactivate
    2014-07-23 13:01:09,212 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Attempting to get UserProfile objects from directory search. basedn: OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com - filter: (&(objectcategory=user)(memberof=CN=ICPAppianUsersToRemove,OU=ICP,OU=Appian,OU=Applications,dc=domain,dc=com)) - scope: 2
    2014-07-23 13:01:09,216 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - Search returned no results
    2014-07-23 13:01:09,216 [default-threads - 23] DEBUG com.appian.directory.service.Synchroniza from LDAP have been synchedtionService - resolving accounts
    2014-07-23 13:01:09,223 [default-threads - 23] DEBUG com.appian.directory.service.SynchronizationService - All user accounts retrieved
    2014-07-23 13:01:09,235 [default-threads - 23] INFO com.appian.directory.ADUserSynchronization - The synchronization task completed in 451 milliseconds
  • 0
    Just wondering if anyone has any ideas, as there didn't seem to be any errors in the results from the above suggestion....
© 2024 Appian. All rights reserved.
We want to hear from you! Submit a review on Gartner or G2.