Notifications
Clear all
Install & Setup
2
Posts
2
Users
0
Reactions
293
Views
Topic starter
05/13/2024 13:12
I successfully configured AD authentication and now have a problem creating configuration for auto provisioning AD accounts.
Those are attributes from our current Zimbra OSE config:
zimbraAutoProvAttrMap: displayName=displayName zimbraAutoProvAttrMap: givenName=sn zimbraAutoProvAttrMap: sn=givenName
(yes, sn and givenName in our AD are misplaced)
The following are corresponding Carbonio commands:
carbonio prov md company.com zimbraAutoProvAttrMap 'cn=displayName' carbonio prov md company.com +zimbraAutoProvAttrMap 'displayName=displayName' carbonio prov md company.com +zimbraAutoProvAttrMap 'givenName=sn' carbonio prov md company.com +zimbraAutoProvAttrMap 'sn=givenName'
When I try to auto provision a used, I have the following exception in the logs:
2024-05-13 13:42:08,098 INFO [qtp808447015-14] [ip=ip1;oip=ip2;port=60006;soapId=2789d590;] autoprov - auto creating account in LAZY mode: testuser@company.com
2024-05-13 13:42:08,118 INFO [qtp808447015-14] [ip=ip1;oip=ip2;port=60006;soapId=2789d590;] account - unable to auto provisioing acct testuser
com.zimbra.cs.ldap.LdapException$LdapInvalidAttrValueException: invalid attr value - unable to create entry: ldap host=host.domain.local:389: displayName: multiple values provided
at com.zimbra.cs.ldap.LdapException.INVALID_ATTR_VALUE(LdapException.java:94) ~[zimbrastore.jar:?]
at com.zimbra.cs.ldap.unboundid.UBIDLdapException.mapToLdapException(UBIDLdapException.java:46) ~[zimbrastore.jar:?]
at com.zimbra.cs.ldap.unboundid.UBIDLdapContext.mapToLdapException(UBIDLdapContext.java:228) ~[zimbrastore.jar:?]
... a whole lot of diagnostics
If I remove a command with displayName=displayName, everything's working, but I don't like an idea to manually set Display Name for hundreds of users
05/28/2024 17:10
@regul8tor (and whoever is interested in the topic): we are working on LDAP/AD documentation, please be patient and give us some time!