Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Alfresco : 0 user(s) and 0 group(s) processed (ldap sync)

samnaction
Champ in-the-making
Champ in-the-making

‎05-28-2014 08:28 AM

I am unable to sync alfresco share with ldap. Here is global my properties.


authentication.chain=ldap1:ldap,alfrescoNtlm1:alfrescoNtlm
ldap.authentication.active=true
ldap.authentication.java.naming.security.authentication=simple
ldap.synchronization.active=true
ldap.authentication.userNameFormat=%s
ldap.authentication.allowGuestLogin=true
ldap.authentication.java.naming.provider.url=ldap://192.168.58.1:389
ldap.synchronization.java.naming.security.principal=sameer@sam.abc.com
ldap.synchronization.java.naming.security.credentials=Clussam@123
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.groupQuery=(&(objectclass\=group)(memberOf\=cn\=Users,ou\=Ind,dc\=sam,dc\=abc,dc\=com))
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=group)(memberOf\=cn\=Users,ou\=Ind,dc\=sam,dc\=abc,dc\=com)(!(modifyTimestamp<\={0})))
ldap.synchronization.personQuery=(&(objectclass\=user)(memberOf\=cn\=Users,ou\=Ind,dc\=sam,dc\=abc,dc\=com)(userAccountControl\:1.2.840.113556.1.4.803\:\=512))
ldap.synchronization.personDifferentialQuery=(&(objectclass\=user)(memberOf\=cn\=Users,ou\=Ind,dc\=sam,dc\=abc,dc\=com)(userAccountControl\:1.2.840.113556.1.4.803\:\=512)(!(modifyTimestamp<\={0})))
ldap.synchronization.groupSearchBase=dc\=sam,dc\=abc,dc\=com
ldap.synchronization.userSearchBase=dc\=sam,dc\=abc,dc\=com
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss’.0Z’
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.userOrganizationalIdAttributeName=company
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
ldap.synchronization.groupIdAttributeName=cn
ldap.synchronization.groupType=group
ldap.synchronization.personType=user
ldap.synchronization.groupMemberAttributeName=member
synchronization.synchronizeChangesOnly=true
cifs.enabled=false


I am getting no error in alfresco log, but the user is not synced.


17:36:25,703 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'Synchronization' subsystem, ID: [Synchronization, default]
17:36:25,860 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronizing users and groups with user registry 'ldap1'
17:36:25,885 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all groups from user registry 'ldap1'
17:36:46,116 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronization,Category=directory,id1=ldap1,id2=1 Group Analysis: Commencing batch of 0 entries
17:36:46,117 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronization,Category=directory,id1=ldap1,id2=1 Group Analysis: Completed batch of 0 entries
17:36:46,122 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all users from user registry 'ldap1'
17:36:51,286 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronization,Category=directory,id1=ldap1,id2=6 User Creation and Association: Commencing batch of 0 entries
17:36:51,287 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronization,Category=directory,id1=ldap1,id2=6 User Creation and Association: Completed batch of 0 entries
17:36:51,368 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Finished synchronizing users and groups with user registry 'ldap1'
17:36:51,368 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] 0 user(s) and 0 group(s) processed
17:36:51,402 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Startup of 'Synchronization' subsystem, ID: [Synchronization, default] complete


I am able to login but none of the user property is updated. Only the first name is visible in the profile.
Labels:
0 Kudos
5 REPLIES 5

mrogers
Star Contributor
Star Contributor

‎05-28-2014 10:03 AM

Please double check your groupDifferentialQuery and personDifferentialQuery
0 Kudos

samnaction
Champ in-the-making
Champ in-the-making
In response to mrogers

‎05-28-2014 10:08 AM

I am finding different configuration in different forum post.


ldap.synchronization.groupDifferentialQuery=(&(objectclass\=group)(memberOf\=cn\=Users,ou\=Ind,dc\=sam,dc\=abc,dc\=com)(!(modifyTimestamp<\={0})))

(or)

ldap.synchronization.groupDifferentialQuery=(&(objectclass\=group)(!(modifyTimestamp<\={0})))


Which configuration to use? I am confused. I am trying two days for ldap sync
0 Kudos

mrogers
Star Contributor
Star Contributor

‎05-28-2014 10:38 AM

Do you have some examples of the paths of your users and groups?   Use an LDAP browser to test your queriies before attempting to configure alftesco.
0 Kudos

samnaction
Champ in-the-making
Champ in-the-making
In response to mrogers

‎05-29-2014 04:28 AM

I am having a container named Users and under which there are users. I am having more than 1000 users inside some of them are inactive users. I dont want to include them
0 Kudos

samnaction
Champ in-the-making
Champ in-the-making
In response to mrogers

‎05-29-2014 04:53 AM

I am getting [LDAP: error code 4 - Sizelimit Exceeded] problem
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC