Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

LDAP sync not terminating

lees
Champ in-the-making
Champ in-the-making

‎10-08-2009 02:37 AM

Hi,

I am trying to synchronize alfresco with my AD server.  Once I start the synchronization, it gives the message as creating user…
So I think the synchronization is working. But my issue is the synchronization process is not terminating. By checking on the log I found that same users are creating again and again.

here is the log

09:52:26,011 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronizing users and groups with user registry 'ldap-ad1'
09:52:26,011 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all users from user registry 'AUTH.EXT.ldap-ad1'
09:52:45,099 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Creating user 'David.John'
09:52:45,480 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Creating user 'Reno.Paul'
09:52:45,690 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Creating user 'Robin.H'
—————————————————————————————————————————————
—————————————————————————————————————————————
09:53:03,776 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronizing users and groups with user registry 'ldap-ad1'
09:53:03,816 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all users from user registry 'AUTH.EXT.ldap-ad1'
09:53:04,637 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Creating user 'David.John'
09:53:04,898 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Creating user 'Reno.Paul'
09:53:05,128 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Creating user 'Robin.H'

Is there anything I want to configure?

Here is my authentication chain
authentication.chain=passthru1:passthru,ldap-ad1:ldap-ad

Also how can I view the synchronized AD user details in alfresco?

thx
Labels:
0 Kudos
4 REPLIES 4

dward
Champ on-the-rise
Champ on-the-rise

‎10-08-2009 12:38 PM

This is a sign of a transaction 'collision'. The LDAP sync is done using a sequence of small transactions. And if any of these tries to update something that has already been updated in another transaction, the transaction must be replayed.

Are there other processes running on Alfresco at the same time as the sync? (Use "show full processlist" on mysql to find out).

And how are you triggering the sync? If the sync is triggered by a login, it is run in a single transaction, as it is not expected that there will be many new users or groups to add. But if this is the first sync, the transaction would grow unfeasibly large and collide with everything.

In the newer nighly builds, a transactional sync is done when the server starts up, to ensure that login-triggered syncs are not too large.
0 Kudos

lees
Champ in-the-making
Champ in-the-making

‎10-09-2009 01:08 AM

Thanks for your reply.

There are no other processes running on alfresco (I am using windows server 2003).

The synchronization process is triggered using a cron job

Here is the default-synchronization file details.

synchronization.synchronizeChangesOnly=true
synchronization.import.cron=0 52 13 * * ?
synchronization.syncWhenMissingPeopleLogIn=false
synchronization.autoCreatePeopleOnLogin=true

The cron job is triggered as mentioned without any problem.

BTW I'd created alfresco.war from the latest source downloaded from svn and the sync process is working fine. But I am afraid to move it. Since there are a lot of sites in my alfresco and the users in AD are already a member of some sites.

Is there any solution with the current 3.2 CE?
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎10-09-2009 05:14 AM

I'm afraid not. The latest .war should auto-upgrade your repository and preserve sites if you do decide to take it. However, make sure you back everything up, just in case you decide to roll back.
0 Kudos

lees
Champ in-the-making
Champ in-the-making

‎10-09-2009 09:51 AM

Thank you very much for the help.

I know, in the latest source the team have fixed some other issues also.

like issue http://forums.alfresco.com/en/viewtopic.php?f=9&t=20668 (which is one major we are facing), correct?

But when I tried the latest build before this, I got some script errors in share pages  and I restored it with original wars. I am not sure it passed QA.

Anyway I going to replace the original war with my latest build 🙂

thx
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC