Things to Consider when Provisioning to AD / ADAM

Active Directory / ADAM provisioning can be tricky (and same may apply to other LDAP directories) when you attempt to provision objects using potentially non-unique things like names, surnames or object descriptions (such as “CN=John Smith”). There are a few things you need to consider for best results and less errors during bulk provisioning: RDNs…

0

Dealing with OpenLDAP XMA 1.1: Undocumented Parameters

Along with the parameters available in the Configuration Guide, there are a few that are not documented but can be kind of useful: excludedTypes. Object types separated by comma. Provides a way to filter out certain object types in LDAP searches. This typically helps solving duplicated objects in DSML import file. storedChangeNumberOverride. You can put…

1

Dealing with OpenLDAP XMA 1.1: Working with Deltas

OpenLDAP XMA can run delta imports using a timestamp attribute you define or the changelog. The MA uses the attribute specified in “deltaAttribute” custom parameter in order to implement watermarks and detect object changes. You may experience a couple of issues using a delta attribute: If the attribute does not exist for all objects you…

0

Dealing with OpenLDAP XMA 1.1: Inspecting Records in Inport File

There is a great tool in MIIS 2003 Resource Kit 2.0 called FileViewer.exe. This tool provides a way to display or dump an entry or a range of entries from a file-based MA. This is specially useful when a particular object is generating some import/sync problems and you want to inspect the input file record…

0

Dealing with OpenLDAP XMA 1.1: Template Bugs and Quick Fix

I was not able to find much guidance out there about the issues I found when attempting to use this great XMA, so I decided to write this post in case others find it useful. After installing OpenLDAP XMA (http://openldap-xma.sourceforge.net) MSI package, you will find a new MA available in ILM list of MAs, called…

0

Connecting to Critical Path Directory Server with ILM 2007 FP1

In my current customer I have to extract identity information from Critical Path directory. I was not able to find much information about this LDAP directory from the vendor’s website (http://www.criticalpath.net/Services/Training/Directory%20Server.html) neither in WikiPedia (http://en.wikipedia.org/wiki/Directory_service), so I first gave a try to built-in ILM 2007 FP1 MAs. In particular, I was previously able to connect…

0