Expand my Community achievements bar.

SOLVED

LDAP Sync : Could not sync the user in AEM 6 as the syncUser method is not available under External Identity Synchronization Management (UserManagement) in JMX

Avatar

Former Community Member

LDAP Sync : Could not sync the user in AEM 6  as the syncUser method is not available under External Identity Synchronization Management (UserManagement) in JMX console.

We have done a fresh install of AEM 6 with SP2 , and trying to load the users by manual synchronisation of adding the user in the format ['cn=user001','ou=users','dc=day','dc=com'] in the JMX console under syncUsers method previously we use to add the users for version 5.6 but some how this function is not available in version 6.0, Kindlt help me in synchronizing the users and let me know if I am missing anything. LDAP test is working smooth and SSO configuration is all perfect. But user synchronization is not happening with LDAP.

1 Accepted Solution

Avatar

Correct answer by
Employee
You will need LDAP configured on the server. Since in AEM 6, LDAP is in oak, it is in a different place..
 
Search for name "External Identity Synchronization Management" in the JMX Console. Here you will find all the LDAP related operations.
 
The syncExternalUsers([Ljava.lang.String;p1) should provide the same functionality, to sync new users from LDAP.
 
 

View solution in original post

4 Replies

Avatar

Correct answer by
Employee
You will need LDAP configured on the server. Since in AEM 6, LDAP is in oak, it is in a different place..
 
Search for name "External Identity Synchronization Management" in the JMX Console. Here you will find all the LDAP related operations.
 
The syncExternalUsers([Ljava.lang.String;p1) should provide the same functionality, to sync new users from LDAP.
 
 

Avatar

Former Community Member

I get the below error 

 

02.04.2015 22:00:26.891 *ERROR* [qtp1021420608-120] org.apache.jackrabbit.oak.security.authentication.ldap.impl.LdapIdentityProvider Error during ldap lookup
org.apache.directory.api.ldap.model.exception.LdapInvalidDnException: ERR_04202 A value is missing on some RDN
        at org.apache.directory.api.ldap.model.name.Dn.<init>(Dn.java:279)
        at org.apache.directory.api.ldap.model.name.Dn.<init>(Dn.java:211)
        at org.apache.directory.ldap.client.api.LdapNetworkConnection.lookup(LdapNetworkConnection.java:3301)
        at org.apache.jackrabbit.oak.security.authentication.ldap.impl.LdapIdentityProvider.getIdentity(LdapIdentityProvider.java:237)
        at org.apache.jackrabbit.oak.spi.security.authentication.external.impl.jmx.SyncMBeanImpl$Delegatee.syncExternalUsers(SyncMBeanImpl.java:216)
        at org.apache.jackrabbit.oak.spi.security.authentication.external.impl.jmx.SyncMBeanImpl.syncExternalUsers(SyncMBeanImpl.java:411)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
        at java.lang.reflect.Method.invoke(Method.java:606)

 

 

 

 

I have used the formats like below , but no luck : 

 

['cn=322004795','ou=All Businesses','dc=CDIAD','dc=GE','dc=com']
['cn=322004795,ou=All Businesses,dc=CDIAD,dc=GE,dc=com']
cn=502234959,ou=All Businesses,dc=CDIAD,dc=GE,dc=com

Avatar

Level 1

Hi All,

I have ldap configured on AEM6.0SP2 - when I try to go to ldap jmx console I get

HTTP ERROR: 404

Problem accessing /system/console/jmx/org.apache.jackrabbit.oak%3Ahandler%3D%22lbow-ldap-sync%22%2Cidp%3D%22lbow-ldap%22%2Cname%3DExternal+Identity+Synchronization+Management%2Ctype%3DUserManagement. Reason:

Not Found

 


Powered by Jetty://

 

But I am able to login using my ldap credentials, but I need to perform purgeOrphaned users and syncexternal users again, but the operations are not accessible from jmx anymore, as I keep getting this 404 error.

The same configuration is working fine on our other environments, so it can't be anything to do with configurations we use. There's nothing on the logs except

Could anyone help us with this issue. thanks.

Avatar

Level 1

Hi Kalyan,

I tried syncing a user manually but it wont happen.

syncExternalUsers([Ljava.lang.String;p1) What is p1 in this method?

['cn=sname\, fname,OU=ActiveUsers,OU=Clients,DC=ceb,DC=com'; ldap] -- I used this string as an input