omldapsync error

pwickham · Postby **pwickham** » Fri Nov 24, 2006 12:54 am

Hi

Im in the process of setting up a scalix server for a customer, syncing with Active Directyory. The customer has never installed exchange server prior to the server being installed. Strangely I enabled the users for scalix, then disabled them trying to get them to work but omldapsync still seems to try to import the users. However , when trying to perform the sync, the following error is logged in sync.log:

2006-11-24 13:52:56 ERROR: failed to run omldapagent
--------> Sending SOAP Request to Ubermanager@http://sx1.utilityone.local:/caa/ for method:AddUser
--------> Received SOAP Response from Ubermanager@http://sx1.utilityone.local:/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin@utilityone.com.au" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>AddUser</FunctionName>
<ScalixServers>
<Host>sx1.utilityone.local</Host>
</ScalixServers>
<AddUserParameters>
<user type="INTERNET"/>
<mailNode name="scalix,utilityone"/>
<userAttributes>
<entity name="S" value="Mores"/>
<entity name="G" value="Alex"/>
<entity name="FOREIGN-ADDR" value="CN=Alex Mores,OU=Sydney,OU=Users,OU=UtilityOne,DC=utilityone,DC=local"/>
<entity name="CN" value="Alex Mores"/>
<entity name="GLOBAL-UNIQUE-ID" value="fj/jL1Batk+P+4RuVBqjjQ=="/>
<entity name="ACCOUNT_STATUS" value="unlock"/>
<entity name="UL-AUTHID" value="alexm@UTILITYONE.LOCAL"/>
<entity name="INTERNET-ADDR" value="alex.moore@utilityone.com.au"/>
<entity name="UL-CLASS" value="FULL"/>
<entity name="ADMINISTERED-BY" value="ldapsync-AD_SX1"/>
</userAttributes>
</AddUserParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>CN=Alex Mores/G=Alex/S=Mores/OU1=scalix/OU2=utilityone/ADMINISTERED-BY=ldapsync-AD_SX1/UL-AUTHID=alexm@UTILITYONE.LOCAL/UL-CLASS=FULL/ACCOUNT_STATUS=unlock/GLOBAL-UNIQUE-ID=fj\/jL1Batk+P+4RuVBqjjQ\=\=/FOREIGN-ADDR=CN\=Alex Mores,OU\=Sydney,OU\=Users,OU\=UtilityOne,DC\=utilityone,DC\=local/INTERNET-ADDR=alex.moore@utilityone.com.au [OM 16073] Unknown attribute specified. Parameter : Entry Attribute : ACCOUNT_STATUS :sx1.utilityone.local</message>
<errorcode>OM 16073</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-11-24 13:52:57 ERROR: failed to run omldapagent
--------> Sending SOAP Request to Ubermanager@http://sx1.utilityone.local:/caa/ for method:AddUser
--------> Received SOAP Response from Ubermanager@http://sx1.utilityone.local:/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin@utilityone.com.au" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>AddUser</FunctionName>
<ScalixServers>
<Host>sx1.utilityone.local</Host>
</ScalixServers>
<AddUserParameters>
<user type="INTERNET"/>
<mailNode name="scalix,utilityone"/>
<userAttributes>
<entity name="S" value="Bui"/>
<entity name="ENTRY-DESC" value="Utilityone - Fulltime"/>
<entity name="PD-OFFICE-NAME" value="New South Wales"/>
<entity name="PHONE-1" value="0411322317"/>
<entity name="G" value="Anna"/>
<entity name="FOREIGN-ADDR" value="CN=Anna Bui,OU=Sydney,OU=Users,OU=UtilityOne,DC=utilityone,DC=local"/>
<entity name="CN" value="Anna Bui"/>
<entity name="GLOBAL-UNIQUE-ID" value="s7XqcVVcoUaIBcvjU+PNLg=="/>
<entity name="ACCOUNT_STATUS" value="unlock"/>
<entity name="UL-AUTHID" value="annab@UTILITYONE.LOCAL"/>
<entity name="INTERNET-ADDR" value="anna.bui@utilityone.com.au"/>
<entity name="UL-CLASS" value="FULL"/>
<entity name="ADMINISTERED-BY" value="ldapsync-AD_SX1"/>
</userAttributes>
</AddUserParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>CN=Anna Bui/G=Anna/S=Bui/OU1=scalix/OU2=utilityone/UL-AUTHID=annab@UTILITYONE.LOCAL/UL-CLASS=FULL/FOREIGN-ADDR=CN\=Anna Bui,OU\=Sydney,OU\=Users,OU\=UtilityOne,DC\=utilityone,DC\=local/PD-OFFICE-NAME=New South Wales/ADMINISTERED-BY=ldapsync-AD_SX1/PHONE-1=0411322317/ACCOUNT_STATUS=unlock/GLOBAL-UNIQUE-ID=s7XqcVVcoUaIBcvjU+PNLg\=\=/ENTRY-DESC=Utilityone - Fulltime/INTERNET-ADDR=anna.bui@utilityone.com.au [OM 16073] Unknown attribute specified. Parameter : Entry Attribute : ACCOUNT_STATUS :sx1.utilityone.local</message>
<errorcode>OM 16073</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>

Any ideas? The solution posted before to this error is not usable in this case as we are syncing to AD.

chris · Postby **chris** » Mon Nov 27, 2006 10:06 pm

Hi PWickham,

do you have LDAPCT_BIN_ATT set to your global unique id attribute? In the case of AD that would be objectGUID.

I'm guessing not. Try that, and let me know if it works.

Cheers,

Chris

pwickham · Postby **pwickham** » Mon Nov 27, 2006 10:24 pm

Hi Chris

I checked the value of LDAPCT_BIN_ATT and it is set to objectGUID. :-(

Paul

dannyt · Postby **dannyt** » Tue Nov 28, 2006 11:13 am

Hi,

This looks like known bug 11023 which is fixed in release 11.0 (www.bugzilla.scalix.com). There is really no work around other than to NOT sync internet users from AD, by altering the search filter EX_FILTER to only pick up the Scalix user and group object classes.

Regards,
Danny

chris · Postby **chris** » Tue Nov 28, 2006 11:17 am

Thanks for that Danny - hadn't picked up on the bug.

pwickham · Postby **pwickham** » Tue Nov 28, 2006 4:19 pm

Oh now I'm curious. This site doesnt have any exchange servers so whats constitutes an internet user? These are users the customer wants to add as scalix users....

pwickham · Postby **pwickham** » Tue Nov 28, 2006 4:35 pm

Just a thought. Is there any way to back port the fix to Version 10? The reason I ask is that these guys purchased the Small buisiness edition of scalix and one of the the selling points was its integration with AD. If we can't make it work, it might be a problem as I don't really want to deploy a beta to the customer unless we really can't avoid it.

Scalix Forums

omldapsync error

omldapsync error

Who is online