I am currently evaluating scalix enterprise 10
I am using an using an openldap server to manage my scalix servers.
Here is my schema file for openldap.
# Copyright (C) 2006 Scalix Corporation. All rights reserved.
# OpenLDAP schema extension for Scalix omldapsync attributes
# For reference see OpenLDAP 2.1 Administrator's Guide
# Installation steps (requires root login):
#
# 1. Stop OpenLDAP slapd server (e.g. kill -INT `cat /var/run/slapd.pid`)
#
# 2. Copy this file to OpenLDAP schema sub directory (e.g. /etc/openldap/schema)
#
# 3. Edit OpenLDAP slapd.conf file (e.g. /etc/openldap/slapd.conf) to:
#
# a. Extend the schema by appending reference to the 'include' section,
# something like the following lines:
#
# # include schema extension for Scalix omldapsync attributes
# include /etc/openldap/schema/scalix-10.0.0.schema
#
# b. Ensure Scalix omldapsync has sufficient read access to all the data,
# usually determined by the type of bind and the dn used.
#
# c. Ensure Scalix omldapsync has sufficient search limit to return all the
# matching entries, usually determined by the 'sizelimit' setting used.
#
# 4. Start OpenLDAP slapd server (e.g. /usr/sbin/slapd)
#
# 5. Fix any error, repeat steps 1 to 4 as necessary.
#
# 6. Test add (e.g. /usr/bin/ldapadd -D "cn=Manager,dc=my-domain,dc=com") using
# something like the following LDIF lines:
#
# dn: cn=testuser scalix,dc=my-domain,dc=com
# objectClass: inetOrgPerson
# cn: testuser scalix
# displayName: Testuser Scalix
# sn: Scalix
# mail: testuser@test.scalix.com
# objectClass: scalixUserClass
# scalixScalixObject: TRUE
# scalixMailnode: ou1,ou2
# scalixServerLanguage: ENGLISH
# scalixAdministrator: TRUE
# scalixMailboxAdministrator: FALSE
# scalixEmailAddress: testuser@my-domain.com
# scalixEmailAddress: testuser@my-domain.de
# scalixLimitMailboxSize: 1024000
# scalixLimitOutboundMail: TRUE
# scalixLimitInboundMail: FALSE
# scalixLimitNotifyUser: TRUE
# scalixHideUserEntry: FALSE
# scalixMailboxClass: FULL
#
# dn: cn=testgroup scalix,dc=my-domain,dc=com
# objectClass: groupOfNames
# cn: testgroup scalix
# member: cn=testuser scalix,dc=my-domain,dc=com
# objectClass: scalixGroupClass
# scalixScalixObject: TRUE
# scalixMailnode: ou1,ou2
# displayName: Testgroup Scalix
# scalixEmailAddress: testgroup@test.scalix.com
# scalixHideUserEntry: TRUE
#
# 7. Test search (e.g. /usr/bin/ldapsearch -b "dc=my-domain,dc=com" -x -D ""
# -w "" cn=*scalix) to check for read access and correct entries were added.
# define macro for Scalix root OID
objectIdentifier scalixOID 1.3.6.1.4.1.19049
# new attributes to describe an Scalix user or group object
# use 1.1.x from Scalix root OID
attributetype ( scalixOID:1.1.10 NAME ( 'scalixScalixObject' )
DESC 'boolean TRUE or FALSE for creating scalix mailbox/PDL object
If this is set to FALSE and the object is matched by the omldapsync
filter, a Contact entry/Internet user is created. If set to true, a
mailbox is setup. For Group/PDL objects, this must always be set to true'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.11 NAME ( 'scalixMailnode' )
DESC 'Comma-separated org units for objects mailnode. This is the
Mailnode name as defined when the Scalix server was setup. In
Multi-server environments, this is used to select on which server
the object is to be created.'
SINGLE-VALUE
EQUALITY caseIgnoreMatch
SUBSTR caseIgnoreSubstringsMatch
ORDERING caseIgnoreOrderingMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )
attributetype ( scalixOID:1.1.12 NAME ( 'scalixAdministrator' )
DESC 'Boolean TRUE or FALSE for admin capability. If set to TRUE,
the user created will have full Scalix admin capabilites.'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.13 NAME ( 'scalixMailboxAdministrator' )
DESC 'Boolean TRUE or FALSE for Mailbox Admin capability. A user with
this flag set to TRUE can access ANY mailbox on a server through
mboxadmin signon. This is usually only used for migration tools and
typically not exposed through LDAP'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.14 NAME ( 'scalixServerLanguage' )
DESC 'Message catalog language for client. This is one of the Scalix-supported
languages found in /var/opt/scalix/nls/om_langs'
SINGLE-VALUE
EQUALITY caseIgnoreMatch
SUBSTR caseIgnoreSubstringsMatch
ORDERING caseIgnoreOrderingMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )
attributetype ( scalixOID:1.1.15 NAME ( 'scalixEmailAddress' )
DESC 'List of SMTP addresses of user. This is a multi-valued attribute. The
order is important as the first of these values is used as the outgoing
from address of the user.'
EQUALITY caseIgnoreMatch
SUBSTR caseIgnoreSubstringsMatch
ORDERING caseIgnoreOrderingMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )
attributetype ( scalixOID:1.1.16 NAME ( 'scalixLimitMailboxSize' )
DESC 'mailbox size limit for the user in MB'
SINGLE-VALUE
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
attributetype ( scalixOID:1.1.17 NAME ( 'scalixLimitOutboundMail' )
DESC 'As Sanction on Mailbox quota overuse, stop user from sending mail.
Set to TRUE or FALSE'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.18 NAME ( 'scalixLimitInboundMail' )
DESC 'As Sanction on Mailbox quota overuse, stop user from receiving mail.
Set to TRUE or FALSE'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.19 NAME ( 'scalixLimitNotifyUser' )
DESC 'As Sanction on Mailbox quota overuse, notify the User by eMail.
Set to TRUE or FALSE'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.20 NAME ( 'scalixHideUserEntry' )
DESC 'Hide User Entry from Addressbook. Set to TRUE or FALSE'
SINGLE-VALUE
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( scalixOID:1.1.21 NAME ( 'scalixMailboxClass' )
DESC 'Class of User Mailbox FULL or LIMITED. This maps to
Premium or Standard users as defined by Scalix User licensing policy'
SINGLE-VALUE
EQUALITY caseIgnoreMatch
SUBSTR caseIgnoreSubstringsMatch
ORDERING caseIgnoreOrderingMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )
# auxiliary classes for scalix User and group
# use 1.2.x from Scalix root OID
objectclass ( scalixOID:1.2.10 NAME 'scalixUserClass'
DESC 'Supplemental class containing the Scalix User-related attributes'
AUXILIARY
MUST ( scalixScalixObject $ scalixMailnode
)
MAY ( scalixAdministrator $ scalixMailboxAdministrator $
scalixServerLanguage $ scalixEmailAddress $
scalixLimitMailboxSize $ scalixLimitOutboundMail $
scalixLimitInboundMail $ scalixLimitNotifyUser $
scalixHideUserEntry $ scalixMailboxClass
) )
objectclass ( scalixOID:1.2.11 NAME 'scalixGroupClass'
DESC 'Supplemental class containing the Scalix Group-related attributes'
AUXILIARY
MUST ( scalixScalixObject $ scalixMailnode
)
MAY ( scalixEmailAddress $ scalixHideUserEntry
) )
And here is my omldapsync file that I use to sync with openldap
##################################################################
#
# Scalix LDAP Directory Synchronization configuration
# NOTE: this file must be edited with care before use
# Interactively editable fields are controlled by the following:
EDIT_PROMPT=JAVA_HOME EX_HOST EX_LOGON EX_PASS IM_HOST IM_CAA_URL IM_CAA_KEYSTORE IM_CAA_NAME IM_CAA_PASS EX_BASE1 EX_BASE2 EX_BASE3 IM_OMADDRESS
# Sync agreement type - see omldapsync man page
TYPE_ID=13
# Sync agreement id - set by argument
SYNC_ID=ldaptest
# JAVA_HOME: home directory of java installation
# e.g. "/usr/java/j2sdk1.4.2_02"
JAVA_HOME=/usr/java/jre1.5.0_04
# The class path required by omldapagent java application (under
# /opt/scalix/svr/java/bin) is setup automatically by omldapsync to
# access dependent java libraries (under /opt/scalix/svr/java/lib)
##################################################################
#
# PART 1 General Configuration
##################################################################
# This section covers the settings required for tools to access
# both the remote and local systems for import or export.
# The general format is one or more line of <tag>=<value>
# Line starts with '#' is treated as comment
# When edited using omldaputil, do one of the followings:
# -presss <enter> to accept the default offered inside []
# -type in alternative <value> and press <enter>
# -do not quote the value with "" or ''
#
# PART 1.1 for IMPORT - remote host
##########################################
# EX_HOST: remote LDAP directory server name or IP address
# e.g. "remote_server.your_domain.com" or "192.168.1.216"
EX_HOST=##.##.##.##
# EX_PORT: LDAP server port number
# e.g. "389" is normally used
EX_PORT=389
# EX_LOGON: user that can search/delete/add/modify directory
# your adminstrator or migration account is often used
# e.g. "cn=Export Admin,cn=users,dc=your_org,dc=com"
EX_LOGON=cn=XXXXXX,c=canada
# EX_PASS: user password, or leave it blank so that omldapsync
# will prompt for it when executing import or export agreement
# NOTE: the prompt will prevent complete automation of sync process
EX_PASS=******
#
# PART 1.2 for IMPORT - local host
#########################################
# IM_HOST: local Scalix directory server name
# must specify FQDN where internet and user group will be imported
# e.g. "local_server.your_domain.com"
IM_HOST=tor.delcan.net
# IM_PORT: LDAP server port number
# e.g. "389" is normally used
#<na>IM_PORT=389
# IM_LOGON: user that can search/delete/add/modify directory
# your Scalix administrator account is often used
# e.g. "Import Admin" for user with this common name
#<na>IM_LOGON=Import Admin
# IM_PASS: user password, or leave it blank so that omldapsync
# will prompt for it when executing import or export agreement
# NOTE: the prompt will prevent complete automation of sync process
#<na>IM_PASS=
# IM_CAA_URL: Scalix CAA service url - must end with "/"
# e.g. "http://local_server.your_domain.com:8080/caa/"
IM_CAA_URL=http://tor.delcan.net/caa/
# IM_CAA_KEYSTORE: Scalix CAA service keystore for HTTPS only
# e.g "/var/opt/scalix/ldapsync/keystore"
IM_CAA_KEYSTORE=
# IM_CAA_ID: service login session-id
# e.g. "12345"
IM_CAA_ID=12345
# IM_CAA_NAME: service login auth-id, must have Scalix admin capability
# e.g. "user_name@your_domain.com"
IM_CAA_NAME=sxadmin
# IM_CAA_PASS: service login password, or leave it blank so that omldapsync
# will prompt for it when executing import or export agreement
# NOTE: the prompt will prevent complete automation of sync process
IM_CAA_PASS=******
# IM_DELETE_MAILBOX: whether sync of mailbox delete will be applied to Scalix
# NOTE: set to "FALSE" to keep the mailbox and handle the deletion manually
IM_DELETE_MAILBOX=FALSE
#
# PART 1.3 for IMPORT - ldap parameters
#######################################
# EX_SCALIX_ATTRS: list of resersed Scalix attributes in external directory
# to administer Scalix user/group from this remote master source
# e.g. "EX_SCALIX_MAILBOX EX_SCALIX_MAILNODE EX_SCALIX_MSGLANG ..."
#EX_SCALIX_ATTRS=EX_SCALIX_MAILBOX EX_SCALIX_MAILNODE EX_SCALIX_MSGLANG EX_SCALIX_ADMIN EX_SCALIX_MBOXADMIN
EX_SCALIX_ATTRS=EX_SCALIX_MAILBOX EX_SCALIX_MAILNODE EX_SCALIX_MSGLANG EX_SCALIX_ADMIN EX_SCALIX_MBOXADMIN SCALIXHIDEUSERENTRY SCALIXMAILBOXCLASS SCALIXLIMITMAILBOXSIZE SCALIXLIMITOUTBOUNDMAIL SCALIXLIMITINBOUNDMAIL SCALIXLIMITNOTIFYUSER
# EX_SCALIX_MAILBOX: name of attribute to specify whether Scalix object
# is required, yes if value is set to "TRUE"
# e.g. "exScalixObject"
#EX_SCALIX_MAILBOX=exScalixObject
EX_SCALIX_MAILBOX=scalixScalixObject
# EX_SCALIX_MAILNODE: name of attribute to specify which Scalix mailnode
# to add the mailbox, must use "<ou1>,<ou2>,<ou3>,<ou4>" format
# e.g. "exScalixMailnode"
#EX_SCALIX_MAILNODE=exScalixMailnode
EX_SCALIX_MAILNODE=scalixMailnode
# EX_SCALIX_MSGLANG: name of attribute to specify which Scalix message
# catalog language to use for client, default to "C" if not set
# e.g. "exScalixMsglang"
#EX_SCALIX_MSGLANG=exScalixMsglang
EX_SCALIX_MSGLANG=scalixServerLanguage
# EX_SCALIX_ADMIN: name of attribute to specify whether to give the user
# Scalix admin capability, yes if value is set to "TRUE"
# e.g. "exScalixAdmin"
#EX_SCALIX_ADMIN=exScalixAdmin
EX_SCALIX_ADMIN=scalixAdministrator
# EX_SCALIX_MBOXADMIN: name of attribute to specify whether to give the user
# Scalix mailbox-admin capability, yes if value is set to "TRUE"
# e.g. "exScalixMboxadmin"
#EX_SCALIX_MBOXADMIN=exScalixMboxadmin
EX_SCALIX_MBOXADMIN=scalixMailboxAdministrator
SCALIXHIDEUSERENTRY=scalixHideUserEntry
SCALIXMAILBOXCLASS=scalixMailboxClass
SCALIXLIMITMAILBOXSIZE=scalixLimitMailboxSize
SCALIXLIMITOUTBOUNDMAIL=scalixLimitOutboundMail
SCALIXLIMITINBOUNDMAIL=scalixLimitInboundMail
SCALIXLIMITNOTIFYUSER=scalixLimitNotifyUser
# EX_ATTR: attributes to extract from remote system for import
# e.g. "member dn uid objectClass displayName sn givenname initials mail entryUUID cn <etc>"
#EX_ATTR=exScalixObject exScalixMailnode exScalixMsglang exScalixAdmin exScalixMboxadmin member dn uid objectClass displayName sn givenname initials mail entryUUID cn facsimileTelephoneNumber homephone street st telephoneNumber title co company departmentNumber description l mobile pager physicalDeliveryOfficeName postalCode
EX_ATTR=scalixScalixObject scalixMailnode scalixServerLanguage scalixAdministrator scalixMailboxAdministrator scalixHideUserEntry scalixMailboxClass scalixLimitMailboxSize scalixLimitOutboundMail scalixLimitInboundMail scalixLimitNotifyUser scalixEmailAddress mailLocalAddress member dn uid objectClass displayName sn givenname initials mail entryUUID cn facsimileTelephoneNumber homephone street st telephoneNumber title co company departmentNumber description l mobile pager physicalDeliveryOfficeName postalCode
# EX_BASEn: search base(s) to extract entries from remote system
# specify a container name and its full LDAP suffix
# e.g. "cn=users,dc=your_org,dc=com"
EX_BASE1=ou=Users,dc=Toronto,c=canada
EX_BASE2=ou=Users,dc=Vancouver,c=canada
EX_BASE3=ou=Scalix,ou=Groups,c=canada
EX_BASE4=
EX_BASE5=
EX_BASE6=
EX_BASE7=
EX_BASE8=
EX_BASE9=
# EX_FILTER: search filter to include/exclude entries to import
# e.g. "(|(&(objectclass=inetOrgPerson)(mail=*))(&(objectclass=groupOfNames)(mail=*)))"
#EX_FILTER=(|(&(objectclass=inetOrgPerson)(mail=*))(&(objectclass=groupOfNames)(mail=*)))
EX_FILTER=(|(&(objectclass=inetOrgPerson)(scalixScalixObject=TRUE))(&(objectclass=groupOfNames)(scalixScalixObject=TRUE)))
#EX_FILTER=(|(&(objectclass=exScalixClass)))
# IM_DN_SUFFIX: set the dn suffix (location) for the imported entries
# NOTE: by default all rdns from the remote dn will be retained & encoded
# for maximum uniqueness. To only use the first <N> rdns for this, specify
# the argument in the format "<N>|<suffix>" instead of "<suffix>".
# e.g. "o=Scalix" for all rdns, or "2|o=Scalix" for first 2 rdns.
#<na>IM_DN_SUFFIX=2|o=Scalix
# IM_OMADDRESS: Scalix address where where entries are imported
# NOTE: this is a route which you configure for coexistence
# e.g. "/internet" or "internet"
IM_OMADDRESS=/internet
# IM_MV_ATTR: mapped attributes that can be imported with multi values
# e.g. "objectClass INTERNET-ADDR omMemberForeignAddr"
IM_MV_ATTR=objectClass INTERNET-ADDR omMemberForeignAddr ALIAS
# EX_GUID: the remote tag name for extracting Foreign GUID
# e.g. "entryUUID"
EX_GUID=entryUUID
# LDAPCT_BIN_ATT: must set value to EX_GUID if it is a binary attribute
# e.g. ""
LDAPCT_BIN_ATT=
# EX_PAGESIZE: use pagesize control extension to overcome search limit
# e.g. "100"
EX_PAGESIZE=1000
#
# PART 1.4 for EXPORT - ldap parameters
#######################################
# NOTE: export is not supported for this agreement type
#
# PART 2 Mapping Configuration
#################################################################
# WARNING: refer to documentation before editing the tables.
# This section defines the mappings required in order to map data
# between the remote and local LDAP systems for import or export.
# The general format is <lines of value> enclosed by markers.
# When edited using omldaputil, do one of the followings:
# -presss <enter> to accept the default offered inside []
# -type in alternative value and press <enter>
# -type in '-' to remove the line offered
# -type in '+<value> to insert it before current line
# For more details on all mapping rules see omldaputil man page.
#
# PART 2.1 for IMPORT - mapping table
#####################################
# Table format/content/comment:
# <table begin marker>
# <table end marker>
# except those in IM_MV_ATTR, only keep first instances
#####################################
# primary mapping table
IM_MAPPING_TABLE=
# scalix reserved attributes
scalixScalixObject|omMailbox|*|*
scalixMailnode|omMailnode|*|*
scalixServerLanguage|UL-IL|*|*
scalixAdministrator|ADMIN|*|*
scalixMailboxAdministrator|MBOXADMIN|*|*
scalixMailboxClass|UL-CLASS|*|*
# scalix object classes
objectClass|*|groupOfNames|distributionList
objectClass|*|inetOrgPerson|organizationalPerson
objectClass||*|#ignore others
# distinguished name
dn|*|*|*
# global unique id
entryUUID|GLOBAL-UNIQUE-ID|*|*
# common name
displayName|CN|*,1,64|*
# use cn for common name if displayName is missing
cn|CN|*,1,64!ISMISSING=displayName|*
cn||*|#suppress it otherwise
# initial
initials|I|*,1,5|*
# surname
sn|S|*,1,40|*
# use cn for surname if sn is missing
cn|S|*,1,40!ISMISSING=sn|*
# given name is mapped if surname is present
givenName|G|*,1,16!ISPRESENT=sn|*
givenName||*|#suppress it otherwise
# internet addresses
#mail|INTERNET-ADDR|*,1,512|*
scalixEmailAddress|INTERNET-ADDR|*,1,512|*
# no mapping for ALIAS
mailLocalAddress|INTERNET-ADDR|*,1,512|*
cn|ALIAS|*|*
# the DN of the entry
dn|FOREIGN-ADDR|*,1,512|*
# the DN of the group members
member|omMemberForeignAddr|*|*
# authentication id
uid|UL-AUTHID|*|*
# informational attributes
facsimileTelephoneNumber|FAX|*,1,32|!CUSTOM=TO_PS_STR
homephone|HOME-PHONE|*,1,32|!CUSTOM=TO_PS_STR
street|STREET-ADDRESS|*,1,128|!REPLACE=\033J|\012
st|STATE-OR-PROVINCE|*,1,128|*
telephoneNumber|PHONE-1|*,1,32|!CUSTOM=TO_PS_STR
title|TITLE|*,1,128|*
co|CNTRY|*,1,2|*
company|EMPL-ORG|*,1,64|*
departmentNumber|EMPL-DEPT|*,1,32|*
#ou|EMPL-DEPT|*,1,32|*
description|ENTRY-DESC|*,1,1024|!REPLACE=\033J|\012
l|L|*,1,128|*
mobile|MOBILE-PHONE|*,1,32|!CUSTOM=TO_PS_STR
pager|PAGER-PHONE|*,1,32|!CUSTOM=TO_PS_STR
physicalDeliveryOfficeName|PD-OFFICE-NAME|*,1,128|*
postalCode|POSTAL-CODE|*,1,40|*
# no mapping for ASSISTANT-PHONE
# no mapping for PHONE-2
=END_MAPPING_TABLE
#####################################
# secondary mapping table
#IM_MAPPING_TABLE2=
#*|*|*|*
#=END_MAPPING_TABLE
#
# PART 2.2 for EXPORT - mapping tables
######################################
# Table format/content/comment:
# <table begin marker>
# <table end marker>
# except those in EX_MV_ATTR, only keep first instances
#####################################
# primary mapping table
EX_MAPPING_TABLE=
*|*|*|*
=END_MAPPING_TABLE
#####################################
# secondary mapping table
#EX_MAPPING_TABLE2=
#*|*|*|*
#=END_MAPPING_TABLE
#
# END
#################################################################
This technique works perfectly when I am dealing with only on server. But as soon as I introduce users on remote servers, then I start getting errors in the omldapsync.
The errors seem to center around setting mailboxlimits and adding members to distribution lists on the remote scalix server. The routes have been setup, and the users do get added to the remote server, but for some reason I can not set mailbox limits or add users to distribution list on the remote server.
Here is my error log from omldapsync.
[root@scalix ldapdennistest]# omldapsync -i ldapdennistest
2006-11-29 18:46:39 STATUS: Interactive for ldapdennistest started ########
Common tasks menu for syncid ldapdennistest
0. Display this menu
1. Configure the LDAP dir sync settings
2. Force a complete (re)load of the directory
3. Update the directory after some changes
4. Accept previous error and update directory
5. Skip previous error and update directory
6. Update the directory and prompt for error
7. Modify all sync records from the directory
8. Delete all sync records in the directory
d. Toggle debug mode from current setting <0>
n. Toggle test mode from current setting <>
q. Quit
INPUT: Please enter an option (0):2
2006-11-29 18:49:52 STATUS: LDAP dir sync import ldapdennistest started ###############
2006-11-29 18:49:52 INFO: create /var/opt/scalix/ldapsync/ldapdennistest/import ...
2006-11-29 18:49:53 STATUS: load all records from ##.##.##.### ...
2006-11-29 18:49:58 INFO: work dir is /var/opt/scalix/ldapsync/ldapdennistest/import
2006-11-29 18:49:58 STATUS: search source directory on ##.##.##.### ...
2006-11-29 18:49:58 INFO: search base is ou=Users,dc=Toronto,c=canada
2006-11-29 18:49:59 INFO: ... 7 entries to check
2006-11-29 18:49:59 INFO: search base is ou=Users,dc=Vancouver,c=canada
2006-11-29 18:49:59 INFO: ... 3 entries to check
2006-11-29 18:49:59 INFO: search base is ou=Scalix,ou=Groups,c=canada
2006-11-29 18:50:00 INFO: ... 3 entries to check
2006-11-29 18:50:00 STATUS: find delta and perform mapping ...
2006-11-29 18:50:02 INFO: ... 0 entries to delete
2006-11-29 18:50:02 INFO: ... 13 entries to add
2006-11-29 18:50:02 INFO: ... 0 entries to modify
2006-11-29 18:50:03 STATUS: apply membdelete data against Scalix ...
2006-11-29 18:50:03 INFO: ... 0 entries passed for member.curr
2006-11-29 18:50:03 INFO: ... 0 entries failed for member.curr
2006-11-29 18:50:03 INFO: ... 0 entries warned for member.curr
2006-11-29 18:50:03 STATUS: apply delete data against Scalix ...
2006-11-29 18:50:03 INFO: ... 0 entries passed for delete.curr
2006-11-29 18:50:04 INFO: ... 0 entries failed for delete.curr
2006-11-29 18:50:04 INFO: ... 0 entries warned for delete.curr
2006-11-29 18:50:04 STATUS: apply add data against Scalix ...
2006-11-29 18:50:45 INFO: ... 13 entries passed for add.curr
2006-11-29 18:50:45 INFO: ... 0 entries failed for add.curr
2006-11-29 18:50:45 INFO: ... 0 entries warned for add.curr
2006-11-29 18:50:45 STATUS: apply limit data against Scalix ...
--------> Sending SOAP Request to Ubermanager@http://scalix.company.com/caa/ for method:ModifyUserMessageStoreLimits
--------> Received SOAP Response from Ubermanager@http://scalix.company.com/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>ModifyUserMessageStoreLimits</FunctionName>
<ModifyUserMessageStoreLimitsParameters id="4d414232-0879-102b-916d-c62f9ebb1c6d">
<userAttributes>
<entity name="us" value="TRUE"/>
<entity name="ms" value="500"/>
<entity name="ss" value="FALSE"/>
<entity name="rs" value="FALSE"/>
</userAttributes>
</ModifyUserMessageStoreLimitsParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>Transformer could not transform incoming SOAP message</message>
<errorcode>CAA-106</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-11-29 18:50:48 ERROR: failed to run omldapagent
--------> Sending SOAP Request to Ubermanager@http://scalix.company.com/caa/ for method:ModifyUserMessageStoreLimits
--------> Received SOAP Response from Ubermanager@http://scalix.company.com/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>ModifyUserMessageStoreLimits</FunctionName>
<ModifyUserMessageStoreLimitsParameters id="4daa879c-0879-102b-92a8-c62f9ebb1c6d">
<userAttributes>
<entity name="us" value="TRUE"/>
<entity name="ms" value="500"/>
<entity name="rs" value="FALSE"/>
<entity name="ss" value="FALSE"/>
</userAttributes>
</ModifyUserMessageStoreLimitsParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>Transformer could not transform incoming SOAP message</message>
<errorcode>CAA-106</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-11-29 18:51:00 ERROR: failed to run omldapagent
--------> Sending SOAP Request to Ubermanager@http://scalix.company.com/caa/ for method:ModifyUserMessageStoreLimits
--------> Received SOAP Response from Ubermanager@http://scalix.company.com/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>ModifyUserMessageStoreLimits</FunctionName>
<ModifyUserMessageStoreLimitsParameters id="4db7a9ea-0879-102b-92cf-c62f9ebb1c6d">
<userAttributes>
<entity name="ms" value="500"/>
<entity name="ss" value="FALSE"/>
<entity name="us" value="TRUE"/>
<entity name="rs" value="FALSE"/>
</userAttributes>
</ModifyUserMessageStoreLimitsParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>Transformer could not transform incoming SOAP message</message>
<errorcode>CAA-106</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-11-29 18:51:01 ERROR: failed to run omldapagent
2006-11-29 18:51:02 INFO: ... 7 entries passed for add.curr
2006-11-29 18:51:02 INFO: ... 3 entries failed for add.curr
2006-11-29 18:51:02 INFO: ... 0 entries warned for add.curr
2006-11-29 18:51:02 STATUS: apply modify data against Scalix ...
2006-11-29 18:51:02 INFO: ... 0 entries passed for modify.curr
2006-11-29 18:51:02 INFO: ... 0 entries failed for modify.curr
2006-11-29 18:51:02 INFO: ... 0 entries warned for modify.curr
2006-11-29 18:51:03 STATUS: apply limit data against Scalix ...
2006-11-29 18:51:03 INFO: ... 0 entries passed for modify.curr
2006-11-29 18:51:03 INFO: ... 0 entries failed for modify.curr
2006-11-29 18:51:03 INFO: ... 0 entries warned for modify.curr
2006-11-29 18:51:03 STATUS: apply membadd data against Scalix ...
--------> Sending SOAP Request to Ubermanager@http://scalix.company.com/caa/ for method:AddMembersToGroup
--------> Received SOAP Response from Ubermanager@http://scalix.company.com/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>AddMembersToGroup</FunctionName>
<AddMembersToGroupParameters id="4884b700-1419-102b-83f5-cc992ae6020f">
<member fa="uid=j.doe,ou=Users,dc=Vancouver,c=canada"/>
</AddMembersToGroupParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>Fatal Exception: Check Ubermanager Logs</message>
<errorcode>UM-1001</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-11-29 18:51:09 ERROR: failed to run omldapagent
--------> Sending SOAP Request to Ubermanager@http://scalix.company.com/caa/ for method:AddMembersToGroup
--------> Received SOAP Response from Ubermanager@http://scalix.company.com/caa/
error: Response contains failure report
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>AddMembersToGroup</FunctionName>
<AddMembersToGroupParameters id="dc11ce2c-0929-102b-83f4-cc992ae6020f">
<member fa="uid=b.smith,ou=Users,dc=Vancouver,c=canada"/>
<member fa="uid=c.smith,ou=Users,dc=Vancouver,c=canada"/>
</AddMembersToGroupParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
>>>>>>>>SOAP Response
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>CAA Service Error</faultstring>
<detail>
<scalix-caa:fault-details xmlns:scalix-caa="http://www.scalix.com/caa">
<message>Fatal Exception: Check Ubermanager Logs</message>
<errorcode>UM-1001</errorcode>
</scalix-caa:fault-details>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-11-29 18:51:11 ERROR: failed to run omldapagent
2006-11-29 18:51:11 INFO: ... 1 entries passed for member.curr
2006-11-29 18:51:11 INFO: ... 2 entries failed for member.curr
2006-11-29 18:51:11 INFO: ... 0 entries warned for member.curr
2006-11-29 18:51:11 STATUS: apply membmodify data against Scalix ...
2006-11-29 18:51:11 INFO: ... 0 entries passed for member.curr
2006-11-29 18:51:11 INFO: ... 0 entries failed for member.curr
2006-11-29 18:51:11 INFO: ... 0 entries warned for member.curr
2006-11-29 18:51:12 STATUS: update sync data files with partial results ...
2006-11-29 18:51:12 INFO: ... 13 entries added to search.last
2006-11-29 18:51:12 STATUS: update sync data files with partial results ...
2006-11-29 18:51:12 INFO: ... 1 entries modified in search.last
2006-11-29 18:51:12 STATUS: update sync data files with partial results ...
2006-11-29 18:51:13 INFO: ... 7 entries modified in search.last
2006-11-29 18:51:13 STATUS: LDAP dir sync import failed, error=2 ###########
2006-11-29 18:51:13 STATUS: LDAP dir sync export ldapdennistest started ###############
2006-11-29 18:51:13 INFO: create dir /var/opt/scalix/ldapsync/ldapdennistest/export ...
2006-11-29 18:51:13 STATUS: load all records from scalix.delcan.net ...
2006-11-29 18:51:13 INFO: agreement type 13 only supports import operation
2006-11-29 18:51:14 STATUS: LDAP dir sync export ldapdennistest completed #############
Common tasks menu for syncid ldapdennistest
0. Display this menu
1. Configure the LDAP dir sync settings
2. Force a complete (re)load of the directory
3. Update the directory after some changes
4. Accept previous error and update directory
5. Skip previous error and update directory
6. Update the directory and prompt for error
7. Modify all sync records from the directory
8. Delete all sync records in the directory
d. Toggle debug mode from current setting <0>
n. Toggle test mode from current setting <>
q. Quit
INPUT: Please enter an option (0):
Thanks for any help that you can provide.
[/b]
errors when useing omldapsync against remote scalix servers
Moderators: ScalixSupport, admin
-
ScalixSupport
- Scalix
- Posts: 5503
- Joined: Thu Mar 25, 2004 8:15 pm
Scalix 10.0.5 should resolve this problem. For information on release 10.0.5 please see:
http://www.scalix.com/community/viewtop ... 2244#22244
Regards,
Don
http://www.scalix.com/community/viewtop ... 2244#22244
Regards,
Don
Who is online
Users browsing this forum: No registered users and 4 guests