gael

Home Members gael

Learn more about our upcoming Identity Summits

show less show more
Profile picture of gael

@gael

active 6 months, 1 week ago
Points balance: 678 ♪
Rank: gael
  • Activity
  • Profile
  • Groups 0
  • Forums
  • Personal
  • Mentions
  • Favorites
  • Groups
  • Profile picture of gael

    gael replied to the topic Custom Scripted Connector – Certificate Authentication in the forum Identity Management 3 years, 3 months ago

    Does your custom connector leverages the scripted REST connector?

    your authentication is based at the TLS layer with the certificate?

  • Profile picture of gael

    gael replied to the topic Credential issue when reconcile to SCIM connector as target in the forum Identity Management 3 years, 4 months ago

    Your configuration looks ok and the error you get is:
    InvalidCredentialException: 401: Unauthorized

    So it seems to be a user/password issue.
    What kind of test/query you do to validate the user/password ?

  • Profile picture of gael

    gael replied to the topic Credential issue when reconcile to SCIM connector as target in the forum Identity Management 3 years, 4 months ago

    Can you share your SCIM provisioner file from openidm/conf folder?

  • Profile picture of gael

    gael replied to the topic Creating LDAP connector in the forum Identity Management 3 years, 11 months ago

    You can try to copy one of the LDAP sample provisioner from samples/ to conf/ folder. The connector should show up in the UI and then you can adapt to your settings

  • Profile picture of gael

    gael replied to the topic OpenICF Access Token Support in the forum Identity Management 4 years ago

    If you manage to get the BearerToken with the Authenticate script, then you can store it in the Configuration propertyBag. It is a concurrent Map shared between connector instances.

    In your script you can easily access since the shared configuration object is injected in all scripts

    configuration.getPropertyBag().put(“token”,…[Read more]

  • Profile picture of gael

    gael replied to the topic AD Users are deactivated in the forum Identity Management 4 years ago

    To create an active user in AD, you need to provide a password and make sure the ‘enabled’ flag is set to true

    If you use an http client like curl, a typical json payload would look like:

    POST http://localhost:8080/openidm/system/AD/account?_action=create

    {
    “dn”: “CN=Test CreatefromOpenIDM,OU=create,DC=example,DC=com”,
    “__PASSWORD__” :…[Read more]

  • Profile picture of gael

    gael replied to the topic AD Users are deactivated in the forum Identity Management 4 years ago

    How do you create the user in AD?

  • Profile picture of gael

    gael replied to the topic OpenDJ in the forum Identity Management 4 years ago

    ldapsearch -p 1389 -b “cn=changelog” -D “cn=directory manager” -w password “(changenumber=24)”

    dn: changeNumber=24,cn=changelog
    objectClass: top
    objectClass: changeLogEntry
    changeNumber: 24
    changeTime: 20160830152329Z
    changeType: modify
    targetDN: uid=user.0,ou=People,dc=example,dc=com
    changes::…[Read more]

  • Profile picture of gael

    gael replied to the topic AD Users are deactivated in the forum Identity Management 4 years ago

    Can you share the Json payload you use when creating a user?

  • Profile picture of gael

    gael replied to the topic Active Directory objectGUID in the forum Identity Management 4 years, 3 months ago

    correct

  • Profile picture of gael

    gael replied to the topic Active Directory objectGUID in the forum Identity Management 4 years, 3 months ago

    IDM 5.5 => LDAP connector 1.4.6.0
    IDM 6.0 (~april 2018) => LDAP connector 1.4.7.0

  • Profile picture of gael

    gael replied to the topic Active Directory objectGUID in the forum Identity Management 4 years, 3 months ago

    From a technical perspective yes.
    LDAP connector does not have much dependencies.

    But from a support/QA perspective, I don’t know…

  • Profile picture of gael

    gael replied to the topic Active Directory objectGUID in the forum Identity Management 4 years, 3 months ago

    https://bugster.forgerock.org/jira/browse/OPENICF-760

    ldap-connector-1.4.7.0

  • Profile picture of gael

    gael replied to the topic ICF Filters and Get vs Search in the forum Identity Management 4 years, 5 months ago

    you’re quite right.
    The GET which is defined at the API level
    https://backstage.forgerock.com/docs/openicf/1.5/apidocs/org/identityconnectors/framework/api/operations/GetApiOp.html
    is not defined at the SPI level. ICF will translate a GET to an exact search: __UID__ = XYZ
    ICF 1.5 provides a helper method in…[Read more]

  • Profile picture of gael

    gael replied to the topic Custom Java Connector in the forum Identity Management 4 years, 5 months ago

    without having access to your custom java connector code, it won’t be easy to help…

  • Profile picture of gael

    gael replied to the topic Scripted SQL Connector for Microsoft SQL Server in the forum Identity Management 4 years, 5 months ago

    The key point is to get the Microsoft Java JDBC driver for SQL server, copy it in lib/ folder, and properly configure it in your provisioner file.
    => driverClassName
    => url
    => validationQuery

    That done and the TEST action working ok, you may have some MS SQL specific things vs MySQL to review in the scripts but technically speaking, this is…[Read more]

  • Profile picture of gael

    gael replied to the topic ICF Special Attributes — Why, when, and how? in the forum Identity Management 4 years, 7 months ago

    That is a lot of questions…

    #1
    some attributes were made “special” because some connectors need them and some were made special because they are quite common when dealing with identities.
    __ACCOUNT__ and __GROUP__ are common object class since they represent users and groups. But your connector may deal with organizations and roles… These 2…[Read more]

  • Profile picture of gael

    gael replied to the topic .NET Connector references in the forum Identity Management 4 years, 7 months ago

    Hi,

    we do not use nuget for the .Net connector server. Binaries are available on the Backstage site (https://backstage.forgerock.com/)
    When a new version is available, basically uninstall the previous one and install the new one.

  • Profile picture of gael

    gael replied to the topic WebService Connector in the forum Identity Management 5 years, 2 months ago

    Hi,

    if you look into the OpenIDM samples, you will see how to write your own REST connector based on our Groovy Scripted REST connector toolkit.

    You can also check out OpenIDM documentation

  • Profile picture of gael

    gael replied to the topic Integrating OpenIDM with Timesten Database connector in the forum Identity Management 5 years, 2 months ago

    Hi,

    if it is a JDBC compliant driver, then it will work either with the DatabaseTable connector (if you have a simple table to manage) or with the ScriptedSQL connector if you need to do more complex queries.

  • Load More
Profile Photo k.iwayama Profile Photo ezra1964

Search the forums

Leaderboard

The leaderboard is based on our rockin' informal points system, read about it here.

Recent blog posts

  • Using an Authentication Tree Stage to Build a Custom UI with the ForgeRock JavaScript SDK February 26, 2020
  • Identity Workflow with AM using Zeebe and Cloud Functions February 19, 2020
  • IDM: Zero Downtime Upgrade Strategy Using a Blue/Green Deployment January 23, 2020
  • DS: Zero Downtime Upgrade Strategy Using a Blue/Green Deployment January 22, 2020
  • AM and IG: Zero Downtime Upgrade Strategy Using a Blue/Green Deployment January 22, 2020
Visit our blog

Recent Topics

  • Handle exception in Node Patch Object
  • SP Initiated SSO – Unable to do sso or federation
  • Realm level access
  • How can I generate 32 bytes Random salt in js script
  • Bypass Login Page in Chain

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

  • Blog
  • Documentation
    • OpenAM / Access Management
    • OpenDJ / Directory Services
    • OpenIDM / Identity Management
    • OpenIG / Identity Gateway
    • OpenICF / Open Connector Framework
    • Intro to Identity
  • Forums
    • General Discussion
    • ForgeRock Products
      • OpenAM
      • OpenIDM
      • OpenDJ
      • OpenIG
      • OpenUMA
    • DevOps
    • Internet of Things
    • Documentation
    • Groups
  • Twitter
  • Facebook
  • Linkedin
  • Youtube

Log in with your credentials

Lost your password?

Forgot your details?

I remember my details