RMLL 2014 - LDAP Synchronization Connector

1,422 views

Published on

Presentation of LDAP Synchronization Connector, with the new features of 2.1 release, including the Executable plugin.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

RMLL 2014 - LDAP Synchronization Connector

  1. 1. Clément OUDOT coudot@linagora.com
  2. 2. 2 About the speaker
  3. 3. What is LSC ? Free softwareFree software TechnologiesTechnologies InteroperabilityInteroperability BSD license Community leadership Java XML configuration JS/Groovy scripting Perl (monitoring) LDAP (jndi) Active Directory SGBD (jdbc) Google Apps Files (CSV)
  4. 4. OpenLDAP Active Directory
  5. 5. LDAPv3 advanced support StartTLSStartTLS PagedPaged ResultResult LDAP SyncLDAP Sync (Syncrepl)(Syncrepl)
  6. 6. Scripting helpers LQLLQL SecuritySecurity SambaSambaLSC ActiveActive DirectoryDirectory
  7. 7. LDAP Query Language srcLdap.attribute( srcLdap.list( "ou=services", "uniqueMember=" +  srcBean.getDistinguishName() + "" ), 'description').get(0) Access to srcLdap (source) and ldap (destination) connection objects attributeattribute searchsearch listlist readread supsup
  8. 8. Plugins NISNIS ExecutableExecutable OBMOBM
  9. 9. The “sync” phase Source Destination 11 22 33 44 55 List all entries Read pivot Get each entry Read attributes Get each entry Read attributes LSC Calculate modifications Apply modifications
  10. 10. The “clean” phase Source Destination 11 22 33 44 List all entries Read pivot Get each entry LSC Calculate deletions Apply deletions
  11. 11. Configuration overview ● Main configuration file: lsc.xml ● Logs : logback.xml ● SQL queries : sql-map- config.xml / sql-map- config.d/ ConnectionsConnections TasksTasks ServicesServices RulesRules
  12. 12. LDAP connection <ldapConnection>   <name>ldap­dst­conn</name>   <url>ldap://HOSTNAME/SUFFIX</url>   <username>DN</username>   <password>PWD</password>   <authentication>SIMPLE</authentication>   <referral>IGNORE</referral>   <derefAliases>NEVER</derefAliases>   <version>VERSION_3</version>   <pageSize>­1</pageSize>    <factory>com.sun.jndi.ldap.LdapCtxFactory</factory>   <tlsActivated>false</tlsActivated> </ldapConnection>
  13. 13. Database connection <databaseConnection>   <name>jdbc­src­conn</name>   <url>jdbc:JDBC_URL</url>   <username>USER</username>   <password>PWD</password>   <driver>JDBC_DRIVER</driver> </databaseConnection>
  14. 14. Dataset <dataset>   <name>cn</name>   <policy>FORCE</policy>   <forceValues>     <string><[CDATA[ srcBean.getDatasetFirstValueById("FIRSTNAME")  + srcBean.getDatasetFirstValueById("NAME");     ]]></string>   </forceValues> </dataset>
  15. 15. Executable plugin LDIF Source Service LDIF Destination Service LDAP Destination Service LIST GET ADD UPDATE REMOVE RENAME LIST GET ADD UPDATE REMOVE RENAME
  16. 16. 16 Thanks RMLL Staf LSC team LINAGORA
  17. 17. 17 Stay tuned IRC #lsc-project @freenode http://lists.lsc-project.org/ https://www.ohloh.net/p/lsc http://lsc-project.org

×