Discussions
Categories
Groups
Community Home
Categories
INTERNAL ENABLEMENT
POPULAR
THRUST SERVICES & TOOLS
CLOUD EDITIONS
Quick Links
MY LINKS
HELPFUL TIPS
Back to website
Home
Content Management (Extended ECM)
API, SDK, REST and Web Services
LDAP Readonly Synchronization Problem
Betsy_Kowan
We are using LL 9.6 and Directory Service 2.3.1. Microsoft Active Directory is being used. LiveLink is set to do LDAP Readonly Synch and NTLM Authentication. After syncrhonization, there is no update to the users at all. Non-matching users remains in LiveLink even though I have Delete unsyncrhonized users checked. Anybody knows what my problem is? Thank you in advance.
Find more posts tagged with
Comments
Chris_Wagg
Message from Chris Wagg via eLinkIt sounds to me like you had some users already existing in Livelinkthat were created through the GUI, and these are the ones that are notgetting deleted.This is working as expected. The synch will only update previouslysynchronized users. This functionality is necessary to allow customersto have Livelink authenticated, as well as NTLM authenticated users. ---------------------------------------Chris WaggSenior Product SpecialistOpen Text CorporationPh: 800-540-7292Email: cwagg@opentext.com--------------------------------------------Original Message-----From: eLink Discussion: Livelink Directory Services Discussion[mailto:directoryservices@elinkkc.opentext.com] Sent: Friday, June 01, 2007 11:24 PMTo: eLink RecipientSubject: LDAP Readonly Synchronization ProblemLDAP Readonly Synchronization ProblemPosted by Chan, Peter on 06/01/2007 11:21 PMWe are using LL 9.6 and Directory Service 2.3.1. Microsoft ActiveDirectory is being used. LiveLink is set to do LDAP Readonly Synch andNTLM Authentication. After syncrhonization, there is no update to theusers at all. Non-matching users remains in LiveLink even though I haveDelete unsyncrhonized users checked. Anybody knows what my problem is?Thank you in advance.[To reply to this thread, use your normal E-mail reply function.]============================================================Discussion: Livelink Directory Services Discussion
https://knowledge.opentext.com/knowledge/llisapi.dll/open/3062146Livelink
Server:
https://knowledge.opentext.com/knowledge/llisapi.dllTo
Unsubscribe from this Discussion, send an e-mail tounsubscribe.directoryservices@elinkkc.opentext.com.
eLink User
Message from Nair, Krishnankutty via eLinkIf you can run a query and see what the userdata field in Kuaf saysselect id,name,lastname,middlename,firstname,mailaddress,title,userdatafrom kuaf where deleted=0 and type=0If livelink finds an assoc in the userdata field,it tries to use that tosync the User account.If it is empty like in a manual account creation,thisprocess does not knowAbout it so leaves it alone.Let's say if a user who has a value in that field is in the scenario fora re-sync.This time the user is not in LDAP but in livelink ,hence it is anun-synchronized user,so will be deleted.That is when you see in the log deleted user .....BTW:This is my impression and I use this method to keep certain accountsfrom getting deletedBy the sync process.Open a ticket with OT to see if you are ratherencountering a bug. -----Original Message-----From: eLink Discussion: Livelink Directory Services Discussion[mailto:directoryservices@elinkkc.opentext.com] Sent: Friday, June 01, 2007 10:24 PMTo: eLink RecipientSubject: LDAP Readonly Synchronization ProblemLDAP Readonly Synchronization ProblemPosted by Chan, Peter on 06/01/2007 11:21 PMWe are using LL 9.6 and Directory Service 2.3.1. Microsoft ActiveDirectory is being used. LiveLink is set to do LDAP Readonly Synch andNTLM Authentication. After syncrhonization, there is no update to theusers at all. Non-matching users remains in LiveLink even though I haveDelete unsyncrhonized users checked. Anybody knows what my problem is?Thank you in advance.[To reply to this thread, use your normal E-mail reply function.]============================================================Discussion: Livelink Directory Services Discussion
https://knowledge.opentext.com/knowledge/llisapi.dll/open/3062146Livelink
Server:
https://knowledge.opentext.com/knowledge/llisapi.dllTo
Unsubscribe from this Discussion, send an e-mail tounsubscribe.directoryservices@elinkkc.opentext.com.-----------------------------------------*Please note my E-Mail Address has changed. Please update yourcontact list*Anadarko Confidentiality Notice: This electronic transmission and any attached documents or otherwritings are intended only for the person or entity to which it isaddressed and may contain information that is privileged,confidential or otherwise protected from disclosure. If you havereceived this communication in error, please immediately notifysender by return e-mail and destroy the communication. Anydisclosure, copying, distribution or the taking of any actionconcerning the contents of this communication or any attachments byanyone other than the named recipient is strictly prohibited.
Chris_Wagg
Message from Chris Wagg via eLinkI can confirm, this is exactly how we identify a synchronized user froma non-synchronized user. A user that does not have that assoc inuserData will not be affected by a synch, unless the username matchesone that is found in the synch. In this case, the synch will update theuser, making him a synchronized user. ---------------------------------------Chris WaggSenior Product SpecialistOpen Text CorporationPh: 800-540-7292Email: cwagg@opentext.com--------------------------------------------Original Message-----From: eLink Discussion: Livelink Directory Services Discussion[mailto:directoryservices@elinkkc.opentext.com] Sent: Monday, June 04, 2007 11:34 AMTo: eLink RecipientSubject: RE LDAP Readonly Synchronization Problem 2RE LDAP Readonly Synchronization Problem 2 Posted by eLink on06/04/2007 11:34 AMMessage from Nair, Krishnankutty viaeLinkIf you can run a query and see what the userdata field in Kuaf saysselect id,name,lastname,middlename,firstname,mailaddress,title,userdatafrom kuaf where deleted=0 and type=0If livelink finds an assoc in the userdata field,it tries to use that tosync the User account.If it is empty like in a manual accountcreation,this process does not know About it so leaves it alone.Let's say if a user who has a value in that field is in the scenario fora re-sync.This time the user is not in LDAP but in livelink ,hence it is anun-synchronized user ,so will be deleted.That is when you see in the logdeleted user .....BTW:This is my impression and I use this method to keep certain accountsfrom getting deleted By the sync process.Open a ticket with OT to see ifyou are rather encountering a bug. -----Original Message-----From: eLink Discussion: Livelink Directory Services Discussion[mailto:directoryservices@elinkkc.opentext.com]Sent: Friday, June 01, 2007 10:24 PMTo: eLink RecipientSubject: LDAP Readonly Synchronization ProblemLDAP Readonly Synchronization ProblemPosted by Chan, Peter on 06/01/2007 11:21 PMWe are using LL 9.6 and Directory Service 2.3.1. Microsoft ActiveDirectory is being used. LiveLink is set to do LDAP Readonly Synch andNTLM Authentication. After syncrhonization, there is no update to theusers at all. Non-matching users remains in LiveLink even though I haveDelete unsyncrhonized users checked. Anybody knows what my problem is?Thank you in advance.[To reply to this thread, use your normal E-mail reply function.]============================================================Discussion: Livelink Directory Services Discussion
https://knowledge.opentext.com/knowledge/llisapi.dll/open/3062146Livelink
Server:
https://knowledge.opentext.com/knowledge/llisapi.dllTo
Unsubscribe from this Discussion, send an e-mail tounsubscribe.directoryservices@elinkkc.opentext.com.-----------------------------------------*Please note my E-Mail Address has changed. Please update your contactlist*Anadarko Confidentiality Notice: This electronic transmission and any attached documents or otherwritings are intended only for the person or entity to which it isaddressed and may contain information that is privileged, confidentialor otherwise protected from disclosure. If you have received thiscommunication in error, please immediately notify sender by returne-mail and destroy the communication. Any disclosure, copying,distribution or the taking of any action concerning the contents of thiscommunication or any attachments by anyone other than the namedrecipient is strictly prohibited.[To reply to this thread, use your normal E-mail reply function.]============================================================Topic: LDAP Readonly Synchronization Problem
https://knowledge.opentext.com/knowledge/llisapi.dll/open/12462600Discussion
: Livelink Directory Services Discussion
https://knowledge.opentext.com/knowledge/llisapi.dll/open/3062146Livelink
Server:
https://knowledge.opentext.com/knowledge/llisapi.dllTo
Unsubscribe from this Discussion, send an e-mail tounsubscribe.directoryservices@elinkkc.opentext.com.
Ed_McCafferty_(emccafferty@momentumsystems.com_(De
We had this problem as well and it turned out to be that we were being redirected upon sync to other DCs. Redirects are disregaurded and so you come back with nothing from your LDAP query.Try using port 3268 instead of the 389. This is the port for the Global Catalog. The GC should not redirect you to other domain contollers.
