Polygon/ConnId connector for FreeIPA
Connector for FreeIPA using REST API.
- Schema: YES
- Provisioning: YES
- Live Synchronization: No
- Password: YES
- Activation: YES
- Script execution: No
FreeIPA Connector contains support for USER, ROLE and GROUP entity.
Download and build the project with usual:
mvn clean install
After successful the build, you can find connector-freeipa-1.0.0.0.jar
in target
directory.
- create user in FreeIPA
- set membership to user groups: ipausers, trust admins, admins
- inspire by sample to configure your own resource
- Verify if service account has set password never expire, has "User authentication types" "Password" and not needed to change password at first log on.
- Try to log in with created service account (user) to FreeIPA web GUI & verify if you have required permissions to create/update/delete user, create/update/delete groups & roles and his memberships.
- Set up Logger for package "io.artin.idm.connector.freeipa" to TRACE in midpoint over System/Logging/Loggers & verify midpoint.log for error details.
- In some cases FreeIPA missconfiguration cause to return HTML error page instead of JSON and this is showd as error message in Test Connection "org.json.JSONException(A JSONObject text must begin with '{' at 1 [character 2 line 1])"
Licensed under the Apache License 2.0.
FreeIPA Connector is intended for production use. Tested with MidPoint version 4.0 LTS. The connector was introduced as a contribution to midPoint project by ARTIN and is not officially supported by Evolveum. If you need support, please contact idm@artinsolutions.com.