ezajko / midpoint-connector-freeipa

Polygon/ConnId connector for FreeIPA

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

connector-freeipa

Polygon/ConnId connector for FreeIPA

Description

Connector for FreeIPA using REST API.

Capabilities and Features

  • Schema: YES
  • Provisioning: YES
  • Live Synchronization: No
  • Password: YES
  • Activation: YES
  • Script execution: No

FreeIPA Connector contains support for USER, ROLE and GROUP entity.

Build

Download and build the project with usual:

mvn clean install

After successful the build, you can find connector-freeipa-1.0.0.0.jar in target directory.

Configuring resource

  • create user in FreeIPA
  • set membership to user groups: ipausers, trust admins, admins
  • inspire by sample to configure your own resource

Debugging

  • Verify if service account has set password never expire, has "User authentication types" "Password" and not needed to change password at first log on.
  • Try to log in with created service account (user) to FreeIPA web GUI & verify if you have required permissions to create/update/delete user, create/update/delete groups & roles and his memberships.
  • Set up Logger for package "io.artin.idm.connector.freeipa" to TRACE in midpoint over System/Logging/Loggers & verify midpoint.log for error details.
  • In some cases FreeIPA missconfiguration cause to return HTML error page instead of JSON and this is showd as error message in Test Connection "org.json.JSONException(A JSONObject text must begin with '{' at 1 [character 2 line 1])"

License

Licensed under the Apache License 2.0.

Status

FreeIPA Connector is intended for production use. Tested with MidPoint version 4.0 LTS. The connector was introduced as a contribution to midPoint project by ARTIN and is not officially supported by Evolveum. If you need support, please contact idm@artinsolutions.com.

About

Polygon/ConnId connector for FreeIPA

License:Apache License 2.0


Languages

Language:Java 100.0%