![\"lsc_logo\"](\"https:\/\/homepages.lcc-toulouse.fr\/colombet\/wp-content\/uploads\/sites\/2\/2019\/10\/lsc_logo.png\"){kind=logo}
<\/p>\n<\/p>\n
LDAP Synchronization Connector<\/strong> (LSC) est un connecteur libre permettant de synchroniser les identit\u00e9s entre un annuaire LDAP et n’importe quelle source de donn\u00e9es, y compris toute base de donn\u00e9es avec un connecteur JDBC, un autre serveur LDAP, des fichiers plats … Depuis debian 9, lsc est disponible en 2.1.4 via apt-get install lsc. La documentation est disponible : https:\/\/lsc-project.org\/<\/a> Comment utiliser la commande<\/p>\n Exemple de fichier lsc.xml<\/p>\n Lancer une synchronisation manuelle<\/p>\n
\n<\/p>\n# more \/etc\/apt\/sources.list.d\/lsc-project.list\ndeb http:\/\/lsc-project.org\/debian lsc main\ndeb-src http:\/\/lsc-project.org\/debian lsc main\n\n# wget -O - http:\/\/ltb-project.org\/wiki\/lib\/RPM-GPG-KEY-LTB-project | sudo apt-key add -\n\n# apt-get update\n\n# apt-get install lsc\n\n# lsc\n2019\/10\/22 18:35:56 [lsc] No java executable found on PATH or in JAVA_HOME! Aborting.\n2019\/10\/22 18:35:56 [lsc] Define JAVA_HOME or adjust your PATH variable to include java.\n\n# apt-get install openjdk-8-jre\n<\/code><\/pre>\n# lsc\nusage: lsc\n -a,--asynchronous-synchronize <arg> Asynchronous synchronization task\n (one of the available tasks or\n 'all')\n -c,--clean <arg> Cleaning type (one of the available\n tasks or 'all')\n -f,--config <arg> Specify configuration directory\n -h,--help Get this text\n -i,--time-limit <arg> Time limit in parallel server mode\n in seconds (default: 3600)\n -n,--dryrun Don't update the directory at all\n -nc,--nocreate Don't create any entry\n -nd,--nodelete Don't delete\n -nr,--nomodrdn Don't rename (MODRDN)\n -nu,--noupdate Don't update\n -s,--synchronize <arg> Synchronization task (one of the\n available tasks or 'all')\n -t,--threads <arg> Number of parallel threads to\n synchronize a task (default: 5)\n -v,--validate Validate configuration (check\n connections ...)\n -x,--convert Convert lsc.properties to lsc.xml\n (-f is mandatory while converting)\n<\/code><\/pre>\n# more \/etc\/lsc\/lsc.xml\n\n<?xml version="1.0" ?>\n <lsc xmlns="http:\/\/lsc-project.org\/XSD\/lsc-core-2.1.xsd" revision="0">\n\n <!-- connections -->\n <connections>\n <ldapConnection>\n <name>ad-src-conn<\/name>\n <url>ldap:\/\/xxx.xxx.xxx.xxx:389\/DC=formation,DC=fr<\/url>\n <username>CN=Administrator,CN=Users,DC=formation,DC=fr<\/username>\n <password>Pa$$w0rd<\/password>\n <authentication>SIMPLE<\/authentication>\n <referral>IGNORE<\/referral>\n <derefAliases>NEVER<\/derefAliases>\n <version>VERSION_3<\/version>\n <pageSize>1000<\/pageSize>\n <factory>com.sun.jndi.ldap.LdapCtxFactory<\/factory>\n <tlsActivated>false<\/tlsActivated>\n <\/ldapConnection>\n\n <ldapConnection>\n <name>ldap-dst-conn<\/name>\n <url>ldap:\/\/localhost:389\/dc=formation,dc=fr<\/url>\n <username>cn=admin,dc=formation,dc=fr<\/username>\n <password>Pa$$w0rd<\/password>\n <authentication>SIMPLE<\/authentication>\n <referral>IGNORE<\/referral>\n <derefAliases>NEVER<\/derefAliases>\n <version>VERSION_3<\/version>\n <pageSize>-1<\/pageSize>\n <factory>com.sun.jndi.ldap.LdapCtxFactory<\/factory>\n <tlsActivated>false<\/tlsActivated>\n <\/ldapConnection>\n <\/connections>\n\n <!-- tasks -->\n <tasks>\n <task>\n <name>ADSyncTask<\/name>\n <bean>org.lsc.beans.SimpleBean<\/bean>\n\n <ldapSourceService>\n <name>ad-src-service<\/name>\n <connection reference="ad-src-conn" \/>\n <baseDn>CN=Users,DC=formation,DC=fr<\/baseDn>\n <pivotAttributes>\n <string>sAMAccountName<\/string>\n <\/pivotAttributes>\n <fetchedAttributes>\n <string>cn<\/string>\n <string>sn<\/string>\n <string>sAMAccountName<\/string>\n <\/fetchedAttributes>\n <getAllFilter>(&(objectClass=user)(!(sAMAccountName=Administrator))(!(sAMAccountName=Guest))(!(sAMAccountName=dns-dc1ad))(!(sAMAccountName=krbtgt)))<\/getAllFilter>\n <getOneFilter>(&(objectClass=user)(sAMAccountName={sAMAccountName}))<\/getOneFilter>\n <cleanFilter>(&(objectClass=user)(sAMAccountName={uid}))<\/cleanFilter>\n <\/ldapSourceService>\n\n <ldapDestinationService>\n <name>ldap-dst-service<\/name>\n <connection reference="ldap-dst-conn" \/>\n <baseDn>ou=users,dc=formation,dc=fr<\/baseDn>\n <pivotAttributes>\n <string>uid<\/string>\n <\/pivotAttributes>\n <fetchedAttributes>\n <string>objectClass<\/string>\n <string>cn<\/string>\n <string>sn<\/string>\n <string>uid<\/string>\n <\/fetchedAttributes>\n <getAllFilter>(objectClass=inetOrgPerson)<\/getAllFilter>\n <getOneFilter>(&(objectClass=inetOrgPerson)(uid={sAMAccountName}))<\/getOneFilter>\n\n <\/ldapDestinationService>\n\n <propertiesBasedSyncOptions>\n <mainIdentifier>"uid=" + srcBean.getDatasetFirstValueById("sAMAccountName") + ",ou=users,dc=formation,dc=fr"<\/mainIdentifier>\n <defaultDelimiter>;<\/defaultDelimiter>\n <defaultPolicy>FORCE<\/defaultPolicy>\n <conditions>\n <create>true<\/create>\n <update>true<\/update>\n <delete>true<\/delete>\n <changeId>false<\/changeId>\n <\/conditions>\n <dataset>\n <name>objectClass<\/name>\n <policy>KEEP<\/policy>\n <defaultValues><\/defaultValues>\n <forceValues>\n <string>"top"<\/string>\n <string>"person"<\/string>\n <string>"organizationalPerson"<\/string>\n <string>"inetOrgPerson"<\/string>\n <string>"extensibleObject"<\/string>\n <\/forceValues>\n <\/dataset>\n <dataset>\n <name>uid<\/name>\n <policy>KEEP<\/policy>\n <createValues>\n <string>srcBean.getDatasetFirstValueById("sAMAccountName")<\/string>\n <\/createValues>\n <\/dataset>\n\n <\/propertiesBasedSyncOptions>\n <\/task>\n <\/tasks>\n <\/lsc>\n<\/code><\/pre>\n# \/usr\/bin\/lsc -c all -s all\n<\/code><\/pre>\n<\/span><\/a>R\u00e9f\u00e9rences<\/h2>\n