OpenIDM - 如何更新 AD 中的 UserAccountControl 字段
OpenIDM - How update the UserAccountControl field in AD
当我在 OpenIDM 上创建托管用户时,我正在尝试使用特定值 (66048) 更新 UserAccountControl AD 字段,但是我面临一个问题。相关堆栈跟踪:
Caused by: org.identityconnectors.framework.common.exceptions.ConnectorException: javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000052D: SvcErr: DSID-03
1A12D2, problem 5003 (WILL_NOT_PERFORM), data 0
^@]; remaining name 'CN=93ba7d80-b0d3-4af7-b199-66f1b1bd217a,CN=Users,DC=xxx,DC=com'
at org.identityconnectors.ldap.modify.LdapCreate.doCreate(LdapCreate.java:187)
at org.identityconnectors.ldap.modify.LdapCreate.executeImpl(LdapCreate.java:136)
at org.identityconnectors.ldap.modify.LdapCreate.execute(LdapCreate.java:80)
at org.identityconnectors.ldap.LdapConnector.create(LdapConnector.java:209)
at org.identityconnectors.framework.impl.api.local.operations.CreateImpl.create(CreateImpl.java:88)
at sun.reflect.GeneratedMethodAccessor133.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:97)
at com.sun.proxy.$Proxy27.create(Unknown Source)
at sun.reflect.GeneratedMethodAccessor133.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:96)
at com.sun.proxy.$Proxy27.create(Unknown Source)
at sun.reflect.GeneratedMethodAccessor133.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.identityconnectors.framework.impl.api.DelegatingTimeoutProxy.invoke(DelegatingTimeoutProxy.java:98)
at com.sun.proxy.$Proxy27.create(Unknown Source)
at org.identityconnectors.framework.impl.api.AbstractConnectorFacade.create(AbstractConnectorFacade.java:149)
at org.forgerock.openidm.provisioner.openicf.impl.OpenICFProvisionerService$ObjectClassResourceProvider.createInstance(OpenICFProvisionerService.java:1332)
... 151 more
我正在使用 默认 LDAP 连接器 (1.4.0.0)。如果在 Forgerock (https://bugster.forgerock.org/jira/browse/OPENICF-102) 上发现使用此连接器 UAC 字段是只读的。
我怎样才能简单地更新它?
如果您确切地知道自己在做什么,则可以将 userAccountControl 属性与 OpenIDM 一起使用。
在您的情况下,您似乎没有提供密码(UTF 16 编码的 unicodePwd)
当我在 OpenIDM 上创建托管用户时,我正在尝试使用特定值 (66048) 更新 UserAccountControl AD 字段,但是我面临一个问题。相关堆栈跟踪:
Caused by: org.identityconnectors.framework.common.exceptions.ConnectorException: javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000052D: SvcErr: DSID-03 1A12D2, problem 5003 (WILL_NOT_PERFORM), data 0 ^@]; remaining name 'CN=93ba7d80-b0d3-4af7-b199-66f1b1bd217a,CN=Users,DC=xxx,DC=com' at org.identityconnectors.ldap.modify.LdapCreate.doCreate(LdapCreate.java:187) at org.identityconnectors.ldap.modify.LdapCreate.executeImpl(LdapCreate.java:136) at org.identityconnectors.ldap.modify.LdapCreate.execute(LdapCreate.java:80) at org.identityconnectors.ldap.LdapConnector.create(LdapConnector.java:209) at org.identityconnectors.framework.impl.api.local.operations.CreateImpl.create(CreateImpl.java:88) at sun.reflect.GeneratedMethodAccessor133.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:97) at com.sun.proxy.$Proxy27.create(Unknown Source) at sun.reflect.GeneratedMethodAccessor133.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:96) at com.sun.proxy.$Proxy27.create(Unknown Source) at sun.reflect.GeneratedMethodAccessor133.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.identityconnectors.framework.impl.api.DelegatingTimeoutProxy.invoke(DelegatingTimeoutProxy.java:98) at com.sun.proxy.$Proxy27.create(Unknown Source) at org.identityconnectors.framework.impl.api.AbstractConnectorFacade.create(AbstractConnectorFacade.java:149) at org.forgerock.openidm.provisioner.openicf.impl.OpenICFProvisionerService$ObjectClassResourceProvider.createInstance(OpenICFProvisionerService.java:1332) ... 151 more
我正在使用 默认 LDAP 连接器 (1.4.0.0)。如果在 Forgerock (https://bugster.forgerock.org/jira/browse/OPENICF-102) 上发现使用此连接器 UAC 字段是只读的。
我怎样才能简单地更新它?
如果您确切地知道自己在做什么,则可以将 userAccountControl 属性与 OpenIDM 一起使用。
在您的情况下,您似乎没有提供密码(UTF 16 编码的 unicodePwd)