Details
-
Bug
-
Resolution: Won't Fix
-
Major
-
None
-
None
-
None
-
TIER grouper tier/grouper:2.4.0-a19-u8-w1-p0-20190101-canary
Description
I have confirmed I am binding with cn=Directory Manager properly (this is my test environment).
I have the following config and I am only getting 100 results back at a time. I believe this is related to ldapSearchResultPagingSize as it appears to be only place where 100 is set.
example 389 ldap log entry.
[27/Jan/2019:20:57:12.693165069 -0500] conn=228 op=0 BIND dn="cn=Directory Manager" method=128 version=3
[27/Jan/2019:20:57:12.693283379 -0500] conn=228 op=0 RESULT err=0 tag=97 nentries=0 etime=0.0000228541 dn="cn=directory manager"
...
[27/Jan/2019:20:57:44.534697330 -0500] conn=228 op=719 SRCH base="ou=People,dc=internet2,dc=edu" scope=2 filter="(eduPersonEntitlement=urn:mace:ufl.edu:g:*)" attrs="eduPersonEntitlement"
[27/Jan/2019:20:57:44.593189667 -0500] conn=228 op=719 RESULT err=0 tag=101 nentries=100 etime=0.0058617102 notes=U,P pr_idx=0 pr_cookie=0
in grouper-loader.properties
ldap.UFdemo.url = ldap://host.docker.internal:389
ldap.UFdemo.user = cn=Directory Manager
ldap.UFdemo.pass = XXXXXXXX
ldap.UFdemo.pagedResultsSize = 1000
ldap.UFdemo.timeout = 30000
ldap.UFdemo.tls = false
changeLog.consumer.psp_User.provisionerName = psp_User
changeLog.consumer.psp_User.class = edu.internet2.middleware.grouper.pspng.PspChangelogConsumerShim
changeLog.consumer.psp_User.type = edu.internet2.middleware.grouper.pspng.LdapAttributeProvisioner
changeLog.consumer.psp_User.quartzCron = 3/5 * * * * ?
changeLog.consumer.psp_User.retryOnError = true
changeLog.consumer.psp_User.ldapPoolName = UFdemo
changeLog.consumer.psp_User.grouperIsAuthoritative = true
changeLog.consumer.psp_User.isActiveDirectory = false
changeLog.consumer.psp_User.groupSearch_batchSize = 1000
changeLog.consumer.psp_User.ldapSearchResultPagingSize = 1000
changeLog.consumer.psp_User.needsTargetSystemUsers = true
changeLog.consumer.psp_User.needsTargetSystemGroups = false
changeLog.consumer.psp_User.provisionedAttributeName = eduPersonEntitlement
changeLog.consumer.psp_User.provisionedAttributeValueFormat = urn:mace:ufl.edu:g:${group.name}
changeLog.consumer.psp_User.allProvisionedValuesPrefix = urn:mace:ufl.edu:g:
changeLog.consumer.psp_User.userSearchBaseDn = ou=People,dc=internet2,dc=edu
changeLog.consumer.psp_User.userSearchFilter = (&(objectclass=eduPerson)(uid=${subject.id}))
changeLog.consumer.psp_User.userSearchAttributes = dn,cn,uid,mail,samAccountName,uidNumber,objectclass,eduPersonPrincipalName,eduPersonEntitlement
changeLog.consumer.psp_User.userCreationBaseDn = ou=People,dc=internet2,dc=edu
changeLog.consumer.psp_User.createMissingUsers = true
changeLog.consumer.psp_User.userCreationLdifTemplate = dn: uid=${subject.id.replace("+","
+")}||uid: ${subject.id}||objectclass: top||objectclass: person||objectclass: organizationalPerson||objectclass: inetOrgPerson||objectclass: eduPerson||sn: ${subject.id}||cn: ${subject.name}||eduPersonPrincipalName: ${subject.id}
changeLog.consumer.psp_User.ldapUserCacheSize = 10000
changeLog.consumer.psp_User.userSearch_batchSize = 1000
otherJob.psp_User_full.class = edu.internet2.middleware.grouper.pspng.FullSyncStarter
otherJob.psp_User_full.quartzCron = 0 0 2 * * ? 2099
and i execute using the otherJob above using the Misc UI.