Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Sample resource is set to invoke enable-mailbox command in Exchange powershell after new AD user has been created.Please note, that the sample integration is not straightforward since current connector does not support CredSSP and thus workaround is in place.

AD/LDAP connector 1.4.4 or later supports CredSSP protocol. In that case the use of CredSSP is easy, it just need setting for authentication mechanism and domain:

Code Block
<resource> 
    ...
    <connectorConfiguration> 
        <configurationProperties> 
            ...
            <winRmDomain>foo</winRmDomain> 
            <winRmAuthenticationScheme>credssp</winRmAuthenticationScheme> 
        </configurationProperties>

For connectors prior to version 1.4.4 the integration is not straightforward due to the lack of CredSSP  in the connector. Various workarounds have to be used. Basically winrs is launched on the remote machine to connect locally with -a[llow]d[elegate].

JIRA
serverEvolveum Jira
serverId701b45f2-090c-3276-8ac9-f45eedf731bc
keyMID-3356

After sample resource is imported into midPoint, please set your actual hostnames and passwords, save the resource and click "Refresh schema" button. There are some Exchange attributes preset in the sample, however if you need more, you have to set them as operational and add to schema manually. Connector does not see all Exchange attributes - 

JIRA
serverEvolveum Jira
serverId701b45f2-090c-3276-8ac9-f45eedf731bc
keyMID-3379

...