Univention Bugzilla – Bug 51564
sync of proxyAddresses (ad->ucs) broken
Last modified: 2021-06-24 15:56:46 CEST
ucr get connector/ad/mapping/user/primarymail true # ad object DN: CN=ucs2,CN=Users,DC=utotest235win,DC=local mail: ucs2-p-new5@autotest235.local proxyAddresses: smtp:ucs2-a4@autotest235.local proxyAddresses: smtp:ucs2-a3@autotest235.local proxyAddresses: SMTP:ucs2-p-new5@autotest235.local # ucs object dn: uid=ucs2,cn=users,dc=autotest235,dc=local mailPrimaryAddress: ucs2-p-new5@autotest235.local mailAlternativeAddress: ucs2-a3@autotest235.local mailAlternativeAddress: ucs2-a4@autotest235.local removed the following attributes from the ad object proxyAddresses: smtp:ucs2-a4@autotest235.local proxyAddresses: smtp:ucs2-a3@autotest235.local # ad object DN: CN=ucs2,CN=Users,DC=utotest235win,DC=local mail: ucs2-p-new5@autotest235.local proxyAddresses: SMTP:ucs2-p-new5@autotest235.local # ucs object dn: uid=ucs2,cn=users,dc=autotest235,dc=local mailPrimaryAddress: ucs2-p-new5@autotest235.local mailAlternativeAddress: ucs2-a3@autotest235.local mailAlternativeAddress: ucs2-a4@autotest235.local so these two mailAlternativeAddress's should be removed by the connector, but they are not
Strange, it worked for me (as well before and as after the changes of Bug #18501): root@admember:~# eval "$(ucr shell)"; udm users/user create --position="cn=users,$ldap_base" --set username=user8 --set lastname=name1 --set password=univention --set mailPrimaryAddress=user8@autotest.local --append mailAlternativeAddress=other8@autotest.local --append mailAlternativeAddress=extern8@autotest.local root@admember:~# univention-ldapsearch uid=user8 | grep mail Object created: uid=user8,cn=users,dc=autotest,dc=local mailAlternativeAddress: other8@autotest.local mailAlternativeAddress: extern8@autotest.local mailPrimaryAddress: user8@autotest.local root@admember:~# vim 8.ldif root@admember:~# cat 8.ldif DN: CN=user8,CN=Users,DC=autotestwin,DC=local changetype: modify delete: proxyAddresses proxyAddresses: smtp:other8@autotest.local proxyAddresses: smtp:extern8@autotest.local root@admember:~# univention-adsearch samaccountname=user8 | grep proxy proxyAddresses: smtp:extern8@autotest.local proxyAddresses: smtp:other8@autotest.local proxyAddresses: SMTP:user8@autotest.local root@admember:~# ldbmodify -H ldap://THE_AD_SERVER.autotestwin.local --simple-bind-dn=cn=Administrator,cn=users,DC=autotestwin,DC=local --password="$(</etc/univention/connector/ad/bindpw)" 8.ldif Modified 1 records successfully root@admember:~# univention-adsearch samaccountname=user8 | grep proxy proxyAddresses: SMTP:user8@autotest.local root@admember:~# univention-ldapsearch uid=user8 | grep mail mailPrimaryAddress: user8@autotest.local
We should have a test case demonstrating the broken-ness and verify-ing if the problem is fixed. I would write a fix then.