Exemplo de arquivos de configuração do ADAM
Todas as configurações do ADAMSync são armazenadas em arquivos xml.
Arquivo de configuração padrão com comentários
Há um arquivo de configuração padrão chamado MS-AdamSyncConf.xml incluso na instalação do ADAMSync. Faça uma cópia desse arquivo para ter um exemplo base para consultar no futuro. Este exemplo é o arquivo de configuração padrão com comentários adicionados.
<?xml version="1.0"?>
<doc>
<configuration>
<!-- Sync File Description -->
<description>MyCompany ADAMSync Configuration</description>
<security-mode>object</security-mode>;
<!-- source-ad-name = fqdn of the domain controller -->;
<source-ad-name>;fully.qualified.domain.name.of.domain.controller</source-ad-name>;
<!-- source-ad-partition = root AD domain partition -->;
<source-ad-partition>;dc=myCompany,dc=com</source-ad-partition>;
<!-- source-ad-account = use this to specify an account to connect to AD -->;
<!-- if not used, the current user will be used -->;
<source-ad-account>;</source-ad-account>;
<account-domain>;</account-domain>;
<!-- target-dn = target ADAM OU -->;
<target-dn>;ou=servicenow users,dc=myCompany,dc=adam</target-dn>;
<query>;
<!-- base-dn = should be the root AD partition if you want all users -->;
<base-dn>;dc=myCompany,dc=com</base-dn>;
<!-- object-filter = standard ldap query format, this will grab all users -->;
<!-- need to review results to see if you should modify this filter -->;
<object-filter>;(objectCategory=person)</object-filter>;
<attributes>;
<!-- include=userproxy requires objectSID to link back to the AD account -->;
<include>;objectSID</include>;
<include>;givenName</include>;
<include>;sn</include>;
<include>;description</include>;
<include>;title</include>;
<include>;company</include>;
<include>;department</include>;
<include>;mail</include>;
<include>;physicalDeliveryOfficeName</include>;
<include>;telephoneNumber</include>;
<include>;sAMAccountName</include>;
</attributes>;
</query>;
<!-- map for user-to-userproxy object types -->;
<user-proxy>;
<source-object-class>;user</source-object-class>;
<target-object-class>;userProxy</target-object-class>;
</user-proxy>;
<schedule>;
<aging>;
<frequency>;0</frequency>;
<num-objects>;0</num-objects>;
</aging>;
<schtasks-cmd>;</schtasks-cmd>;
</schedule>;
</configuration>;
<synchronizer-state>;
<dirsync-cookie>;</dirsync-cookie>;
<status>;</status>;
<authoritative-adam-instance>;</authoritative-adam-instance>;
<configuration-file-guid>;</configuration-file-guid>;
<last-sync-attempt-time>;</last-sync-attempt-time>;
<last-sync-success-time>;</last-sync-success-time>;
<last-sync-error-time>;</last-sync-error-time>;
<last-sync-error-string>;</last-sync-error-string>;
<consecutive-sync-failures>;</consecutive-sync-failures>;
<user-credentials>;</user-credentials>;
<runs-since-last-object-update>;</runs-since-last-object-update>;
<runs-since-last-full-sync>;</runs-since-last-full-sync>;
</synchronizer-state>;
</doc>;Arquivo de configuração de filtros LDAP
É possível fornecer qualquer nível de filtragem no valor do filtro de objeto no arquivo de configuração. Use a sintaxe de consulta LDAP padrão com os seguintes caracteres de escape xml em vez dos operadores padrão.
- E = "&" substituir por &
- OU = "|" (linha vertical) substituir por |
- NÃO = "!" substituir por !
Arquivo de configuração de referência
Este é um arquivo de configuração real que pode ser consultado como uma amostra.
<?xml version="1.0"?>;
<doc>;
<configuration>;
<description>;SNCTest ADAMSync Configuration</description>;
<security-mode>;object</security-mode>;
<source-ad-name>;domaincontroller.service-now.com</source-ad-name>;
<source-ad-partition>;dc=service-now,dc=com</source-ad-partition>;
<source-ad-account>;</source-ad-account>;
<account-domain>;</account-domain>;
<target-dn>;ou=servicenow users,dc=service-now,dc=adam</target-dn>;
<query>;
<base-dn>;dc=service-now,dc=com</base-dn>;
<object-filter>;(objectCategory=person)</object-filter>;
<attributes>;
<include>;objectSID</include>;
<include>;givenName</include>;
<include>;sn</include>;
<include>;description</include>;
<include>;title</include>;
<include>;company</include>;
<include>;department</include>;
<include>;mail</include>;
<include>;physicalDeliveryOfficeName</include>;
<include>;telephoneNumber</include>;
<include>;userAccountControl</include>;
</attributes>;
</query>;
<user-proxy>;
<source-object-class>;user</source-object-class>;
<target-object-class>;userProxy</target-object-class>;
</user-proxy>;
<schedule>;
<aging>;
<frequency>;0</frequency>;
<num-objects>;0</num-objects>;
</aging>;
<schtasks-cmd>;</schtasks-cmd>;
</schedule>;
</configuration>;
<synchronizer-state>;
<dirsync-cookie>;</dirsync-cookie>;
<status>;</status>;
<authoritative-adam-instance>;</authoritative-adam-instance>;
<configuration-file-guid>;</configuration-file-guid>;
<last-sync-attempt-time>;</last-sync-attempt-time>;
<last-sync-success-time>;</last-sync-success-time>;
<last-sync-error-time>;</last-sync-error-time>;
<last-sync-error-string>;</last-sync-error-string>;
<consecutive-sync-failures>;</consecutive-sync-failures>;
<user-credentials>;</user-credentials>;
<runs-since-last-object-update>;</runs-since-last-object-update>;
<runs-since-last-full-sync>;</runs-since-last-full-sync>;
</synchronizer-state>;
</doc>;