mvn clean installFreeIPA Connector
Identity connector for RedHat FreeIPA.
| Functionality | unknown |
| Development status | community (maintained by community effort) |
| Support status | community |
| Origin | Inalogy |
| Support provided by | Inalogy |
| Target systems | RedHat FreeIPA |
| Protocol | REST |
| Source code | https://github.com/artinsolutions/midpoint-connector-freeipa |
| Documentation | https://github.com/artinsolutions/midpoint-connector-freeipa |
connector-freeipa
Polygon/ConnId connector for FreeIPA
Description
Connector for [FreeIPA](https://www.freeipa.org/) using [REST API](https://www.freeipa.org/page/API_Examples).
Capabilities and Features
-
Schema: YES
-
Provisioning: YES
-
Live Synchronization: No
-
Password: YES
-
Activation: YES
-
Script execution: No
FreeIPA Connector contains support for USER, ROLE and GROUP entity.
Build
[Download](https://github.com/artinsolutions/midpoint-connector-freeipa) and build the project with usual:
After successful the build, you can find connector-freeipa-1.0.0.0.jar in target directory.
Configuring resource
-
create user in FreeIPA
-
set membership to user groups: ipausers, trust admins, admins
-
inspire by [sample](https://github.com/artinsolutions/midpoint-connector-freeipa/tree/master/sample) to configure your own resource
Debugging
-
Verify if service account has set password never expire, has "User authentication types" "Password" and not needed to change password at first log on.
-
Try to log in with created service account (user) to FreeIPA web GUI & verify if you have required permissions to create/update/delete user, create/update/delete groups & roles and his memberships.
-
Set up Logger for package "io.artin.idm.connector.freeipa" to TRACE in midpoint over System/Logging/Loggers & verify midpoint.log for error details.
-
In some cases FreeIPA missconfiguration cause to return HTML error page instead of JSON and this is showd as error message in Test Connection "org.json.JSONException(A JSONObject text must begin with '{' at 1 [character 2 line 1])"
License
Licensed under the [Apache License 2.0](/LICENSE).
Status
FreeIPA Connector is intended for production use. Tested with MidPoint version 4.0 LTS. The connector was introduced as a contribution to midPoint project by [ARTIN](https://www.artinsolutions.com) and is not officially supported by Evolveum. If you need support, please contact idm@artinsolutions.com.