[13.5.2]通过ssoadm.jsp创建数据存储->属性与“服务模式”不匹配

时间:2019-05-23 10:31:14

标签: openam

我想通过ssoadm.jsp创建一个DataSore,因为我使用端点URL来自动执行配置过程。

[localhost]/ssoadm.jsp?cmd=create-datastore

我放:

domain name (previously created with default coniguration): myDomain
data store name: myDataStore
type of DataStore: LDAPv3
Attribut values: LDAPv3=org.forgerock.openam.idrepo.ldap.DJLDAPv3Repo

然后我得到类似的内容:属性名称“ LDAPv3”与服务模式不匹配。我应该在“属性值”字段中输入什么?给出一个示例:

"sunIdRepoClass=com.sun.identity.idm.plugins.files.FilesRepo"

PS:我不想从[Localhost] / realm / IDRepoSelectType创建数据存储,因为有jato.pageSession我无法自动获取。

PS2:这是我第一次问有关Stackoverflow的问题,对不起,如果我的问题与期望不符。我尽力了。

1 个答案:

答案 0 :(得分:0)

ssoadm.jsp?cmd=list-datastore-types

显示用户数据存储类型的列表 每种用户数据存储类型都有要设置的特定属性。不幸的是,这些没有明确记录。服务属性在相关的服务定义XML模板中定义,该模板在初始配置期间(在潜在标签交换之后)加载到OpenAM配置数据存储中。对于用户数据存储,您可以在OPENAM_CONFIGURATION_DIRECTORY/template/xml/idRepoService.xml

中找到它们

例如对于用户数据存储类型LDAPv3,定义了以下服务属性

sunIdRepoClass
sunIdRepoAttributeMapping
sunIdRepoSupportedOperations
sun-idrepo-ldapv3-ldapv3Generic
sun-idrepo-ldapv3-config-ldap-server
sun-idrepo-ldapv3-config-authid
sun-idrepo-ldapv3-config-authpw
openam-idrepo-ldapv3-heartbeat-interval
openam-idrepo-ldapv3-heartbeat-timeunit
sun-idrepo-ldapv3-config-organization_name
sun-idrepo-ldapv3-config-connection-mode
sun-idrepo-ldapv3-config-connection_pool_min_size
sun-idrepo-ldapv3-config-connection_pool_max_size
sun-idrepo-ldapv3-config-max-result
sun-idrepo-ldapv3-config-time-limit
sun-idrepo-ldapv3-config-search-scope
sun-idrepo-ldapv3-config-users-search-attribute
sun-idrepo-ldapv3-config-users-search-filter
sun-idrepo-ldapv3-config-user-objectclass
sun-idrepo-ldapv3-config-user-attributes
sun-idrepo-ldapv3-config-createuser-attr-mapping
sun-idrepo-ldapv3-config-isactive
sun-idrepo-ldapv3-config-active
sun-idrepo-ldapv3-config-inactive
sun-idrepo-ldapv3-config-groups-search-attribute
sun-idrepo-ldapv3-config-groups-search-filter
sun-idrepo-ldapv3-config-group-container-name
sun-idrepo-ldapv3-config-group-container-value
sun-idrepo-ldapv3-config-group-objectclass
sun-idrepo-ldapv3-config-group-attributes
sun-idrepo-ldapv3-config-memberof
sun-idrepo-ldapv3-config-uniquemember
sun-idrepo-ldapv3-config-memberurl
sun-idrepo-ldapv3-config-dftgroupmember
sun-idrepo-ldapv3-config-roles-search-attribute
sun-idrepo-ldapv3-config-roles-search-filter
sun-idrepo-ldapv3-config-role-search-scope
sun-idrepo-ldapv3-config-role-objectclass
sun-idrepo-ldapv3-config-filterrole-objectclass
sun-idrepo-ldapv3-config-filterrole-attributes
sun-idrepo-ldapv3-config-nsrole
sun-idrepo-ldapv3-config-nsroledn
sun-idrepo-ldapv3-config-nsrolefilter
sun-idrepo-ldapv3-config-people-container-name
sun-idrepo-ldapv3-config-people-container-value
sun-idrepo-ldapv3-config-auth-naming-attr
sun-idrepo-ldapv3-config-psearchbase
sun-idrepo-ldapv3-config-psearch-filter
sun-idrepo-ldapv3-config-psearch-scope
com.iplanet.am.ldap.connection.delay.between.retries
sun-idrepo-ldapv3-config-service-attributes
sun-idrepo-ldapv3-dncache-enabled
sun-idrepo-ldapv3-dncache-size
openam-idrepo-ldapv3-behera-support-enabled

最好通过控制台创建用户数据存储实例,然后使用ssoadm.jsp?cmd=show-datastore列出属性。您会得到一长串的损耗物...在这里可以显示很多。 创建数据存储区时,请确保使用属性指定绑定DN的密码

sun-idrepo-ldapv3-config-authpw=PASSWORD