Using LDAP all users and groups records not sync

Flowable Engine
1

Hi,

I am using LDAP configuration in my flowable-idm and i found that detail of users and group showing correctly in flowable-idm UI portal as in LDAP but when i check in act_id_user and act_id_group table of postgres then users and groups entries not available in these table.

Please help me for docker configuration that sync all data of LDAP to postgresql db’s tables.

docker-compose.yml:
environment:

  • SERVER_PORT=9090
  • SPRING_DATASOURCE_DRIVER-CLASS-NAME=org.postgresql.Driver
  • SPRING_DATASOURCE_URL=<>
  • SPRING_DATASOURCE_USERNAME=<>
  • SPRING_DATASOURCE_PASSWORD=<>
    #Default LDAP Admin User
  • FLOWABLE_IDM_APP_ADMIN_USER_ID=<>
  • FLOWABLE_IDM_APP_ADMIN_PASSWORD=<>
  • FLOWABLE_IDM_APP_ADMIN_FIRST_NAME=<>
  • FLOWABLE_COMMON_APP_IDM_ADMIN_USER=<>
  • FLOWABLE_COMMON_APP_IDM_ADMIN_PASSWORD=<>
    #FLowable-Ldap Configuration
  • FLOWABLE_IDM_LDAP_ENABLED=true
  • FLOWABLE_IDM_LDAP_SERVER=
  • FLOWABLE_IDM_LDAP_PORT=389
  • FLOWABLE_IDM_LDAP_USER=<>
  • FLOWABLE_IDM_LDAP_PASSWORD=<>
  • FLOWABLE_IDM_LDAP_BASE_DN=<>
    #Users
  • FLOWABLE_IDM_LDAP_USER_BASE_DN=<>
  • FLOWABLE_IDM_LDAP_QUERY_USER_BY_FULL_NAME_LIKE=(&(objectClass=inetOrgPerson)(|({0}= {1} )({2}= {3} )))
  • FLOWABLE_IDM_LDAP_QUERY_USER_BY_ID=(&(objectClass=inetOrgPerson)(uid={0}))
  • FLOWABLE_IDM_LDAP_QUERY_ALL_USERS=(objectClass=inetOrgPerson)
  • FLOWABLE_IDM_LDAP_ATTRIBUTE_USER_ID=uid
  • FLOWABLE_IDM_LDAP_ATTRIBUTE_FIRST_NAME=cn
  • FLOWABLE_IDM_LDAP_ATTRIBUTE_LAST_NAME=sn
    #Groups
  • FLOWABLE_IDM_LDAP_GROUP_BASE_DN=<>
  • FLOWABLE_IDM_LDAP_QUERY_GROUPS_FOR_USER=(&(objectClass=posixGroup)(gidNumber={0}))
  • FLOWABLE_IDM_LDAP_QUERY_ALL_GROUPS=(objectClass=posixGroup)
  • FLOWABLE_IDM_LDAP_QUERY_GROUP_BY_ID=(&(objectClass=posixGroup)(gidNumber={0}))
  • FLOWABLE_IDM_LDAP_ATTRIBUTE_GROUP_ID=gidNumber
  • FLOWABLE_IDM_LDAP_ATTRIBUTE_GROUP_NAME=cn
  • FLOWABLE_IDM_LDAP_CACHE_GROUP_SIZE=10000
  • FLOWABLE_IDM_LDAP_CACHE_GROUP_EXPIRATION=180000
2

Hey @ankit45621,

When you are using LDAP the Flowable user and groups are empty, since you are using a third party provider for the users and groups.

There isn’t a sync option out of the box.

Cheers,
Filip

3

@filiphr Thanks for response but when i use only LDAP configration then i am getting issue. Can you please help me to solve at: Act_id_priv_mapping not adding user of group record