none
Adamsync /sync XML not parsing error

    Question

  • Hello,

       I followed the instructions to the T using both the MS instructions found at the MS website and I read thoroughly the instructions written by a MS engineer. I am unable to post links until my account is verified (sorry). Every step runs smoothly, I receive no errors as I move along until I get to the following step. 

    ADAMSync /install localhost:7389 %windir%\ADAM\MS-AdamSyncConf.xml

    I keep getting this error and I have checked the XML file and it looks fine. 

    Error parsing XML File. Invalid at the top level of the document. Line 1, Position 1 in (null)

    Here is my XML file, but I changed some of the information just because I didn't want to post my information online. Any help would be appreciated because I have been going in circles for days. Thank you!

    <?xml version="1.0"?>
    <doc>
    <configuration>		
       <description>Custom Adamsync File</description>		
       <security-mode>object</security-mode>	        
       <source-ad-name>domainserver.domain.local</source-ad-name>		
       <source-ad-partition>DC=DN,DC=local</source-ad-partition>
       <source-ad-account></source-ad-account>                
       <account-domain></account-domain>
       <target-dn>DC=Application,DC=local</target-dn>		
      <query>			
        <base-dn>OU=Company Departments,DC=domain,DC=local</base-dn>
        <object-filter>(&#124;(objectCategory=Person)(objectCategory=OrganizationalUnit)(objectClass=Group))</object-filter>			
       <attributes>				
        <include>objectSID</include>
        <include>userPrincipalName</include>
        <include>displayName</include>
        <include>objectGUID</include>
        <include>givenName</include>
        <include>sn</include>
        <include>physicalDeliveryOfficeName</include>
        <include>telephoneNumber</include>
        <include>mail</include>
        <include>title</include>
        <include>department</include>
        <include>thumbnailphoto</include>
        <include>manager</include>
        <exclude></exclude>				
        </attributes>		
      </query>		
      <schedule>			
       <aging>				
        <frequency>0</frequency>				
        <num-objects>0</num-objects>			
       </aging>			
        <schtasks-cmd></schtasks-cmd>		
      </schedule>
      <user-proxy>
      <source-object-class>user</source-object-class>
         <target-object-class>userProxyFull</target-object-class>
       </user-proxy>
    </configuration>
    <synchronizer-state>		
      <dirsync-cookie></dirsync-cookie>		
      <status></status>		
      <authoritative-adam-instance></authoritative-adam-instance>		
      <configuration-file-guid></configuration-file-guid>		
      <last-sync-attempt-time></last-sync-attempt-time>		
      <last-sync-success-time></last-sync-success-time>		
      <last-sync-error-time></last-sync-error-time>		
      <last-sync-error-string></last-sync-error-string>		
      <consecutive-sync-failures></consecutive-sync-failures>		
      <user-credentials></user-credentials>		
      <runs-since-last-object-update></runs-since-last-object-update>		
      <runs-since-last-full-sync></runs-since-last-full-sync>	
     </synchronizer-state>
    </doc>

    Thursday, February 16, 2017 6:25 PM

All replies

  • Hi,
    As far as I know,
    source-ad-name = fqdn of the domain controller;  
    source-ad-partition = root AD domain partition;
    target-dn = DN of the AD LDS partition you will be synchronizing to;
    Please note that In 2003 ADAM, you were able to specify a sub-ou or container of the of the ADAM partition, his is not possible in 2008+ AD LDS. You must specify the head of the partition, dc=domainname,dc=com. This is publicly documented here.
    base-dn = should be the root AD partition if you want all users
    so I would firstly suggest you refer to the following articles to check if the XML file is configured correctly:
    https://blogs.technet.microsoft.com/efleis/2005/09/08/configuring-and-running-adamsync-for-the-first-time/
    https://blogs.technet.microsoft.com/askds/2012/11/12/adamsync-101/
    https://docs.servicenow.com/bundle/istanbul-servicenow-platform/page/integrate/ldap/concept/c_ExampleConfigurationFiles.html
    Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
    Best regards,
    Wendy

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com

    Friday, February 17, 2017 8:17 AM
    Moderator
  • Hello Wendy.. Thank you for responding. I followed these instructions to the T but I think I messed up the format of the XML document itself. It just is not working, so I am going to uninstall everything and just start from a fresh go at it. Maybe that will do the trick because this time I have a better understanding of how to setup LDAP. I will let you know an update once I am done.
    Friday, February 17, 2017 1:17 PM
  • Hi,

    I am checking how the issue going, if you still have any questions, please feel free to contact us.

    And if the replies as above are helpful, we would appreciate you to mark them as answers, and if you resolve it using your own solution, please share your experience and solution here. It will be greatly helpful to others who have the same question.

    Appreciate for your feedback.

    Best regards,

    Wendy


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com

    Monday, February 20, 2017 9:43 AM
    Moderator
  • Hello!

    I must have messed up the way Notepad was saving files because when I uninstalled LDAP from server A and went to server B, everything installed perfectly.

    The only issue I am running into now is that when I ran the ADAMsync it only brought over one user. It copied the main OU container but within there, only one account. I am stomped over that. 

    Not sure why the text above changed to a smaller font... Anywho, I just ran again and it brought more over. I guess it is a piecemeal experience?

    • Edited by Drezally Monday, February 20, 2017 6:48 PM Update
    Monday, February 20, 2017 5:15 PM
  • Hi,

    Please try to modify your <object-filter> line and check the result.

    All user objects (&(objectCategory=person)(objectClass=user))

    All group objects (objectCategory=group)

    All organizational unit objects (objectCategory=organizationalUnit)

    Active Directory: LDAP Syntax Filters

    https://social.technet.microsoft.com/wiki/contents/articles/5392.active-directory-ldap-syntax-filters.aspx

    Best Regards,

    Alvin Wang


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.


    Friday, February 24, 2017 7:21 AM
    Moderator
  • Hi,

    Just checking in to see if the information provided was helpful. And if the replies as above are helpful, we would appreciate you to mark them as answers, please let us know if you would like further assistance.

    Best Regards,

    Wendy


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com

    Wednesday, March 1, 2017 6:34 AM
    Moderator