<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Talwar, Puneet (NIH/NIAID) wrote:
<blockquote
cite="mid87C44BA2A3787E46AA0CEC479402F6B601FA96@NIHCESMLBX5.nih.gov"
type="cite">
<pre wrap="">Thank you, I manage to download the binary RPM of RHEL 4 on my workstation.
Now, I setup the FD to sync with MS AD domain which we have here, but one
question I have do I need to have enterprise admin right to sync the FD to
the AD DC server to pull user infos and etc?
</pre>
</blockquote>
Yes. There are two different connections. The main connection is from
FDS to AD - FDS does an LDAP BIND to AD to issue a sync request. When
you configure the windows sync agreement on FDS (usually using the
console), you have to specify the DN of the user on AD that has
administrative rights over the AD subtree (e.g.
cn=Administrator,cn=Users,dc=Domain,dc=TLD). So you will have to do
some work to create that user on AD, grant that user the appropriate
rights over the AD subtree, and figure out what the DN of that user is.<br>
<br>
The other connection is a "push" connection from AD to FDS for password
changes. The passsync AD plug-in intercepts password changes and
forwards them to FDS. When configuring the AD passsync service, you
will need to specify the DN of an FDS user that has the right to search
for and write the userPassword attribute in the subtree you are
sync'ing.<br>
<blockquote
cite="mid87C44BA2A3787E46AA0CEC479402F6B601FA96@NIHCESMLBX5.nih.gov"
type="cite">
<pre wrap="">
Right now when I want to search a user on the domain I am not able to do
that.</pre>
</blockquote>
On AD or FDS?<br>
<blockquote
cite="mid87C44BA2A3787E46AA0CEC479402F6B601FA96@NIHCESMLBX5.nih.gov"
type="cite">
<pre wrap="">Can you someone please provide me what I mgiht need to do to search a
particular user on the same domain?
Thanks,
-----Original Message-----
From: Brian Jones [<a class="moz-txt-link-freetext" href="mailto:bkjones@gmail.com">mailto:bkjones@gmail.com</a>]
Sent: Friday, July 08, 2005 3:37 PM
To: General discussion list for the Fedora Directory server project.
Subject: Re: [Fedora-directory-users] Installation of Fedora Directory Ser
vice on RHEL v3 or v4
Get the binary rpm. It installs just fine on RHEL 3 and 4 as per my testing.
On 7/8/05, Kevin Myer <a class="moz-txt-link-rfc2396E" href="mailto:kevin_myer@iu13.org"><kevin_myer@iu13.org></a> wrote:
</pre>
<blockquote type="cite">
<pre wrap="">Quoting "Talwar, Puneet (NIH/NIAID)" <a class="moz-txt-link-rfc2396E" href="mailto:PTALWAR@niaid.nih.gov"><PTALWAR@niaid.nih.gov></a>:
</pre>
<blockquote type="cite">
<pre wrap="">I would like to know when I run the builddsrpm.sh RHEL4 command, I get a
message saying that it cannot find RHEL4-ds.spec file.
</pre>
</blockquote>
<pre wrap="">Just curious - is there a reason you have not downloaded the binary RPM,
</pre>
</blockquote>
<pre wrap=""><!---->that
</pre>
<blockquote type="cite">
<pre wrap="">doesn't require you to compile it?
<a class="moz-txt-link-freetext" href="http://directory.fedora.redhat.com/wiki/Special:Download">http://directory.fedora.redhat.com/wiki/Special:Download</a>
Agree to the license, choose your platform, and download something that is
already prepackaged..
Kevin
--
Kevin M. Myer
Senior Systems Administrator
Lancaster-Lebanon Intermediate Unit 13 <a class="moz-txt-link-freetext" href="http://www.iu13.org">http://www.iu13.org</a>
--
Fedora-directory-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Fedora-directory-users@redhat.com">Fedora-directory-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a>
</pre>
</blockquote>
<pre wrap=""><!---->
--
Fedora-directory-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Fedora-directory-users@redhat.com">Fedora-directory-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a>
--
Fedora-directory-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Fedora-directory-users@redhat.com">Fedora-directory-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a>
</pre>
</blockquote>
</body>
</html>