<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#ffffff" text="#000000">
    On 05/31/2011 06:30 PM, Albert Teh wrote:
    <blockquote
      cite="mid:BANLkTi=u3gNPu0i+-W0ew-ejEPtK6amBmg@mail.gmail.com"
      type="cite"><br>
      <br>
      <div class="gmail_quote">On Tue, May 31, 2011 at 2:58 PM, Rich
        Megginson <span dir="ltr">&lt;<a moz-do-not-send="true"
            href="mailto:rmeggins@redhat.com" target="_blank">rmeggins@redhat.com</a>&gt;</span>
        wrote:<br>
        <blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt
          0.8ex; border-left: 1px solid rgb(204, 204, 204);
          padding-left: 1ex;">
          <div bgcolor="#ffffff" text="#000000">
            <div> On 05/31/2011 12:49 PM, Albert Teh wrote: </div>
            <blockquote type="cite">Hi Rich,<br>
              <br>
              <div> Sorry, What I understand doing the OneWay Sync from
                the AD to the DS <br>
                <br>
                Users in the Active Directory domain are synced if it is
                configured in the sync agreement by selecting the <span><b>Sync
                    New Windows Users</b></span> option. All of the
                Windows users are copied to the Directory Server when
                synchronization is initiated and then new users are
                synced over when they are created. <br>
                <br>
                I do not need to do any AD to DS Group Sync<br>
                <br>
                and I am not doing any DS sync to the AD.<br>
              </div>
            </blockquote>
            /usr/lib/mozldap/ldapsearch -x -h <a moz-do-not-send="true"
              href="http://wodcstage-1.ottawa.ad.algonquincollege.com"
              target="_blank">wodcstage-1.ottawa.ad.algonquincollege.com</a>
            -w - -D
            "cn=mailadm,cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com"
            -s base -b "" "objectclass=*"<br>
            <br>
            You should get the contents of the AD<br>
            <br>
            /usr/lib/mozldap/ldapsearch -x -h <a moz-do-not-send="true"
              href="http://wodcstage-1.ottawa.ad.algonquincollege.com"
              target="_blank">wodcstage-1.ottawa.ad.algonquincollege.com</a>
            -w - -D
            "cn=mailadm,cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com"
            -s sub -b
            "cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com"
            "objectclass=person"<br>
            <br>
            you should get the list of users
            <div>
              <div><br>
                <blockquote type="cite"><br>
                  <br>
                  Thanks.<br>
                  Al<br>
                  <br>
                  <div class="gmail_quote">On Tue, May 31, 2011 at 1:40
                    PM, Rich Megginson <span dir="ltr">&lt;<a
                        moz-do-not-send="true"
                        href="mailto:rmeggins@redhat.com"
                        target="_blank">rmeggins@redhat.com</a>&gt;</span>
                    wrote:<br>
                    <blockquote class="gmail_quote" style="margin: 0pt
                      0pt 0pt 0.8ex; border-left: 1px solid rgb(204,
                      204, 204); padding-left: 1ex;">
                      <div bgcolor="#ffffff" text="#000000">
                        <div> On 05/31/2011 10:30 AM, Albert Teh wrote:
                          <blockquote type="cite"><br>
                            HI Rich,<br>
                            <br>
                            [root@algldap ~]#
                            /usr/lib/mozldap/ldapsearch -x -w - -D
                            cn="Directory Manager" -b
                            "ou=People,dc=algonquincollege,dc=com"
                            "(|(objectclass=ntuser)(objectclass=ntgroup))"<br>
                            Enter bind password:<br>
                            [root@algldap ~]#<br>
                            <br>
                            No Entry found !!!.<br>
                          </blockquote>
                        </div>
                        You have to tell directory server which entries
                        you want to sync.<br>
                        See <a moz-do-not-send="true"
href="http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html-single/Administration_Guide/index.html#Windows_Sync-About_Windows_Sync"
                          target="_blank">http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html-single/Administration_Guide/index.html#Windows_Sync-About_Windows_Sync</a>
                        <div>
                          <div>
                            <blockquote type="cite"><br>
                              Thanks.<br>
                              Albert<br>
                              <br>
                              <div class="gmail_quote">On Tue, May 31,
                                2011 at 11:42 AM, Rich Megginson <span
                                  dir="ltr">&lt;<a
                                    moz-do-not-send="true"
                                    href="mailto:rmeggins@redhat.com"
                                    target="_blank">rmeggins@redhat.com</a>&gt;</span>
                                wrote:<br>
                                <blockquote class="gmail_quote"
                                  style="margin: 0pt 0pt 0pt 0.8ex;
                                  border-left: 1px solid rgb(204, 204,
                                  204); padding-left: 1ex;">
                                  <div bgcolor="#ffffff" text="#000000">
                                    <div> On 05/30/2011 08:32 AM, Albert
                                      Teh wrote: </div>
                                    <blockquote type="cite">Hi Rich,<br>
                                      <br>
                                      <div> I followed the Guide and
                                        still got the same result.
                                        Checked with&nbsp; the AD
                                        administrator, the AD's user:
                                        mailadm has a full privilege.<br>
                                      </div>
                                    </blockquote>
                                    /usr/bin/ldapsearch -x -w - -D
                                    cn="Directory Manager"-b
                                    "ou=People,dc=algonquincollege,dc=com"
"(|(objectclass=ntuser)(objectclass=ntgroup))"<br>
                                    <br>
                                    How many entries match that search?
                                    <div>
                                      <div><br>
                                        <blockquote type="cite"><br>
                                          Thanks.<br>
                                          Albert<br>
                                          &nbsp; &nbsp; <br>
                                          Here is the Windows Sync
                                          Agreement info:<br>
                                          <br>
                                          [root@algldap slapd-algldap]#
                                          /usr/lib/mozldap/ldapsearch -w
                                          - -D cn="Directory Manager" -b
                                          cn=config cn=ADSync<br>
                                          Enter bind password:<br>
                                          version: 1<br>
                                          dn:
                                          cn=ADSync,cn=replica,cn=dc\3Dalgonquincollege\2Cdc\3Dcom,cn=mapping
                                          tree,c<br>
                                          &nbsp;n=config<br>
                                          objectClass: top<br>
                                          objectClass:
                                          nsDSWindowsReplicationAgreement<br>
                                          description: AD Sync Agreement<br>
                                          cn: ADSync<br>
                                          nsds7WindowsReplicaSubtree:
                                          cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=co<br>
                                          &nbsp;m<br>
                                          nsds7DirectoryReplicaSubtree:
                                          ou=People,
                                          dc=algonquincollege,dc=com<br>
                                          nsds7NewWinUserSyncEnabled: on<br>
                                          nsds7NewWinGroupSyncEnabled:
                                          on<br>
                                          nsds7WindowsDomain: <a
                                            moz-do-not-send="true"
                                            href="http://ottawa.ad.algonquincollege.com"
                                            target="_blank">ottawa.ad.algonquincollege.com</a><br>
                                          nsDS5ReplicaRoot:
                                          dc=algonquincollege,dc=com<br>
                                          nsDS5ReplicaHost: <a
                                            moz-do-not-send="true"
                                            href="http://wodcstage-1.ottawa.ad.algonquincollege.com"
                                            target="_blank">wodcstage-1.ottawa.ad.algonquincollege.com</a><br>
                                          nsDS5ReplicaPort: 389<br>
                                          nsDS5ReplicaBindDN:
                                          cn=mailadm,cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc<br>
                                          &nbsp;=com<br>
                                          nsDS5ReplicaBindMethod: SIMPLE<br>
                                          nsDS5ReplicaCredentials:
                                          {DES}U68ooQM3C15xjJ/taDmy0A==<br>
                                          nsds5replicareapactive: 0<br>
                                          nsds5replicaLastUpdateStart:
                                          20110530141648Z<br>
                                          nsds5replicaLastUpdateEnd:
                                          20110530141648Z<br>
nsds5replicaChangesSentSinceStartup:<br>
                                          nsds5replicaLastUpdateStatus:
                                          0 Replica acquired
                                          successfully: Incremental upd<br>
                                          &nbsp;ate succeeded<br>
                                          nsds5replicaUpdateInProgress:
                                          FALSE<br>
                                          nsds5replicaLastInitStart:
                                          20110530140648Z<br>
                                          nsds5replicaLastInitEnd:
                                          20110530140648Z<br>
                                          nsds5replicaLastInitStatus: 0
                                          Total update succeeded<br>
                                          [root@algldap slapd-algldap]#<br>
                                          <br>
                                          <br>
                                          <br>
                                          <div class="gmail_quote">On
                                            Fri, May 27, 2011 at 10:57
                                            AM, Rich Megginson <span
                                              dir="ltr">&lt;<a
                                                moz-do-not-send="true"
                                                href="mailto:rmeggins@redhat.com"
                                                target="_blank">rmeggins@redhat.com</a>&gt;</span>
                                            wrote:<br>
                                            <blockquote
                                              class="gmail_quote"
                                              style="margin: 0pt 0pt 0pt
                                              0.8ex; border-left: 1px
                                              solid rgb(204, 204, 204);
                                              padding-left: 1ex;">
                                              <div bgcolor="#ffffff"
                                                text="#000000">
                                                <div> On 05/27/2011
                                                  04:22 AM, Albert Teh
                                                  wrote:
                                                  <blockquote
                                                    type="cite">Hi Rich,<br>
                                                    <br>
                                                    I reinstalled
                                                    389-ds-base 1.2.8.3
                                                    from EPEL5 and added
                                                    onewaysync set as
                                                    fromWindows in the
                                                    multimaster
                                                    replication plugin.
                                                    I still got the same
                                                    result with no user
                                                    created in the DS
                                                    subtree.<br>
                                                  </blockquote>
                                                </div>
                                                Have you read <a
                                                  moz-do-not-send="true"
href="http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html-single/Administration_Guide/index.html#Windows_Sync-About_Windows_Sync"
                                                  target="_blank">http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html-single/Administration_Guide/index.html#Windows_Sync-About_Windows_Sync</a>
                                                <div>
                                                  <div><br>
                                                    <blockquote
                                                      type="cite"><br>
                                                      Errors log:<br>
                                                      <br>
                                                      [27/May/2011:06:18:26
                                                      -0400]
                                                      NSMMReplicationPlugin
                                                      - Beginning total
                                                      update of replica
                                                      "agmt="cn=ADSync"
(wodcstage-1:389)".<br>
                                                      [27/May/2011:06:18:26
                                                      -0400]
                                                      NSMMReplicationPlugin
                                                      - Finished total
                                                      update of replica
                                                      "agmt="cn=ADSync"
                                                      (wodcstage-1:389)".
                                                      Sent 0 entries.<br>
                                                      <br>
                                                      <br>
                                                      Access log:<br>
                                                      <br>
                                                      [27/May/2011:06:18:29
                                                      -0400] conn=1
                                                      op=114 SRCH
                                                      base="cn=ADSync,cn=replica,cn=dc\3Dalgonquincollege\2Cdc\3Dcom,cn=mapping




                                                      tree,cn=config"
                                                      scope=0
                                                      filter="(|(objectClass=*)(objectClass=ldapsubentry))"
                                                      attrs="nsds5replicaLastUpdateStart


                                                      nsds5replicaLastUpdateEnd

                                                      nsds5replicaChangesSentSinceStartup

                                                      nsds5replicaLastUpdateStatus

                                                      nsds5replicaUpdateInProgress

                                                      nsds5replicaLastInitStart

                                                      nsds5replicaLastInitEnd

                                                      nsds5replicaLastInitStatus

nsds5BeginReplicaRefresh"<br>
                                                      [27/May/2011:06:18:29
                                                      -0400] conn=1
                                                      op=114 RESULT
                                                      err=0 tag=101
                                                      nentries=1 etime=<br>
                                                      <br>
                                                      Thanks for your
                                                      help.<br>
                                                      <br>
                                                      Albert<br>
                                                      <br>
                                                      <br>
                                                      <br>
                                                      <div
                                                        class="gmail_quote">On

                                                        Thu, May 26,
                                                        2011 at 11:13
                                                        AM, Rich
                                                        Megginson <span
                                                          dir="ltr">&lt;<a
moz-do-not-send="true" href="mailto:rmeggins@redhat.com" target="_blank">rmeggins@redhat.com</a>&gt;</span>
                                                        wrote:<br>
                                                        <blockquote
                                                          class="gmail_quote"
                                                          style="margin:
                                                          0pt 0pt 0pt
                                                          0.8ex;
                                                          border-left:
                                                          1px solid
                                                          rgb(204, 204,
                                                          204);
                                                          padding-left:
                                                          1ex;">
                                                          <div
                                                          bgcolor="#ffffff"
                                                          text="#000000">
                                                          <div> On
                                                          05/26/2011
                                                          08:58 AM,
                                                          Albert Teh
                                                          wrote:
                                                          <blockquote
                                                          type="cite">Hi,<br>
                                                          <br>
                                                          We are setting
                                                          up a new
                                                          CENTOS-DS
                                                          version 8.1.0.
                                                          and CENTOS 5.5
                                                          and attempt to
                                                          synchronize
                                                          with the
                                                          existing 2003
                                                          Windows AD
                                                          server.<br>
                                                          Performing&nbsp;
                                                          the full sync
                                                          completed.
                                                          There is no
                                                          user created
                                                          in the DS
                                                          subtree.<br>
                                                          <br>
                                                          We would like
                                                          to perform one
                                                          way Sync:&nbsp; AD
                                                          ----&gt; DS.
                                                          Once it works,
                                                          we will set up
                                                          the password
                                                          Sync from the
                                                          AD to DS. <br>
                                                          </blockquote>
                                                          </div>
                                                          One way sync
                                                          isn't
                                                          supported with
                                                          8.1.0.&nbsp; I
                                                          suggest using
                                                          389-ds-base
                                                          1.2.8.3 from
                                                          EPEL5 which
                                                          does support
                                                          one way sync.&nbsp;
                                                          <a
                                                          moz-do-not-send="true"
href="http://directory.fedoraproject.org/wiki/One_Way_Active_Directory_Sync"
target="_blank">http://directory.fedoraproject.org/wiki/One_Way_Active_Directory_Sync</a><br>
                                                          <blockquote
                                                          type="cite">
                                                          <div><br>
                                                          AD:&nbsp;&nbsp;
                                                          cn=Users,cn=location,dc=ad,dc=domain,dc=com<br>
                                                          DS:&nbsp;&nbsp;
                                                          ou=Peoples,dc=domain,dc=com<br>
                                                          <br>
                                                          errors log:<br>
                                                          <br>
                                                          <br>
                                                          [26/May/2011:10:20:34

                                                          -0400]
                                                          NSMMReplicationPlugin
                                                          - Beginning
                                                          total update
                                                          of replica
                                                          "agmt="cn=ADsync"
(wodcstage-1:389)".<br>
                                                          [26/May/2011:10:20:34

                                                          -0400]
                                                          NSMMReplicationPlugin
                                                          - Finished
                                                          total update
                                                          of replica
                                                          "agmt="cn=ADsync"
                                                          (wodcstage-1:389)".

                                                          Sent 0
                                                          entries.<br>
                                                          <br>
                                                          access log:<br>
                                                          <br>
                                                          26/May/2011:10:20:37

                                                          -0400] conn=11
                                                          op=819 SRCH
                                                          base="cn=ADsync,
                                                          cn=replica,
                                                          cn=\22dc=algonquincollege,
                                                          dc=com\22,
                                                          cn=mapping
                                                          tree,
                                                          cn=config"
                                                          scope=0
                                                          filter="(|(objectClass=*)(objectClass=ldapsubentry))"
                                                          attrs="nsds5replicaLastUpdateStart



                                                          nsds5replicaLastUpdateEnd


                                                          nsds5replicaChangesSentSinceStartup


                                                          nsds5replicaLastUpdateStatus


                                                          nsds5replicaUpdateInProgress


                                                          nsds5replicaLastInitStart


                                                          nsds5replicaLastInitEnd


nsds5replicaLastInitStatus
nsds5BeginReplicaRefresh"<br>
                                                          [26/May/2011:10:20:37

                                                          -0400] conn=11
                                                          op=819 RESULT
                                                          err=0 tag=101
                                                          nentries=1
                                                          etime=0<br>
                                                          <br>
                                                          <br>
                                                          Thanks.<br>
                                                          Albert<br>
                                                          <br>
                                                          <br>
                                                          </div>
                                                          <pre><fieldset></fieldset>
--
389 users mailing list
<a moz-do-not-send="true" href="mailto:389-users@lists.fedoraproject.org" target="_blank">389-users@lists.fedoraproject.org</a>
<a moz-do-not-send="true" href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a></pre>
                                                          </blockquote>
                                                          <br>
                                                          </div>
                                                        </blockquote>
                                                      </div>
                                                      <br>
                                                      <br clear="all">
                                                      <br>
                                                      -- <br>
                                                      Albert Teh<br>
                                                      Email: <a
                                                        moz-do-not-send="true"
href="mailto:Teh.Albert@Gmail.com" target="_blank">Teh.Albert@Gmail.com</a><br>
                                                    </blockquote>
                                                    <br>
                                                  </div>
                                                </div>
                                              </div>
                                            </blockquote>
                                          </div>
                                          <br>
                                          <br clear="all">
                                          <br>
                                          -- <br>
                                          Albert Teh<br>
                                          Email: <a
                                            moz-do-not-send="true"
                                            href="mailto:Teh.Albert@Gmail.com"
                                            target="_blank">Teh.Albert@Gmail.com</a><br>
                                        </blockquote>
                                        <br>
                                      </div>
                                    </div>
                                  </div>
                                </blockquote>
                              </div>
                              <br>
                              <br clear="all">
                              <br>
                              -- <br>
                              Albert Teh<br>
                              Email: <a moz-do-not-send="true"
                                href="mailto:Teh.Albert@Gmail.com"
                                target="_blank">Teh.Albert@Gmail.com</a><br>
                            </blockquote>
                            <br>
                          </div>
                        </div>
                      </div>
                    </blockquote>
                  </div>
                  <br>
                  <br clear="all">
                  <br>
                  -- <br>
                  Albert Teh<br>
                  Email: <a moz-do-not-send="true"
                    href="mailto:Teh.Albert@Gmail.com" target="_blank">Teh.Albert@Gmail.com</a><br>
                </blockquote>
                <br>
              </div>
            </div>
          </div>
        </blockquote>
        <div><br>
          <br>
          HI Rich,<br>
          <br>
          These two commands worked and got the result. I have been gone
          through&nbsp; the Windows Sync agreement setup for many times. I
          could not figure out what went wrong.<br>
          Thanks a lot for your help again.<br>
        </div>
      </div>
    </blockquote>
    Are you sure that the user
    "cn=mailadm,cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com" has
    Replication/Replicator rights in AD/Windows?<br>
    <blockquote
      cite="mid:BANLkTi=u3gNPu0i+-W0ew-ejEPtK6amBmg@mail.gmail.com"
      type="cite">
      <div class="gmail_quote">
        <div><br>
          Albert<br>
          &nbsp;<br>
        </div>
      </div>
      /usr/lib/mozldap/ldapsearch -x -h <a moz-do-not-send="true"
        href="http://wodcstage-1.ottawa.ad.algonquincollege.com/"
        target="_blank">wodcstage-1.ottawa.ad.algonquincollege.com</a>
      -w - -D "cn=mailadm,cn=Users,dc=[root@algldap ~]#
      /usr/lib/mozldap/ldapsearch -x -h <a moz-do-not-send="true"
        href="http://wodcstage-1.ottawa.ad.algonquincollege.com">wodcstage-1.ottawa.ad.algonquincollege.com</a>
      -w - -D
      "cn=mailadm,cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com"
      -s base -b ""
      "objectclass=*"&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Enter
      bind password:<br>
      version: 1<br>
      dn:<br>
      currentTime: 20110601001342.0Z<br>
      subschemaSubentry:
      CN=Aggregate,CN=Schema,CN=Configuration,DC=ad,DC=algonquinc<br>
      &nbsp;ollege,DC=com<br>
      dsServiceName: CN=NTDS
      Settings,CN=WODCSTAGE-1,CN=Servers,CN=Default-First-Sit<br>
      &nbsp;e-Name,CN=Sites,CN=Configuration,DC=ad,DC=algonquincollege,DC=com<br>
      namingContexts: CN=Configuration,DC=ad,DC=algonquincollege,DC=com<br>
      namingContexts:
      CN=Schema,CN=Configuration,DC=ad,DC=algonquincollege,DC=com<br>
      namingContexts: DC=ottawa,DC=ad,DC=algonquincollege,DC=com<br>
      defaultNamingContext: DC=ottawa,DC=ad,DC=algonquincollege,DC=com<br>
      schemaNamingContext:
      CN=Schema,CN=Configuration,DC=ad,DC=algonquincollege,DC=c<br>
      &nbsp;om<br>
      configurationNamingContext:
      CN=Configuration,DC=ad,DC=algonquincollege,DC=com<br>
      rootDomainNamingContext: DC=ad,DC=algonquincollege,DC=com<br>
      supportedControl: 1.2.840.113556.1.4.319<br>
      supportedControl: 1.2.840.113556.1.4.801<br>
      supportedControl: 1.2.840.113556.1.4.473<br>
      supportedControl: 1.2.840.113556.1.4.528<br>
      supportedControl: 1.2.840.113556.1.4.417<br>
      supportedControl: 1.2.840.113556.1.4.619<br>
      supportedControl: 1.2.840.113556.1.4.841<br>
      supportedControl: 1.2.840.113556.1.4.529<br>
      supportedControl: 1.2.840.113556.1.4.805<br>
      supportedControl: 1.2.840.113556.1.4.521<br>
      supportedControl: 1.2.840.113556.1.4.970<br>
      supportedControl: 1.2.840.113556.1.4.1338<br>
      supportedControl: 1.2.840.113556.1.4.474<br>
      supportedControl: 1.2.840.113556.1.4.1339<br>
      supportedControl: 1.2.840.113556.1.4.1340<br>
      supportedControl: 1.2.840.113556.1.4.1413<br>
      supportedControl: 2.16.840.1.113730.3.4.9<br>
      supportedControl: 2.16.840.1.113730.3.4.10<br>
      supportedControl: 1.2.840.113556.1.4.1504<br>
      supportedControl: 1.2.840.113556.1.4.1852<br>
      supportedControl: 1.2.840.113556.1.4.802<br>
      supportedControl: 1.2.840.113556.1.4.1907<br>
      supportedControl: 1.2.840.113556.1.4.1948<br>
      supportedLDAPVersion: 3<br>
      supportedLDAPVersion: 2<br>
      supportedLDAPPolicies: MaxPoolThreads<br>
      supportedLDAPPolicies: MaxDatagramRecv<br>
      supportedLDAPPolicies: MaxReceiveBuffer<br>
      supportedLDAPPolicies: InitRecvTimeout<br>
      supportedLDAPPolicies: MaxConnections<br>
      supportedLDAPPolicies: MaxConnIdleTime<br>
      supportedLDAPPolicies: MaxPageSize<br>
      supportedLDAPPolicies: MaxQueryDuration<br>
      supportedLDAPPolicies: MaxTempTableSize<br>
      supportedLDAPPolicies: MaxResultSetSize<br>
      supportedLDAPPolicies: MaxNotificationPerConn<br>
      supportedLDAPPolicies: MaxValRange<br>
      highestCommittedUSN: 3103418<br>
      supportedSASLMechanisms: GSSAPI<br>
      supportedSASLMechanisms: GSS-SPNEGO<br>
      supportedSASLMechanisms: EXTERNAL<br>
      supportedSASLMechanisms: DIGEST-MD5<br>
      dnsHostName: <a moz-do-not-send="true"
        href="http://WODCStage-1.ottawa.ad.algonquincollege.com">WODCStage-1.ottawa.ad.algonquincollege.com</a><br>
      ldapServiceName:
      <a class="moz-txt-link-abbreviated" href="mailto:ad.algonquincollege.com:wodcstage-1$@OTTAWA.AD.ALGONQUINCOLLE">ad.algonquincollege.com:wodcstage-1$@OTTAWA.AD.ALGONQUINCOLLE</a><br>
      &nbsp;<a moz-do-not-send="true" href="http://GE.COM">GE.COM</a><br>
      serverName:
      CN=WODCSTAGE-1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=C<br>
      &nbsp;onfiguration,DC=ad,DC=algonquincollege,DC=com<br>
      supportedCapabilities: 1.2.840.113556.1.4.800<br>
      supportedCapabilities: 1.2.840.113556.1.4.1670<br>
      supportedCapabilities: 1.2.840.113556.1.4.1791<br>
      isSynchronized: TRUE<br>
      isGlobalCatalogReady: TRUE<br>
      domainFunctionality: 2<br>
      forestFunctionality: 2<br>
      domainControllerFunctionality: 2<br>
      [root@algldap ~]#<br>
      <br>
      Partial out:<br>
      <br>
      [root@algldap ~]# /usr/lib/mozldap/ldapsearch -x -h <a
        moz-do-not-send="true"
        href="http://wodcstage-1.ottawa.ad.algonquincollege.com">wodcstage-1.ottawa.ad.algonquincollege.com</a>
      -w - -D
      "cn=mailadm,cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com"
      -s sub -b "cn=Users,dc=ottawa,dc=ad,dc=algonquincollege,dc=com"
      "objectclass=person" | more<br>
      Enter bind password:<br>
      version: 1<br>
      dn:
      CN=isp-transfer,CN=Users,DC=ottawa,DC=ad,DC=algonquincollege,DC=com<br>
      objectClass: top<br>
      objectClass: person<br>
      objectClass: organizationalPerson<br>
      objectClass: user<br>
      cn: isp-transfer<br>
      description: Transfer for Genesis Data to International Student
      Program share<br>
      givenName: isp-transfer<br>
      distinguishedName:
      CN=isp-transfer,CN=Users,DC=ottawa,DC=ad,DC=algonquincolleg<br>
      &nbsp;e,DC=com<br>
      instanceType: 4<br>
      whenCreated: 20040517155823.0Z<br>
      whenChanged: 20081016173006.0Z<br>
      displayName: isp-transfer<br>
      uSNCreated: 255422<br>
      memberOf:
      CN=NAS_Transfer_Genesis_ISP,OU=Groups,DC=ottawa,DC=ad,DC=algonquinco<br>
      &nbsp;llege,DC=com<br>
      uSNChanged: 255422<br>
      name: isp-transfer<br>
      objectGUID:: EaeRW3KiMUac6hzEs//X/g==<br>
      userAccountControl: 66048<br>
      badPwdCount: 0<br>
      codePage: 0<br>
      countryCode: 0<br>
      badPasswordTime: 0<br>
      lastLogoff: 0<br>
      lastLogon: 0<br>
      pwdLastSet: 127292831041031250<br>
      primaryGroupID: 513<br>
      objectSid:: AQUAAAAAAAUVAAAArhyVdhR1dBOOfkA4DN8BAA==<br>
      accountExpires: 9223372036854775807<br>
      logonCount: 0<br>
      sAMAccountName: isp-transfer<br>
      sAMAccountType: 805306368<br>
      userPrincipalName: <a moz-do-not-send="true"
        href="mailto:isp-transfer@algonquincollege.com">isp-transfer@algonquincollege.com</a><br>
      lockoutTime: 0<br>
      objectCategory:
      CN=Person,CN=Schema,CN=Configuration,DC=ad,DC=algonquincollege<br>
      &nbsp;,DC=com<br>
      dSCorePropagationData: 20110131155635.0Z<br>
      dSCorePropagationData: 20091227191115.0Z<br>
      dSCorePropagationData: 20090127144505.0Z<br>
      dSCorePropagationData: 20081201175842.0Z<br>
      dSCorePropagationData: 16010714223649.0Z<br>
      lastLogonTimestamp: 128686221598537375<br>
      <br>
      dn: CN=heatweb,CN=Users,DC=ottawa,DC=ad,DC=algonquincollege,DC=com<br>
      objectClass: top<br>
      objectClass: person<br>
      objectClass: organizationalPerson<br>
      objectClass: user<br>
      cn: heatweb<br>
      sn: heatweb<br>
      description: Used to communicate between HEAT and IIS<br>
      distinguishedName:
      CN=heatweb,CN=Users,DC=ottawa,DC=ad,DC=algonquincollege,DC=<br>
      &nbsp;com<br>
      instanceType: 4<br>
      whenCreated: 20050218192725.0Z<br>
      whenChanged: 20081016172611.0Z<br>
      displayName: heatweb<br>
      uSNCreated: 89976<br>
      memberOf: CN=Heat
      Users,OU=Groups,DC=ottawa,DC=ad,DC=algonquincollege,DC=com<br>
      uSNChanged: 89976<br>
      name: heatweb<br>
      objectGUID:: 07KJaAgkGUapXbQN7VprrQ==<br>
      userAccountControl: 66048<br>
      badPwdCount: 0<br>
      codePage: 0<br>
      countryCode: 0<br>
      <br>
      <br>
      <br>
      <br>
      <br>
      <br>
      <br>
      <br clear="all">
      <br>
      -- <br>
      Albert Teh<br>
      Email: <a class="moz-txt-link-abbreviated" href="mailto:Teh.Albert@Gmail.com">Teh.Albert@Gmail.com</a><br>
    </blockquote>
    <br>
  </body>
</html>