<html><body><div style="color:#000; background-color:#fff; font-family:times new roman, new york, times, serif;font-size:12pt"><div><span id="result_box" class="" lang="en"><span class="hps">I'll try to</span> <span class="hps">explain</span> <span class="hps">again.</span><br><br><span class="hps">architecture</span><span>:</span><br><br><span class="hps">accounts</span> <span class="hps">systems</span> <span class="hps atn">(</span><span>DB2</span><span>)</span> <span class="hps">-</span> <span class="hps">data load</span><br> <span class="hps">|</span><br> <span class="hps">|</span> <span class="hps">Password is sent in</span> <span class="hps">plaintext</span><br> <span class="hps">|</span><br><span class="hps">Directory</span> <span class="hps">Server</span> <span class="hps
atn">(</span><span class="">encrypted password</span> <span class="hps">in</span> <span class="hps">SHA</span><span class="hps">256</span><span>)</span><br> <span class="hps">|</span><br> <span class="hps">|</span><br> <span class="hps">|</span> <span class="hps">Changelog</span> <span class="hps atn">(</span><span>AES</span> <span class="hps">encrypted password</span><span>)</span><br> <span class="hps">|</span><br> <span class="hps">AD</span> <span class="hps">(password</span> <span class="hps">kerberizada</span><span>)</span></span></div><div style="color: rgb(0, 0, 0); font-size: 16px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><br><span
id="result_box" class="" lang="en"></span></div><div style="color: rgb(0, 0, 0); font-size: 16px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><span id="result_box" class="" lang="en"></span><span id="result_box" class="" lang="en"> <span class="hps">What am I</span> <span class="hps">trying to do</span><span class="">?</span></span></div><br><span></span><span id="result_box" class="" lang="en"><span class="hps">I want to</span> <span class="hps">restore</span> <span class="hps">using the</span> <span class="hps">Changelog</span><span> data,</span> <span class="hps">through replication</span><span>.</span> <span class="hps">This is because</span> <span class="hps">the password.</span><br><br><span class="hps">If I try to</span> <span class="hps">synchronize the</span> <span class="hps">password that</span> <span class="hps">is in the</span> <span class="hps">LDAP</span> <span
class="hps">database</span> <span class="hps">it will not work</span> <span class="hps">because of the</span> <span class="hps">encryption</span><span class="">.<br><br><br>Você poderia me ajudar?<br></span></span><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;"> <div style="font-family: times new roman,new york,times,serif; font-size: 12pt;"> <div dir="ltr"> <hr size="1"> <font face="Arial" size="2"> <b><span style="font-weight: bold;">De:</span></b> Grzegorz Dwornicki <gd1100@gmail.com><br> <b><span style="font-weight: bold;">Para:</span></b> Denise Cosso <guanaes51@yahoo.com.br>; General discussion list for the 389 Directory server project. <389-users@lists.fedoraproject.org> <br> <b><span style="font-weight: bold;">Enviadas:</span></b> Quarta-feira, 18 de Setembro de 2013 18:24<br> <b><span style="font-weight: bold;">Assunto:</span></b> Re: [389-users] 389-DS Changelog<br> </font> </div> <div
class="y_msg_container"><br><div id="yiv7387602606"><div dir="ltr">What do you mean by "reprocess the information changelog"? You mean to look what was 389 doing during the replication? Or maybe to push the replication again? </div>
<div dir="ltr">It's me who don't understand your problem and sorry for that. </div>
<div class="yiv7387602606gmail_quote">18 wrz 2013 22:54, "Denise Cosso" <<a rel="nofollow" ymailto="mailto:guanaes51@yahoo.com.br" target="_blank" href="mailto:guanaes51@yahoo.com.br">guanaes51@yahoo.com.br</a>> napisał(a):<br><blockquote class="yiv7387602606gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div><div style="font-size: 12pt; font-family: times new roman,new york,times,serif;"> <span>Hi</span><span>,</span><br><div style="font-style: normal; font-size: 16px; background-color: transparent; font-family: times new roman,new york,times,serif;">
<span lang="en"><br><br><span>Has a</span> <span>new</span> <span>option for</span> <span>console</span>-> <span>windows</span> <span>sync</span> <span>Agreement</span><span>,</span> <span>I configured</span> <span>and managed to</span> <span>replicate</span> <span>my</span> <span>LDAP to</span> <span>AD</span><span>.</span> <span>What I am</span> <span>having trouble</span> <span>is</span> <span>to reprocess</span> <span>the information</span> <span>changelog</span><span>.</span> <span>Is this possible?</span><br>
<br><br><span>Denise</span></span><br><span></span></div><div style="font-style: normal; font-size: 16px; background-color: transparent; font-family: times new roman,new york,times,serif;"><br><span></span></div><div style="font-style: normal; font-size: 16px; background-color: transparent; font-family: times new roman,new york,times,serif;">
<br><span></span></div><div style="font-style: normal; font-size: 16px; background-color: transparent; font-family: times new roman,new york,times,serif;"><span></span></div><div><br></div> <div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">
<div style="font-family: times new roman,new york,times,serif; font-size: 12pt;"> <div dir="ltr"> <hr size="1"> <font face="Arial"> <b><span style="font-weight: bold;">De:</span></b> Grzegorz Dwornicki <<a rel="nofollow" ymailto="mailto:gd1100@gmail.com" target="_blank" href="mailto:gd1100@gmail.com">gd1100@gmail.com</a>><br>
<b><span style="font-weight: bold;">Para:</span></b> Denise Cosso <<a rel="nofollow" ymailto="mailto:guanaes51@yahoo.com.br" target="_blank" href="mailto:guanaes51@yahoo.com.br">guanaes51@yahoo.com.br</a>> <br> <b><span style="font-weight: bold;">Enviadas:</span></b> Quarta-feira, 18 de Setembro de 2013 17:25<br>
<b><span style="font-weight: bold;">Assunto:</span></b> Re: [389-users] 389-DS Changelog<br> </font> </div> <div><br><div><div dir="ltr">I don't understand. Were you able to replicate password in plain text? This is impossible. Without tls password will not be replicated. I think here lays the problem. </div>
<div dir="ltr">Please post your configuration without sensitive informations or describe how you setup this. </div>
<div dir="ltr">Grzegorz. </div>
<div>18 wrz 2013 21:07, "Denise Cosso" <<a rel="nofollow" ymailto="mailto:guanaes51@yahoo.com.br" target="_blank" href="mailto:guanaes51@yahoo.com.br">guanaes51@yahoo.com.br</a>> napisał(a):<br><blockquote style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div><div style="font-size: 12pt; font-family: times new roman,new york,times,serif;"><div><span lang="en"><span>Hi</span><span>,</span><br><br><br><br> <span>I have installed</span> <span>on my machine</span> <span>the</span> <span>centos-</span><span>389</span> <span>(</span><span>389-</span><span>ds</span><span>-base-</span><span>1.2.11.15</span><span>-</span><span>22.el6_4.x86_64</span><span>)</span> <span>and I'm</span> <span>studying the</span> <span>replica</span> <span>LDAP</span> <span>-</span><span>></span> <span>AD</span><span>.</span><br>
<br> <span>The</span> <span>replica</span> <span>worked</span><span>,</span> <span>with the exception</span> <span>of the</span> <span>password</span><span>.</span> <span>In my</span> <span>base</span> <span>the</span> <span>password</span> <span>is</span> <span>encrypted</span> <span>in</span> <span>SHA256</span><span>, well</span> <span>managed</span> <span>by the system</span> <span>sending the password</span> <span>in plain text</span> <span>to</span> <span>AD</span><span>.</span> <span>Changelog</span> <span>could</span> <span>encrypt the password</span> <span>in</span> <span>AES</span><span>.</span><br>
<br> <span>I did a test</span> <span>back</span> <span>to</span> <span>base</span> <span>AD</span> <span>and tried to</span> <span>send the changes to</span> <span>AD</span> <span>(send</span> <span>update)</span> <span>but</span> <span>it did not work</span><span>.</span><br>
<br> <span>Does anyone know</span> <span>how do I</span> <span>reprocess the</span> <span>Changelog</span><span>?</span><br><br><br><span>I await</span> <span>the return</span><span>,</span><br><br><br><span>Thank you</span><span>,</span></span></div>
<div style="font-style: normal; font-size: 16px; background-color: transparent; font-family: times new roman,new york,times,serif;"><br></div><div style="font-style: normal; font-size: 16px; background-color: transparent; font-family: times new roman,new york,times,serif;">
Denise<br><span lang="en"><span></span></span><span></span></div></div></div><br>--<br>
389 users mailing list<br>
<a rel="nofollow" ymailto="mailto:389-users@lists.fedoraproject.org" target="_blank" href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
<a rel="nofollow" target="_blank" href="https://admin.fedoraproject.org/mailman/listinfo/389-users">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br></blockquote></div></div><br><br></div> </div> </div> </div>
</div></blockquote></div></div><br><br></div> </div> </div> </div></body></html>