I had a similar setup as yours, for #1 I think I did have to use 389 console to enable posix attributes so the user could login to linux, i&#39;m not sure how to make this automatic.  For #2 this is because windows passwords are encrypted differently, and linux can use the windows password hash.<div>
<br>hope this helps..</div><div><br></div><div><br><div class="gmail_quote">2011/11/15 Walter Neu <span dir="ltr">&lt;<a href="mailto:w.neu@eurodata.de">w.neu@eurodata.de</a>&gt;</span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Hi all,<br>
<br>
I have installed a 389ds which sync entries from an Active Directory running on Windows 2008 R2 Enterprise Server. Everything works fine even Password Sync. But I have still 2 problems I don&#39;t get solved:<br>
<br>
1.    It&#39;s not possible to sync the UNIX attributes from AD to 389ds. Any hints?<br>
2.    Passwords are not synced during an initial full re-syncronization. Only password changes on an AD are synced. So I have to reset a user&#39;s password and after that the password will be transmitted to the 389ds.<br>

<br>
Best regards<br>
<br>
<br>--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br></blockquote></div><br></div>