I had a similar setup as yours, for #1 I think I did have to use 389 console to enable posix attributes so the user could login to linux, i'm not sure how to make this automatic. For #2 this is because windows passwords are encrypted differently, and linux can use the windows password hash.
Hi all,
I have installed a 389ds which sync entries from an Active Directory running on Windows 2008 R2 Enterprise Server. Everything works fine even Password Sync. But I have still 2 problems I don't get solved:
1. It's not possible to sync the UNIX attributes from AD to 389ds. Any hints?
2. Passwords are not synced during an initial full re-syncronization. Only password changes on an AD are synced. So I have to reset a user's password and after that the password will be transmitted to the 389ds.
Best regards
--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users