Nicholas Byrne wrote:
Hi all,
Is it possible to do a syncronisation of a windows peer without the
windows user who i use to bind being a domain admin? I have a read
only user with which i can run ldapsearch and find all users data in
the AD directory but using the same user to sync with fails. The
replication status says "total update completed" but i see no updates
to the my FDS directory.
If i modify this user in AD to be a domain admin it works correctly,
but what i want to know is why can't i use a read-only user to sync?
Is there any way around this?
Because in order for sync to work, Fedora DS must be
able to modify the
AD data, to send updates to AD. Windows Sync is bi-directional, and
cannot be changed to uni-directional (at least, not without a lot of
hacking).
You do not have to use the Domain Admin user. You can create another
user which has the ability to read-write the AD data.
Thanks
Nick
This e-mail is the property of Quadriga Worldwide Ltd, intended for
the addressee only and confidential. Any dissemination, copying or
distribution of this message or any attachments is strictly prohibited.
If you have received this message in error, please notify us
immediately by replying to the message and deleting it from your
computer.
Messages sent to and from Quadriga may be monitored.
Quadriga cannot guarantee any message delivery method is secure or
error-free. Information could be intercepted, corrupted, lost,
destroyed, arrive late or incomplete, or contain viruses.
We do not accept responsibility for any errors or omissions in this
message and/or attachment that arise as a result of transmission.
You should carry out your own virus checks before opening any attachment.
Any views or opinions presented are solely those of the author and do
not necessarily represent those of Quadriga.
--
Fedora-directory-users mailing list
Fedora-directory-users(a)redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users