O.K., so now I can search the NT4 LDAP service using ldapsearch from a Linux
machine, but I still can't get that confounded sync agreement to
work. I have read the Windows Sync manual several times, and it implies
heavily that you should be able to create a Windows Sync agreement with NT4.
But no matter what I try, I get "unable to contact Active Directory server"
after filling out the sync agreement form.
Just for kicks, I decided to try creating a "Replication Agreement" as
opposed to a "Windows Sync" agreement. Oddly enough, I can carry this
through to completion, with the Fedora server as supplier and the NT server
as consumer (this is what we need anyway). But immediately after completing
the agreement, the replica fails to initialize.
All suggestions warmly accepted. Thanks. -Glenn.
ldapsearch options that work:
# ldapsearch -v -H ldap://nt4testbox.mydomain.edu
D "uid=admin,ou=system" -w password -b "o=mydomain.edu"
Windows Sync form options
Error: Unable to contact Active Directory server, continue?
Windows Domain Name: mydomain.edu
Sync New Windows Users: unchecked
Sync New Windows Groups: unchecked
Windows Subtree: o=mydomain.edu
DS Subtree: o=mydomain.edu
Domain Controller Host: nt4testbox
Port Num: 389
Using Encrypted SSL Connection: not checked
Bind As: uid=admin,ou=system
Replication Agreement options
Error: Replication error acquiring replica: unknown error. Error code 255.
Supplier (filled in already): fdserver.mydomain.edu:636
Using encrypted SSL connection: unchecked
Simple authentication: checked
Bind as: uid=admin,ou=system
Enable fractional replication: unchecked
Always keep directories in sync: checked
Initialize consumer now: checked