[Fedora-directory-users] Sync AD

Thu Sep 22 06:05:02 UTC 2005

On 9/21/05, Dimitri Yioulos <dyioulos at firstbhph.com> wrote:
>
> On Wednesday 21 September 2005 11:38 am, Nabeel Moidu wrote:
> > Dimitri
> > Can you tell us where u got stuck or what is the error.
> > For me the sync was pretty straight through except for
> > finding the passsync.msi file which was in the installation package
> > itself( i wasted a lot of time googling for it).
> > By the way i used the default windows administrator user and setup
> > the sync without the ssl stuff.
> > Regards
> > Nabeel
> >
> > On 9/21/05, David Boreham <david_list at boreham.org> wrote:
> > > >Thanks for pointing me to the manual - I've read it. I'm sure it's my
> > > > own stupidity that has caused me to misconfigure something regarding
> > > > sync. I
> > >
> > > was
> > >
> > > >hoping that someone who had gone through the process of setting up
> > >
> > > winsync
> > >
> > > >might share that with me; perhaps that would help me catch my error.
> > > >Obviously, the manual didn't work for a non-genius like me.
> > >
> > > The step by step guide in the manual was written by someone
> > > that had gone through the steps themselves (a non-developer).
> > > Anyway, could you try the steps listed in the 'troubleshooting'
> > > section of the winsync manual chapter, in particular enable
> > > replication logging ? That will probably produce some useful
> > > error log output, which you can post here and we'll attempt to
> > > determine what's not working.
> > >
> > >
> > >
> > >
> > > --
> > > Fedora-directory-users mailing list
> > > Fedora-directory-users at redhat.com
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
> Nabeel,
>
> Thanks for your response!
>
> I'm not sure where I'm getting stuck (and, at this point, I'm just totally
> confused). If using the default administrator for sync purposes works,
> then
> that's what I'll do. Do I need to create a corresponding user anywhere on
> the FDS box (in FDS or in the underlying OS [actually, the underlying OS
> doesn't like the user "administrator"]). I don't care just yet about
> password synchronization, so do I need to use the Windows sync program? Is
> it really just a matter of creating the proper sync agreement?

Dimitri
I'll tell you the way i did in mine.I don't know if its the perfect way or
if it will bug me later.But so far it has worked.
In the windows part of the passsync.msi configuration (just run the msi file
again to reconfigure , for some reason the modify option never comes in the
windows 2003 services.msc tool as said in the tutorial) give the options for
user name as cn=sync manager , cn =config and the search base
ou=people,dc=domain,dc=com ( try going by what the tutorial says as far as
possible).
In the FDS create under the config a new Rolewith name sync manager and the
bind user in the sync agreement should be
cn=Administrator,cn=users,dc=domain,dc=com(the windows domain
administrator).
I didn't do anything further .I just started the sync and it worked.
As i told i am a beginner in LDAP , and have not completely read the FDS
schema docs ( I will do them before i finish this work) .When it all goes
into production once i get postfix also working with this then i will have
to plan which user with what privilege to use where and all that stuff.
I am in India and my timings is different from most of yours , thats why i
couldn't reply yesterday.
Regards
Nabeel

Thanks.
>
> Dimitri
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20050922/ce63d21d/attachment.html>