[389-users] 389-DS Changelog

Denise Cosso guanaes51 at yahoo.com.br
Thu Sep 19 16:33:59 UTC 2013 

I'll try to explain again.

architecture:

accounts systems (DB2) - data load
          |
          | Password is sent in plaintext
          |
Directory Server (encrypted password in SHA256)
          |
          |
          | Changelog (AES encrypted password)
          |
      AD (password kerberizada)

  What am I trying to do?
I want to restore using the Changelogdata, through replication. This is because the password.

If I try to synchronize the password that is in the LDAP database it will not work because of the encryption.


Você poderia me ajudar?


________________________________
 De: Grzegorz Dwornicki <gd1100 at gmail.com>
Para: Denise Cosso <guanaes51 at yahoo.com.br>; General discussion list for the 389 Directory server project. <389-users at lists.fedoraproject.org> 
Enviadas: Quarta-feira, 18 de Setembro de 2013 18:24
Assunto: Re: [389-users] 389-DS Changelog
 


What do you mean by "reprocess the information changelog"? You mean to look what was 389 doing during the replication? Or maybe to push the replication again? 
It's me who don't understand your problem and sorry for that. 
18 wrz 2013 22:54, "Denise Cosso" <guanaes51 at yahoo.com.br> napisał(a):

   Hi,
>
>
>
>Has a new option for console-> windows sync Agreement, I configured and managed to replicate my LDAP to AD. What I am having trouble is to reprocess the information changelog. Is this possible?
>
>
>Denise
>
>
>
>
>
>
>
>
>________________________________
> De: Grzegorz Dwornicki <gd1100 at gmail.com>
>Para: Denise Cosso <guanaes51 at yahoo.com.br> 
>Enviadas: Quarta-feira, 18 de Setembro de 2013 17:25
>Assunto: Re: [389-users] 389-DS Changelog
> 
>
>
>I don't understand. Were you able to replicate password in plain text? This is impossible. Without tls password will not be replicated. I think here lays the problem. 
>Please post your configuration without sensitive informations or describe how you setup this. 
>Grzegorz. 
>18 wrz 2013 21:07, "Denise Cosso" <guanaes51 at yahoo.com.br> napisał(a):
>
>Hi,
>>
>>
>>
>>    I have installed on my machine the centos-389 (389-ds-base-1.2.11.15-22.el6_4.x86_64) and I'm studying the replica LDAP -> AD.
>>
>>   The replica worked, with the exception of the password. In my base the password is encrypted in SHA256, well managed by the system sending the password in plain text to AD. Changelog could encrypt the password in AES.
>>
>>    I did a test back to base AD and tried to send the changes to AD (send update) but it did not work.
>>
>>    Does anyone know how do I reprocess the Changelog?
>>
>>
>>I await the return,
>>
>>
>>Thank you,
>>
>>
>>Denise
>>
>>--
>>389 users mailing list
>>389-users at lists.fedoraproject.org
>>https://admin.fedoraproject.org/mailman/listinfo/389-users
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20130919/e3bfa091/attachment.html>

More information about the 389-users mailing list