[389-users] Password synchronisation beetween openldap and AD 2008 R2

Rich Megginson rmeggins at redhat.com
Thu Jan 16 15:20:48 UTC 2014 

On 01/16/2014 08:12 AM, Louis-Marie Plumel wrote:
> Ok ok, i'm going to see what you sent to me . To be sure, is 389DS may 
> be an intermediate between my two actual servers?
Not sure what you mean here.
> I have to keep my actual LDAPand remain the master and synchronization 
> must be a single direction (LDAP -> AD).
389 supports one way sync.
> Willusers have to change their password?
Yes, unfortunately.

> My goal is that everything will be transparent.
Then you may want to look into IPA with AD cross domain trust as Petr 
suggested.
> regards
>
>
> 2014/1/16 Petr Spacek <pspacek at redhat.com <mailto:pspacek at redhat.com>>
>
>     On 16.1.2014 15:59, Rich Megginson wrote:
>
>         On 01/16/2014 07:57 AM, Louis-Marie Plumel wrote:
>
>             Hello,
>
>             Actually , i work with openldap.
>             I've installed an AD 2008 R2.My challenge is to work with
>             both and
>             synchronise LDAP and AD 2008 R2. After a long research on
>             the web, i don't
>             find any information about howto synchronise passwords .
>             That's why i come
>             here to see if with 389 DS it's possible or not.
>
>
>         Yes.
>         https://access.redhat.com/site/documentation/en-US/Red_Hat_Directory_Server/9.0/html/Administration_Guide/Windows_Sync.html
>
>
>     There is also one completely different option: Use trust between
>     AD and Unix domain. It depends on your requirements ...
>
>     See
>     http://www.freeipa.org/page/Trusts
>
>     or join mailing list
>     https://www.redhat.com/mailman/listinfo/freeipa-users
>
>     Have a nice day!
>
>     -- 
>     Petr^2 Spacek
>
>     --
>     389 users mailing list
>     389-users at lists.fedoraproject.org
>     <mailto:389-users at lists.fedoraproject.org>
>     https://admin.fedoraproject.org/mailman/listinfo/389-users
>
>
>
>
> -- 
> Louis-Marie Plumel
> louismarie.plumel at gmail.com <mailto:louismarie.plumel at gmail.com>
>
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20140116/b20e773e/attachment.html>

More information about the 389-users mailing list