[389-users] Password synchronisation beetween openldap and AD 2008 R2
Rich Megginson
rmeggins at redhat.com
Thu Jan 16 15:20:48 UTC 2014
On 01/16/2014 08:12 AM, Louis-Marie Plumel wrote:
> Ok ok, i'm going to see what you sent to me . To be sure, is 389DS may
> be an intermediate between my two actual servers?
Not sure what you mean here.
> I have to keep my actual LDAPand remain the master and synchronization
> must be a single direction (LDAP -> AD).
389 supports one way sync.
> Willusers have to change their password?
Yes, unfortunately.
> My goal is that everything will be transparent.
Then you may want to look into IPA with AD cross domain trust as Petr
suggested.
> regards
>
>
> 2014/1/16 Petr Spacek <pspacek at redhat.com <mailto:pspacek at redhat.com>>
>
> On 16.1.2014 15:59, Rich Megginson wrote:
>
> On 01/16/2014 07:57 AM, Louis-Marie Plumel wrote:
>
> Hello,
>
> Actually , i work with openldap.
> I've installed an AD 2008 R2.My challenge is to work with
> both and
> synchronise LDAP and AD 2008 R2. After a long research on
> the web, i don't
> find any information about howto synchronise passwords .
> That's why i come
> here to see if with 389 DS it's possible or not.
>
>
> Yes.
> https://access.redhat.com/site/documentation/en-US/Red_Hat_Directory_Server/9.0/html/Administration_Guide/Windows_Sync.html
>
>
> There is also one completely different option: Use trust between
> AD and Unix domain. It depends on your requirements ...
>
> See
> http://www.freeipa.org/page/Trusts
>
> or join mailing list
> https://www.redhat.com/mailman/listinfo/freeipa-users
>
> Have a nice day!
>
> --
> Petr^2 Spacek
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> <mailto:389-users at lists.fedoraproject.org>
> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
>
>
>
> --
> Louis-Marie Plumel
> louismarie.plumel at gmail.com <mailto:louismarie.plumel at gmail.com>
>
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20140116/b20e773e/attachment.html>
More information about the 389-users
mailing list