Windows Active Directory sync Help!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I am using  Fedora 1.1 on Fedora 6 x86 machine.  When i fill in the entries and click next a message pops up saying "Unable to connet to Active Directory server, continue?".  Also in the domain controller host field can I specify the IP address of the machine?. 

The error log for DS server is below. The IP is the windows xp machine on whcih I am  runnign the remote DS console.

[Wed Jan 09 09:15:08 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241
[Wed Jan 09 09:15:08 2008] [notice] [client 192.168.8.241] admserv_check_authz(): passing [/admin-serv/authenticate] to the userauth handler
[Wed Jan 09 09:15:28 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241
[Wed Jan 09 09:15:29 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241
[Wed Jan 09 09:15:35 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241
[Wed Jan 09 09:15:35 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241
[Wed Jan 09 09:15:43 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241
[Wed Jan 09 09:15:44 2008] [notice] [client 192.168.8.241] admserv_host_ip_check: ap_get_remote_host could not resolve 192.168.8.241

----------------------------------------
> Date: Wed, 9 Jan 2008 10:52:05 -0700
> From: rmeggins at redhat.com
> To: fedora-directory-users at redhat.com
> Subject: Re: Windows Active Directory sync Help!
> 
> kiran madala wrote:
>> As far I understand by reading docs again that the user specified in the Syn agreement and Bind DN should be same and exist on Active directory with Domain Admin privileges.  But I have other issues now.
>>
>> The DS server is unable to connect to my AD.
> What error messages are you getting?  Check the error log.
> 
> You can also try using ldapsearch.  Are you using Fedora DS 1.1 or 
> 1.0.4?  What OS?
>> I enabled SSL by copying the same root certificate into AD and also generating a server certificate and opened up ports in firewall. Am I missing something like allowing client Authentication on the AD machine?
>>   
> You don't need to use cert based client auth.  You can use regular 
> username/password auth over TLS/SSL.
>> My currents certificates are as follows.
>>
>> DS has its own server certificate
>> AD has its own server  certificate
>> ALL 3 servers AS,DS and AD have the same CA root certificate
>>
>>
>>
>> ----------------------------------------
>>   
>>> From: kirankmadala at hotmail.com
>>> To: fedora-directory-users at redhat.com
>>> Date: Wed, 9 Jan 2008 10:35:00 -0400
>>> Subject: Windows Active Directory sync Help!
>>>
>>>
>>> Hello,
>>>
>>> I am trying to sync the DS with AD. Since I am new to AD and DS I have few questions.
>>>
>>> I want to synchronize only users and groups so Is it necessary to enable SSL on Active Directory and connect to Active directory through SSL?
>>>
>>> In the replica settings the supplier DN user need to be on both AD and DS with should be a Domain admin of the AD?
>>>
>>> When trying to synchronize with AD the bind DN (In screen shot) user should be in both AD and DS?
>>>
>>>
>>> I have attached the screen shot of my final DS agreement window. I believe currently it is defined to synchronize users what changes I need to make it synchronize groups aswell.
>>>
>>> Thanks in advance
>>> _________________________________________________________________
>>> Exercise your brain! Try Flexicon!
>>> http://puzzles.sympatico.msn.ca/chicktionary/index.html?icid=htmlsig
>>>     
>>
>> _________________________________________________________________
>> Use fowl language with Chicktionary. Click here to start playing!
>> http://puzzles.sympatico.msn.ca/chicktionary/index.html?icid=htmlsig
>>
>> --
>> Fedora-directory-users mailing list
>> Fedora-directory-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>   
> 

_________________________________________________________________
Read what Santa`s been up to! For all the latest, visit asksantaclaus.spaces.live.com!
http://asksantaclaus.spaces.live.com/
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux