Christian A. Rodriguez wrote: > First of all I have to mention that Windows Users & Groups were > created before Fedora Directory was installed, so when FDS was > installed I started up with replicated windows users in FDS without > passwords being synchronized. Therefore, the scenario is a Windows > tree with users (with passwords) & groups and FDS with users and > groups replicated without their passwords. > > I am trying to define a mechanism to reset every password in both > directories so they begin to work synchronized. > > Doing some tests, I realized that a change made in Windows is > replicated into FDS binding as the users subject of change, so as the > entry doesn't have it's password, the following lines are logged in > FDS access log: > > [08/Jan/2008:15:51:35 -0300] conn=1033 op=0 BIND > dn="uid=USERXXX,OU=People,ou=Active Directory,dc=example,dc=com" > method=128 version=2 > [08/Jan/2008:15:51:35 -0300] conn=1033 op=0 RESULT err=49 tag=97 > nentries=0 etime=0 > [08/Jan/2008:15:51:35 -0300] conn=1033 op=1 UNBIND > [08/Jan/2008:15:51:35 -0300] conn=1033 op=1 fd=80 closed - U1 > [08/Jan/2008:15:51:35 -0300] conn=1032 op=2 RESULT err=50 tag=103 > nentries=0 etime=0 > [08/Jan/2008:15:51:35 -0300] conn=1032 op=3 UNBIND > > I haven't found any documentation about inbound changes, specifically > password change, being done as the same user subject of the change. Is > this true? Yes. That's how it verifies the new password is valid. > > Thanks in advance, and sorry for my bad English > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3245 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.fedoraproject.org/pipermail/389-users/attachments/20080109/fba1ec2c/attachment.bin
