On 05/26/2011 08:58 AM, Albert Teh wrote:
Hi,
We are setting up a new CENTOS-DS version 8.1.0. and CENTOS 5.5
and attempt to synchronize with the existing 2003 Windows AD
server.
Performing the full sync completed. There is no user created in
the DS subtree.
We would like to perform one way Sync: AD ----> DS. Once it
works, we will set up the password Sync from the AD to DS.
One way sync isn't supported with 8.1.0. I suggest using
389-ds-base 1.2.8.3 from EPEL5 which does support one way sync.
http://directory.fedoraproject.org/wiki/One_Way_Active_Directory_Sync
AD: cn=Users,cn=location,dc=ad,dc=domain,dc=com
DS: ou=Peoples,dc=domain,dc=com
errors log:
[26/May/2011:10:20:34 -0400] NSMMReplicationPlugin - Beginning
total update of replica "agmt="cn=ADsync" (wodcstage-1:389)".
[26/May/2011:10:20:34 -0400] NSMMReplicationPlugin - Finished
total update of replica "agmt="cn=ADsync" (wodcstage-1:389)". Sent
0 entries.
access log:
26/May/2011:10:20:37 -0400] conn=11 op=819 SRCH base="cn=ADsync,
cn=replica, cn=\22dc=algonquincollege, dc=com\22, cn=mapping tree,
cn=config" scope=0
filter="(|(objectClass=*)(objectClass=ldapsubentry))"
attrs="nsds5replicaLastUpdateStart nsds5replicaLastUpdateEnd
nsds5replicaChangesSentSinceStartup nsds5replicaLastUpdateStatus
nsds5replicaUpdateInProgress nsds5replicaLastInitStart
nsds5replicaLastInitEnd nsds5replicaLastInitStatus
nsds5BeginReplicaRefresh"
[26/May/2011:10:20:37 -0400] conn=11 op=819 RESULT err=0 tag=101
nentries=1 etime=0
Thanks.
Albert
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
|
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
