Dusty - The password encryption format is different in FD and AD, so the passwords can't be ported directly from one to the other. Windows Sync makes it possible to synchronize passwords automatically, but it doesn't work until the user changes his or her password. After that, password changes on either system are replicated to the other. One way to deal with this is to force each user to change his or her AD password shortly after you bring up the Windows Sync agreement. -Glenn. ---------- Original Message ----------- From: Dusty Herrman <djh5983@xxxxxxx> To: fedora-directory-users@xxxxxxxxxx Sent: Thu, 27 Sep 2007 11:08:13 -0500 Subject: Active Directory Password Question > I work for a University where Microsoft and Unix/Linux products are > both heavily present. We currently have both MS Active Directory > servers and OpenLDAP servers. We are currently looking at > upgraded both of these technologies. > > Currently we store all the user's passwords in LDAP (encrypted). > Using the "Windows Sync" feature of Fedora DS, is there a way to > push the encrypted passwords into Active Directory? Or is it only a > AD -> LDAP password push? > > Thanks in advance, > > Dusty Herrman > KEAS Authentication/Directory Engineer > Kansas State University > djh5983@xxxxxxxxxxx > > -- > Fedora-directory-users mailing list > Fedora-directory-users@xxxxxxxxxx > https://www.redhat.com/mailman/listinfo/fedora-directory-users ------- End of Original Message ------- -- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
