Kenneth Holter wrote:
Hi.
We're using Windows sync on our (RedHat) directory server to fetch
users from AD, and have a quick question about the UID attribute: It
look to me like the UID attribute that linux ldap clients use for
authentication, is a attribute created when one adds the posixaccount
object class to the user object. In other words, when user "kenneth"
is synced over from AD and I add the posixaccount object class, then
the uid attribute is automatically created and populated with uid
value "kenneth" from some (which one? "name"? "cn"?) AD attribute. Is
this correct?
Yes. The AD attribute samAccountName is used to populate the uid
attribute on 389.
If so, can I assume that making changes to the uid attribute will not
be reflected on the AD side?
I'm not sure. uid and samAccountName are "special" attributes - not
sure if they are synced - you could try it I suppose.
Best regards,
Kenneth Holter
------------------------------------------------------------------------
--
389 users mailing list
389-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
--
389 users mailing list
389-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
