I dumped the users to LDIF file but didn’t find anything special between the affected and unaffected users

The only clue I found in the replication log is it doesn’t recognize the affected users as local (also says uid is -1) and then it deletes them.

 

From: 389-users-bounces@lists.fedoraproject.org [mailto:389-users-bounces@lists.fedoraproject.org] On Behalf Of Noriko Hosoi
Sent: Monday, October 19, 2015 7:35 PM
To: General discussion list for the 389 Directory server project.
Subject: Re: [389-users] WinSync agreement deletes directoryt server users

 

On 10/19/2015 09:23 AM, Mizrahi, Yair wrote:

i'll do some comparison tomorrow between affected and unaffected user, hopefully I will find something

Thanks a lot!!

 

 

 

Sent from my Samsung device



-------- Original message --------
From: Noriko Hosoi <nhosoi@redhat.com>
Date: 19/10/2015 19:04 (GMT+02:00)
To: 389-users@lists.fedoraproject.org
Subject: Re: [389-users] WinSync agreement deletes directoryt server users

Thank you for the update.

Regarding this symptom:
> they are also gets deleted from directory server (around 200 users from 550).
I'm curious what's the difference between the deleted 200 users and the rest.

Thanks,
--noriko

On 10/19/2015 12:35 AM, Mizrahi, Yair wrote:

Hi Noriko,

This is the version I have installed:
389-ds-base-1.2.11.15-60.el6.x86_64 on CentOS 6.5

 

I was able to work around the problem by backing up the group and people OU to LDIF files , do the sync (which deleted the affected accounts)and after that importing them back, this caused the LDAP server to sync them to AD.

BTW I noticed the initial sync is deleting the same accounts.

 

Thanks,

 

 

From: 389-users-bounces@lists.fedoraproject.org [mailto:389-users-bounces@lists.fedoraproject.org] On Behalf Of Noriko Hosoi
Sent: Monday, October 19, 2015 12:23 AM
To: 389-users@lists.fedoraproject.org
Subject: Re: [389-users] WinSync agreement deletes directoryt server users

 

On 10/18/2015 02:06 AM, Mizrahi, Yair wrote:

Hi,

I have setup a sync agreement between directory server and active directory 2012R2 and I’m getting a very strange behavior, if I am doing 2 way sync (the default) the sync completes successfully but not all the users are created in AD, not only that , they are also gets deleted from directory server (around 200 users from 550).

I’m syncing to Blank OU in AD

My DS version is 1.2.2-1

 Is it the version of 389-ds-base (not 389-ds)?

rpm -q 389-ds-base

Thanks,

 

 

 

cid:image001.gif@01CE0DED.C3CB64A0XtremIO

Yair Mizrahi

Sr Lab IT engineer

Office: + 972 722563243

Mobile: + 972 54 2327687

Email: Yair.Mizrahi@emc.com

 

EMC² - XtremIO
Glil Yam 46905,

Herzliya,

Israel 
www.emc.com

 

 



--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users

 



--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users





--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users