O.K., so now I can search the NT4 LDAP service using ldapsearch from a Linux machine, but I still can't get that confounded sync agreement to work. I have read the Windows Sync manual several times, and it implies heavily that you should be able to create a Windows Sync agreement with NT4. But no matter what I try, I get "unable to contact Active Directory server" after filling out the sync agreement form.
Just for kicks, I decided to try creating a "Replication Agreement" as opposed to a "Windows Sync" agreement. Oddly enough, I can carry this through to completion, with the Fedora server as supplier and the NT server as consumer (this is what we need anyway). But immediately after completing the agreement, the replica fails to initialize.
All suggestions warmly accepted. Thanks. -Glenn.
ldapsearch options that work:
# ldapsearch -v -H ldap://nt4testbox.mydomain.edu -x - D "uid=admin,ou=system" -w password -b "o=mydomain.edu"
Windows Sync form options Error: Unable to contact Active Directory server, continue?
Windows Domain Name: mydomain.edu Sync New Windows Users: unchecked Sync New Windows Groups: unchecked Windows Subtree: o=mydomain.edu DS Subtree: o=mydomain.edu Domain Controller Host: nt4testbox Port Num: 389 Using Encrypted SSL Connection: not checked Bind As: uid=admin,ou=system Password: password Subtree: o=mydomain.edu
Replication Agreement options Error: Replication error acquiring replica: unknown error. Error code 255.
Supplier (filled in already): fdserver.mydomain.edu:636 Consumer: nt4testbox.mydomain.edu:389 Using encrypted SSL connection: unchecked Simple authentication: checked Bind as: uid=admin,ou=system Password: password Enable fractional replication: unchecked Always keep directories in sync: checked Initialize consumer now: checked
error in passsyn.log:
08/02/07 12:30:11: PassSync service started 08/02/07 12:30:13: Password list is empty. Waiting for passhook event
I need help.
Esteban Torres Rodríguez ÁREA DE SOPORTE TÉCNICO - Administración de Servidores Subdirección de Sistemas Informáticos Empresa Pública Desarrollo Agrario y Pesquero, email: etorres@dap.es
That is not an error, the password file will be filled when someone tries to change his password.
Para "Fedora DS List" <fedora-directory-users@redhat.c "Esteban Torres om> Rodriguez" cc etorres@dap.es Enviado por: Asunto fedora-directory-users-b [Fedora-directory-users] Windows ounces@redhat.com Sync Clasificación 02/08/2007 07:34 a.m. Uso Interno
Por favor, responda a "General discussion list for the Fedora Directory server project." <fedora-directory-users@ redhat.com>
error in passsyn.log:
08/02/07 12:30:11: PassSync service started 08/02/07 12:30:13: Password list is empty. Waiting for passhook event
I need help.
Esteban Torres Rodríguez ÁREA DE SOPORTE TÉCNICO - Administración de Servidores Subdirección de Sistemas Informáticos Empresa Pública Desarrollo Agrario y Pesquero, email: etorres@dap.es
-- Fedora-directory-users mailing list Fedora-directory-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-directory-users
======================================================================================== AVISO LEGAL: Esta información es privada y confidencial y está dirigida únicamente a su destinatario. Si usted no es el destinatario original de este mensaje y por este medio pudo acceder a dicha información por favor elimine el mensaje. La distribución o copia de este mensaje está estrictamente prohibida. Esta comunicación es sólo para propósitos de información y no debe ser considerada como propuesta, aceptación ni como una declaración de voluntad oficial de NUCLEO S.A. La transmisión de e-mails no garantiza que el correo electrónico sea seguro o libre de error. Por consiguiente, no manifestamos que esta información sea completa o precisa. Toda información está sujeta a alterarse sin previo aviso.
This information is private and confidential and intended for the recipient only. If you are not the intended recipient of this message you are hereby notified that any review, dissemination, distribution or copying of this message is strictly prohibited. This communication is for information purposes only and shall not be regarded neither as a proposal, acceptance nor as a statement of will or official statement from NUCLEO S.A. . Email transmission cannot be guaranteed to be secure or error-free. Therefore, we do not represent that this information is complete or accurate and it should not be relied upon as such. All information is subject to change without notice.
389-users@lists.fedoraproject.org