hello,
My actual architecture : - two 389DS server (version 1.1.3) on Fedora8 32bits - two Active Directory on Windows Server 2003 Standard edition 32bits domain controler (AD servers are both synchronized with "Active Directory Intrasite Replication")
In january 2009, multimaster replication protocol was enabled between two 389DS, and a passync service installed in only one AD with one replication agreement between the AD server and one 389DS. Password synchronization is successful.
In september 2009, a second AD server is installed with passync service and a second replication agreement between one 389DS and the second AD. But Password synchronization does not work with the second AD.
passsync.log : 09/09/09 15:04:44: PassSync service initialized 09/09/09 15:04:44: PassSync service running 09/09/09 15:04:45: No entries yet 09/09/09 15:12:40: No entries yet 09/09/09 15:26:33: No entries yet 09/09/09 15:35:02: No entries yet
"No entries yet" error message occure for each user password change on AD. 389DS can't catch windows password change.
my architecture schema : 389DS n°1 ^----MMR-------------------> 389DS n°2 ^----Win-Sync-Agreement---> (passsync) AD n°1 ^----Win-Sync-Agreement---> (passsync) AD n°2
How can i resolve this problem, please ?
regards
hello,
I have more informations about this error.
In fact the error message "No entries yet" replace the old message "Failed to load entries from file" that means the file "%sysPath\system32\passhook.dat" used by passsync service can not store password in this passhook.dat file cf : https://bugzilla.redhat.com/show_bug.cgi?id=471408
I have restarted the windows box after instaling PassSync.msi in order to have the passhook.dll plugin registered. But that do not solve my problem.
Why entries can not be loaded from passhook file ?
Regards
Hugo Etievant a écrit :
hello,
My actual architecture :
- two 389DS server (version 1.1.3) on Fedora8 32bits
- two Active Directory on Windows Server 2003 Standard edition 32bits
domain controler (AD servers are both synchronized with "Active Directory Intrasite Replication")
In january 2009, multimaster replication protocol was enabled between two 389DS, and a passync service installed in only one AD with one replication agreement between the AD server and one 389DS. Password synchronization is successful.
In september 2009, a second AD server is installed with passync service and a second replication agreement between one 389DS and the second AD. But Password synchronization does not work with the second AD.
passsync.log : 09/09/09 15:04:44: PassSync service initialized 09/09/09 15:04:44: PassSync service running 09/09/09 15:04:45: No entries yet 09/09/09 15:12:40: No entries yet 09/09/09 15:26:33: No entries yet 09/09/09 15:35:02: No entries yet
"No entries yet" error message occure for each user password change on AD. 389DS can't catch windows password change.
my architecture schema : 389DS n°1 ^----MMR-------------------> 389DS n°2 ^----Win-Sync-Agreement---> (passsync) AD n°1 ^----Win-Sync-Agreement---> (passsync) AD n°2
How can i resolve this problem, please ?
regards
Hugo Etievant wrote:
hello,
I have more informations about this error.
In fact the error message "No entries yet" replace the old message "Failed to load entries from file" that means the file "%sysPath\system32\passhook.dat" used by passsync service can not store password in this passhook.dat file cf : https://bugzilla.redhat.com/show_bug.cgi?id=471408
I have restarted the windows box after instaling PassSync.msi in order to have the passhook.dll plugin registered. But that do not solve my problem.
Why entries can not be loaded from passhook file ?
Because there are no entries in the file. Try changing the password of a user on the Windows box.
Regards
Hugo Etievant a écrit :
hello,
My actual architecture :
- two 389DS server (version 1.1.3) on Fedora8 32bits
- two Active Directory on Windows Server 2003 Standard edition 32bits
domain controler (AD servers are both synchronized with "Active Directory Intrasite Replication")
In january 2009, multimaster replication protocol was enabled between two 389DS, and a passync service installed in only one AD with one replication agreement between the AD server and one 389DS. Password synchronization is successful.
In september 2009, a second AD server is installed with passync service and a second replication agreement between one 389DS and the second AD. But Password synchronization does not work with the second AD.
passsync.log : 09/09/09 15:04:44: PassSync service initialized 09/09/09 15:04:44: PassSync service running 09/09/09 15:04:45: No entries yet 09/09/09 15:12:40: No entries yet 09/09/09 15:26:33: No entries yet 09/09/09 15:35:02: No entries yet
"No entries yet" error message occure for each user password change on AD. 389DS can't catch windows password change.
my architecture schema : 389DS n°1 ^----MMR-------------------> 389DS n°2 ^----Win-Sync-Agreement---> (passsync) AD n°1 ^----Win-Sync-Agreement---> (passsync) AD n°2
How can i resolve this problem, please ?
regards
Rich Megginson a écrit :
Hugo Etievant wrote:
hello,
I have more informations about this error.
In fact the error message "No entries yet" replace the old message "Failed to load entries from file" that means the file "%sysPath\system32\passhook.dat" used by passsync service can not store password in this passhook.dat file cf : https://bugzilla.redhat.com/show_bug.cgi?id=471408
I have restarted the windows box after instaling PassSync.msi in order to have the passhook.dll plugin registered. But that do not solve my problem.
Why entries can not be loaded from passhook file ?
Because there are no entries in the file. Try changing the password of a user on the Windows box.
I change user password (many times, for many users) on the Windows box, but I have the same message "No entries yet" each time. The same error occurs when user password is reset by Administrator. Reboot of Windows Server do not change the facts.
regards
389-users@lists.fedoraproject.org
-
Hugo Etievant -
Rich Megginson