Hey everyone, I have setup winsync between FDS and AD and just want to clarify a few points that i can''t find in the docs or older posts.. 1. Passwords. They do not appear to be syncing either direction but i don''t have SSL enabled. my guess is that this is normal? 2. Accounts. They are only syncing from AD -> FDS but i''m assuming this is also due to lack of SSL? 3. Existing users. If i have identical users setup on both my FDS and AD servers and then do a sync, what will happen? just a password sync? Has anyone done this before? thanks!
Dean Jones wrote:> > Hey everyone, > > I have setup winsync between FDS and AD and just want to clarify a few > points that i can''t find in the docs or older posts.. > > 1. Passwords. They do not appear to be syncing either direction but i > don''t have SSL enabled. my guess is that this is normal?No. They should be syncing from FDS -> AD without SSL, but not the other way. This is related to your issue 2 below.> > 2. Accounts. They are only syncing from AD -> FDS but i''m assuming > this is also due to lack of SSL?Nope. Accounts can sync fine without SSL. SSL is only required for passwords to sync from AD -> FDS. You should take a look at the "errors" log on the FDS side. You may want to enable replication level logging through the Console application to get some useful info. -NGK> > 3. Existing users. If i have identical users setup on both my FDS and > AD servers and then do a sync, what will happen? just a password > sync? Has anyone done this before?> > thanks! > > > > > -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > No. They should be syncing from FDS -> AD without SSL, but not the > other way. This is related to your issue 2 below.Other way around. Password sync AD -> FDS works without SSL. Password sync FDS -> AD requires SSL. AD will refuse to modify a password unless you connect via SSL.
Hi, I have set AD 2003 and fedora DS using SSL to replicate users. Replication works fine from DS to AD, including passwords. (Without ssl replicates users but without passwords, and account is disabled.) What it does not work is password sync from AD to DS. Is there any problem with pasync nad windows 2003? It looks that pasync is not working. Regards Darjo