We have Windows Sync replication set up between Fedora Directory 1.04 and Active Directory. When we change a user''s password in FD, it replicates to AD. When we change a user''s password on the AD server, it replicates to FD. But when we change the user''s password on the user''s local AD computer (using Ctrl-Alt-Del, Change Password), the password is changed in AD but does not replicate to FD. Anyone know how to fix this? Thanks. -G.
Rich Megginson
2009-Jan-07 15:19 UTC
Re: [Fedora-directory-users] FD-AD Password Sync Trouble
Glenn wrote:> We have Windows Sync replication set up between Fedora Directory 1.04 and > Active Directory. When we change a user''s password in FD, it replicates to > AD. When we change a user''s password on the AD server, it replicates to FD. > > But when we change the user''s password on the user''s local AD computer (using > Ctrl-Alt-Del, Change Password), the password is changed in AD but does not > replicate to FD. Anyone know how to fix this? Thanks. -G. >You probably need to install passsync on the domain controller that this particular password change operation is sent to.> -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >
Rich - Yes, this does work. I believe password change requests in Active Directory are sent to various domain controllers on a somewhat random basis. If true, this means that Passsync must be installed (along with appropriate SSL certificates) on all domain controllers in an AD domain in order to get dependable password sync with Fedora Directory. This is what I''ve done, and it does seem to work now. Thanks. -G. ---------- Original Message ----------- From: Rich Megginson <rmeggins@redhat.com> To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@redhat.com> Sent: Wed, 07 Jan 2009 08:19:19 -0700 Subject: Re: [Fedora-directory-users] FD-AD Password Sync Trouble> Glenn wrote: > > We have Windows Sync replication set up between Fedora Directory 1.04 and > > Active Directory. When we change a user''s password in FD, it replicatesto> > AD. When we change a user''s password on the AD server, it replicates toFD.> > > > But when we change the user''s password on the user''s local AD computer(using> > Ctrl-Alt-Del, Change Password), the password is changed in AD but doesnot> > replicate to FD. Anyone know how to fix this? Thanks. -G. > > > You probably need to install passsync on the domain controller that > this particular password change operation is sent to. > > -- > > Fedora-directory-users mailing list > > Fedora-directory-users@redhat.com > > https://www.redhat.com/mailman/listinfo/fedora-directory-users > >------- End of Original Message -------
Hendry, Chris
2009-Jan-07 17:46 UTC
[Fedora-directory-users] Bug 388021 - MMR breaks from master that has been reinited
Rich, I think I have the same issue as in BUG 388021. I have read: https://bugzilla.redhat.com/show_bug.cgi?id=388021 I have tried the deleting of the changelog files, do not work. Please explain in detail how to: "The solution is for the master to just use the min CSN in its own RUV as the new starting point" My error log says: [07/Jan/2009:12:43:42 -0500] agmt="cn=p3ds02" (p3ds02:389) - Can''t locate CSN 4964cfd5000001bc0000 in the changelog (DB rc=-30990). The consumer may need to be reinitialized. Chris
Rich Megginson
2009-Jan-07 17:55 UTC
Re: [Fedora-directory-users] Bug 388021 - MMR breaks from master that has been reinited
Hendry, Chris wrote:> Rich, I think I have the same issue as in BUG 388021. > I have read: https://bugzilla.redhat.com/show_bug.cgi?id=388021 > > I have tried the deleting of the changelog files, do not work. > Please explain in detail how to: "The solution is for the master to > just use the min CSN in its own RUV as the new starting point" > > My error log says: > > [07/Jan/2009:12:43:42 -0500] agmt="cn=p3ds02" (p3ds02:389) - Can''t > locate CSN 4964cfd5000001bc0000 in the changelog (DB rc=-30990). The > consumer may need to be reinitialized. >What version of Fedora DS? What platform?> Chris > > > -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >
Hendry, Chris
2009-Jan-08 18:58 UTC
RE: [Fedora-directory-users] Bug 388021 - MMR breaks from masterthat has been reinited
Release: Fedora Core release 6 (Zod) Kernel: 2.6.18-1.2798.fc6 FDS: fedora-ds-1.0.4-1.Linux -----Original Message----- From: Rich Megginson [mailto:rmeggins@redhat.com] Sent: Wednesday, January 07, 2009 12:55 PM To: General discussion list for the Fedora Directory server project. Subject: Re: [Fedora-directory-users] Bug 388021 - MMR breaks from masterthat has been reinited Hendry, Chris wrote:> Rich, I think I have the same issue as in BUG 388021. > I have read: https://bugzilla.redhat.com/show_bug.cgi?id=388021 > > I have tried the deleting of the changelog files, do not work. > Please explain in detail how to: "The solution is for the master to > just use the min CSN in its own RUV as the new starting point" > > My error log says: > > [07/Jan/2009:12:43:42 -0500] agmt="cn=p3ds02" (p3ds02:389) - Can''t > locate CSN 4964cfd5000001bc0000 in the changelog (DB rc=-30990). The > consumer may need to be reinitialized. >What version of Fedora DS? What platform?> Chris > > > -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >
Rich Megginson
2009-Jan-08 19:31 UTC
Re: [Fedora-directory-users] Bug 388021 - MMR breaks from masterthat has been reinited
Hendry, Chris wrote:> Release: Fedora Core release 6 (Zod) > Kernel: 2.6.18-1.2798.fc6 > FDS: fedora-ds-1.0.4-1.Linux >If this is indeed the same problem as in bug 388021, and you tried the workarounds mentioned in comment https://bugzilla.redhat.com/show_bug.cgi?id=388021#c3 and later, then I suggest upgrading to Fedora DS 1.1.3 on Fedora Core 6. We do have rpms for FC6. You''ll just have to change your yum config as in http://directory.fedoraproject.org/wiki/Install_Guide#Installation_via_yum since the latest rpms are not in the regular Fedora repos (because FC6 is dead).> -----Original Message----- > From: Rich Megginson [mailto:rmeggins@redhat.com] > Sent: Wednesday, January 07, 2009 12:55 PM > To: General discussion list for the Fedora Directory server project. > Subject: Re: [Fedora-directory-users] Bug 388021 - MMR breaks from > masterthat has been reinited > > Hendry, Chris wrote: > >> Rich, I think I have the same issue as in BUG 388021. >> I have read: https://bugzilla.redhat.com/show_bug.cgi?id=388021 >> >> I have tried the deleting of the changelog files, do not work. >> Please explain in detail how to: "The solution is for the master to >> just use the min CSN in its own RUV as the new starting point" >> >> My error log says: >> >> [07/Jan/2009:12:43:42 -0500] agmt="cn=p3ds02" (p3ds02:389) - Can''t >> locate CSN 4964cfd5000001bc0000 in the changelog (DB rc=-30990). The >> consumer may need to be reinitialized. >> >> > What version of Fedora DS? What platform? > >> Chris >> >> >> -- >> Fedora-directory-users mailing list >> Fedora-directory-users@redhat.com >> https://www.redhat.com/mailman/listinfo/fedora-directory-users >> >> > > > -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >