Chapter 19. Synchronizing Red Hat Directory Server with Microsoft Active Directory
454
NOTE
If any Active Directory user accounts exist when
Password Sync
is first installed, then
the passwords for those user accounts cannot be synchronized until they are changed
because
Password Sync
cannot decrypt a password once it has been hashed in Active
Directory.
19.2.6. Step 6: Configure the Directory Server Database for
Synchronization
Just as with replication, there must be a changelog available to track and send directory changes and
the Directory Server database being synchronized must be configured as a replica.
NOTE
If the Directory Server database is already in a replicated environment, this step is not
necessary.
First, enable the changelog:
1. In the Directory Server Console, select the
Configuration
tab.
2. In the left-hand navigation tree, click the
Replication
folder.
3. In the main window, click the
Supplier Settings
tab.
4. Check the
Enable Changelog
database.
5. Set the changelog database directory. Click the
Use default
button to use the default or
Browse...
to select a custom directory.
6. Save the changelog settings.
After setting up the changelog, then configure the database that will be synchronized as a replica. The
replica role should be either a single-master or multi-master.
1. In the Directory Server Console, select the
Configuration
tab.
2. In the left-hand navigation tree, click the
Replication
folder, then click the name of the database to
synchronize.
By default, there are two databases,
NetscapeRoot
for directory configuration and
userRoot
for
directory entries. Other databases may be listed if they have been added to Directory Server.
3. Check the
Enable Replica
checkbox, and select the radio button by the type of replica which the
database will be.
4. In the
Update Settings
section, either select or add a supplier DN. This is the user account as
which synchronization process will be run. As mentioned in
Section 19.2.3, “Step 3: Select or
Create the Sync Identity”
, this user must be on the Active Directory server.
5. Save the replication settings for the database.
Содержание DIRECTORY SERVER 8.0
Страница 18: ...xviii ...
Страница 29: ...Configuring the Directory Manager 11 6 Enter the new password and confirm it 7 Click Save ...
Страница 30: ...12 ...
Страница 112: ...94 ...
Страница 128: ...110 ...
Страница 190: ...Chapter 6 Managing Access Control 172 4 Click New to open the Access Control Editor ...
Страница 224: ...206 ...
Страница 324: ...306 ...
Страница 334: ...316 ...
Страница 358: ...340 ...
Страница 410: ...392 ...
Страница 420: ...402 ...
Страница 444: ...426 ...
Страница 454: ...436 ...
Страница 464: ...446 ...
Страница 484: ...466 ...
Страница 512: ...494 ...
Страница 522: ...504 ...