On 03/27/2013 08:07 AM, alexandre wrote:
Hello,
I try to follow this procedure :
https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/Windows_Sync-Configuring_Windows_Sync.html
Everything works fine, except I don't understand right this line:
"Import the CA certificate from Directory Server into Active
Directory. Click *Trusted Root CA*, then *Import*, and browse for the
Directory Server CA certificate."
This step isn't really necessary. It isn't AD that talks directly to
389, it's the PassSync AD "plugin".
These directions are better:
https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Directory_Server/9.0/html/Administration_Guide/Windows_Sync-Configuring_Windows_Sync.html
For me CA certificate, it's a certificate from the Authority, so in my
Active Directory the certificate from the authority is already know in
the Trusted Root CA.
So, do I need to import 389DS server certificate in my active directory ?
1) No
2) It's not the 389DS server certificate, but the CA certificate for the
CA that issued the 389DS server certificate, that you need for PassSync
And finally, there is no indication to do that, someone can help me to
pass through ?
Thanks in advance.
Best regards,
Alex
--
389 users mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/389-users
--
389 users mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/389-users
