I attempted to run adprep /forestprep in my test forest, only to have it fail with a cryptic (and misleading, as it turns out) error recorded in it's log.
Googling the error text lead me to a post by a MS support guy who has written a script that will hash a schema update LDIF file against a schema dump, and warn you of any conflicts (You'd think adprep maybe should do this BEFORE it starts upgrading the schema...) Anyway, the problem stems from extending the schema for SAP's portal product which created this attribute: dn: CN=uid,CN=Schema,CN=Configuration,DC=adstest,DC=kimball,DC=com changetype: add adminDisplayName: uid attributeID: 1.2.840.113556.1.4.7000.233.28688.28684.8.464850.1724825.154498.1299246. 15 attributeSyntax: 2.5.5.4 cn: uid instanceType: 4 isSingleValued: TRUE lDAPDisplayName: uid distinguishedName: CN=uid,CN=Schema,CN=Configuration,DC=adstest,DC=kimball,DC=com objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=adstest,DC=kimball,DC= com objectClass: attributeSchema objectGUID:: f1Sz+++ZY0eIH7t1mStJIA== oMSyntax: 20 name: uid schemaIDGUID:: Qy93MDGWsEqRfKr837RfzA== showInAdvancedViewOnly: TRUE uSNChanged: 705240 uSNCreated: 705240 whenChanged: 20021002184940.0Z whenCreated: 20021002184940.0Z Now for the part I don't know: how do I fix it? The SAP portal was tested, but was back-burned indefinately, so I don't have to worry about breaking it. List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
