Hey Rob, According to the Red Hat Identity Management documentation provided by Red hat it says to do it with the ldapmodify command. They don't mention any options during the replicator/sync agreement process about uni-directional sync.
Matt -----Original Message----- From: Rich Megginson [mailto:rmegg...@redhat.com] Sent: Tuesday, January 22, 2013 3:04 PM To: Rob Crittenden Cc: Joseph, Matthew (EXP); freeipa-users@redhat.com Subject: EXTERNAL: Re: [Freeipa-users] OneWaySync Issues On 01/22/2013 11:46 AM, Rob Crittenden wrote: > Joseph, Matthew (EXP) wrote: >> Hello, >> >> I'm trying to configure the oneWaySync option for IPA so only the >> Windows AD can replicate changes to IPA. >> >> When I use the command that I listed below it says it works but when >> I delete a user form IPA it will then delete the user in Active Directory. >> >> Is my command listed below correct? Anyone able to help? >> >> Parameters: >> Server = rhserver >> Domain = redhat.ca >> Password = 12345678 >> >> Contents of /tmp/unisync; >> dn: cn=ipa-winsync,cn=plugins,cn=config >> changetype: modify >> replace: oneWaySync >> oneWaySync: From Windows >> >> So I enter the following command; >> *ldapmodify -x -D "dc=redhat,dc=ca" -w 12345678 -h rhserver.redhat.ca >> -f >> /tmp/unisync* > > There should be no space in oneWaySync, it should be fromWindows. I thought the oneWaySync attribute was in the replication/sync agreement entry, not in the ipa-winsync plugin config entry? > > rob > > _______________________________________________ > Freeipa-users mailing list > Freeipa-users@redhat.com > https://www.redhat.com/mailman/listinfo/freeipa-users _______________________________________________ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users