Hello I hope this finds the right thread because the original thread was replied ot the list and not my email...
I need to sync to another ldap directory which has a different SUFFIX than IPA sets up. I successfully imported from our OpenLDAP to IPA but I still need to sync with a separate master ldap server. So the provider server suffix is dc=example,dc=com. This suffix is different than the DNS suffix and there is no kerberos realm to match too for the provider side. IPA server suffix is dc=domain, dc=com. So the two options I see is create a script which connects and compares both ldaps ensuring it can match to different suffixs or some how change the suffix of the originally installed
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
