Hello, I have a problem trying to sync users from my existing LDAP directory to an AD forest created on a Windows 2012 server. I followed every tutorial, but still when I try to run the task I get an ldap error 53 (WILL_NOT_PERFORM). The attributes that I am trying to write are those:
mail sAMAccountName givenName instanceType cn objectclass: user objectclass: organizationalPerson objectclass: person objectclass: top sn userAccountControl userPrincipalName objectCategory Looking at the schema definition for the "person" objectClass I saw there is a MUST attribute called ntSecurityDescriptor, which is a long binary string (I got it with an ldapsearch on an existing user), and I do not know how i can write it into the AD ldap connection so that the resulting ldapmodify operation would respect the schema constraints relative to this objectClass. Did anyone managed to obtain my goal (sync from LDAP to AD "2012 edition)? Thanks, Futhwo
_______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
