> On 30 Jan 2020, at 08:04, Alberto Viana wrote:
>
> Mark
>
> Again (my bad on copy and paste):
>
> dn: cn=AD-DF-DC01,cn=replica,cn=dc\3Dmy\2Cdc\3Ddomain,cn=mapping
> tree,cn=config
> objectClass: top
> objectClass: nsDSWindowsReplicationAgreement
> cn: AD-DF-DC01
> nsDS5ReplicaRoot:
Mark
Again (my bad on copy and paste):
dn: cn=AD-DF-DC01,cn=replica,cn=dc\3Dmy\2Cdc\3Ddomain,cn=mapping
tree,cn=config
objectClass: top
objectClass: nsDSWindowsReplicationAgreement
cn: AD-DF-DC01
nsDS5ReplicaRoot: dc=my,dc=domain
description: AD-DF-DC01
nsDS5ReplicaHost: gti-df-dc01.domain.local
How are you changing the password in DS?
Question, the The AD machine (gti-df-dc01.my.domain) is the Domain
Controller, right?
The entry looks off, but it might be because you did some find/replace
on some text. See comments below...
On 1/29/20 1:26 PM, Alberto Viana wrote:
Mark,
Mark,
here's:
dn: cn=AD-DF-DC01,cn=replica,cn=dc\3Drnp\2Cdc\3Dlocal,cn=mapping
tree,cn=config
objectClass: top
objectClass: nsDSowsReplicationAgreement
cn: AD-DF-DC01
nsDS5ReplicaRoot: dc=rnp,dc=local
description: AD-DF-DC01
nsDS5ReplicaHost: gti-df-dc01.my.domain
nsDS5ReplicaPort: 636
On 1/29/20 12:17 PM, Alberto Viana wrote:
Mark,
Already did that twice hehehehe
Do you think that's about config once all attributes except password
are sync'ed to AD? If it's about config, the log does not suppose to
show something?
389 -> AD (all attributes except password)
AD -> 389
Mark,
Already did that twice hehehehe
Do you think that's about config once all attributes except password are
sync'ed to AD? If it's about config, the log does not suppose to show
something?
389 -> AD (all attributes except password)
AD -> 389 (everthing works, including password)
Tried
Alberto,
Sorry I'm not sure what is wrong. Please review the documentation and
make sure you have everything setup correctly:
https://access.redhat.com/documentation/en-us/red_hat_directory_server/10/html/administration_guide/managing_the_password_policy-synchronizing_passwords
HTH,
Mark
Hi Guys,
My messages to list are being moderated (no sure why), trying again
William,
Right, so if you change a password on AD, does it properly change the
password to 389?
Yes.
And are you using a "ldapmodify userpassword" or "ldappasswd" to change the
password? What's the exact command you
William,
Right, so if you change a password on AD, does it properly change the
password to 389?
Yes.
And are you using a "ldapmodify userpassword" or "ldappasswd" to change the
password? What's the exact command you run against 389 to change the
password?
Tried 3 different ways:
1. ldapmodify
William,
Right, so if you change a password on AD, does it properly change the
password to 389?
Yes.
And are you using a "ldapmodify userpassword" or "ldappasswd" to change the
password? What's the exact command you run against 389 to change the
password?
Tried 3 different ways:
1. ldapmodify
10 matches
Mail list logo