On 07/15/2015 09:42 AM, Email wrote:
Hi everyone, my name is Tony and this is my first post, so it's nice to meet all of you. I've been tasked with creating an AD and FreeIPA environment, and I'm looking into the sync between the two. It looks like creating a user in AD causes that user to be created in IPA, but not the other way around. But if I create them in IPA they will not be auto created in AD. I'm wondering why this is.
This is intentional. If you are using FreeIPA and windows sync, it is assumed you want AD to be the provisioning system for new users, and not FreeIPA.
I would seriously consider using trusts instead of windows sync.
See section 8.1 of the fedora documentation as a reference.
Link please? We may need to clarify the language.
Thanks in advance! ~Tony
-- Manage your subscription for the Freeipa-devel mailing list: https://www.redhat.com/mailman/listinfo/freeipa-devel Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
