[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Fedora-directory-users] Windows Syncronization inbound changes problem

Christian A. Rodriguez wrote:
First of all I have to mention that Windows Users & Groups were created before Fedora Directory was installed, so when FDS was installed I started up with replicated windows users in FDS without passwords being synchronized. Therefore, the scenario is a Windows tree with users (with passwords) & groups and FDS with users and groups replicated without their passwords.

I am trying to define a mechanism to reset every password in both directories so they begin to work synchronized.

Doing some tests, I realized that a change made in Windows is replicated into FDS binding as the users subject of change, so as the entry doesn't have it's password, the following lines are logged in FDS access log:

[08/Jan/2008:15:51:35 -0300] conn=1033 op=0 BIND dn="uid=USERXXX,OU=People,ou=Active Directory,dc=example,dc=com" method=128 version=2 [08/Jan/2008:15:51:35 -0300] conn=1033 op=0 RESULT err=49 tag=97 nentries=0 etime=0
[08/Jan/2008:15:51:35 -0300] conn=1033 op=1 UNBIND
[08/Jan/2008:15:51:35 -0300] conn=1033 op=1 fd=80 closed - U1
[08/Jan/2008:15:51:35 -0300] conn=1032 op=2 RESULT err=50 tag=103 nentries=0 etime=0
[08/Jan/2008:15:51:35 -0300] conn=1032 op=3 UNBIND

I haven't found any documentation about inbound changes, specifically password change, being done as the same user subject of the change. Is this true?
Yes.  That's how it verifies the new password is valid.

Thanks in advance, and sorry for my bad English

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]