[389-users] Is changes to the UID attribute on the directory server synced back to AD when using Windows sync?
Rich Megginson
rmeggins at redhat.com
Fri Jan 8 15:19:32 UTC 2010
Kenneth Holter wrote:
> Hi.
>
>
> We're using Windows sync on our (RedHat) directory server to fetch
> users from AD, and have a quick question about the UID attribute: It
> look to me like the UID attribute that linux ldap clients use for
> authentication, is a attribute created when one adds the posixaccount
> object class to the user object. In other words, when user "kenneth"
> is synced over from AD and I add the posixaccount object class, then
> the uid attribute is automatically created and populated with uid
> value "kenneth" from some (which one? "name"? "cn"?) AD attribute. Is
> this correct?
Yes. The AD attribute samAccountName is used to populate the uid
attribute on 389.
> If so, can I assume that making changes to the uid attribute will not
> be reflected on the AD side?
I'm not sure. uid and samAccountName are "special" attributes - not
sure if they are synced - you could try it I suppose.
>
>
> Best regards,
> Kenneth Holter
>
>
>
>
> ------------------------------------------------------------------------
>
> --
> 389 users mailing list
> 389-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
More information about the Fedora-directory-users
mailing list