[Freeipa-users] more password sync with AD questions ....
Rob Crittenden
rcritten at redhat.com
Mon Jul 6 17:42:06 UTC 2009
Kambiz Aghaiepour wrote:
> Once AD password sync is established, is there an easy way to
> prepopulate the users in freeipa with the users in AD? Or do I need to
> define the users in freeipa that I want to sync? Also is there a risk
> of overwriting a users password in AD if the user is defined in FreeIPA
> after the sync agreement is setup?
>
> Thanks
> Kambiz
>
IIRC users created on AD will be synced to IPA but not the other way around.
The linkage between an IPA user and a DS user is the attribute
samAccountName. If the entry lacks this (and the ntUser objectclass)
then they will not be synced.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20090706/c85d5ab3/attachment.bin>
More information about the Freeipa-users
mailing list