subject:"\[389\-users\] Password synchronisation beetween openldap and AD 2008 R2"

Re: [389-users] Password synchronisation beetween openldap and AD 2008 R2

2014-01-16 Thread Gary Algier

On 01/16/14 14:43, Dan Lavu wrote: 1. The Windows DCs will be the master of the passwords. Users will need to change their passwords in that environment. Not true, the password synchronization is based upon certain attributes in the database. 389 will only sync to AD if the ntuser objectClass

Re: [389-users] Password synchronisation beetween openldap and AD 2008 R2

2014-01-16 Thread Rob Crittenden

Dan Lavu wrote: 1. The Windows DCs will be the master of the passwords. Users will need to change their passwords in that environment. Not true, the password synchronization is based upon certain attributes in the database. 389 will only sync to AD if the ntuser objectClass is available, and AD

Re: [389-users] Password synchronisation beetween openldap and AD 2008 R2

2014-01-16 Thread Dan Lavu

1. The Windows DCs will be the master of the passwords. Users will need to change their passwords in that environment. Not true, the password synchronization is based upon certain attributes in the database. 389 will only sync to AD if the ntuser objectClass is available, and AD, it's posixAc