RedHat IDM user to Active Directory
Is it possible if we create user in RedHat IDM and sync to Active Directory. if yes then how.
Responses
Hello,
as per product documentation
"An alternative to a trust-based solution is to leverage user synchronization capability, also available in IdM or Red Hat Directory Server (RHDS), allowing user accounts (and with RHDS also group accounts) to be synchronized from AD to IdM or RHDS."
So the direction for sync is from AD to IdM, not the other way around.
I recommend to open a Red Hat Support case, stating the toplevel requirements and discussing the options with us.
cheers, Chris
IIRC, We can sync users from IPA to AD also.
Setup winsync like this, You need your AD on SSL.
# ipa-replica-manage connect --winsync --binddn cn=administrator,cn=users,dc=pnq,dc=redhat,dc=com --bindpw red@123hat --passsync redhat12 --cacert /root/ca.cert adsys2k8.pnq.redhat.com -v
If you want to sync only from IPA to Windows.
Make sure oneWaySync attribute is specified in the Windows Replication agreement.
dn: cn=meTowin2k81.example.com,cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping tree,cn=config
.....
oneWaySync: toWindows
Hope that helps.
Hello Tobey,
As Chris outlined before in his update , So the direction for sync is from AD to IdM, not the other way around.
If you would like more assistance with a specific requirement , please go ahead and open a support ticket with Red Hat technical support.
Frank
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
