Users / Group Migration from AD to Openldap
Hello,
Is there any way or tool which would be helpful in migrating AD users/groups to openldap ?
Current requirement and environment is as follows:
-
Active Directory on win2008
-
Users are authenticating from MAC and Windows clients against AD.
-
Access to ISILION storage is also using AD.
To replace Ad we are planning to go with RHEL6.X with openldap.
-
We need tools to migrate users/groups and schema from AD to openldap
-
Access to Samba share using opendap credentials. Here we are planning to use https://access.redhat.com/site/articles/17303
Note: The password sync will only be one sided, i.e. from Samba to LDAP.
Is there any way if user change password in ldap will sync to samba ?
Thanks in advanced
Regards,
Santosh
Responses
Guru
6222 points
Hello Santosh,
This only a reply to the last question:
If you perform the steps/hints in
https://access.redhat.com/site/articles/17303
there will not be any password sync at all, Samba will check users&passwords in de ldap "database", it will not use the smbpasswd files anymore.
Kind reagrds,
Jan Gerrit
Guru
6222 points
Santosh,
This is my understanding of the matter.
Unfortunately I do not have a working test environment at the moment.
Rereading the KB I understand: the smbpasswd configuration is reconfigured to update the ldap credentials.
So in my understanding, all 3 methods you name are updating the same password field in ldap.
If I am mistaken, I hope someone reading this thread will correct me.
Regards,
Jan Gerrit
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.