16.13. Managing the Password Sync Service

Important

Password Sync must be installed on every domain controller in the Active Directory domain in order to synchronize Windows passwords.
The service synchronizes password changes made on Active Directory with the corresponding entries' passwords on the Directory Server. Like any Windows service, it can be modified, started and stopped, and uninstalled, depending on how synchronization between Directory Server and Active Directory changes.

16.13.1. Modifying Password Sync

To reconfigure Password Sync:
  1. Open Control Panel and select Programs and Features.
  2. Select the Red Hat Directory Password Sync entry, and click the Change button to relaunch the installer to change the settings.
  3. Go back through the configuration screens to make any changes to the configuration.

16.13.2. Starting and Stopping the Password Sync Service

The Password Sync Service is configured to start whenever the Active Directory host is started. To reconfigure the service so that it does not start when Windows reboots:
  1. Open the Services application.
  2. Double-click the Password Synchronization service.
  3. Select the Manual radio button, and click OK.
To start and stop Password Sync:
  1. Open the Services application.
  2. Right-click the Password Synchronization service.
  3. Select Stop, Start, or Restart, and click OK
Changed passwords are captured even if the Password Synchronization service is not running. If Password Synchronization is restarted, the password changes are sent to Directory Server at the next synchronization.

16.13.3. Uninstalling Password Sync Service

  1. Open Control Panel and select Programs and Features.
  2. Select the Red Hat Directory Password Sync entry, and click the Uninstall button.
  3. If TLS was configured for the Password Sync, then the cert8.db and key3.db databases that were created were not removed when Password Sync was uninstalled. Delete these files by manually.

16.13.4. Upgrading Password Sync

For details, see the corresponding section in the Red Hat Directory Server Installation Guide.