Show Table of Contents
12.11. Managing the Password Sync Service
Important
Password Sync must be installed on every domain controller in the Active Directory domain in order to synchronize Windows passwords.
The service synchronizes password changes made on Active Directory with the corresponding entries' passwords on the Directory Server. Like any Windows service, it can be modified, started and stopped, and uninstalled, depending on how synchronization between Directory Server and Active Directory changes.
The Password Sync Service is supported on Microsoft Windows Server 2008 R2 (32-bit and 64-bit).
12.11.1. Modifying Password Sync
To reconfigure Password Sync:
- Open Control Panel, and double-click Add/Remove Programs.
- Click the button to relaunch the installer to change the settings.
- Go back through the configuration screens to make any changes to the configuration.
12.11.2. Starting and Stopping the Password Sync Service
The Password Sync Service is configured to start whenever the Active Directory host is started. To reconfigure the service so that it does not start when Windows reboots:
- Go to the Control Panel, and select Services.
- Scroll through the list of services for the Password Sync Service. The Startup field is set to
Automatic. - Double-click Password Sync.
- Select the radio button, and then click .
To start and stop Password Sync:
- Go to the Control Panel, and select Services.
- Scroll through the list of services for Password Sync, and right-click.
- Select , , or , and hit okay.
It's also possible to select the sync service and then click the start or stop links in the upper left of the Services window.
Changed passwords are captured even if Password Sync is not running. If Password Sync is restarted, the password changes are sent to Directory Server at the next synchronization.
12.11.3. Uninstalling Password Sync Service
- Open Control Panel, and double-click Add/Remove Programs.
- Select click to uninstall the Password Sync Service.
- If SSL was configured for the Password Sync, then the
cert8.dbandkey3.dbdatabases that were created were not removed when Password Sync was uninstalled. Delete these files by hand.
12.11.4. Upgrading Password Sync
For details, see the corresponding section in the Red Hat Directory Server Installation Guide.
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.