[Date Prev][Date Next] [Chronological] [Thread] [Top]

AD->OpenLDAP replication

To: <openldap-software@OpenLDAP.org>
Subject: AD->OpenLDAP replication
From: Geoff Silver <geoff@uslinux.net>
Date: Fri, 31 May 2002 11:14:14 -0400 (EDT)

I'm interested if anyone has had any luck replicating Active Directory (or
parts of it) to an OpenLDAP server.  On my current contract, they are
using AD strictly for generic user/computer/etc management; however, they
want to replicate some (if possible) or all AD info (specifically just
"phonebook-related stuff") to an OpenLDAP server.

The rationale is twofold.  First, even the NT admins feel AD is terrible
unstable, and they don't want anyone querying it if they can avoid it.
Second (and more importantly), they will be receiving LDIF files from
other customers they want to sync into their tree (no, referrals are
unfortunately not an option due to some political issues) - and they want
to keep the non-company LDAP info off the AD servers.

So, has anyone had any luck doing this?  Can anyone point me in the right
direction?  I've done replication OpenLDAP->OpenLDAP, but I'm just
beginning to mess around with AD.  userPassword synchronization isn't
necessary - basically, just cn, sn, givenName, o, ou, telephoneNumber,
mail, and postalAddress, l, st, and zip.

Thanks for any help anyone can provide.

-- 
Geoff Silver					<geoff at uslinux dot net>
"If Bill Gates had a nickel for every time Windows crashed...
	Oh wait, he does"

Prev by Date: Having trouble adding users
Next by Date: RE: AD->OpenLDAP replication
Index(es):
- Chronological
- Thread