Re: ADAM and Authorization Manager on XP

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: John Parrish (pleaseask_at_me.com)
Date: 09/29/04

• Next message: AlskiOnTheWeb: "Terminal Server Settings In Active Directory..."
• Previous message: Deric: "Re: separate active directory"
• In reply to: Lee Flight: "Re: ADAM and Authorization Manager on XP"
• Next in thread: Lee Flight: "Re: ADAM and Authorization Manager on XP"
• Reply: Lee Flight: "Re: ADAM and Authorization Manager on XP"
• Messages sorted by: [ date ] [ thread ]

---

Date: Wed, 29 Sep 2004 12:08:36 -0400

Lee Flight wrote:
> Assuming that you have created an application directory partition
> in the ADAM instance, say o=aztest,c=test run the AzMan.msc,
>
> right click Authorization Manager node,
> Options select developer mode.
>
> Then right click Authorization Manager, New Store, then the AD
> radio button then
>
> msldap://ADAMServer:ADAMport/cn=mystore,o=aztest,c=test
>
> i.e. specify a container name below the parent and let AzMan create it.
> This assumes the principal running Azman.msc has sufficient permissions
> on the ADAM instance and that the ADAM instance is on ADAMServer
> (which might be localhost or a FQDN) and listening on ADAMport.
>
> Note: ADAM can be used as an AzMan policy store only.

Thanks, got it working just as you described. It took me a little while
to figure out how to add an application partition. ADAM documentation
has these steps as well:

1. open the command prompt for ADAM
2. type ldp and press return (LDP application should open)
3. select menu connection->connect and specify host, port, etc.
4. select menu connection->bind and provide credentials
5. select menu browse->add child
6. type a DN for the new child (CN=ApplicationPartition,CN=Base)
7. under edit entry enter attribute: ObjectClass value: container (and
click button "enter")
8. repeat step seven as attribute: instanceType value: 5
9. click run

---

• Next message: AlskiOnTheWeb: "Terminal Server Settings In Active Directory..."
• Previous message: Deric: "Re: separate active directory"
• In reply to: Lee Flight: "Re: ADAM and Authorization Manager on XP"
• Next in thread: Lee Flight: "Re: ADAM and Authorization Manager on XP"
• Reply: Lee Flight: "Re: ADAM and Authorization Manager on XP"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: AzMan And ADAM ... In your ADAM instance extend the schema to support Authorization Manager ... Then right click Authorization Manager, New Store, ... (microsoft.public.windows.server.active_directory) Re: ADAM and Authorization Manager on XP ... Assuming that you have created an application directory partition ... Then right click Authorization Manager, New Store, then the AD ... on the ADAM instance and that the ADAM instance is on ADAMServer ... (microsoft.public.windows.server.active_directory) Adam Sync Issue ... authorization manager. ... I have created an authorization store in my ADAM instance. ... Now, the foreignsecurityprincipal sid entry ... (microsoft.public.windows.server.active_directory) NEVERMIND....found existing thread on topic ... > I'd like to use ADAM as the store for Authorization Manager. ... > I get is our global domain and not the ADAM instance. ... (microsoft.public.windows.server.active_directory) ADAM as Authorization store ... I'd like to use ADAM as the store for Authorization Manager. ... I get is our global domain and not the ADAM instance. ... (microsoft.public.windows.server.active_directory)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.active_directory  > 2004-09