Re: Update schema in ADAM from aremote machine
From: Dmitri Gavrilov [MSFT] (dmitrig_at_online.microsoft.com)
Date: 03/09/05
- Next message: Dmitri Gavrilov [MSFT]: "Re: Update schema in ADAM from aremote machine"
- Previous message: Dmitri Gavrilov [MSFT]: "Re: Dynamically Assigned Auxiliary Classes in AD/AM"
- In reply to: FiscQA: "Update schema in ADAM from aremote machine"
- Next in thread: Dmitri Gavrilov [MSFT]: "Re: Update schema in ADAM from aremote machine"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 9 Mar 2005 00:29:59 -0700
The easiest solution is to use secure bind and bind as a windows principal
(as opposed to using a simple bind as an ADAM principal). LDIFDE knows how
to do secure bind, you should use -b parameter (as opposed to -a).
If you must use simple bind, then you do need 838342. To get it, call MS
support and ask for it. It will be a free call. We don't make it available
as a public download only because we want to keep a track of whom we have
given the fix.
If you create an ADAM user in config partition, and add him to config admins
group, then he will be able to add/modify objects in app partitions. By
default, we add config/Admins as a member of all app-partition/Admins
groups.
-- Dmitri Gavrilov SDE, Active Directory Core This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm "FiscQA" <FiscQA@discussions.microsoft.com> wrote in message news:F84409FF-4359-43F4-8C7C-5F1547677A03@microsoft.com... > I have ADAM installed on a Windows Server 2003 Enterprise Edition. Have not > installed Active Directory. I have an application partition o=pqr,c=us. I > need to import our application specific schema to ADAM from a remote machine > using LDAP simple bind. I have learnt that Only Windows administrators(in my > case WIN03\Administrator) can be ADAM administrators in Windows Server 2003. > As which user (DN) should I bind to LDAP for importing the schema? Is there > any entry corresponding to Windows Administrator in ADAM whose DN can be used > to bind to ADAM and import schema just like we have an Windows Admin entry > (cn=Administrator,cn=Users,dc=exchange,dc=com) in Active Directory. If yes, > what is the DN for Windows Administrator? Or should I add a user in > Configuration partition and add it in Administrators group? For that I will > need a hotfix (838342)mentioned in Microsoft site. But, from where do I > download it. But, still that user cannot be used to populate data under the > application partition, right? Kindly revert as early as possible with a > solution.
- Next message: Dmitri Gavrilov [MSFT]: "Re: Update schema in ADAM from aremote machine"
- Previous message: Dmitri Gavrilov [MSFT]: "Re: Dynamically Assigned Auxiliary Classes in AD/AM"
- In reply to: FiscQA: "Update schema in ADAM from aremote machine"
- Next in thread: Dmitri Gavrilov [MSFT]: "Re: Update schema in ADAM from aremote machine"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
Loading
