Re: ADAM Synchronizer Beta - question
- From: "DavidInCruz" <DavidInCruz@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 2 May 2005 15:27:05 -0700
Thanks again Lee. I removed the existing instance and re-installed. I am
using the same user-id password in the config file and on the command line
and I am getting:
-- New listing -----------
946 entries modified successfully.
The command has completed successfully
C:\WINDOWS\ADAM>ldifde -I -s localhost:50000 -c CN=Configuration,DC=X
#ConfigurationNamingContext -f schema_Metadata.ldf
Connecting to "localhost:50000"
Logging in as current user using SSPI
Importing directory from file "schema_Metadata.ldf"
Loading entries..........
9 entries modified successfully.
The command has completed successfully
C:\WINDOWS\ADAM>adamsync /install localhost:50000
c:\windows\adam\conf_public.xml
Please enter password:
Done.
C:\WINDOWS\ADAM>adamsync /l localhost:50000
Listing configuration files:
---------------------------
|-> "ADSyncADAM": for ISDApplications Work Order :
OU=ISD,DC=test,DC=co,DC=santa-cruz,DC=ca,DC=us
Done.
C:\WINDOWS\ADAM>adamsync /sync localhost:50000 adsyncadam /creds test
administrator xxxxxx
Ldap error occured. ldap_bind_s: Invalid Credentials.
Extended Info: 8009030C: LdapErr: DSID-0C0903E2, comment:
AcceptSecurityContext
error, data 0, v893.
C:\WINDOWS\ADAM>
What am I missing??
"Lee Flight" wrote:
> Hi
>
> that looks like you do not have sufficient permissions on the ADAM instance.
> To recap on accounts and permissions:
>
> Edit the config.xml and in it specify the AD account that has permissions
> to read from the AD partition you want to sync from.
>
> Run ADAMSync /install using that config.xml as an ADAM Administrator
> and when prompted for a password specify that corresponding to the AD
> account in the config.xml
>
> Run ADAMSync /sync as an ADAM administrator.
>
> Before commencing on the above you might want to unistall the ADAM
> instance using Add/Remove Programs and then reinstall it and load the
> ad_schema.ldf and schema_metadata.ldf so that you have a clean start.
>
> Lee Flight
>
>
> "DavidInCruz" <DavidInCruz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:1BF2EF7A-A6B7-4F5A-9941-17B79C2ADE5C@xxxxxxxxxxxxxxxx
> > Hello Lee;
> > okay, I now have used the same password in both the command and config
> > .xml
> > file with the following result:
> > Establishing connection to target server sctas06:50000.
> >
> > Unable to read attribute msds-hasinstantiatedncs on CN=NTDS
> > Settings,CN=SCTAS06$ISDWorkorder,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,CN=?BB105B3D-3681-45B5-9EF2-A3F6076B1D98?.
> >
> > Unable to read attribute msds-hasinstantiatedncs on CN=NTDS
> > Settings,CN=SCTAS06$ISDWorkorder,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,CN=?BB105B3D-3681-45B5-9EF2-A3F6076B1D98?.
> >
> > Thanks for all of your help.
> >
> > "Lee Flight" wrote:
> >
> >> Hi
> >>
> >> when you ran the ADAMSync /install did you specify the password
> >> corresponding to the source-ad-account in the config.xml?
> >>
> >> Lee Flight
> >>
> >>
> >>
> >> "DavidInCruz" <DavidInCruz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> >> news:AED95748-8290-4DC3-9ABC-D6F00540D2A6@xxxxxxxxxxxxxxxx
> >> > Thanks Lee!!
> >> > My story continues is the following error saying that the credentials
> >> > being
> >> > used in the /sync command are not suffiecent or that within the ADAM
> >> > instance this user does not have the right privillages?:
> >> >
> >> > Establishing connection to target server localhost:50000.
> >> >
> >> > There is already an active sync session in progress.
> >> >
> >> > Please allow the session to complete, or use -mai to seize the role.
> >> >
> >> > Saving Configuration File on
> >> > OU=isd,DC=test,DC=co,DC=xxxxxx,DC=ca,DC=us,DC=adam-users
> >> >
> >> > Saved configuration file.
> >> >
> >> > ADAMSync is querying for a writeable replica of
> >> > sctdc00.test.co.xxxxxxx.ca.us.
> >> >
> >> > Error: DCLocator call failed with error 1355. Attempting to bind
> >> > directly
> >> > to
> >> > string.
> >> >
> >> > Establishing connection to source server
> >> > sctdc00.test.co.santa-cruz.ca.us:389.
> >> >
> >> > Ldap error occured. ldap_bind_s: Invalid Credentials.
> >> >
> >> > Extended Info: 8009030C: LdapErr: DSID-0C0903E2, comment:
> >> > AcceptSecurityContext error, data 0, v893.
> >> >
> >> > Thanks again for your answers. I think I am almost there.
> >> >
> >> > "Lee Flight" wrote:
> >> >
> >> >> Hi
> >> >>
> >> >> does the account you are running with have full control over the
> >> >> ADAM instance? Adding /log - to your command line might give more
> >> >> information.
> >> >>
> >> >> Lee Flight
> >> >>
> >> >> "DavidInCruz" <DavidInCruz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> >> >> news:A45902B9-9E7A-4693-908B-30EC8B43D824@xxxxxxxxxxxxxxxx
> >> >> > Yes, I caught it right after I posted the message. Thanks for your
> >> >> > response.
> >> >> >
> >> >> > now I am getting the following when trying to /sync
> >> >> > C:\WINDOWS\ADAM>adamsync /sync localhost:50000 ADSyncADAM /creds
> >> >> > test
> >> >> > administrator xxxxxxxxx
> >> >> > Unable to read attribute msds-hasinstantiatedncs on
> >> >> > CN=NTDSSettings,CN=SCTAS06$ISDWorkorder,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,CN=
> >> >> > ?BB105B3D-3681-45B5-9EF2-A3F6076B1D98?.
> >> >> >
> >> >> > Any Ideas?
> >> >> > C:\WINDOWS\ADAM>
> >> >> >
> >> >> >
> >> >> > "Lee Flight" wrote:
> >> >> >
> >> >> >> Hi
> >> >> >>
> >> >> >> I think you have a typo in your command line on the -c option, try
> >> >> >>
> >> >> >> -c "cn=Configuration,dc=X" #configurationNamingContext
> >> >> >>
> >> >> >> Amswering your Q. : The schema of ADAM instances outside of a
> >> >> >> configuration set are independent.
> >> >> >>
> >> >> >> Lee Flight
> >> >> >>
> >> >> >> "DavidInCruz" <DavidInCruz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
> >> >> >> message
> >> >> >> news:A7C5E8C7-81D3-43F2-A187-304EF2587D9C@xxxxxxxxxxxxxxxx
> >> >> >> > I've added a second instance to a W2K3 server. I had previously
> >> >> >> > installed
> >> >> >> > the
> >> >> >> > LDIF files to the original instance. does the following error
> >> >> >> > indicate
> >> >> >> > that
> >> >> >> > it has already been extended??
> >> >> >> >
> >> >> >> > C:\WINDOWS\ADAM>ldifde -I -s localhost:50000 -c
> >> >> >> > CN-Configuration,DC=X
> >> >> >> > #Configura
> >> >> >> > tionNamingContext -f ad_schema.ldf
> >> >> >> > Connecting to "localhost:50000"
> >> >> >> > Logging in as current user using SSPI
> >> >> >> > Importing directory from file "ad_schema.ldf"
> >> >> >> > Loading entries.
> >> >> >> > Add error on line 15: Referral
> >> >> >> > The server side error is: 0x202b A referral was returned from the
> >> >> >> > server.
> >> >> >> > The extended server error is:
> >> >> >> > 0000202B: RefErr: DSID-03100738, data 0, 1 access points
> >> >> >> > ref 1: 'x'
> >> >> >> >
> >> >> >> > 0 entries modified successfully.
> >> >> >> > An error has occurred in the program
> >> >> >> > No log files were written. In order to generate a log file,
> >> >> >> > please
> >> >> >> > specify the log file path via the -j option.
> >> >> >>
> >> >> >>
> >> >> >>
> >> >>
> >> >>
> >> >>
> >>
> >>
> >>
>
>
>
.
- Follow-Ups:
- Re: ADAM Synchronizer Beta - question
- From: Lee Flight
- Re: ADAM Synchronizer Beta - question
- Prev by Date: DC cannot see AD
- Next by Date: group policy
- Previous by thread: DC cannot see AD
- Next by thread: Re: ADAM Synchronizer Beta - question
- Index(es):
Relevant Pages
|
