Add Windows User to ADAM Role using LDIFDE.exe
- From: "Jeremy Wiebe" <jeremy.wiebe@xxxxxxxxx>
- Date: 19 Jan 2007 09:41:47 -0800
I'm trying to add a Windows user to an ADAM role by creating an LDIF
file and importing it into ADAM using ldifde.exe. I found this post
which seems to be exactly what I need, but I can't get it to work
(http://groups.google.ca/group/microsoft.public.windows.server.active_directory/browse_frm/thread/d670e854e40cec46?tvc=1).
Here's my LDIF file:
dn: CN=Readers,CN=Roles,CN=MyApp,DC=MyCompany,DC=COM
changetype: modify
add: member
# member: <SID=S-1-5-21-1644491937-113007714-1957994488-1007>
-
I got the SID by manually adding a windows user to a role using
ADAM-AdsiEdit and then exporting that role using ldifde.exe
The error I'm getting is:
===
There is a syntax error in the input file
Failed on line 5. The last token starts with 'm'.
An error has occurred in the program
===
In the post I mentioned above Dmitri's (last poster) LDIF specifies the
SID using both the <SID=XYZ> and base64 encoded method. Is that
required? (If it is, I couldn't get that working either).
So, am I missing something obvious here or does LDIFDE.exe actually not
support this?
Also, I'm under the impression that LDIFDE.exe (or probably ADAM) will
automatically create a ForeignSecurityPrincipal for me, if needed, when
I add the user to the role.
.
- Follow-Ups:
- Re: Add Windows User to ADAM Role using LDIFDE.exe
- From: Lee Flight
- Re: Add Windows User to ADAM Role using LDIFDE.exe
- Prev by Date: Re: LSASRV SPNEGO Error and 'logon server not available' after full domain restore
- Next by Date: Domain Upgrade
- Previous by thread: Re: creating network folder
- Next by thread: Re: Add Windows User to ADAM Role using LDIFDE.exe
- Index(es):
Relevant Pages
|
Loading
