Coordinating LDAP with Win Domain

Posted on 2007-10-18
Last Modified: 2010-04-20
The company I have just started with has a LDAP environment and is looking to coordinate a windows 2003 domain structure.  Do I set up the Win domain as if there was none in existence?  How do i coordinate the LDAP with the domain to allow one point of entry for all new users?
Question by:gordonmann
    LVL 63

    Expert Comment

    Most LDAP solutions know how to Sync with Active Directory.

    Otherwise use the LDAP solution built into AD.

    It depends on what special data may be missing from one vs. the other, and which will be a more complete solution that is also secure.

    What LDAP is presently in use ?
    Have you looked for AD connectors for it ?

    I hope this helps !
    LVL 61

    Expert Comment

    Firsthand have a look at PGINA and Kerberos options.
    Basically you cannot have AD and LDAP hybrid authentication.
    LVL 3

    Accepted Solution

    You may consider this option (if I understood your question correct):

    Eventually you want to have only one production directory with all users to manage.

    Install Win 2003 Domain. You don't need to worry about your LDAP on this step.
    Then exports your accounts from old LDAP (I assume its LInux or Novell) and import them into Windows AD - you can google exact commands to do it. I don't think you can export/imports password. But everything else - yes.

    You may need to adjust OU and authentication options in application using LDAP servers.

    After that you can start using your AD server's IP address/name as new LDAP server.

    Thank you.
    LVL 61

    Expert Comment

    AD cannot Import/Export passwords. Rest of the world does it using LDIF format.
    LVL 1

    Author Comment

    I then assume all new users will be enter via AD?
    LVL 3

    Expert Comment

    New users will be in AD


    you need export/import old LDAP users with a default password and 'change password on first login' enabled.


    Featured Post

    Highfive Gives IT Their Time Back

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
    SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
    Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
    Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now