Solved

Getting servers that used old LDAP to point to AD...

Posted on 2009-05-12
2
339 Views
Last Modified: 2013-12-24
We are going to be doing a migration coming up from Netscape Directory Server to Active Directory and I'm in the process of figuring out all of the possible 'problems' along the way. We have a good portion of servers that are pointing to this old LDAP and I was wondering how 'compatible' AD will be with accepting the new requests from these servers.

Will the servers be able to see a difference or will it just think it's another LDAP box and continue on? Do I have to install something like Microsoft's Services for Unix?
0
Comment
Question by:wlandymore
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 71

Accepted Solution

by:
Chris Dent earned 115 total points
ID: 24365461

I shouldn't think you'll need Services for Unix at all.

If they applications just expect to see an LDAP directory then they should be fine working with AD.

There are a few differences between implementations of LDAP directories, perhaps the method to bind to the directory is most likely to differ. For example, if you use this format "UID=Username,O=Org" you'll find you have to change over to "CN=name,OU=somewhere,DC=domain,DC=com".

Chris
0
 
LVL 8

Expert Comment

by:thetmanvn
ID: 24365647
The root of different between LDAP Servers is schemas. All have some same schema, but each one have some specular schemas

So you can load your speculars loaded schemas from Netscape Active Directory Server (NADS) to AD, and then export all the tree from NADS then import into your AD. It will not be afraid of you for conflict in the root tree, because the default structure of tree is almost diffrence between NADS and AD. In this way, you do not need to change rest of serves use old NADS, except IP Adrress (If change)

Anyway, if you see the possible confilct, then you must create small sub-tree in AD to include all from NADS, then must re-configure all servers use NADS.

Good luck
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When table data gets too large to manage or queries take too long to execute the solution is often to buy bigger hardware or assign more CPUs and memory resources to the machine to solve the problem. However, the best, cheapest and most effective so…
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question