Solved

how to configure ADAM

Posted on 2011-02-25
6
388 Views
Last Modified: 2012-05-11
I am trying to create a stand alone LDAP server apart from my AD
I've installed ADAM on win 2003 server
I've created unique instance and created an aplication directory partion
with CN=test,DC=mytest;DC=com
I then logged in and connected via ADAM ADSIEDIT to test loaded all tempalate but  I can't add a user
I do need second ldap server to for the third party app to contain users and password for user which do not have domain accounts
what should do I do wrong,
what is the correct way to confugure ADAM?
adamscr.jpg
newuser.jpg
0
Comment
Question by:leop1212
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 35001568
Would you mind clarifying your Question?  ADAM and AD LDS are read-only by nature.  If you need to add users, you have to do it through AD.  The way the Question is worded makes it seem like you are trying to add users through ADAM, which cannot be done.

Cheers,

DrUltima
0
 

Author Comment

by:leop1212
ID: 35007188
As I read in the help section of ADAM you can add users
http://technet.microsoft.com/en-us/library/cc778833(WS.10).aspx

However it doesn't work
all i am looking for is a simple LDAP server related to my current domain AD where a can add users with passwords ( I want to give my customers access to an application which requires LDAP authentication but do not want customers accounts associated with  my domain)
.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 35008501
ADAM stands for "Active Directory Application Mode".  It is a copy of the AD LDAP directory.  Server 2008 more appropriately names this feature AD LDS (Active Directory Lightweight Directory Services).  When you add a user through ADAM as instructed by the link you provided in post http:#a35007188, you are creating an Active Directory user.  There is no such thing as an "ADAM Only" user, as far as I know, and that is what I was trying to (albeit poorly) explain in post http:#35001568.  As I understand it, the ADAM user, in this article, is referring to a user created through ADAM rather than ADUC (as opposed to a user which exists only in ADAM).  

Remember, the purpose for ADAM and AD LDS is to allow domain level authentication without actually communicating with a Domain Controller.  If you have an LDAP enabled application which is required for your customers, you should build a separate AD for them and either directly connect to it or use ADAM to connect to that separate AD.

DrUltima
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:leop1212
ID: 35009325
well I don't won't separate AD i just need and LDAP server
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 500 total points
ID: 35009451
In that case, you need to consider a third party LDAP server, such as OpenLDAP for Windows.  There are several out there.  I will be up front with you and let you know I have no experience with such products.  If you find you need help with a stand alone LDAP server, I would suggest closing this Question and asking a Related Question (link in the Question once it is closed).
0
 

Author Closing Comment

by:leop1212
ID: 35052252
the complex part is how to confugre LDAP from scartch with no template or defults and I all I got was teh name  product which I arelady seen there are bunch of them available.

I've seen OPen Ldap and many others free Ldaps
http://directory.apache.org/studio/
and few others.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question