Solved

how to configure ADAM

Posted on 2011-02-25
6
378 Views
Last Modified: 2012-05-11
I am trying to create a stand alone LDAP server apart from my AD
I've installed ADAM on win 2003 server
I've created unique instance and created an aplication directory partion
with CN=test,DC=mytest;DC=com
I then logged in and connected via ADAM ADSIEDIT to test loaded all tempalate but  I can't add a user
I do need second ldap server to for the third party app to contain users and password for user which do not have domain accounts
what should do I do wrong,
what is the correct way to confugure ADAM?
adamscr.jpg
newuser.jpg
0
Comment
Question by:leop1212
  • 3
  • 3
6 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 35001568
Would you mind clarifying your Question?  ADAM and AD LDS are read-only by nature.  If you need to add users, you have to do it through AD.  The way the Question is worded makes it seem like you are trying to add users through ADAM, which cannot be done.

Cheers,

DrUltima
0
 

Author Comment

by:leop1212
ID: 35007188
As I read in the help section of ADAM you can add users
http://technet.microsoft.com/en-us/library/cc778833(WS.10).aspx

However it doesn't work
all i am looking for is a simple LDAP server related to my current domain AD where a can add users with passwords ( I want to give my customers access to an application which requires LDAP authentication but do not want customers accounts associated with  my domain)
.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 35008501
ADAM stands for "Active Directory Application Mode".  It is a copy of the AD LDAP directory.  Server 2008 more appropriately names this feature AD LDS (Active Directory Lightweight Directory Services).  When you add a user through ADAM as instructed by the link you provided in post http:#a35007188, you are creating an Active Directory user.  There is no such thing as an "ADAM Only" user, as far as I know, and that is what I was trying to (albeit poorly) explain in post http:#35001568.  As I understand it, the ADAM user, in this article, is referring to a user created through ADAM rather than ADUC (as opposed to a user which exists only in ADAM).  

Remember, the purpose for ADAM and AD LDS is to allow domain level authentication without actually communicating with a Domain Controller.  If you have an LDAP enabled application which is required for your customers, you should build a separate AD for them and either directly connect to it or use ADAM to connect to that separate AD.

DrUltima
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Author Comment

by:leop1212
ID: 35009325
well I don't won't separate AD i just need and LDAP server
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 500 total points
ID: 35009451
In that case, you need to consider a third party LDAP server, such as OpenLDAP for Windows.  There are several out there.  I will be up front with you and let you know I have no experience with such products.  If you find you need help with a stand alone LDAP server, I would suggest closing this Question and asking a Related Question (link in the Question once it is closed).
0
 

Author Closing Comment

by:leop1212
ID: 35052252
the complex part is how to confugre LDAP from scartch with no template or defults and I all I got was teh name  product which I arelady seen there are bunch of them available.

I've seen OPen Ldap and many others free Ldaps
http://directory.apache.org/studio/
and few others.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Office 365 SSO and Shared Devices 6 41
ADFS Redirection 4 33
who removed AD Domain ID 9 28
Big Problem with Redirected Folder 8 13
Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now