Solved

how to configure ADAM

Posted on 2011-02-25
6
377 Views
Last Modified: 2012-05-11
I am trying to create a stand alone LDAP server apart from my AD
I've installed ADAM on win 2003 server
I've created unique instance and created an aplication directory partion
with CN=test,DC=mytest;DC=com
I then logged in and connected via ADAM ADSIEDIT to test loaded all tempalate but  I can't add a user
I do need second ldap server to for the third party app to contain users and password for user which do not have domain accounts
what should do I do wrong,
what is the correct way to confugure ADAM?
adamscr.jpg
newuser.jpg
0
Comment
Question by:leop1212
  • 3
  • 3
6 Comments
 
LVL 31

Expert Comment

by:DrUltima
Comment Utility
Would you mind clarifying your Question?  ADAM and AD LDS are read-only by nature.  If you need to add users, you have to do it through AD.  The way the Question is worded makes it seem like you are trying to add users through ADAM, which cannot be done.

Cheers,

DrUltima
0
 

Author Comment

by:leop1212
Comment Utility
As I read in the help section of ADAM you can add users
http://technet.microsoft.com/en-us/library/cc778833(WS.10).aspx

However it doesn't work
all i am looking for is a simple LDAP server related to my current domain AD where a can add users with passwords ( I want to give my customers access to an application which requires LDAP authentication but do not want customers accounts associated with  my domain)
.
0
 
LVL 31

Expert Comment

by:DrUltima
Comment Utility
ADAM stands for "Active Directory Application Mode".  It is a copy of the AD LDAP directory.  Server 2008 more appropriately names this feature AD LDS (Active Directory Lightweight Directory Services).  When you add a user through ADAM as instructed by the link you provided in post http:#a35007188, you are creating an Active Directory user.  There is no such thing as an "ADAM Only" user, as far as I know, and that is what I was trying to (albeit poorly) explain in post http:#35001568.  As I understand it, the ADAM user, in this article, is referring to a user created through ADAM rather than ADUC (as opposed to a user which exists only in ADAM).  

Remember, the purpose for ADAM and AD LDS is to allow domain level authentication without actually communicating with a Domain Controller.  If you have an LDAP enabled application which is required for your customers, you should build a separate AD for them and either directly connect to it or use ADAM to connect to that separate AD.

DrUltima
0
Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

 

Author Comment

by:leop1212
Comment Utility
well I don't won't separate AD i just need and LDAP server
0
 
LVL 31

Accepted Solution

by:
DrUltima earned 500 total points
Comment Utility
In that case, you need to consider a third party LDAP server, such as OpenLDAP for Windows.  There are several out there.  I will be up front with you and let you know I have no experience with such products.  If you find you need help with a stand alone LDAP server, I would suggest closing this Question and asking a Related Question (link in the Question once it is closed).
0
 

Author Closing Comment

by:leop1212
Comment Utility
the complex part is how to confugre LDAP from scartch with no template or defults and I all I got was teh name  product which I arelady seen there are bunch of them available.

I've seen OPen Ldap and many others free Ldaps
http://directory.apache.org/studio/
and few others.
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Learn about cloud computing and its benefits for small business owners.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now