Integrat AD with LDS?

-

hi, facing problem ad lds.  scenario have login information of users stored in ad , other attributes of users stored in lds, want merge both these information , display it. can 1 please me out on or suggest articles or code snippet of help.

thanks

hi sourabh,

referring to the requirements listed in previous post, there's nothing particularly strange or difficult requirements.

going original post, sticking point might idea of "merging" two. trying to think of ad , ad lds in same way as two tables in database isn't practical people (there caveat deliberately chosen example, i'll cover later).

the question have trying achieve? answer dictate options available you.

if you're using kind of com process found within old adodb classes, you'll need use 2 adodb.connection objects. same philosophy applies if you're using .net system.data derived classes. 1 connection point ad while other points ad lds.

in terms of how "synchronise" both ad , ad lds, depends on you're trying achieve. fim , adamsync 2 methods available microsoft, however, there's nothing stopping programatically populating ad lds either. regardless of how it, there's no reason can't store have in ad in ad lds, since you're provisioning ad sounds of things.

in case, since you're not using ad lds authentication, recommendation attempt perform bind against active directory, , if fails user, deny access , exit/move on/do whatever need do. if succeeds, move onto authorisation checking group memberships account has in ad lds, (and would) in context of application or service account. assuming pass authorisation check, can on running main part of application - whatever may be.

the caveat alluded earlier comes using called "linked servers" within sql server. creating 2 linked servers - 1 ad , other ad lds, can create views indeed link data obtained both directory services. however, there technical limitations approach, such not being able return multivalued attributes @ all.

if needs basic, you might choose to look this. if they're complex, it may not be suitable. handle authentication approach if utilise kerberos contrained delegation, if you're not familiar underlying concepts going difficult navigate. nevertheless, option. can read more kcd here if you're interested.

right though, it's hard know suggest because there's not enough information in original posts tell you're trying achieve. if can provide more concise information, can better you.

all said, it's important keep in mind isn't programming forum, whole question might end outgrowing advice forum can give (though may able direct more appropriate forum in process).

cheers,
lain



Windows Server  >  Directory Services



Comments

Post a Comment

Popular posts from this blog

Group Policy Event ID 1058 Error Code 1326 (The user name or password is incorrect)

-
i seeing odd error on 1 of our domain controllers. have dealt event id 1058 errors whereby policy (or policies) not replicating, receiving error along error code 1326 on server, , apparently happening default domain policy: log name:      system source:        microsoft-windows-grouppolicy date:          8/10/2015 3:09:54 pm event id:      1058 task category: none level:         error keywords:      user:          s-1-5-21-1484152634-2550175353-3916092219-3287 computer:      <dc name>.<domainname> description: processing of group policy failed. windows attempted read file http://schemas.microsoft.com/win/2004/08/events/event ">   <system>     <provi...
Read more

Suspicious event log Event ID: 4905

-
hi thr, could please me understand causing such event logs generate ? as  i understand, vssvc.exe pertains volume shadow copy used backup purpose.  we have third party application used taking backup of servers. the event longs generated following messages: 1) attempt made unregister security event source. 2) attempt made register security event source. these events not regular generated on random days. standard fields: date:               2013/10/19 time:               02:32:19 importance:         critical rule name:          security event monitored machine:  <domain controller> log format:         windows log name:           security event id:           4905 in work hours:      yes dynamic fields: internal timestamp: 2013/10/19 ...
Read more

DCOM received error "2147746132" from...

-
hi everybody, i have dc (my windows essentials 2012 server) , windows 2012 server in network.  the windows server 2012 inside domain. on server, got "non stopping" error says in event logs : ===> dcom received error "2147746132" fromd computer xxxx(my dc computer) while server trying activation : {6df8cb71-153b-4c66-8fc4-e59301b8011b} it never stops, got 11000+ new events :s i found : http://support.microsoft.com/kb/971153/fr i'm not sure should ? does got idea ? matthieu. hi, please try solution mentioned in below link: http://www.eventid.net/display-eventid-10006-source-dcom-eventno-272-phase-1.htm regards, cicely Windows Server  >  Windows Server 2012 General ...
Read more