Hi,
i am working on this issue for almost a week now.
i'm trying to configure an ADLDS instance for Cisco Jabber Proxy authentication for multiple domains.
i have 2 forests: starhome.local & newmach.lan
(newmach.lan is the remote forest). i have a 2 way truest.
i've installed a windows 2008 R2 server and installed ADLDS. i've imported both domains schema.
the local domain (.local) is importing fine.
the remote domain is only importing some of the users.
the xml i am using for the remote domain is:
<?xml version="1.0"?>
<doc>
<configuration>
<description>newmach.lan</description>
<security-mode>object</security-mode>
<source-ad-name>ADDC01DEDC01P.newmach.lan</source-ad-name>
<source-ad-partition>dc=newmach,dc=lan</source-ad-partition>
<source-ad-account>rmagenadm</source-ad-account>
<account-domain>newmach.lan</account-domain>
<target-dn>dc=starhome,dc=local</target-dn>
<query>
<base-dn>dc=newmach,dc=lan</base-dn>
<object-filter>
(|(&(objectClass=user)(objectCategory=person))
(&(objectClass=user)(isDeleted=TRUE)))
</object-filter>
<attributes>
<include>objectSID</include>
<include>mail</include>
<include>userPrincipalName</include>
<include>middleName</include>
<include>manager</include>
<include>givenName</include>
<include>sn</include>
<include>department</include>
<include>telephoneNumber</include>
<include>title</include>
<include>homephone</include>
<include>mobile</include>
<include>pager</include>
<include>msDS-UserAccountDisabled</include>
<include>samAccountName</include>
<include>employeeNumber</include>
<exclude></exclude>
</attributes>
</query>
<user-proxy>
<source-object-class>user</source-object-class>
<target-object-class>userProxy</target-object-class>
</user-proxy>
<schedule>
<aging>
<frequency>0</frequency>
<num-objects>0</num-objects>
</aging>
<schtasks-cmd></schtasks-cmd>
</schedule>
</configuration>
<synchronizer-state>
<dirsync-cookie></dirsync-cookie>
<status></status>
<authoritative-adam-instance></authoritative-adam-instance>
<configuration-file-guid></configuration-file-guid>
<last-sync-attempt-time></last-sync-attempt-time>
<last-sync-success-time></last-sync-success-time>
<last-sync-error-time></last-sync-error-time>
<last-sync-error-string></last-sync-error-string>
<consecutive-sync-failures></consecutive-sync-failures>
<user-credentials></user-credentials>
<runs-since-last-object-update></runs-since-last-object-update>
<runs-since-last-full-sync></runs-since-last-full-sync>
</synchronizer-state>
</doc>
the log of the sync is:
Adamsync.exe v1.0 (6)
Establishing connection to target server localhost:50000.
Saving Configuration File on DC=starhome,DC=Local
Saved configuration file.
ADAMSync is querying for a writeable replica of ADDC01DEDC01P.newmach.lan.
Error: DCLocator call failed with error 1355. Attempting to bind directly to string.
Establishing connection to source server ADDC01DEDC01P.newmach.lan:389.
Using file .\dam4604.tmp as a store for deferred dn-references.
Populating the schema cache
Populating the well known objects cache
Starting synchronization run from dc=newmach,dc=lan.
Starting DirSync Search with object mode security.
Processing Entry: Page 1, Frame 1, Entry 0, Count 0, USN 0
Processing source entry <guid=c6cae9fab38abd4fb5aecd4936e836d2>
Processing in-scope entry c6cae9fab38abd4fb5aecd4936e836d2.
(sourceobjectguid=\c6\ca\e9\fa\b3\8a\bd\4f\b5\ae\cd\49\36\e8\36\d2) exists in target. Converting object creation to object modification.
Renaming target object CN=app_mn_srchca,OU=Service,OU=Special Accounts,DC=starhome,DC=Local to CN=app_mn_srchca,<GUID=8d1e9481dde5d743a61dc6db9f904496>.
Modifying attributes: givenName, sAMAccountName, userPrincipalName, lastagedchange,
Previous entry took 0 seconds (15, 0) to process
Processing Entry: Page 1, Frame 1, Entry 1, Count 1, USN 0
Processing source entry <guid=db66aaf2a12ec540838b7520e3e332eb>
Processing in-scope entry db66aaf2a12ec540838b7520e3e332eb.
(sourceobjectguid=\db\66\aa\f2\a1\2e\c5\40\83\8b\75\20\e3\e3\32\eb) exists in target. Converting object creation to object modification.
Renaming target object CN=Confluence OM - Application user,OU=Service,OU=Special Accounts,DC=starhome,DC=Local to CN=Confluence OM - Application user,<GUID=8d1e9481dde5d743a61dc6db9f904496>.
Modifying attributes: sAMAccountName, userPrincipalName, lastagedchange,
Previous entry took 0 seconds (0, 0) to process
Processing Entry: Page 4, Frame 1, Entry 19, Count 1, USN 0
Processing source entry <guid=2021e4cea46b604c9c4332636d823f7c>
Processing in-scope entry 2021e4cea46b604c9c4332636d823f7c.
Adding target object CN=Nick Wennekers,OU=Users,OU=Contern,OU=Luxembourg,OU=Locations,dc=starhome,dc=local.
Deferring synchronization of attribute manager to end of run. Deleting attribute.
Adding attributes: sourceobjectguid, sn, title, telephoneNumber, givenName, instanceType, department, objectSid, sAMAccountName, userPrincipalName, mail, manager, mobile, lastagedchange, objectclass,
A constraint violation occured when attempting to add target object CN=Nick Wennekers,OU=Users,OU=Contern,OU=Luxembourg,OU=Locations,dc=starhome,dc=local.
This could be due to a schema mismatch. This must be fixed before
synchronization can continue.
A constraint violation occured when attempting to add target object CN=Nick Wennekers,OU=Users,OU=Contern,OU=Luxembourg,OU=Locations,dc=starhome,dc=local.
This could be due to a schema mismatch. This must be fixed before
synchronization can continue.
Ldap error occured. ldap_add_sWC: Constraint Violation.
Extended Info: 00002082: AtrErr: DSID-031513C2, #1:
0: 00002082: DSID-031513C2, problem 1005 (CONSTRAINT_ATT_TYPE), data 0, Att 840ab5e1 (title):len 144
.
Ldap error occured. ldap_add_sWC: Constraint Violation.
Extended Info: 00002082: AtrErr: DSID-031513C2, #1:
0: 00002082: DSID-031513C2, problem 1005 (CONSTRAINT_ATT_TYPE), data 0, Att 840ab5e1 (title):len 144
.
Saving Configuration File on DC=starhome,DC=Local
Saved configuration file.
(i've skiped alot of lines in the middle since they just say object allready axists).
please advise.
Thanks:-)
Roie.