#484 Sync AD posix uid attribute for DS uid instead of samAccountName
Closed: wontfix 3 years ago by mreynolds. Opened 11 years ago by gwojtak.

I'd like to request that the Winsync functionality have the option to be a little more configurable about what it syncs and how it is synced over.

Specifically in my case, we have users created in AD automatically by our IDMS system and the RFC2307 attributes (uid, uidNumber, gidNumber, loginShell, unixHomeDirectory (the AD place to hold homeDirectory), and gecos) are also populated with specific values based on the person's function. I'd like to be able to sync these attributes over (or map them somehow), in particular the uid, uidNumber and gidNumber. In my case, the uid is not the same value as the sAMAccountName.

I'd also like the ability to specify different arbitrary attributes to get synced over. We have certain fields that are unique to accounts that would be useful in our case.


Replying to [ticket:484 gwojtak]:

I'd like to request that the Winsync functionality have the option to be a little more configurable about what it syncs and how it is synced over.

Specifically in my case, we have users created in AD automatically by our IDMS system and the RFC2307 attributes (uid, uidNumber, gidNumber, loginShell, unixHomeDirectory (the AD place to hold homeDirectory), and gecos) are also populated with specific values based on the person's function.

This should be handled by the POSIX Winsync functionality added in 1.2.11.12.
https://fedorahosted.org/389/ticket/426
http://port389.org/wiki/WinSync_Posix

I'd like to be able to sync these attributes over (or map them somehow), in particular the uid, uidNumber and gidNumber.

uidNumber and gidNumber are handled by the posix winsync plugin.

In my case, the uid is not the same value as the sAMAccountName.

So the AD entry has both the posix uid attribute and the samAccountName, and they are different? Ok, we need some sort of option to tell winsync and posix winsync to use the AD posix uid attribute for the uid instead of samAccountName.

I'd also like the ability to specify different arbitrary attributes to get synced over. We have certain fields that are unique to accounts that would be useful in our case.

There are already several tickets for this. See https://fedorahosted.org/389/report/16

Metadata Update from @rmeggins:
- Issue assigned to rmeggins
- Issue set to the milestone: FUTURE

7 years ago

Metadata Update from @mreynolds:
- Custom field reviewstatus adjusted to None
- Issue close_status updated to: wontfix
- Issue status updated to: Closed (was: Open)

3 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/484

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata