Red Hat Directory Server 8.0 Administrator's Guide
6. Give trusted peer status to the server.
certutil.exe -d "C:\Program Files\Red Hat Directory Password
Synchronization" -M
-n Server-Cert -t "P,P,P"
NOTE
If any Active Directory user accounts exist when Password Sync is first
installed, then the passwords for those user accounts cannot be synchronized
until they are changed because Password Sync cannot decrypt a password
once it has been hashed in Active Directory.
2.5. Step 5: Configure the Directory Server Database for
Synchronization
Just as with replication, there must be a changelog available to track and send directory
changes and the Directory Server database being synchronized must be configured as a
replica.
NOTE
If the Directory Server database is already in a replicated environment, this step
is not necessary.
First, enable the changelog:
1. In the Directory Server Console, select the Configuration tab.
2. In the left-hand navigation tree, click the Replication folder.
3. In the main window, click the Supplier Settings tab.
4. Check the Enable Changelog database.
5. Set the changelog database directory. Click the Use default button to use the default or
Browse... to select a custom directory.
6. Save the changelog settings.
Chapter 19. Synchronizing Red Hat Directory Server with Microsoft Active Directory
524