Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
plessm Absent Member.
Absent Member.
242 views

Active Directory 2008 R2 to eDirectory sync


My organization has recently migrated our PC's and Windows servers into
a Windows 2008 R2 AD domain from Novell eDirectory. We are still using
GroupWise. I've been trying to get GroupWise to authenticate off our AD
via LDAP, which I have been able to do successfully, but there's no way
to change your AD password from inside the GroupWise client or
WebAccess. This poses a problem for some departments who we host
strictly GroupWise for and they don't have a PC in our Active Directory.
When the AD password expires, there's no way for them to change it
since they only use GroupWise.

I was reading a little about Identity Manager and sync between AD and
eDir. Can someone give me a quick overview of how this might work in my
environment? I'd set our GroupWise post offices to use LDAP
authentication to our eDirectory, then have our AD and eDirectory
accounts sync passwords so they could login to GroupWise and GroupWise
Messenger with the same AD password they use to login to their PC's
every morn. Then it should allow them to change their password in
GroupWise because that does work changing your eDirectory password from
within GroupWise and WebAccess.

I just need to know what product I need to accomplish this and what
license requirement there is. I can do the research then, but there's
so many different options out there I'm spinning my wheels trying to
find what I need.

Thanks in advance.


--
plessm
------------------------------------------------------------------------
plessm's Profile: http://forums.novell.com/member.php?userid=23126
View this thread: http://forums.novell.com/showthread.php?t=454143

Labels (1)
0 Likes
5 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Active Directory 2008 R2 to eDirectory sync


plessm;2186548 Wrote:
> My organization has recently migrated our PC's and Windows servers into
> a Windows 2008 R2 AD domain from Novell eDirectory. We are still using
> GroupWise. I've been trying to get GroupWise to authenticate off our AD
> via LDAP, which I have been able to do successfully, but there's no way
> to change your AD password from inside the GroupWise client or
> WebAccess. This poses a problem for some departments who we host
> strictly GroupWise for and they don't have a PC in our Active Directory.
> When the AD password expires, there's no way for them to change it
> since they only use GroupWise.
>
> I was reading a little about Identity Manager and sync between AD and
> eDir. Can someone give me a quick overview of how this might work in my
> environment? I'd set our GroupWise post offices to use LDAP
> authentication to our eDirectory, then have our AD and eDirectory
> accounts sync passwords so they could login to GroupWise and GroupWise
> Messenger with the same AD password they use to login to their PC's
> every morn. Then it should allow them to change their password in
> GroupWise because that does work changing your eDirectory password from
> within GroupWise and WebAccess.
>
> I just need to know what product I need to accomplish this and what
> license requirement there is. I can do the research then, but there's
> so many different options out there I'm spinning my wheels trying to
> find what I need.
>
> Thanks in advance.


Identity Manager is the most assured way to do that – I would contact
Novell Sales about a demo, pricing and/or White Papers/Brochures on
IDM.

Leroy Joseph
Visual Click Software
'eDirectory Management and Reporting | DSRAZOR for eDirectory'
(http://www.visualclick.com/content/dsrazor-for-edirectory.htm)


--
leroyjjr
------------------------------------------------------------------------
leroyjjr's Profile: http://forums.novell.com/member.php?userid=75462
View this thread: http://forums.novell.com/showthread.php?t=454143

0 Likes
Knowledge Partner
Knowledge Partner

Re: Active Directory 2008 R2 to eDirectory sync

On 3/30/2012 6:46 PM, plessm wrote:
>
> My organization has recently migrated our PC's and Windows servers into
> a Windows 2008 R2 AD domain from Novell eDirectory. We are still using
> GroupWise. I've been trying to get GroupWise to authenticate off our AD
> via LDAP, which I have been able to do successfully, but there's no way
> to change your AD password from inside the GroupWise client or
> WebAccess. This poses a problem for some departments who we host
> strictly GroupWise for and they don't have a PC in our Active Directory.
> When the AD password expires, there's no way for them to change it
> since they only use GroupWise.
>
> I was reading a little about Identity Manager and sync between AD and
> eDir. Can someone give me a quick overview of how this might work in my
> environment? I'd set our GroupWise post offices to use LDAP
> authentication to our eDirectory, then have our AD and eDirectory
> accounts sync passwords so they could login to GroupWise and GroupWise
> Messenger with the same AD password they use to login to their PC's
> every morn. Then it should allow them to change their password in
> GroupWise because that does work changing your eDirectory password from
> within GroupWise and WebAccess.



This all works fine with Identity Manager. You could just use the
Standard edition of IDM4 for this. If you are licensed for Zenworks or
OES I think they still throw in a Bundle Edition of IDM 3.61 license
with it, which would suffice. Since all you need is an AD driver.


> I just need to know what product I need to accomplish this and what
> license requirement there is. I can do the research then, but there's
> so many different options out there I'm spinning my wheels trying to
> find what I need.
>
> Thanks in advance.
>
>


0 Likes
plessm Absent Member.
Absent Member.

Re: Active Directory 2008 R2 to eDirectory sync


We do pay support for GroupWise, ZenWorks CM, and for SLES 11. I'll ask
if we get a bundle, that would be great. Thanks for the info.


--
plessm
------------------------------------------------------------------------
plessm's Profile: http://forums.novell.com/member.php?userid=23126
View this thread: http://forums.novell.com/showthread.php?t=454143

0 Likes
Knowledge Partner
Knowledge Partner

Re: Active Directory 2008 R2 to eDirectory sync

On 4/3/2012 2:26 PM, plessm wrote:
>
> We do pay support for GroupWise, ZenWorks CM, and for SLES 11. I'll ask
> if we get a bundle, that would be great. Thanks for the info.


It used to come with Zen, not sure if that remains with ZCM. OES for
sure. But not sure about the others.



0 Likes
Knowledge Partner
Knowledge Partner

Re: Active Directory 2008 R2 to eDirectory sync

On 03.04.2012 20:44, Geoffrey Carman wrote:
> On 4/3/2012 2:26 PM, plessm wrote:
>>
>> We do pay support for GroupWise, ZenWorks CM, and for SLES 11. I'll ask
>> if we get a bundle, that would be great. Thanks for the info.

>
> It used to come with Zen, not sure if that remains with ZCM. OES for
> sure. But not sure about the others.


As per the registration page for the bundle edition, it seems zenworks
customers are limited to IDM 3.5.1 bundle edition.

3.6.1 bundle edition seems to be available only to Novell Business
Continuity Clustering and Novell Open Enterprise Server 2 SP1 and above

- so if you only have zenworks, you are limited to the 3.5.1 bundle
which I don't know if Novell still supports (3.5. bundle edition is not
listed as a separate item on their support lifecycle page while 3.6
bundle edition is)
Alex McHugh - Knowledge Partner - Stavanger, Norway
Who are the Knowledge Partners
If you appreciate my comments, please click the Like button.
If I have resolved your issue, please click the Accept as Solution button.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.