Table of Contents
Advertisement
An important factor to consider as you conduct the site survey for your existing
site ("Performing a Site Survey," on page 30) is to include the structure and data
types of Active Directory or Windows NT4 directory services. Through Windows
Sync, you can synchronize an existing Windows directory service with your
Directory Server, including creating, modifying, and deleting Windows accounts
on the Directory Server or, oppositely, the Directory Server accounts on Windows.
This provides an efficient and effective way to maintain directory information
integrity across directory services.
This chapter covers how Windows Sync works and how to design your
synchronization process in the following sections:
•
Windows Sync Overview (page 139)
•
Designing Windows Sync (page 144)
Windows Sync Overview
The synchronization process is analogous to the replication process: the sync
process is enabled by a plug-in and configured and initiated through a sync
agreement, and a record of directory changes is mainatined and updates are sent
according to that log.
There are three parts to the complete Windows Sync process:
•
User Sync. The Directory Server leverages the Multi-Master Replication
Plug-in to synchronize user and group entries. The same changelog that is used
for multi-master replication is also used to send updates from the Directory
Server to the Windows sync peer server as an LDAP operation. The server also
performs LDAP search operations against its Windows server to synchronize
changes made to Windows entries to the corresponding Directory Server entry.
Designing Synchronization
Chapter 7
139
Advertisement
Table of Contents
