Sun ONE 5.2 Migration to Windows 2003 Active Directory

Discussion in 'Active Directory' started by Kamlesh, Aug 22, 2008.

  1. Kamlesh

    Kamlesh Guest

    Hi Guys,

    Is there any Migration guide or Assessment document available to migrate
    from Sun ONE 5.2 LDAP (running on Solaris) to Windows 2003 Active Directory?

    Regards,
    Kamlesh
     
    Kamlesh, Aug 22, 2008
    #1
    1. Advertisements

  2. Kamlesh

    Lee Flight Guest

    Hi

    could you say a little more about your usage of Sun ONE?
    Is it just the Directory Server that you are using as a "standard"
    LDAP directory if so then you might want to consider the use
    of ADAM (AD/LDS):

    http://www.microsoft.com/windowsserver2003/adam/default.mspx




    or perhaps you have identified other features in Active Directory
    that you need beyond just LDAP?

    Lee Flight
     
    Lee Flight, Aug 22, 2008
    #2
    1. Advertisements

  3. Kamlesh

    Kamlesh Guest

    Hi Lee,

    Thanks for your response. At present, the following is available on the Sun
    ONE:

    uid=SOMEUSER,ou=People,o=EMPLOYEES,c=COUNTRY,o=COMPANY,dc=COMPANY,dc=com

    uid=SOMEUSER,ou=People,o=CUSTOMERS,c=COUNTRY,o=COMPANY,dc=COMPANY,dc=com

    Users are both Employees and Customers. There is seperate Passpord Policies
    for Employees and Customers.

    The various Applications use this LDAP for authentication purpose only.

    I am hoping that this means that its a "standard" LDAP directory.

    Thanks,
    Kamlesh
     
    Kamlesh, Aug 22, 2008
    #3
  4. Kamlesh

    Kamlesh Guest

    Lee, have another query for you.

    Can we migrate entire User Information from Sun ONE to Active Directory? Is
    there any way to migrate the User Passwords from Sun ONE 5.2 to MS Active
    Directory, without resetting the passwords.

    Regards,
    Kamlesh
     
    Kamlesh, Aug 22, 2008
    #4
  5. Kamlesh

    Lee Flight Guest

    Hi

    currently the only MSFT directory service that supports
    the level of multiple password policies that you need is
    Windows Server 2008 AD DS (based on AD DS group
    membership).

    Another thing that may be an issue for you that an LDAP bind
    using an DN

    uid=....

    would need some schema modification in AD DS as uid is not the
    default naming attribute of any bindable class in AD DS.

    There are also many other things to consider e.g.
    lack of dynamic groups in MSFT DS
    very different security model of ACIs vs MSFT DS security
    SUN DS use of multi-values naming attributes

    Lee Flight
     
    Lee Flight, Aug 22, 2008
    #5
  6. Kamlesh

    Lee Flight Guest

    Hi

    I'm fairly sure the answer to this is no as if the passwords
    are available only as encypted on the SUN DS I do
    not think they will be importable into MSFT DS.

    You might want to ask on one of the metadirectory/ILM
    forums e.g. TechNet ILM forum, to get better advice on
    migration options.

    Lee Flight
     
    Lee Flight, Aug 22, 2008
    #6
  7. Kamlesh

    Kamlesh Rao Guest

    Thanks Lee for your response. I will take your advice and go further with
    my R&D on the feasibility

    Thanks again,
    Kamlesh
     
    Kamlesh Rao, Aug 22, 2008
    #7
  8. Kamlesh

    Kamlesh Guest

    Lee, I am new to ILM. I did some brief study about it on MS website and
    found that it is a separate product, which needs to be installed. In my
    case, we just have Windows 2003 Server with Active Directory. And, our
    requirement is to completely migrate the Sun ONE 5.2 and phase it out of the
    environment.

    Regards,
    Kamlesh
     
    Kamlesh, Aug 24, 2008
    #8
  9. I would say: put ILM 2007 in between to migrate (sync) the data from Sun ONE
    to AD

    --

    Cheers,
    (HOPEFULLY THIS INFORMATION HELPS YOU!)

    # Jorge de Almeida Pinto # MVP Identity & Access - Directory Services #

    BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
    BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
    ------------------------------------------------------------------------------------------
    * This posting is provided "AS IS" with no warranties and confers no rights!
    * Always test ANY suggestion in a test environment before implementing!
    ------------------------------------------------------------------------------------------
    #################################################
    #################################################
    ------------------------------------------------------------------------------------------

    __________ Information from ESET Smart Security, version of virus signature database 4507 (20091014) __________

    The message was checked by ESET Smart Security.

    http://www.eset.com
     
    Jorge de Almeida Pinto [MVP - DS], Oct 14, 2009
    #9
  10. Kamlesh

    seeteshh

    Joined:
    Aug 7, 2012
    Messages:
    2
    Likes Received:
    0
    Has anyone worked on the Password migration part

    Rgds,

    Seetesh
     
    seeteshh, Aug 7, 2012
    #10
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.