Originally Posted by dgersic
|
On Tue, 03 Nov 2009 15:16:03 +0000, kjhurni wrote:
> Currently our eDir to eDir driver is set to create if object class is
> User and if first name/last name are present.
>
> I would like to change that so that it also only creates users if they
> exist in our O=ABC, rather than any user object in the entire tree. (I
> have another O=XYZ that I do not want replicated currently).
You can do this in the create rule, but if you have any objects that
already have been created and associated, do you want them to continue to
synchronize, or not?
--
---------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Novell Knowledge Partner http://forums.novell.com
Please post questions in the newsgroups. No support provided via email.
|
I'm not sure I understand, so sorry for my stupidity.
I had 4 users in my O=XYZ until I realized that they got replicated. But they're test users at this point, so I deleted them.
Now, if I put in the Creation rule, basically: you gotta be in src-dn of O=ABC, then that shouldn't affect synchronizing or matching or anything as long as they're in O=ABC somewhere, right?
Or am I missing something.
Basically, I don't want any user in O=XYZ to be created, matched, replicated/synchronized, etc. anywhere. But, I want all my other things in the O=ABC and subtrees to continue to be created/replicated/synchronized like they have always been.
Sorry for being dense here. I know with IDM there's probably 9 ways to skin the cat (yes, skin the cat), but just wanted to try to do things the "right"/best way.
Re: Modify create policy for a specific Organization?
Threaded Mode
