If your Remote Loader was running on a DC, and then you moved to a
server running eDirectory on Windows (only way to run local) then it is
likely not a DC now, and instead is just a member server.

The config between RL on DC vs RL (or local) on Member server differs.
1) RL on DC, Auth context is blank
On Member, it is the DNS name of the DC to contact.

2) RL on DC the Signing/Sealing/SSL settings are less important.
On Member server, SSL in the section about Signing/Sealing must be
enabled for passwords to sync.

I suspect you fixed #1. Now you are seeing #2.

The SSL here is not RL to Engine (since you run local, immaterial now).
But rather RL to DC (or engine to DC in this case) comms.

Your AD needs to have a Cert Authority installed, and configured, and
then you can enable the SSL in the Driver Config, Sub Channel settings I
think.

>


> The issue is got resolved but not fully I changed the authentication id
> to full DN and now the connection between Identity vault and AD is
> working fine.
>
> But i am facing one new issue
> Here is the Trace log detail even though i have created new rule in the
> event transformation for adding the attribut value for
> nspmdistributionpassword still i am getting vetoed at the checking for
> the nspmdistributionpassword
>
>
>
> First trace log
>
> [07/31/12 00:26:33.928]:TRACEAD ST:Start transaction.
> [07/31/12 00:26:33.928]:TRACEAD ST:type(resync-entry)entry-id(33644)
> dn(\T=xxxxxIDM\O=xxxxx\OU=data\OU=users\CN=testuse r50) class-id(-1)
> class-name(null)
> [07/31/12 00:26:33.928]:TRACEAD ST:Processing events for transaction.
> [07/31/12 00:26:33.928]:TRACEAD ST:
> <nds dtdversion="4.0" ndsversion="8.x">
> <source>
> <product edition="Advanced" version="4.0.1.0">DirXML</product>
> <contact>Novell, Inc.</contact>
> </source>
> <input>
> <sync cached-time="20120731072633.881Z" class-name="User"
> event-id="WINIDM-NDS#20120731072633#99#1:ebf5380d-2198-496b-be9b-fd2c542aa108"
> qualified-src-dn="O=xxxxx\OU=data\OU=users\CN=testuser50"
> src-dn="\xxxxxIDM\xxxxx\data\users\testuser50" src-entry-id="33644"
> timestamp="0#0">
> <association state="migrate"></association>
> </sync>
> </input>
> </nds>
> [07/31/12 00:26:33.928]:TRACEAD ST:Applying event transformation
> policies.
> [07/31/12 00:26:33.928]:TRACEAD ST:Applying policy: %+C%14CPolicy for
> nspmdistribution for user classs%-C.
> [07/31/12 00:26:33.928]:TRACEAD ST: Applying to sync #1.
> [07/31/12 00:26:33.928]:TRACEAD ST: Evaluating selection criteria
> for rule 'Creation - Set Default Attribute Value'.
> [07/31/12 00:26:33.928]:TRACEAD ST: (if-class-name equal "User") =
> TRUE.
> [07/31/12 00:26:33.928]:TRACEAD ST: Rule selected.
> [07/31/12 00:26:33.928]:TRACEAD ST: Applying rule 'Creation - Set
> Default Attribute Value'.
> [07/31/12 00:26:33.928]:TRACEAD ST: Action:
> do-add-src-attr-value("nspmDistributionPassword",class-name="class","xxxxx123").
> [07/31/12 00:26:33.928]:TRACEAD ST: arg-string("xxxxx123")
> [07/31/12 00:26:33.928]:TRACEAD ST: token-text("xxxxx123")
> [07/31/12 00:26:33.943]:TRACEAD ST: Arg Value: "xxxxx123".
> [07/31/12 00:26:33.943]:TRACEAD ST: Direct command from policy
> [07/31/12 00:26:33.943]:TRACEAD ST:
> <nds dtdversion="4.0" ndsversion="8.x">
> <source>
> <product edition="Advanced" version="4.0.1.0">DirXML</product>
> <contact>Novell, Inc.</contact>
> </source>
> <input>
> <modify class-name="User"
> dest-dn="\xxxxxIDM\xxxxx\data\users\testuser50" dest-entry-id="33644"
> event-id="WINIDM-NDS#20120731072633#99#1:ebf5380d-2198-496b-be9b-fd2c542aa108">
> <modify-attr attr-name="nspmDistributionPassword"><!-- content
> suppressed -->
> </modify-attr>
> </modify>
> </input>
> </nds>
> [07/31/12 00:26:33.943]:TRACEAD ST: Pumping XDS to eDirectory.
> [07/31/12 00:26:33.943]:TRACEAD ST: Performing operation modify for
> \xxxxxIDM\xxxxx\data\users\testuser50.
> [07/31/12 00:26:33.943]:TRACEAD ST: --JCLNT--
> \xxxxxIDM\xxxxx\IDMDriverGroup\Driver Set\Active Directory Driver :
> Duplicating : context = 261554251, tempContext = 261554257
> [07/31/12 00:26:33.943]:TRACEAD ST: --JCLNT--
> \xxxxxIDM\xxxxx\IDMDriverGroup\Driver Set\Active Directory Driver :
> Calling free on tempContext = 261554257
> [07/31/12 00:26:34.178]:TRACEAD ST: Processing returned document.
> [07/31/12 00:26:34.178]:TRACEAD ST: Processing operation <status> for
>