I am attempting to setup an IDM environment that synchronizes an eDir
tree and AD domain, but I am having trouble.
- I CAN create an account in AD that synchronizes over to eDir
- I CANNOT create an account in eDir that synchronizes over to AD (the
trace shows the communication about the object, but it never shows up in AD)
- I CAN delete/modify an account from either side and it will
synchronize to the other.
Any suggestions of where to look? I have already disabled all password
policies on the domain.
IDM version 3.5.1. The AD environment is hosted on both a 2003 and a
2008 server, with the Remote Loader running on the 2003. The Identity
Vault is hosted on a NetWare 6.5 SP7 server.