Active Directory Question

[keywestcity]

I have a scalix server with about 300 users up and running. I recently retired my old exchange server and now would like to integrate the current scalix server with AD.

I've been going over the integrating with Ad chapter in the setup guide and have one concern.

If I already have 300 users on scalix and they all exist in my AD, when I go to make the sync connection is it going to delete my current users on scalix or do a compare? It would be really bad if all my current mailboxes got deleted!!

Also, once I do sync which password info would be used, scalix or AD? Right now they have a network login with AD and a scalix login for mail. Once synced which one is going to be the master?

[jangi]

Integration with AD breaks down into two areas: authentication and directory.

First, I would setup kerberos to authenticate against AD. The instructions in the manual are decent, but there is a much easier way. If I get a chance I'll put it in the wiki later.

Once that works, you need to configure omldapsync to sync the directory with AD. Unfortunately, that is quite involved since you already have the users in scalix. There is already a wiki page on LDAP integration with a section about existing LDAP users. Use it as a guide, but keep in mind it's not tailored specifically for AD. Post back with any questions. I'd recommend using a test OU/account so you have the freedom to delete/recreate it on both ends. Also, watch out for forward slashes and equal signs in the AD GUID, and make sure you escape them with a backslash.

Good luck.