avaz
IS-IT--Management
- Jan 22, 2002
- 11
When you try to make adprep /forestprep in a windows2000 domain to prepare the schema for installing the first windows 2003 domain DC it reurns an error in one of the scripts. If you have Sap Portals installed in your domain, then you must follow the steps bellow and have a good work:
Upgrading to ADS 2003
If you used ADS 2000 as portal LDAP directory on Windows 2000 and EP5 and now want to upgrade to ADS 2003, proceed as follows:
1. Run the ldp.exe utility supplied by Microsoft, which you can find on the ADS support CD. If you need more information, visit the Microsoft Website at:
echnol/windowsserver2003/proddocs/deployguide/dssbe_upnt_hlll.asp
1. Connect to the ADS 2000 machine you want to upgrade. To do this, choose Connection -> Connect.
2. Bind to the ADS with a user that has enough privileges to change the schema. To do this, choose Connection -> Bind. Then enter the distinguished name (DN) of the user and password.
3. Choose View -> Tree and enter the DN of uid which is
cn=uid,cn=schema,cn=configuration,dc=< forestrootdomain>.
For example: cn=uid,cn=schema,cn=configuration,dc=sap,dc=com
1. Choose Browse -> Modify. In the 'Edit Entry' area, in the 'key' field, enter "ldapDisplayName", and in the 'values' field, enter "SAP-UID". Choose 'Replace'. Choose 'Enter' and 'Run', then close this dialog. Leave the checkboxes as they are.
2. Choose Browse -> ModifyRDN. In the 'Old DN' field, enter cn=uid ,cn=schema, cn=configuration,dc=<forestrootdomain> and in the 'New DN' field, enter cn=SAP-UID,cn=schema,cn=configuration,dc= <forestrootdomain>. Choose 'Run'. Leave the checkboxes as they are.
3. Run a full ADS 2003 upgrade including the commands "adprep /forestprep" and "adprep /domainprep".
4. On the Portal Server, open the usermanagement.properties file at <SAP_J2EE_Engine_6.20_installation> \alone\services\servlet_jsp\work\jspTemp\irj\root\WEB-INF\plugins\portal \services\usermanagement\data\ usermanagement.properties, and add the following line:
"MS-ADS.usergroupmap.uidAttribute = SAP-UID"
1. In the registry, under your current user management configuration, create a new registry entry (string value) called "ADS2003" with the value "true".
For example: "HKEY_LOCAL_MACHINE\SOFTWARE\SapPortals\User Management\Configurations\LDAP01\ADS2003" with the value "true".
Upgrading to ADS 2003
If you used ADS 2000 as portal LDAP directory on Windows 2000 and EP5 and now want to upgrade to ADS 2003, proceed as follows:
1. Run the ldp.exe utility supplied by Microsoft, which you can find on the ADS support CD. If you need more information, visit the Microsoft Website at:
echnol/windowsserver2003/proddocs/deployguide/dssbe_upnt_hlll.asp
1. Connect to the ADS 2000 machine you want to upgrade. To do this, choose Connection -> Connect.
2. Bind to the ADS with a user that has enough privileges to change the schema. To do this, choose Connection -> Bind. Then enter the distinguished name (DN) of the user and password.
3. Choose View -> Tree and enter the DN of uid which is
cn=uid,cn=schema,cn=configuration,dc=< forestrootdomain>.
For example: cn=uid,cn=schema,cn=configuration,dc=sap,dc=com
1. Choose Browse -> Modify. In the 'Edit Entry' area, in the 'key' field, enter "ldapDisplayName", and in the 'values' field, enter "SAP-UID". Choose 'Replace'. Choose 'Enter' and 'Run', then close this dialog. Leave the checkboxes as they are.
2. Choose Browse -> ModifyRDN. In the 'Old DN' field, enter cn=uid ,cn=schema, cn=configuration,dc=<forestrootdomain> and in the 'New DN' field, enter cn=SAP-UID,cn=schema,cn=configuration,dc= <forestrootdomain>. Choose 'Run'. Leave the checkboxes as they are.
3. Run a full ADS 2003 upgrade including the commands "adprep /forestprep" and "adprep /domainprep".
4. On the Portal Server, open the usermanagement.properties file at <SAP_J2EE_Engine_6.20_installation> \alone\services\servlet_jsp\work\jspTemp\irj\root\WEB-INF\plugins\portal \services\usermanagement\data\ usermanagement.properties, and add the following line:
"MS-ADS.usergroupmap.uidAttribute = SAP-UID"
1. In the registry, under your current user management configuration, create a new registry entry (string value) called "ADS2003" with the value "true".
For example: "HKEY_LOCAL_MACHINE\SOFTWARE\SapPortals\User Management\Configurations\LDAP01\ADS2003" with the value "true".
