Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Scheme extention not found on LDAP (2 trees in forest)

Messages: 5
Karma: 0
Send a private message to this user
We have one 2 trees in forest. One main have schema master, KADE installed, KMS installed and AD to KMS link working. OS is english 2003 R2.
Now we have another tree in same forest. Install KMS there and KADE (only UI because of schema master). Link AD to KMS doesn't working, it says that schema extetion doesn't installed! When looking at MMC schema snap-in - all AD extentions (started with kerio-...) are installed (no matter to which DC to connect). Ok we transfer shema master to tree 2. Run full KADE setup again under enterprise admin credetials from root tree, it installs fine without errors. But AD to KMS link still say that schema extention doesn't installed! Second tree have russian 2003 R2.
Is any matter which language OS is? How to get AD to KMS link working in second domain?

Messages: 5
Karma: 0
Send a private message to this user
Hey, situation is 100% reproducable on Virtual Machine!
1. Install clear Win2003R2 and domain dc1.local
2. Make some reboots and fixes, so no errors in logs
3. Install another VM with same Win2003R2 and domain dc2.local, in same forest as dc1.local
4. Make some fixes and reboots, so no errors in logs on dc2.
5. Move schema FSMO to dc2.local
6. Add dc2\administrator to "Schema Admins" group of forest dc1
7. Reboot both servers
8. Full install KerioActiveDirectoryExtension on dc2 (UI and scheme) as dc2\administrator.
9. Install KMS on dc2
10. Go to KMS -> Domains -> dc1.local -> Directory, and make setting to connect to LDAP of dc1.local under administarator<_a.t_>dc1.local credentials. Press "test connection button" - all ok.
So scheme updated ok. Now go to KMS -> Domains -> dc2.local -> Directory, and make same connection settings to dc2.local as administrator<_a.t_>dc2.local. Press "Test connection" - and get the error: "Extensons of AD not installed!"

Sorry, i can't write english errors texts, cuz i have russian KMS, and haven't found where to swith language.

I can upload somewhere VM of these two Win2003 servers in VMWare format. They are about 500Mb each.

How to make AD extension work on second domain in forest?

Messages: 2
Karma: 0
Send a private message to this user
Kerio does not currently fully support 2 AD domains.

As a work around, give this a try.

Go to Domain settings>users>import>import from directory service

It is few more clicks than having the domain extension working, but still not too bad.

Kerio Tech Support - US
Previous Topic: Webmail Auto Delete Items from Deleted Items Folder
Next Topic: Reusing SpamAssesin acquired knowledge
Goto Forum:

Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Wed Nov 22 00:23:05 CET 2017

Total time taken to generate the page: 0.00362 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.