Univention Bugzilla – Bug 50712
Change of AD Server Causes Deletion an Re-Creation of LDAP Objects
Last modified: 2020-01-13 15:01:29 CET
Customer needed to change the Win-AD server from where the AD connector reads its updates. Because of diefferent USNs the lastUSN value in AD connector need to be set to "1". According to help article (see URL). Setting this value caused the AD connector to delete and re-create several objects causing a lot of issues (different uid for same user, different attributes for servers,...) The AD connector should somehow be able to identify the objects to be synced even when connecting to a different MS-AD server -or- not deleting objects or changing attributes during initial sync.