I would like to help to understand how does the timing of passwords between Directory Server and AD (Windows8). Configured unidirectional timing (LDAP->AD), not installed the Windows side PassSync.

    The Directory Server is with password in Sha256 and I can only synchronize passwords with AD if you change the password in plain text by ldappasswd command. (I know that this password is stored in the changelog)

    How do I adjust the timing between the Directory Server and AD with different encryption using a feeling (ldap->ad), without putting passwords in plain text?