CFLDAP and port 389

Similar Messages

• Steps needed to switch over from  port  389 to  636  for LDAP server

  Hi ,
  we need to switch to new LDAP server with port 636.
  current server is being eol'd and port 389 doesnt work on the new server
  server : sunone web server 6.1
  i have installed the ca certificates and also tesed that port 636 is open .
  what are the config changes needed to be done.. It is a simple ACLl based access control application
  Thanks
  Naresh

  What are the errors printed by the server when it's trying to connect to the
  DBMS? Have you configured the DBMS for 'mixed-mode' connection? (ie:
  allowing the plain TCP socket listener that the driver wil need).
  Joe Weinstein at Oracle

• Security Scan found Weak and Medium strength ciphers port 389&636

  After a recent security scan on one of our Apple Servers running 10.9.5 (Mavericks) it has reported weak and medium strength ciphers on port 389&636 and also that SSLv2 and SSLv3 is enabled. The Server is running Profile Manager and therefore also Open Directory although we are not really using Open Directory for authentication as we have AD within the organisation.
  My question is how can I modify Open Directory to only use HIGH ciphers and not MEDIUM or LOW? I have found the httpd-ssl.conf file but that is only listening on port 443. I have also found the slapd.conf but can't see where I would make the change.
  Any help would be greatly appreciated.
  Thanks

  So would you believe it I've managed to get it working. I wanted to see if Yosemite suffered from the same 'issues' that Mavericks does with SSLv2 & SSLv3 support. Also the weak ciphers bsing used. Well they scannex that server and found exactly the same 'issues' as before. So I started working on it this morning editing slapd.conf, slapd.conf.default, slapd_macosxserver.conf and apache-ssl.conf it might sound overkill but I thought what the ****. I added the following lines to all conf files:
  SSLProtocol ALL -SSLv2
  SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL
  TLSCipherSuite HIGH:MEDIUM:+TLSv1:!SSLv2:+SSLv3
  and and it worked. Passed the scan with flying colours however might need to mod SLLv3 to keep theM happy.
  I need to replicate this on a Mavericks Server so hope the jist is the same.
  thanks for the advice Linc.

• Using secure port only and disabling port 389

  Hello everyone,
  I'd like to know if it is possible to run LDAPS port 636 and stop LDAP port 389. Will this have bad results with other applications like messaging server, administration server,.... and if this is feasible without any drawback, how can we do that?
  Thank you very much for your help

  Scott,
  AccessHW.zip should work for WinXP according to what I have read..(though it may vary with SP1 or 2 or updated drivers etc.) If it does work for you...that would be the easiest way to communicate via your port in XP.
  -Brett

• CFLDAP and bulk updates ?

  I am using CF 7 Enterprise and I am looking to bulk update
  active directory with content contained in a .csv file.
  The csv file contains content such as telephone number,
  e-mail address, name, job title, section etc.
  How can I use CFLDAP to bulk update records in Active
  Directory from content in the csv.
  With the relevant data for each employee contained in AD
  being updated with the relevant info contained in the CSV?
  i.e. updating or adding the employee phone number in their
  Active Directory listing with their correct phone number contained
  in the CSV file.
  And how would the script know which records to update in AD
  with the correct data for that employee ? The unique field for each
  employee is their 'employeeno' which is contained in both the csv
  and as an Active Directory attribute.
  Any ideas ?
  I.E.
  <cfldap
  action="modify"
  modifyType="replace"
  attributes="telephoneNumber=#CSVTelno#"
  DN="dc=domain,dc=co,dc=uk"
  server="server"
  port="389"
  username="username"
  password="password">

  Hi Kevin,
  The before statement trigger should fire, as you are executing <n> UPDATE statements, you are not executing 1 UPDATE statement.
  If this UPDATE statement also has a for each row trigger, this trigger will fire as many times as there are rows updated.
  The issue is however you have <n> UPDATE statements, one statement for each pass of the loop.
  Your expectation therefore is incorrect.
  Hth
  Sybrand Bakker
  Senior Oracle DBA

• Changing IP Address and ports in Directory Server 5.1 SP 4 and 5.2 SP4

  I have installed multiple instance of Sun Directory Server 5.1 and 5.2 on ports 389 and 390,now I want to change the IP Address and ports, I am able to change the directory server port from 389 by editing the dse.ldif file, now I want to change the port 390 and the IP address same as directory server, can someone expert from the forum guide me.
  Thanks in Advance.
  Mukesh Kumar

  1) I don't know what you've typed in when installing... but I've never seen that message. Are you using any language specific characters ?
  Do you get the error after this screen ?
  <b>
  The suffix is the root of your directory tree. You may have more than
  one suffix.
  Suffix [dc=sun,dc=com]:
  </b>
  If yes, then this means that the value you typed in is not a valid DN... and you must enter a valid one.
  2)The Directory Server is installed under /usr/iplanet but the database is under /var/iplanet/ds5 and configuration is under /etc/iplanet/ds5 ...
  You can use symbolic links if you want to move things around.
  3) You mean you downloaded the tar.gx file of iDS 5.1 and install it on Solaris 9... No problem, I do this every day. As long as you have right to create directories and files, you should be able to install as anyone. If not, you should install as root and then let the server run as a special user.
  4) Solaris 9 comes with iDS5.1 packages already installed. But the server is not configured at all.
  Running directoryserver setup allows you to configure it and create the database, accounts...
  Running directoryserver uninstall remove the instance of the installed database... It doesn't remove the packages. You can start again a setup...
  By the way, I think that iDS 5.1 on Solaris 9 comes with the full documentation... May be you should start by reading it.
  Regards,
  Ludovic.

• Disabling port 389 for version 4.x/5.x of the Directory server?

  Is it possible to close port 389 for version 4.x/5.x of the Directory server?
  We need to ony enable 636 for SSL communications. WE currently limit 389 access to the CMS (which oddly enough <bold>requires</bold> it - ARRGGGG!) by IP Address. We're currently running NT 4 and have turned off 389 and found that there is a need to have 389 open for some initial operations (ignoring the CMS requirement for testing). We have not fully tested this under Solaris ... but anticipate the same to be true.
  Rich

  iPlanet Directory Server 5 can run without the 389 port enabled... You need to set the LDAP port to 0.
  However, this will prevent the Console and the Admin Server from working correctly. It is OK if you do all the administration of your server using command line utilities.
  Regards,
  Ludovic.

• Visual Voicemail gone after upgrade to 2.0 (and porting number)

  Anyone else experience this? I upgraded to 2.0 and at the same time I ported the old iPhone to another cell phone number on my account with ATT. The upgrade to 2.0 and porting appeared to go OK as everything else is working EXCEPT when on the phone application, I can not get the visual voicemail button to do anything. I press it and it acts like it is taking some time to open but it never brings up the visual voicemail screen. The phone part works as usual in all other ways.

  I upgraded to the pre-release version of 2.0 and it worked fine. Then this morning i tried to update to the official 2.0 and it could not connect to iTunes, and that pinwheel kept spinning. So I pressed home button and power button until it (iPhone) rebooted. Then i connected it to iTunes and it asked me to restore.... So i pressed the option key (in mac, idk what it is in windows) and selected the prerelease version to downgrade to and now its fine. So...... good luck all

• Coherence::net::messaging::ConnectionException: could not establish a connection to one of the following addresses: {10.242.152.242/10.242.152.242:8088}; make sure the "remote-addresses" configuration element contains an address and port of a running TcpA

  Hi
  I have installed coheI have installed coherence server "fmw_12.1.3.0.0_coherence_Disk1_1of1.zip" along with Examples on windows machine and C++ client coherence-cpp-12.1.3.0.0b51709-windows-x86-vs2012.zip on the same machine.
  I have built the "contacts" C++ Example successfully and while I execute this "contacts" using run I am facing TcpAcceptor error.
  On my coherence server the TcpAcceptor is listening on port 8088, so I have modified the extend-cache-config.xml file with values "ip address of my windows machine" and port as "8088".
  All the time I am getting below error,
  coherence::net::messaging::ConnectionException: could not establish a connection to one of the following addresses: {10.242.152.242/10.242.152.242:8088}; make sure the "remote-addresses" configuration element contains an address and port of a running TcpAcceptor
      at class coherence::lang::TypedHandle<class coherence::component::net::extend::PofConnection> __thiscall coherence::component::util::TcpInitiator::openConne
  ction(void)(TcpInitiator.cpp:307)
      at coherence::component::util::TcpInitiator::openConnection
      at coherence::component::util::Initiator::ensureConnection
      at coherence::component::net::extend::RemoteCacheService::openChannel
      at coherence::component::net::extend::RemoteService::doStart
      at coherence::component::net::extend::RemoteService::start
      at coherence::component::util::SafeService::startService
      at coherence::component::util::SafeService::restartService
      at coherence::component::util::SafeService::ensureRunningServiceInternal
      at coherence::component::util::SafeService::start
      at coherence::net::DefaultConfigurableCacheFactory::configureService
      at coherence::net::DefaultConfigurableCacheFactory::ensureService
      at coherence::net::DefaultConfigurableCacheFactory::ensureRemoteCache
      at coherence::net::DefaultConfigurableCacheFactory::configureCache
      at coherence::net::DefaultConfigurableCacheFactory::ensureCache
      at coherence::net::CacheFactory::getCache
      at unsigned __int64 coherence::lang::class_spec<class coherence::lang::Managed<class ContactId>,class coherence::lang::extends<class coherence::lang::Object,class coherence::lang::Void<class coherence::lang::Object> >,class coherence::lang::implements<void,void,void,void,void,void,void,void,void,void,void,void,void,void,void,void> >::sizeOf(bool)
      at _onexit
      at class coherence::util::Hashtable * coherence::lang::factory<class coherence::util::Hashtable>::create(void)
      at class coherence::util::Hashtable * coherence::lang::factory<class coherence::util::Hashtable>::create(void)
      at BaseThreadInitThunk
      at RtlInitializeExceptionChain
      at RtlInitializeExceptionChain
      on thread "main"
  Caused by: coherence::net::messaging::ConnectionException: coherence::component::util::TcpInitiator::TcpConnection@029EAD78{Id=NULL, Open=1, LocalAddress=NULL,
  RemoteAddress=10.242.152.242/10.242.152.242:8088}: socket disconnect
      at class coherence::lang::TypedHandle<class coherence::net::messaging::Response> __thiscall coherence::component::net::extend::AbstractPofRequest::Status::g
  etResponse(void)(AbstractPofRequest.cpp:203)
      at coherence::component::net::extend::AbstractPofRequest::Status::getResponse
      at coherence::component::net::extend::AbstractPofRequest::Status::waitForResponse
      at coherence::component::util::Initiator::openConnection
      at coherence::component::net::extend::PofConnection::open
      at coherence::component::util::TcpInitiator::openConnection
      at coherence::component::util::Initiator::ensureConnection
      at coherence::component::net::extend::RemoteCacheService::openChannel
      at coherence::component::net::extend::RemoteService::doStart
      at coherence::component::net::extend::RemoteService::start
      at coherence::component::util::SafeService::startService
      at coherence::component::util::SafeService::restartService
      at coherence::component::util::SafeService::ensureRunningServiceInternal
      at coherence::component::util::SafeService::start
      at coherence::net::DefaultConfigurableCacheFactory::configureService
      at coherence::net::DefaultConfigurableCacheFactory::ensureService
      at coherence::net::DefaultConfigurableCacheFactory::ensureRemoteCache
      at coherence::net::DefaultConfigurableCacheFactory::configureCache
      at coherence::net::DefaultConfigurableCacheFactory::ensureCache
      at coherence::net::CacheFactory::getCache
      at unsigned __int64 coherence::lang::class_spec<class coherence::lang::Managed<class ContactId>,class coherence::lang::extends<class coherence::lang::Object
  ,class coherence::lang::Void<class coherence::lang::Object> >,class coherence::lang::implements<void,void,void,void,void,void,void,void,void,void,void,void,void
  ,void,void,void> >::sizeOf(bool)
      at _onexit
      at class coherence::util::Hashtable * coherence::lang::factory<class coherence::util::Hashtable>::create(void)
      at class coherence::util::Hashtable * coherence::lang::factory<class coherence::util::Hashtable>::create(void)
      at BaseThreadInitThunk
      at RtlInitializeExceptionChain
      at RtlInitializeExceptionChain
      on thread "main"
  Caused by: coherence::io::IOException: socket disconnect
      at unsigned int __thiscall coherence::net::Socket::readInternal(unsigned char *,unsigned int)(Socket.cpp:333)
      at coherence::net::Socket::readInternal
      at coherence::net::Socket::SocketInput::read
      at coherence::io::BufferedInputStream::fillBuffer
      at coherence::io::BufferedInputStream::read
      at coherence::component::util::TcpInitiator::readMessageLength
      at coherence::component::util::TcpInitiator::TcpConnection::TcpReader::onNotify
      at coherence::component::util::Daemon::run
      at coherence::lang::Thread::run
      on thread "ExtendTcpCacheService:coherence::component::util::TcpInitiator:coherence::component::util::TcpInitiator::TcpConnection::TcpReader"

  We are facing same issue.    Could you please provide us any working .Net sample code for the version 12.1.2.0.
  <ssl>
                <protocol>Tls</protocol>
                <local-certificates>
                  <certificate>
                    <url>c:\Cert\</url>
                    <password>password</password>
                    <flags>DefaultKeySet</flags>
                  </certificate>
                </local-certificates>
              </ssl>
  thanks
  Bala

• How to determine which IP address and port is used to make DNS queries?

  I am using JNDI/DNS API to query a Enum server (Tel URI resolution in VOIP world) what is a DNS server.
  But I have many network interfaces, in a VLAN environment, and I must to specify from which interface (and port)
  all the requests are sent.
  When I read the code of JNDI/DNS API (in JDK 1.5) and specially the DNSClient class, I can see that the
  DatagramSocket is created without parameters... : udpSocket = new DatagramSocket();
  How can I specify the IP address and port to use for my client???
  Thanks for your help.

  I must to specify from which interface (and port) all the requests are sent. You don't have to specify the interface unless your static unicast routing tables are incorrect, and you never have to specify the port unless some lunatic is in control of your firewall.

• FF keeps defaulting to the wrong HTTP proxy server and port. I have to change it every time I attempt to open Firefox? How do I change it for good?

  The manual proxy settings keep defaulting to the wrong HTTP and port. This has caused me many hours of anguish. It works fine when I correct the settings but after you log off and then come back it has to be changed again. Is there anyway to fix it? Or can I go back to the previous version because 4 definitely has some issues (other than this one). I could live with it if I had to but I'm not the only one who uses this computer and they don't know how to make the changes. Thanks and I would definitely appreciate an answer.

  See:
  * http://kb.mozillazine.org/Preferences_not_saved
  Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions is causing the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > Appearance/Themes).
  * Don't make any changes on the Safe mode start window.
  * https://support.mozilla.com/kb/Safe+Mode
  * https://support.mozilla.com/kb/Troubleshooting+extensions+and+themes

• Web Service Proxy with Dynamic IP and Port

  hi,
  I am currently looking at the Web Service Proxy generation in JDev 11g. I can generate proxies fine, but the proxies are generated with static host and port. I want to substitute the host and port during runtime if required, for instance read the values from a database. I need to do this to avoid compiling the application for every deployment we make dev, test and production. Is there an easy way to set the generated proxy host and port? Are there any examples?
  Thanks in advance!
  Stephen

  Hi,
  Maybe you should have a look on XML Catalogs feature, but I am not sure if JDeveloper support it and how to support it.
  -LJ

• Xbox 360/one problem and port forwarding

  For a couple months now (since I got my AirPort Extreme) I have not been able to connect to a certain friend on xbox. I can connect to anybody else however. The only way we can (kind of) connect is if somebody else is host and we both connect to him.
  My NAT type is Moderate. When I try to test my connection on my xbox it says that I can connect but I am limited in matchmaking (this is joining games and using voice chat, which is the problem named above for my particular friend). The xbox shows the error and suggests that I enable UPnP or open the port 3074.
  The problem is that I have already have! I gave my xbox a static IP and forwarded the port 3074 to that IP.
  (I have also tried forwarding all the ports that xbox live uses to the xbox. These being:
  Port 88 (UDP)
  Port 3074 (UDP and TCP)
  Port 53 (UDP and TCP)
  Port 80 (TCP)
  as found on the xbox website...  https://support.xbox.com/en-US/xbox-360/networking/network-ports-used-xbox-live
  I made sure to put them in the right text boxes for UDP and TCP so that is not the problem either.)
  I know that the AirPort Extreme does not support UPnP but does have a similar thing called NAT Port Mapping Protocol which was already enabled. (I tried all possibilities of enabling/disabling NAT...Protocol and port forwarding/not port forwarding.)  ---  This is not the solution as I see it
  In short: My xbox tells me to open port 3074. I already have. It still tells me to open it and still won't work.
  I posted this on the apple discussion page (instead of the xbox discussion page) because I know that it's not an xbox problem. When I had my old linksys router it worked perfectly.

  I have this exact same question and problem.  I know this doesn't help, but would appreciate any updated information if you find an answer.  I'll keep working on this also and let you know if I find an anwer.

• How to remove old USB printer drivers and ports from Windows XP and Windows 7

  We have several instances of HP 4250 Printers connected as local USB printers. When trying to replace this model with a HP P4015n or HP 600 M602n the new models will appear to install but won't print. No error messages but sometimes they try to install with ieee 1284.4 support which would seem to be a parallel port type. We're trying to use the HP UPD PCL 5.  I'm looking for a way to completely remove the old printer instances, drivers and ports. While the printer icons and drivers seem to be able to be deleted the USB printer ports can't be deleted. Then when I go back and try to install the new model printer it can only use he existing USB port. Again, when that happens the new printer won't print. So I'm trying to get a completely fresh start with the XP SP 3 and Win 7 OS before installing the newer models. I've tried several methods to clean the USB printers but the instructions are never detailed and most times something is missing and the OS needs to be reloaded. I thought that I would see if someone who knows HP USB printers has any ideas...

  These seem to be a commercial products. For the best chance at finding a solution I would suggest posting in the forum for HP Business Support!
  You can find the Commercial Laserjet board here:
  http://h30499.www3.hp.com/t5/Printers-LaserJet/bd-p/bsc-413
  Best of Luck!
  You can say thanks by clicking the Kudos Star in my post. If my post resolves your problem, please mark it as Accepted Solution so others can benefit too.

• How to get server hostname and port from web form

  Hi All,
  I need to find out server hostname and port number
  from 9i form.
  That is if the form was called via:
  http://myserver.com:1234/f90servlet?form=test,
  i would like to call some
  GET_XXX_PROPERTY(SERVER_HOSTNAME) that would return
  myserver.com
  and
  GET_XXX_PROPERTY(SERVER_PORT) that would return
  1234
  or alternatively
  GET_XXX_PROPERTY(SERVER_URL) that would return
  complete URL, so that i can parse it myself.
  Does anything like this exist? If not,would be
  possible to get that information from any Java
  function via java importer?
  BR,
  Robert
  BR,
  Robert

  Robert,
  I'd add the code as a Java Bean in Forms and get this information from the Forms request URL.
  Add the following bean to a Canvas and make it a size of 1x1 pixel so taht it appears hidden
  import java.applet.Applet;
  import java.net.URL;
  import oracle.forms.handler.IHandler;
  import oracle.forms.properties.ID;
  import oracle.forms.ui.VBean;
  public class FrmRequestInfo extends VBean
  public static final ID pGetPort = ID.registerProperty("GET_PORT");
  public static final ID pGetHost = ID.registerProperty("GET_HOST");
  public static final ID pGetProtocol = ID.registerProperty("GET_PROTOCOL");
  private String _host;
  private String _port;
  private String _protocol;
  private URL FormsURL;
  Applet m_applet;
  /*Forms settings*/
  IHandler m_handler;
  public FrmRequestInfo()
  public final void init (IHandler handler)
  super.init(handler);
  m_handler = handler;
  // get the forms applet handler
  m_applet = m_handler.getApplet();
  // initialize cookie domain to the same domain that runs Forms
  // Services
  FormsURL = m_applet.getDocumentBase();
  _host = FormsURL.getHost();
  _port = new Integer(FormsURL.getPort()).toString();
  _protocol = FormsURL.getProtocol();
  public Object getProperty(ID p0)
  if (p0 == pGetHost)
  return _host;
  else if (p0 == pGetPort)
  return _port;
  else if (p0 == pGetProtocol)
  return _protocol;
  else
  return super.getProperty(p0);
  To get the port number you call
  VarcharVariable_Port := get_custom_property('beanblock.beanname',1,'GET_PORT');
  for the hostname
  VarcharVariable_Host:= get_custom_property('beanblock.beanname',1,'GET_HOST');
  Frank
  Ps.: just wrote the bean on the fly, without testing - but I am positive that it works as similar functionality works for me in other beans.