Connecting to a Domino LDAP directory

hi..
Is it possible to connect Sun Java Directory server to a Domino LDAP server and create a replica of Domino LDAP accounts on Sun Java Directory server?
the basic idea is to have the Domino Address Book in Communication Express.
Is there any workaround or procedure to follow? We have more than 50,000 emails addresses in Domino Address Book.. how do we get these entries into Sun Java Directory Server?
Thanks
Prasad

Hi Prasad,
There is no standard defining LDAP Replication. The effort at IETF has failed to reach consensus and each vendor has implemented his own replication model and protocols.
As a result, it is not possible to have Sun Directory Server to replicate to or be replicated to from a Domino LDAP directory.
One workaround is use a Meta-Directory product to synchronize the content between the 2 servers.
Regards,
Ludovic

Similar Messages

  • Connecting MDM to a LDAP directory (IDM)

    Hi experts,
    Does anybody already connected MDM to a LDAP directory? I have a requirement to integrate MDM with IDM (Novell). The IDM should mantain users and groups of MDM.
    Also, is there any way to connect UME on MDM user and groups database? this solution is also valid once the IDM is already integrated with EP.
    Thanks in advance,
    Armando Martines Neto

    Hi Armando,
    MDM integration with LDAP is supported in MDM 7.1, you can configure and use LDAP as a datasource for users and roles. You can create a custom attribute in LDAP to identify the MDM Roles. Refer to the MDM Console Reference Guide for the procedure.
    Regarding you second question, if you have configured the same LDAP ds in portal also then you can us Trusted Connections to enable SSO between portal and MDM.
    Hope this helps!!
    Cheers,
    Arafat

  • Domino LDAP Lotus Notes Server

    I have been successful in connecting to a Domino LDAP through Weblogic. The problem
    I am having is when I go to /tools there are only three groups that show up: admin,
    administrators, and administrator. None of my other groups in the LDAP show up,
    which make personalization hard to do. When I set up my LDAP connection in the
    console I am connecting to the admin group. Can weblogic show more than one group
    in LDAP? Has anyone been successful at connecting to Domino? Below my configuration
    data:
    domino.group.dn=cn=admin
    domino.membership.filter=(&(member=%M)(objectclass=dominoGroup))
    domino.user.filter=(&(cn=%u)(objectclass=dominoPerson))
    server.alias=domino
    domino.server.principal=cn=user,o=ATT
    domino.group.iscontext=false
    domino.server.host=server.mydomain.com:389
    domino.server.credential=bea4321
    domino.user.dn=
    domino.group.filter=(&(cn=%g)(objectclass=dominoGroup))

    Hi John,
    Please note that the LDAP realm (both V1 and V2) that comes with WLS 6.x only support
    these LDAP servers:
    Netscape Directory Server
    Microsoft Site Server
    Novell Directory Server
    OpenLDAP Directory Server
    Regards,
    Joseph Nguyen
    BEA WebLogic Support
    John wrote:
    I have been successful in connecting to a Domino LDAP through Weblogic. The problem
    I am having is when I go to /tools there are only three groups that show up: admin,
    administrators, and administrator. None of my other groups in the LDAP show up,
    which make personalization hard to do. When I set up my LDAP connection in the
    console I am connecting to the admin group. Can weblogic show more than one group
    in LDAP? Has anyone been successful at connecting to Domino? Below my configuration
    data:
    domino.group.dn=cn=admin
    domino.membership.filter=(&(member=%M)(objectclass=dominoGroup))
    domino.user.filter=(&(cn=%u)(objectclass=dominoPerson))
    server.alias=domino
    domino.server.principal=cn=user,o=ATT
    domino.group.iscontext=false
    domino.server.host=server.mydomain.com:389
    domino.server.credential=bea4321
    domino.user.dn=
    domino.group.filter=(&(cn=%g)(objectclass=dominoGroup))--
    Joseph Nguyen
    Developer Relations Engineer
    BEA Systems, Inc.

  • Using JNDI to connect LDAP directory : pb of reconnection

    Hi everybody !
    I really need our help.
    I work with java servlets and i try to connect a LDAP directory with JNDI.
    When i launch my application, and when LDAP server is ready, connection is done, i get data from ldap, everything is ok.
    But when ldap server fails down, and startup, (my application doesn't stop), i can't connect again to ldap (ldap connext is not null). I get an error "Connection reset by peer, socket write error".
    I can't connect, even if i put my context null, and build another context, to get ldap data.
    Maybe its a problem of servlet programmation, or JNDI use, i don't know.
    Any ideas ?? Thanks you so much for your help !
    Here i give my code, to build ldap context (which is equivalent to a connection to ldap) :
    _env = new Hashtable();
    env.put(Context.INITIALCONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDERURL, "ldap://"+_ldapIPAddress+"/o=netcentrex");
    //securite
    env.put(Context.SECURITYAUTHENTICATION, "simple");
    env.put(Context.SECURITYPRINCIPAL, "cn=admin, o=div");
    env.put(Context.SECURITYCREDENTIALS, "admin");
    try
    ldapCtx = new InitialDirContext(env);
    catch(NamingException e)
    System.out.println("ConnectionLdap : Cannot get directory context for LDAP");

    Sorry, no need to reply !!
    I've found my error (3 days i am searching, and its a stupid null ldap address) !!!

  • Cannot import users in CUCM 9 when use Domino LDAP

    Hello All,
    I'm trying to use Domino LDAP in CUCM 9 to import users. My configuration is:
    LDAP System:
    OpenLDAP
    uid
    I have added LDAP Directory and everything seems okey. When run Perform Full Sync Now and go to User Management -> End Users I cannot find any User.
    In DirSync log:
    2015-02-06 08:52:38,403 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:294) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[Run] Run the LDAPSync thread
    2015-02-06 08:52:38,403 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:1796) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[resetFlags] init variables...
    2015-02-06 08:52:38,403 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:660) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[checkLDAP] Check LDAP setting ...
    2015-02-06 08:52:38,403 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:671) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[checkLDAP] Add binary attributes
    2015-02-06 08:52:38,403 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:858) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[makeConnection] Making connection [Attempt 1], currLDAPHostIndex=0, hostList.size=1
    2015-02-06 08:52:38,404 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:1483) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[getHostAddress] Hostname=ldap.domain.com
    2015-02-06 08:52:38,404 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:1489) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[getHostAddress] Result string = 10.193.1.1
    2015-02-06 08:52:38,404 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:871) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[makeConnection] New LDAP URL : ldap://10.193.1.1:389
    2015-02-06 08:52:38,406 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:878) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[makeConnection] Successful LDAP connection to : ldap://10.193.1.1:389
    2015-02-06 08:52:38,406 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:883) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[makeConnection] Start over on ldap.domain.com
    2015-02-06 08:52:38,407 DEBUG [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:706) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[checkLDAP] Getting supportedcontrol from ctx
    2015-02-06 08:52:38,407 ERROR [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:802) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[checkLDAP] Failed to check LDAP - java.lang.NullPointerException
    2015-02-06 08:52:38,407 ERROR [DSLDAPSyncImpl(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)] ldapplugable.DSLDAPSyncImpl (DSLDAPSyncImpl.java:803) - LDAPSync(1471d0ce-97a5-5657-53e7-2200a8ea7ce0)[checkLDAP] java.lang.NullPointerException
    Thank you!
    Yordan

    Great!
    Thank you for the answer!

  • Can't Authenticate in LDAP directory after upgrade from 10.4.11 to 10.5.1

    Hi, all
    Yesterday I have tried to upgrade my Xserve Intel from 10.4.11 Tiger to 10.5.1 Leopard Server
    In my server there is this service:
    -AFP
    -DNS
    -SMB
    -Open Directory Master
    - XSAN Primary MDC
    All works fine but when I try to acces with worgroup manager to LDAP directory I can't authenticate with "diradmin" this thing appen in local machine and with remote worgroup manager connected to the server.
    I have tried with "root" user and I have been able to authenticate for some time, (5-15 min.) after It's impossible to access with all user.
    The client still authenticate with user and password in all computer with 10.5.1 and 10.4.11 workstation, but now i wan't to add some new users and I can't do That!!!!!
    So for now I have restore my old 10.4.11 Server Tiger, but I wish to know if someone have tried new 10.5.2 server upgrade and maybe there is some kind of fix to this problem.
    Thank's In Advance

    After posting on numerous message boards, and no one having an exact answer, but several making plenty of great suggestions, I think I've finally figured out the cause of this issue or at least part of the cause.
    Within 'Server Admin', select "Open Directory",
    under: Settings > Policy > Binding
    there are six check boxes under "Security"... for testing kerberos, I have been checking the first four boxes, which are:
    1. disable clear text passwords
    2. digitally sign all packets (requires Kerberos)
    3. encrypt all packets (requires ssl or kerberos)
    4. block man-in-the-middle attackes (requires kerberos)
    through troubleshooting this myself, and doing each change, followed by a server reboot, then immediately attempting to authenticate to /LDAPv3/127.0.0.1/, it seems that enabling some, or some combination of these Security settings triggers WordGroup Manager to not accept the diradmin password.
    referring to the numbers above (1 through 4)...
    2 or 4 by themselves fails
    1 and 3 together fails
    I haven't gone beyond that for testing and don't know what other combinations works or fails.
    I don't know if there is something beyond this that is specific to my configuration or environment that plays a part in this failing. All I know is that turning off all Security checkboxes in this section fixes the problem.
    I wonder if anyone who has never seen this problem can try this on their 10.5.2 Server and see if they are still able to authenticate as their diradmin to WGM. Regardless, seems that this is a WGM bug to me, right?
    if you are having this problem, uncheck all of these boxes and then reboot before trying to authenticate.

  • Can't connect to weblogic embedded LDAP from an init block

    Hi
    I am trying to use weblogic's embedded LDAP directory in an OBIEE RPD initialisation block, using 10g security model in OBIEE 11g. I need the internal user, BISystemUser, to be validated by an init block in the rpd, but I am not able to configure the weblogic LDAP in an init block, as it is done with AD, for example.
    I am following the instructions on "Viewing the Contents of the Embedded LDAP Server from an LDAP Browser" section of this document, http://docs.oracle.com/cd/E21764_01/web.1111/e13707/ldap.htm#i1104934 and I am getting: "LDAP bind failure: Can't connect to LDAP server". Weblogic is up and running, I can connect to its console, OBIEE, etc.
    I am using this settings on OBIEE:
    Hostname: localhost (I've tried using the actual hostname)
    Base DN: dc=bifoundation_domain
    Bind DN: cn=Admin
    Port: 7001
    (I've already reset LDAP's Admin password to a known value).
    The curious thing is that I can connect to the same LDAP using the same settings with LDAPExplorerTool2 opensource tool.
    Does anyone have an idea what else is missing?
    Thank you.

    i also have this problem..do u have any solution?

  • Not able to connect to Lotus Domino server using java/corba

    Hi
    I am new to Lotus Domino server and Java.
    I have INstalled Lotus Domino server5 on 1 machine and was successful in installing the Lotus client on another machine.
    Throught the lotus client i am able to connect to the server and send and receive the mails.
    Now I want to connect to the domino server using the Lotus Domino Tolkit for Java/Corba.
    In this Toolkit they have given the sample code program ..
    if I run the code I am getting the error
    java.io.FileNotFoundException: http://<IPADDRESS>/diiop_ior.txtjava.io.FileNotFoundException: http://<IPADDRESS>/diiop_ior.txt
    at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLCon
    nection.java:691)
    at java.net.URL.openStream(URL.java:942)
    at lotus.domino.NotesFactory.getIOR(NotesFactory.java:314)
    at lotus.domino.NotesFactory.createSession(NotesFactory.java:66)
    at IntroCorbaApp.run(IntroCorbaApp.java:65)
    at java.lang.Thread.run(Thread.java:539)
    lotus.domino.NotesException: Could not get IOR from HTTP Server
    lotus.domino.NotesException
    at lotus.domino.NotesFactory.getIOR(NotesFactory.java:344)
    at lotus.domino.NotesFactory.createSession(NotesFactory.java:66)
    at IntroCorbaApp.run(IntroCorbaApp.java:65)
    at java.lang.Thread.run(Thread.java:539)
    I also tried to find this file in the Domino server directory.
    The file exists in drive:\LotusServer\Domino\Data\Domino\HTML directory..
    I am not getting what exactly is the Problem
    Plz any one help me in this regard..
    thanks in advance

    You should be able to access the diiop_ior.txt file from browser without authentication,only then it will work. This file should not
    be protected.

  • Connecting to OpenLDAP through Meta-directory

    Is it possible to connect to other LDAP servers, like OpenLDAP, directly through the metadirectory, or does an LDIF dump have to be created? I tried setting up a connector view and also creating a universal connector for OpenLDAP, but it gives me the following error:
    Invalid directory server.
    Meta-Directory requires Netscape Directory Server 4.1 or higher.
    Please install and specify the correct version.
    Details: netscape.ldap.LDAPException: error result (32); No such object
    Or can Meta-directory only connect to other Sun One Directory Servers and otherwise LDIF dumps need to be created? I'm demo'ing metadirectory and directory server, and the pdf manual for metadirectory seemed to suggest connecting to LDAP servers wouldn't be a problem, but is that strictly Sun One Directory Servers? I'm confused..
    Help would be appreciated. Thanks!
    -Wayne

    Hello, the metadirectory manual incorrectly states that the two direct connectors in meta are called sql and ldap.
    This is in fact untrue, the ldap connector will ONLY work with Sun ONE Directory Server 4.x and 5.x with the RetroChangeLog enabled.
    You can import LDIF data from other Directory Servers into meta using the UTC. Alternatively if it's a POC or demo you can use the new Novell connector that is pure LDAPv3 to retrieve data, this connector uses mysql as a changelog and therefore is not dependent upon the Retrocl.
    Paul Walker
    Sun ONE

  • Setup is unable to store configuration data in the LDAP directory

    I am attempting to install the Sun One Directory Server 5.1 on my Windows 2000 machine. At the conclusion of the installation process, I recieve these back to back pop up windows:
    Error:
    Setup is unable to store configuration data in the LDAP directory.
    Error:
    Unable to create administration server configuration.
    Error:
    Could not authenticate ldap connection, "Unknown error".
    Error:
    Unable to set ACI in Configuration Directory Server
    Setup
    Setup's Post-Install mode failed for the Sub Component admin belonging to the component admin. Do you want to continue.
    What am I doing wrong?

    Hi,
    Can you please send me logconv.pl code to [email protected] I am unable to find the file

  • Can IdM be used as LDAP directory and UME datasource?

    Hi,
    I am trying to figure out what IDM can and cannot do.
    Can IDM be used as a LDAP datasource in its own right for a SAP Portal for example?
    Or do you still have to use an external LDAP directory and IDM is then only used to pull everything together from all systems?
    Thanks,
    Adriaan

    Hi Adriaan,
    it should be tecnically possible to use the Virtual Directory Server as a LDAP datasource for portal, but you probably have to edit the datasource.xml of portal and the connection.
    I'd rather use the portal database or a dedicated LDAP for that and use IdM to provision into this repository.
    Regards,
    Andreas

  • RPLDAP_EXTRACT - Error when updating the LDAP directory

    I am connecting SAP IdM 7.0 to SAP HCM via VDS.
    So far:
    The VDS responds to LDAP browser, the connection tests from SAP GUI are succesful.
    I can execute my copy of the standard report LDAPEXTRACT46C in SAP GUI and can see what data is exported.
    I get the "Error when updating the LDAP directory" error when trying to execute the RPLDAP_EXTRACT program.
    An error occurred during creation of one or more data records in the LDAP directory. The error has been logged in the system used to export data to the LDAP directory.
    You can find logs in the database tables TLDA_LOG (HR-LDAP: Non-Exported Data Records) and TLDA_MSG (Error Messages About Data in Table TLDA_LOG). Table TLDA_LOG contains data records that could not be exported; table TLDA_MSG contains the corresponding messages.
    I didn't see anything that makes sense in tables mentioned in the error message above.
    I have some questions as the documentation supplied with IdM is bit brief; According to the configuration guide I don't need to have any mapping in VDS like "conversion of internal attributes" or "conversion from internal attributes", has anyone else entered the mapping in VDS?
    Any pointers in going forward?
    Edited by: pasikuikka on Oct 20, 2009 11:01 AM

    Hi Pasikuikka,
    just a few questions:
    Have you checked TA HRLDAP_MAP? (Each field must have its expression in the LDAP-Target)
    Have you checked TA LDAPMAP? (Each field must have its expression in the LDAP-Target)
    Maybe there are attributes listed in the query, but not in the HCM-Staging-Area in the Identity Center.
    Have been new attributes created in the HCM-Staging-Area and, if so, are they connected to the right Entry-Type (MX_HCM_Employee or something like that)?
    Hope this puts you on the right track.
    Kind regards,
    Achim Heinekamp

  • Can't start server -- Fatal error: Cannot connect to user group ldap server

    After installing iCS 2.1, iCS 2.1p1, and iCS 2.1p3, a user will receive the
    following error message when trying to start the server:
    <P>
    Fatal error: Cannot connect to user group ldap server.
    <P>
    In addition, the Directory Server access logs will contain the following
    entry:
    <P>
    -0400] conn=125 op=1 SRCH base="dc=ldgw-llc,dc=com" scope=2
    filter="(objectclass=People)"
    In the server.conf file,
    check the local.enduseradmindn
    parameter. The parameter
    should appear as follows:
    <P>
    uid=admin,ou=Administrators,ou=TopologyManagement,o=NetscapeRoot
    <P>
    If the parameter contains
    "calmaster" or any user
    other than "admin,"
    change it to match the line above.

    Hi,
    I am getting the same error, kindly let me know how did you solved this problem
    Thanks
    Ahmad

  • Jabber for Windows - wildcard search against LDAP directory

    Hi all,
    I have set up an on premise environment with CUCM, CUPS and a 3rd party LDAP Directory. For CUPC everything is working fine. For Jabber for Windows it took me some time to find the correct jabber-config.xml settings to make it working.
    At the moment I am able to search the LDAP Directory, but I have to write the complete Name, i.e. "Miller, John", in the search field. If I try it with "Miller" only, I get no results for my search.
    I played arround with the  <UseWildcards>0</UseWildcards>  tag without any changes in the behaviour.
    Is there anybody who can help?
    Best regards
    Manfred

    Hi Manfred,
    Jabber for Windows has been tested with following directory services:
    Supported Directories
    Microsoft Active Directory  2003
    Microsoft Active Directory  2008
    Cisco Unified Communications Manager User Data Service UDS  is supported on Cisco Unified Communications Manager version 8.6.2 or later.
    OpenLDAP
    The behavior you are seeing could be related to interop issues. I suggest to open a TAC case for further assistance.
    Thanks,
    Maqsood

  • Integrating Flat File data to LDAP Directory using sunopsis driver

    Hello
    I need to import data from a csv file into a LDAP Directory.
    In order to acheive this, i used Demo physical and logical File data server (called FILE_GENERIC) and set up a new LDAP data server using tutorial "Oracle Data Integrator Driver for LDAP - User's Manual".
    I can manually see and update data on both file and LDAP datastores.
    The fact is that i cannot manage to import/update data from the file to the LDAP directory through a dedicated interface.
    The issue do, i think, come from the PK/FK used by sunopsis relational model to represent the directory.
    LDAP DN is represented by a set of two table representing in my example the organizational units in one hand and the persons in the other hands, linking them through FK in persons to auto-generated PK in organization units. My person table also have a auto generated PK. All the directory datastore tables have been reversed through ODI.
    In my interface, i always use my cn as update key.
    I first tried not to map the person PK in the interface, letting the driver generating it for me (or mapping a null PK). I then catch in operator a message like: " null : java.sql.SQLException: Try to insert null into a non-nullable column".
    Anyway, the first row is created in the directory and a new PK is given into ODI datastore. Curiously, this is not as i would presume the last PK value + 1.
    There are some kinds of gaps in the ID sequences.
    I even tried checking the "tolerated error" into the IKM step called "Insert new row". I'm using IKM shipped with ODI :"IKM SQL Incremental Update". The sequence is finished in operator but due, i guess, to the catched error, the other rows are not processed. (Anyway i shouldn't have to tolerate errors)
    I tried after to put not used custom PK values into my file, then map the PK column to the LDAP datastore PK column without much success: Only one row is processed. Futhermore, the id of the PK in the datastore is different of the one I put in the file.
    I finally tried to generate PK values through SQL instructions by creating new steps in the IKM modul but that did not worked much.
    I really do not see any other ideas to either have the driver construct new PK at insert/update or to make him ignore the null PK problem and process all the rows.
    If anyone do have an idea about it, please share...
    Greetings,
    Adrien

    Hi,
    I am facing an issue who is probably the same.
    using ODI 10.1.3.5, I can't insert new rows into my openLDAP.
    One of the point I see is that the execution take the LDAP server for staging area and want to create I$ table into it, so the data are already imported into the ldap Server.
    thanks for any help.

Maybe you are looking for