Failed to configured referral on LDAP Sun Directory

Hi all,
My customer has a problem in config. BOE to LDAP servers; which has 2 referral ldap hosts.
The test cases are:
- If BOEXIR2 talks to LDAP v6.2, it works. BOE can see the users and logon via Infoview
- But the problem exists when 2 LDAP servers setup with referral users.
LDAP A has 2 dynamic groups. 1 dynamic group referred to users created in LDAP A. Another dynamic group was referral to LDAP B.
In this case, BOE is not able to see any user group.
The customer is using BOEXIR2 and LDAP Sun Dir 6.2. I understand this is not an official supported platform, but I suspect the issue was not caused by version compatibility, but the configuration.
Have you heard any similar issue? Any idea? Thanks.
Regards,
Gloria

Have you configured the referral in the CMC/auth/LDAP?
Does the user account used to configure it have read/query access to both LDAP servers?
Try using a directorymanager/admin account instead to see if it produces different results.
I honestly have not seen the referral option used very often (usually gets configured by mistake).
Also what if you use static groups, in other words are referrals only failing for dynamic groups? The query mechanism for dynamic groups is quite a bit different than that of static so it's possible you may have found a bug
Regards,
Tim

Similar Messages

Integrating LDAP Sun Directory with Sun SGD

Hi Gurus,
Installed SGD server 4.31 on machine1
Wanted to link this SGD server to the sun Directory server(the DS is on a seperate m/c) hence went to the configuration wizard of admin and checked the "Ldap login authority" and entered the ldap server and clicked on apply and exited from it.
Now I logged into the SGD server using the developer/developer which is a user present in the Directory server. The login was successful.
Now if i click on any application(gnome terminal) for this user, it shows
su: Unknown id: developer
login: developer
Password:
Requesting application server authentication...
Login incorrect
login:
Waiting for the server to respond...
Logging in to the application server...
1. why is it requesting application server authentication ?
2. what are the extra steps to be done if the developer user has to access the applications
Thanx in advance
Siddesh

Authenticating for SSGD and appliactions does not have anything to do with authentication to tomcat/apache/java.
Simplest form:
- A user logs on to SSGD with a valid username and password.
- SSGD presents applications to the user via the webtop.
- The user starts an application by clicking the application name on the webtop.
- SSGD connects to the application-server (a *nix-server, Windows Terminal server, etc), authenticates to the application server and starts the application.
SSGD connects to the application server like you normally would do form your workstation:
- To Windows Terminal Server via RDP protocol (like mstsc.exe on windows)
- To linux/unix server via SSH (like putty.exe on windows) or telnet (like telnet.exe on windows)
When using LDAP-authentication for SSGD you need to tell SSGD to use LDAP-authentication (see http://docs.sun.com/source/819-6255/ldap_auth_enabling.html).
When connection to an Application Server (Windows Terminal Server/ *nix-server) you need to configure LDAP-authentication (or something synchronized whith LDAP) to be able to use Single Sign On from SSGD to these application servers.
Synchronizing AD with the Sun Directory Server can be done with Identity Synchronization for Windows (http://www.sun.com/software/products/identity_synch/) or use unix-integration on Windows 2003 R2.
- Remold | Everett

Linux: /etc/pam.d/system-auth config w/ Sun Directory Server 6.2

I have a RHEL 4.3 WS system authenticating againd a Sun Directory Server 6.2 ldap server. I've configured my linux as an ldap client according to Redhat and Sun docs:
http://kbase.redhat.com/faq/FAQ_79_6031.shtm
http://www.sun.com/bigadmin/features/articles/nis_ldap_part3.jsp#P3
My problem is with the /etc/pam.d/system-auth file. I've configured it according to the above sun doc but receive an error in /var/logs/ messages with this one line:
account    [default=bad   success=ok user_unknown=ignore err=ignore
authinfo_unavail=ignore] /lib/security/$ISA/pam_ldap.soThe error returned is:
Mar 5 22:54:29 hostname sshd: PAM pam_parse: expecting return value;
[...err=ignore authinfo_unavail=ignore]Login works fine if I comment that line, but I'd like to correct the error in that statement. Any help would be appreciated.
Here is my entire /etc/pam.d/system-auth file:
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/$ISA/pam_env.so
auth        sufficient    /lib/security/$ISA/pam_unix.so likeauth
nullok
auth        sufficient    /lib/security/$ISA/pam_ldap.so
use_first_pass
auth        required      /lib/security/$ISA/pam_deny.so
account     required      /lib/security/$ISA/pam_unix.so
account     sufficient    /lib/security/$ISA/pam_succeed_if.so uid <
100 quiet
account    [default=bad   success=ok user_unknown=ignore err=ignore
authinfo_unavail=ignore] /lib/security/$ISA/pam_ldap.so
account    [default=bad   success=ok user_unknown=ignore err=ignore
authinfo_unavail=ignore] /lib/security/$ISA/pam_ldap.so
account     required      /lib/security/$ISA/pam_permit.so
password    requisite     /lib/security/$ISA/pam_cracklib.so retry=3
password    sufficient    /lib/security/$ISA/pam_unix.so nullok
use_authtok md5 shadow nis remember=12
password    sufficient    /lib/security/$ISA/pam_ldap.so use_authtok
password    sufficient    /lib/security/$ISA/pam_unix.so nullok
use_authtok md5 shadow
password    required      /lib/security/$ISA/pam_deny.so
session     required      /lib/security/$ISA/pam_limits.so
session     required      /lib/security/$ISA/pam_unix.soThanks.
keywords:
linux ldap sun directory server pam.d system-auth

You do realize there is a decdicated Directory Server forum?
It can be readily found on the Enterprise System forum page.
http://forum.java.sun.com/index.jspa?tab=es

Josso not able authenticate against sun directory configuration

I trying configure josso-1.5 and jboss 4.x to sun directory server.
I getting error in the screen: Invalid Authentication Information
It works against openldap
Please let me know, i need do any special configuration for sun directory server
console log.
12:12:33,453 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnN
ull=true
12:12:33,468 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnN
ull=true
12:12:33,468 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.util.LocalStrings', returnNull=tru
e
12:12:33,531 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnN
ull=true
12:12:33,531 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnN
ull=true
12:12:33,531 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.bean.LocalStrings', returnN
ull=true
12:13:02,171 INFO [TilesRequestProcessor] Tiles definition factory found for request processor ''.
12:13:02,250 INFO [ConfigurationFactory] Trying to load configuration josso-gateway-config.xml
12:13:02,265 INFO [ComponentKeeperImpl] SSO Config from [file:/C:/Jboss405/jboss-4.0.5.GA/jboss-4.0.5.GA/server/default
/./tmp/deploy/tmp36339josso.ear-contents/josso-exp.war/WEB-INF/classes/josso-config.xml]
12:13:02,281 INFO [STDOUT] THe crendentials are ->[Lorg.josso.auth.Credential;@b65a68
12:13:02,281 INFO [STDOUT] THe SSO context is org.josso.gateway.SSOContextImpl@1e99db4
12:13:02,281 INFO [STDOUT] THe gateway is ->org.josso.gateway.SSOGatewayImpl@70cdd2
12:13:02,281 INFO [STDOUT] THe scheme is ->basic-authentication
12:13:02,312 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@3
12:13:02,312 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@7
12:13:02,312 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@9
12:13:02,312 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@10
12:13:02,312 INFO [STDOUT] THE ENV BEFORE LOGGING IN TO LDAP IS -> {java.naming.provider.url=ldap://192.168.1.225:2389,
java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.principal=cn=admin,cn=Administrators
,cn=config, java.naming.security.authentication=simple, java.naming.security.credentials=test, java.naming.security
.protocol=}
12:13:02,312 INFO [STDOUT] THE ENV BEFORE LOGGING IN TO LDAP IS -> {java.naming.provider.url=ldap://192.168.1.225:2389,
java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.principal=cn=admin,cn=Administrators
,cn=config, java.naming.security.authentication=simple, java.naming.security.credentials=test, java.naming.security
.protocol=}
12:13:07,000 INFO [STDOUT] ################################ LOGGED in TO LDAP SERVER ############# javax.naming.ldap.In
itialLdapContext@142c63f
12:13:07,000 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@12
12:13:07,046 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@3
12:13:07,046 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@7
12:13:07,046 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@9
12:13:07,046 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@10
12:13:07,046 INFO [STDOUT] THE ENV BEFORE LOGGING IN TO LDAP IS -> {java.naming.provider.url=ldap://192.168.1.225:2389,
java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.principal=cn=admin,cn=Administrators
,cn=config, java.naming.security.authentication=simple, java.naming.security.credentials=test, java.naming.security
.protocol=}
12:13:07,062 INFO [STDOUT] THE ENV BEFORE LOGGING IN TO LDAP IS -> {java.naming.provider.url=ldap://192.168.1.225:2389,
java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, java.naming.security.principal=cn=admin,cn=Administrators
,cn=config, java.naming.security.authentication=simple, java.naming.security.credentials=test, java.naming.security
.protocol=}
12:13:11,640 INFO [STDOUT] ################################ LOGGED in TO LDAP SERVER ############# javax.naming.ldap.In
itialLdapContext@a14fed
12:13:11,656 INFO [STDOUT] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@12
12:13:11,718 INFO [SSO_AUDIT] Sat Aug 11 12:13:11 PDT 2007 - sso-user - info - user1 - authenticationFailed=failure - r
emoteHost=127.0.0.1,authScheme=basic-authentication - ERROR:user1:org.josso.auth.exceptions.AuthenticationFailureExcepti
on
12:13:11,812 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnN
ull=true
12:13:11,828 INFO [PropertyMessageResources] Initializing, config='org.apache.struts.taglib.html.LocalStrings', returnN
ull=true

ar, mine was a mistake.
I changed password to plain and my ldap data to none crypt password.
Also I commented out


lines.
INFO: Trying to load configuration josso-gateway-config.xml
2008/01/30 23:12:33 org.josso.ComponentKeeperImpl loadConfig
INFO: SSO Config from [file:/opt/apache-tomcat-6.0.14_josso-1.6/bin/josso-config.xml]
2008/01/30 23:12:33 org.josso.gateway.audit.service.handler.LoggerAuditTrailHandler handle
INFO: Wed Jan 30 23:12:33 JST 2008 - sso-session - info - - createSession=success - ssoSessionId=3BD8CB4222046B3ECA68A29DCC54FD44
2008/01/30 23:12:33 org.josso.gateway.audit.service.handler.LoggerAuditTrailHandler handle
INFO: Wed Jan 30 23:12:33 JST 2008 - sso-user - info - user1 - authenticationSuccess=success - remoteHost=192.168.100.200,authScheme=basic-authentication,ssoSessionId=3BD8CB4222046B3ECA68A29DCC54FD44
2008/01/30 23:12:33 org.josso.gateway.signon.LoginAction login
WARN: No 'BACK TO' URL received or configured ... using default forward rule !

Sun Directory Server Installation

Hi all,
I am a student in a Computer Science degree and as my project i am designing a web application that allows users to exchange ideas through a "messaging" system.
After discussion with my tutors we have come up with a design idea that we would use an LDAP server to authenticate users as well as keep message details such as Topic, message header, etc. The actual body of the msg should be kept in a separate database.
To the point....
It has been suggested that i use the Sun Java System Directory Server 5.2 for this project and i was also given a compressed installation package. I have tried to install this and received error msgs similar to the ones i have found others have had in this forum.
For example topics:
1. Forums - Directory Server configuration issues in Windows
2. Forums - Install failed on Windows XP
I am using windows XP and from what i have read although it is not supported some people have managed to get this to work. Also i read that maybe Studio enterprise might solve this issue or provide some support?
Is this true and if so can someone give me some guidance on how to achieve this?
Also i would appreciate your opinion on wether this design approach( LDAP for authentication and database for store) is feasible or technicaly "correct" and maybe suggestions to a different approach....

I think that its never a bad idea to get acquainted with something like the Sun Directory Server although I'm not sure that means that one HAS to use it in a project.
The DS can be a pain to get up but for the most part if you get the latest DS5.2 Q4 or something...most installations go smoothly. If it was me I would just chuck every thing about the convo into the directory but I'm sure that there's a reason that you want to use the DS in conjuction with other storage DBs.
I don't think you need to get Studio enterprise. I was able to get it up and running all by itself on windows. After I installed it I jsut made sure to remember the two random ports it picks up for Admin and DS ldap usage. Also I changed the password expiry time of the account that is used by the Admin console.
GLuck with this.
Cheers,
- Pulkit

Error while migrating to Sun Directory Server 6.0

Hi All,
I am trying to migrate the Sun One Directory Server 5.2 to Sun Directory Server 6.0. I am getting the following error
bash-3.2# ./dsmig migrate-config /var/Sun/mps/slapd-circb2bld3/ /var/SunDirectoryServer6.0/dsInst/
Launching Configuration Migration of server instance /var/Sun/mps/slapd-circb2bld3 .....
Enter the certificate database password:
Starting server instance /var/SunDirectoryServer6.0/dsInst ..... Instance /var/SunDirectoryServer6.0/dsInst is already running (ns-slapd pid is 3868)
Enter "cn=Directory Manager" password:
Connecting to server localhost:389 .....
Could not bind securely on "localhost:389".
Remote host closed connection during handshake
Details: SSL peer shut down incorrectly
Could not create context for configuration migration.
Operation "migrate-config" failed.
Please help me.

Please stop
The migration guide has step by step instructions, including command line examples, are you using that as your reference?
Your upgrade should be to (at a minimum) DSEE 6.3.1.1.1. Upgrading to 6.0 is upgrading to a release level that has no patches or fixes to the product. There are significant fixes to the migration command line tools. There is a good chance you will run into issues.
You should install and review migration to ODSEE 11.1.1.7.0 (which would effectively be the 7.2 release of the DS).
There is a specific guide for migration and upgrade, which includes migration from DS 5.2 to 11.x
The full documentation collection for 11.1.1.7.0 is here
http://docs.oracle.com/cd/E29127_01/index.htm
The specific migration guide is here
http://docs.oracle.com/cd/E29127_01/doc.111170/e28971/toc.htm
See: Part II Migrating from ODSEE 5.2 to ODSEE 11g Release 1 (11.1.1.7.0)
ODSEE 11.1.1.7.0 can be downloaded from here.
http://www.oracle.com/technetwork/middleware/downloads/oid-11g-161194.html

Solaris 10connectivity to EMC: failed to configure ANY device on FCA port

I'm connecting a E2900 server with a EMC symmetrix storage with fiber channel.
But I'm getting the following errors, and I'm not able to see the external disks. Any help is really appreciated.
bash-3.00# cfgadm -al
c3 fc-fabric connected unconfigured unknown
c3::5006048c52a5b746 unavailable connected unconfigured failed
c4 fc-fabric connected unconfigured unknown
c4::5006048c52a5b749 unavailable connected unconfigured failed
bash-3.00# cfgadm -c configure c3
cfgadm: Library error: report LUNs failed: 5006048c52a5b746
failed to configure ANY device on FCA port
bash-3.00# tail -f /var/adm/messages
Nov 27 16:42:12 cosemm1 scsi: [ID 243001 kern.warning] WARNING: /pseudo/fcp@0 (fcp0):
Nov 27 16:42:12 cosemm1 Unsupported LUN Addressing method 40 in response to REPORT_LUN
bash-3.00#
SO is Solaris 10 and I have installed recommended pathes:
118833-36 SunOS 5.10: Kernel patch
125100-10 SunOS 5.10: Kernel patch
120011-14 SunOS 5.10: Kernel patch
127111-01 SunOS 5.10: Kernel patch
119130-33 SunOS 5.10: Sun Fibre Channel Device Drivers (only necessary for Leadville Stack driver)
125184-04 SunOS 5.10: Sun Fibre Channel Device Drivers.
120222-21 SunOS 5.10: Emulex-Sun LightPulse fibre channel adapter driver v2.20k (only required for Emulex HBAs running Leadville)
125166-06 SunOS 5.10: Qlogic ISP fibre channel device driver v2.22 (only required for Qlogic HBAs running Leadville)
122640-05 SunOS 5.10: zfs genesis patch (require for zfs)
120473-12 SunOS 5.10: lib nss ldap PAM zfs patch (require for zfs)
119090-24 SunOS 5.10: iSCSI device driver and utilities
Also I have modified /etc/system adding those lines:
set ssd:ssd_max_throttle=20
forceload: drv/ssd
bash-3.00# modinfo |grep qlc
66 7ba7e000 ce1f8 282 1 qlc (SunFC Qlogic FCA v20070717-2.22)
bash-3.00# luxadm -e port
/devices/ssm@0,0/pci@18,600000/SUNW,qlc@1/fp@0,0:devctl CONNECTED
/devices/ssm@0,0/pci@19,600000/SUNW,qlc@2/fp@0,0:devctl CONNECTED
bash-3.00# luxadm qlgc
Found Path to 2 FC100/P, ISP2200, ISP23xx Devices
Opening Device: /devices/ssm@0,0/pci@19,600000/SUNW,qlc@2/fp@0,0:devctl
Detected FCode Version: QLA2460 Host Adapter FCode(SPARC): 1.26 05/17/07
Opening Device: /devices/ssm@0,0/pci@18,600000/SUNW,qlc@1/fp@0,0:devctl
Detected FCode Version: QLA2460 Host Adapter FCode(SPARC): 1.26 05/17/07
Complete
bash-3.00# luxadm -e port
/devices/ssm@0,0/pci@18,600000/SUNW,qlc@1/fp@0,0:devctl CONNECTED
/devices/ssm@0,0/pci@19,600000/SUNW,qlc@2/fp@0,0:devctl CONNECTED
bash-3.00# luxadm -e dump_map /devices/ssm@0,0/pci@18,600000/SUNW,qlc@1/fp@0,0:
devctl
Pos Port_ID Hard_Addr Port WWN Node WWN Type
0 610f13 0 5006048c52a5b746 5006048c52a5b746 0x0 (Disk device)
1 617613 0 2100001b320122b7 2000001b320122b7 0x1f (Unknown Type,Host Bus Adapter)
bash-3.00# luxadm -e dump_map /devices/ssm@0,0/pci@19,600000/SUNW,qlc@2/fp@0,0:
devctl
Pos Port_ID Hard_Addr Port WWN Node WWN Type
0 620f13 0 5006048c52a5b749 5006048c52a5b749 0x0 (Disk device)
1 627613 0 2100001b32014eb8 2000001b32014eb8 0x1f (Unknown Type,Host Bus Adapter)

Check the configuration on the EMC side. This error message is the heart of the problem:
"Unsupported LUN Addressing method 40 in response to REPORT_LUN"
A quick Googling leads me to believe this means you're trying to assign a LUN ID higher than 255 to the host.
Best of luck!

Failed to Configured Domain Services for Windows

Hi!
I am installing OES 2 SP3 with DSfW Pattern as a "New Domain Controller in an Existing Domain Services for Windows Domain" with Replication Configuration and Schema Partition.
During the "Perform eDirectory Configuration" at last task "Configure Domain Services for Windows " at 93% we encountered an error: "Failed to configure Domain Services for Windows".
Here's details of error ;
command : perl /opt/novell/xad/sbin/ndsdcinit.pl retry full-replica -d 'vec.apd.com.ph' -l 'ou=OESSystemObjects,dc=vec,dc=apd,dc=com,dc=ph'
-g 'ou=OESSystemObjects,dc=vec,dc=apd,dc=com,dc=ph' -f 'apd.com.ph' -p 'apd.com.ph' -o 192.168.81.92 -t
Could not create gss directory /etc/opt/novell/xad/gss at /opt/novell/xad/sbin/ndsdcinit.pl line 463, line 652
LDAP Based utility [ndsConfigServerContext.sh] to retrieve server context for YaST
DomainName : vec.apd.com.ph
NdsAdminName : CN=Administrator,CN=Users,DC=vec,DC=apd,DC=com,DC= ph
ExistingServerIP : ANDROMEDA.vec.apd.com.ph
ExistingServerPort : 0
Add_DC : true
Returning server context->ou=OESSystemObjects.dc=vec.dc=apd.dc=com.dc=ph
LDAP Based utility [ndsConfigServerContext.sh] to retrieve server context for YaST
DomainName : vec.apd.com.ph
NdsAdminName : CN=Administrator,CN=Users,DC=vec,DC=apd,DC=com,DC= ph
ExistingServerIP : ANDROMEDA.vec.apd.com.ph
ExistingServerPort : 0
Add_DC : true
Returning server context->ou=OESSystemObjects.dc=vec.dc=apd.dc=com.dc=ph
SASL/GSS-SPNEGO authentication started
SASL SSF: 56
SASL installing layers
Failed to fetch dNIPDNSZones from DNS_LOCATOR_OBJECT at /opt/novell/xad/lib64/perl/Install/adc_install.pm line 503
at /opt/novell/xad/lib64/perl/Logger.pm line 119
Logger::_err('Failed to fetch dNIPDNSZones from DNS_LOCATOR_OBJECT at /opt/...') called at /opt/novell/xad/lib64/perl/Logger.pm line 202
Logger::Log(0, 'Failed to fetch dNIPDNSZones from DNS_LOCATOR_OBJECT at /opt/...') at /opt/novell/xad/lib64/perl/Install/adc_install.pm line 532
adc_install::decide_domain_zones() called at /opt/novell/xad/lib64/perl/install/adc_install.pm line 150
adc_install::stage_domain('adc_install=HASH (0X8b9370)') called at /opt/novell/xad/sbin/ndsdcinit.pl line 1383
main::main(62, 'apd.com.ph', 'vvec.apd.com.ph', 'TRUE','ou=OESSystemObjects,dc=vec,dc=apd,dc=com,d c=ph','ADM_PASSWD_DOMAIN','ou=OESSystemObjects,dc= vec,dc=apd,dc=com,dc=ph','replops::DESTROY',
'APD.COM.PH',...) called at /opt/novell/xad/sbin/ndsdcinit.pl line 1301
main::main() called at /opt/novell/xad/sbin/ndsdcinit.pl line 1425
ENV PATH = /opt/novell/xad/sbin:/opt/novell/xad/bin:/opt/novell/xad/share/dcinit:/opt/novell/eDirectory/bin:
LIB=lib64
LD LIBRARY PATH =
/opt/novell/xad/lib64:/opt/novell/xad/lib64/nds-
modules:/opt/novell/eDirectory/lib64:/opt/novell/eDirectory/lib64/nds-modules
SASL PATH = /opt/novell/xad/lib64/sasl2
DCINIT CONFIG: /etc/opt/novell/xad/xad.ini
DOMAIN NAME: vec.apd.com.ph
PARENT NAME: apd.com.ph
FOREST NAME: apd.com.ph
NETBIOS NAME: VEC
Any ideas on this error ?
Regards. Thanks.
denzmo

Thanks for the reply.
I have some followup questions
2. Can you explain the DNS setting in your setup ?
Tree ---> Power--> apd.com.ph -- dlpc.apd.com.ph
-- vec.apd.com.ph -- Andromeda.vec.apd.com.ph (DNS)
-- Pictor.vec.apd.com.ph ( additional domain server ) -> "Failed to configure in DSFW"
1. apd.com.ph, dlpc.apd.com.ph, vec.apd.com.ph are DSfW domains or just DNS domains ?
2. Andromeda.vec.apd.com.ph (DNS) - is this the DC of a DSfW domain ?
3. You are adding the Additional domain controller to the vec.apd.com.ph domain right ?
The
# LDAPCONF=/etc/opt/novell/xad/openldap/ldap.conf /usr/bin/ldapsearch -Y EXTERNAL -s sub -b dc=ph "(objectclass=dniplocator)" dn
Heres the result ;
a.) running the command in the DNS server (child domain) ANDROMEDA;
SASL /EXTERNAL authentication started
SASL username: gidNumber=0+uidNumber=0, cn=peercred,cn=external,cn=auth
SASL SSF: 0
# extended LDIF
# LDAPv3
# base <dc=ph(objectclass=dniplocator) [email protected]> with scope subtree
# filter: (objectclass=*)
# requesting:ALL
# search result
search : 2
result : 32 No such object
text : NDS error : no such entry (-601)
# numResponses :1
This is strange. This ldapsearch is failing to find the locator object in the tree under dc=ph.
- Can you try this same command from your FRD DC too and find the result ?
- Is your server non-name mapped or your adding a DSfW server into an existing eDirectory tree (name mapped) ?
- If it is later can you try the same search with '-b' parameter replaced with container to which FRD is mapped to into the eDirectory Tree.
- Can you tell in your setup where are the locator object present for your first DSfW server which is acting as DNS server ?
- While installing this ADC server, you have given the remote dns server as 192.168.81.92. In the YaST DNS screen did you do retrieve (by clicking 'retrieve' button on the screen ) or you entered those inputs manually ?
- Another follow up question. The locator context provided to the ndsdcinit command in your first post, is 'ou=OESSystemObjects,dc=vec,dc=apd,dc=com,dc=ph'. Can you confirm your locator
context is correct ?
[/QUOTE]
b.) running the command in the ADC PICTOR;
SASL /EXTERNAL authentication started
ldap_sasl_interactive_bind_s: invalid credentials (49)
[/QUOTE]
This is expected as the server is not completely configured.
Please get it touch with our NTS for passing on more information about this setup.

Shared services registration failing during configuration of EPMA 11.1.1.3

Hi All, I am currently woking on essbase and no knowledge of planning so trying to upgrade my knowledge. I installed epma 11.1.1.3 on windows 2003 VMware work station as I have windows 7 laptop. installed oracle 10g created a database (epma) created user/schemas (sm,ms) trying to configure foundation services, essbase, planning and reporting and analysis. the configure database and register with shared services failed. Am I doing anything wrong. I followed some documents for configuration which are well documented with screen shots still do not know what wrong I am doing. Please advice on how to avoid these failures.
Below is the validation results of the configuration.
Thanks in advance.
Srinivas
Oracle EPM System
Diagnostic Reports
Generated on 3/3/12 11:05 PM
Validation run on srinivas
Validation tool info: 11.1.1.3.0 drop 9-0 build 3129 on 07/16/2009 01:24 PM
OS name: Windows 2003
OS version: 5.2
Test Status Service Test Description Duration
Hyperion Foundation
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
relationalStorageConfiguration: Configuration Failed
Recommended Action: Try to configure mentioned tasks 0 s
FAILED OPN: OpenLDAP Check if global roles number no less than 16
Error: $item.exception.localizedMessage
Recommended Action: 0 s
FAILED OPN: OpenLDAP Connection to OpenLDAP
Error: srinivas:28089
Recommended Action: Start open LDAP 1 s
ERP Integrator
PASSED CFG: Configuration WARNING: Some of suggested configuration tasks not completed yet.
Check whether all configuration tasks have been completed 0 s
Essbase / Client
PASSED WR: Windows Registry Check if EQD excel addin registered for Essbase Client 0 s
Essbase / Essbase
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Recommended Action: Try to configure mentioned tasks 0 s
FAILED EAS: Essbase server Essbase Server startup check using Maxl command
Error: Result: Unable to connect Essbase Server using MAXL command. Please check that essbase server is running.
Recommended Action: Check Essbase Server is started. 0 s
FAILED SVR: Essbase Java API Launch external checker with next command: C:\Hyperion\common\validation\9.5.0.0\launchEssbaseJavaAPI.bat EssbaseJAPIConnect admin ****** srinivas http://srinivas:13080/aps/JAPI
Error: Result: -1; Error message: Cannot connect to olap service. Cannot connect to Essbase Server at srinivas. Timed out waiting to connect to the Essbase Agent/Server using TCP/IP. Check your network connections.
Recommended Action: Make sure external checker is working. 7 s
Essbase / Essbase Administration Services
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Some of suggested configuration tasks not completed yet.
Recommended Action: Try to configure mentioned tasks 0 s
Essbase / Provider Services
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Recommended Action: Try to configure mentioned tasks 0 s
Essbase / Smart Search
PASSED CFG: Configuration Check whether all configuration tasks have been completed 0 s
Essbase / Studio
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Some of suggested configuration tasks not completed yet.
Recommended Action: Try to configure mentioned tasks 0 s
Financial Data Quality Management
PASSED CFG: Configuration WARNING: Some of suggested configuration tasks not completed yet.
Check whether all configuration tasks have been completed 0 s
Foundation / Calculation Manager
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Some of suggested configuration tasks not completed yet.
Recommended Action: Try to configure mentioned tasks 0 s
Foundation / Performance Management Architect
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Some of suggested configuration tasks not completed yet.
Recommended Action: Try to configure mentioned tasks 0 s
Foundation / Workspace
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
Some of suggested configuration tasks not completed yet.
Recommended Action: Try to configure mentioned tasks 0 s
PASSED HTTP: Http Is file [C:\Hyperion\common\httpServers\Apache\2.0.59\bin\installhyperionapacheservice.err] empty 0 s
PASSED HTTP: Http Check string [LoadModule jk_module modules/mod_jk] in file[C:\Hyperion\common\httpServers\Apache\2.0.59\conf\httpd.conf] 0 s
PASSED REG: Registry All links are present in registry. 0 s
Performance Scorecard
PASSED CFG: Configuration WARNING: Some of suggested configuration tasks not completed yet.
Check whether all configuration tasks have been completed 0 s
Planning
FAILED CFG: Configuration Check whether all configuration tasks have been completed
Error: Next tasks are not configured:
hubRegistration: Configuration Failed
applicationServerDeployment: Configuration Failed
Some of suggested configuration tasks not completed yet.
Recommended Action: Try to configure mentioned tasks 0 s
Profitability and Cost Management
PASSED CFG: Configuration WARNING: Some of suggested configuration tasks not completed yet.
Check whether all configuration tasks have been completed 0 s
Strategic Finance
PASSED CFG: Configuration WARNING: Some of suggested configuration tasks not completed yet.
Check whether all configuration tasks have been completed 0 s
Financial Management
PASSED CFG: Configuration WARNING: Some of suggested configuration tasks not completed yet.
Check whether all configuration tasks have been completed 0 s
Reporting and Analysis
PASSED CFG: Configuration Check whether all configuration tasks have been completed 0 s
FAILED SVR: Essbase Java API Launch external checker with next command: C:\Hyperion\common\validation\9.5.0.0\launchEssbaseJavaAPI.bat EssbaseJAPIConnect admin ****** srinivas http://srinivas:13080/aps/JAPI
Error: Result: -1; Error message: Cannot connect to olap service. Cannot connect to Essbase Server at srinivas. Timed out waiting to connect to the Essbase Agent/Server using TCP/IP. Check your network connections.
Recommended Action: Make sure external checker is working. 3 s
Test start time: 11:05:18 PM
Test end time: 11:05:40 PM
Total test duration: 21 s

Thanks to all for your suggestions. Below is the log I have checked at the first instance of failure after that resitering with shared services failed for every product. Is this something to do withis database connection? Please advise on how to resolve it.
Mar 6, 2012 10:48:54 AM org.apache.coyote.http11.Http11BaseProtocol init
INFO: Initializing Coyote HTTP/1.1 on http-28080
Mar 6, 2012 10:48:54 AM org.apache.catalina.startup.Catalina load
INFO: Initialization processed in 3531 ms
Mar 6, 2012 10:48:54 AM org.apache.catalina.core.StandardService start
INFO: Starting service Catalina
Mar 6, 2012 10:48:54 AM org.apache.catalina.core.StandardEngine start
INFO: Starting Servlet Engine: Hyperion Embedded Java Container/1.0.0
Mar 6, 2012 10:48:55 AM org.apache.catalina.core.StandardHost start
INFO: XML validation disabled
log dir isC:\Hyperion\logs\SharedServices9
urlManifest jar:file:/C:/Hyperion/deployments/Tomcat5/SharedServices9/webapps/interop/WEB-INF/lib/interop-mmc.jar!/META-INF/MANIFEST.MF
Shared Services Version: 11.1.1.3.24
Shared Services Drop Number: 6
Attempting to verify the database configuration
Attempting to verify the database configuration
Database configuration test passed.
06 Mar 2012 10:50:27 - org.apache.slide.common.Domain - INFO - Auto-Initializing Domain
06 Mar 2012 10:50:27 - org.apache.slide.common.Domain - INFO - Configuration found in classpath
06 Mar 2012 10:50:27 - org.apache.slide.common.Domain - INFO - Domain configuration : {org.apache.slide.lock=true, org.apache.slide.versioncontrol=true, org.apache.slide.debug=false, org.apache.slide.search=true, org.apache.slide.security=true, org.apache.slide.urlEncoding=UTF-8, org.apache.slide.domain=C:/Hyperion/deployments/Tomcat5/SharedServices9/config/Domain.xml}
configURL: file:///C:/Hyperion/deployments/Tomcat5/SharedServices9/config/CSS.xml
Done initialize: null
06 Mar 2012 10:50:35 - org.apache.slide.common.Domain - ERROR - Unable to migrate hub groups to css
connection pool registered:dbcpPool-org.apache.commons.pool.impl.GenericObjectPool@9b2a51
connection pool registered:dbcpPool-org.apache.commons.pool.impl.GenericObjectPool@2431b9
CMSOfflineServlet Initialized
2012-03-06 10:50:42,328 [main] ERROR com.hyperion.ces.utils.db.DBRegistryManager.<init>(DBRegistryManager.java:74) - Failed to get Registry Instance! DB Connection is not existing for SharedService. Check registry for SharedService.
2012-03-06 10:50:42,328 [main] ERROR com.hyperion.workflow.engine.server.repository.WfDomainStoreRdbms.initialize(WfDomainStoreRdbms.java:167) - java.lang.Exception: Failed to get Registry Instance! DB Connection is not existing for SharedService. Check registry for SharedService.
2012-03-06 10:50:42,328 [main] ERROR com.hyperion.workflow.engine.server.repository.WfDomainStoreRdbms.initialize(WfDomainStoreRdbms.java:167) - java.lang.Exception: Failed to get Registry Instance! DB Connection is not existing for SharedService. Check registry for SharedService.
2012-03-06 10:50:42,343 [main] ERROR com.hyperion.cesdsf.server.framework.DsfServer.init(DsfServer.java:51) - com.hyperion.workflow.engine.api.base.WfException: Failed to get Registry Instance! DB Connection is not existing for SharedService. Check registry for SharedService.
2012-03-06 10:50:42,390 [main] ERROR com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.wfx(WorkflowEngineServiceLocal.java:2584) - Cannot getUsers.
java.lang.NullPointerException
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.getUsers(WorkflowEngineServiceLocal.java:780)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.getUserFromCES(WorkflowEngineServiceLocal.java:536)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.systemSignOn(WorkflowEngineServiceLocal.java:341)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.signOn(WorkflowEngineServiceLocal.java:387)
     at com.hyperion.workflow.engine.api.base.WorkflowEngine.signOn(WorkflowEngine.java:80)
     at com.hyperion.workflow.engine.api.base.WorkflowEngine.trustedSignOn(WorkflowEngine.java:94)
     at com.hyperion.workflow.engine.api.base.WorkflowEngine.trustedSignOn(WorkflowEngine.java:90)
     at com.hyperion.workflow.agent.TaskReceiver.init(TaskReceiver.java:34)
     at javax.servlet.GenericServlet.init(GenericServlet.java:211)
     at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1105)
     at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:932)
     at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:3917)
     at org.apache.catalina.core.StandardContext.start(StandardContext.java:4201)
     at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:759)
     at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:739)
     at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:524)
     at org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:904)
     at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:867)
     at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:474)
     at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1122)
     at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:310)
     at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
     at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1021)
     at org.apache.catalina.core.StandardHost.start(StandardHost.java:718)
     at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1013)
     at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:442)
     at org.apache.catalina.core.StandardService.start(StandardService.java:450)
     at org.apache.catalina.core.StandardServer.start(StandardServer.java:709)
     at org.apache.catalina.startup.Catalina.start(Catalina.java:551)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:294)
     at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432)
2012-03-06 10:50:42,390 [main] ERROR com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.wfx(WorkflowEngineServiceLocal.java:2584) - Cannot signOn.
com.hyperion.workflow.engine.api.base.WfException: Cannot getUsers.null
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.wfx(WorkflowEngineServiceLocal.java:2593)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.getUsers(WorkflowEngineServiceLocal.java:782)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.getUserFromCES(WorkflowEngineServiceLocal.java:536)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.systemSignOn(WorkflowEngineServiceLocal.java:341)
     at com.hyperion.workflow.engine.server.framework.WorkflowEngineServiceLocal.signOn(WorkflowEngineServiceLocal.java:387)
     at com.hyperion.workflow.engine.api.base.WorkflowEngine.signOn(WorkflowEngine.java:80)
     at com.hyperion.workflow.engine.api.base.WorkflowEngine.trustedSignOn(WorkflowEngine.java:94)
     at com.hyperion.workflow.engine.api.base.WorkflowEngine.trustedSignOn(WorkflowEngine.java:90)
     at com.hyperion.workflow.agent.TaskReceiver.init(TaskReceiver.java:34)
     at javax.servlet.GenericServlet.init(GenericServlet.java:211)
     at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1105)
     at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:932)
     at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:3917)
     at org.apache.catalina.core.StandardContext.start(StandardContext.java:4201)
     at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:759)
     at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:739)
     at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:524)
     at org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:904)
     at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:867)
     at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:474)
     at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1122)
     at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:310)
     at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
     at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1021)
     at org.apache.catalina.core.StandardHost.start(StandardHost.java:718)
     at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1013)
     at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:442)
     at org.apache.catalina.core.StandardService.start(StandardService.java:450)
     at org.apache.catalina.core.StandardServer.start(StandardServer.java:709)
     at org.apache.catalina.startup.Catalina.start(Catalina.java:551)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:294)
     at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432)
2012-03-06 10:50:42,390 [main] ERROR com.hyperion.workflow.agent.TaskReceiver.init(TaskReceiver.java:39) - Error Getting the workflowEngine Cannot signOn.Cannot getUsers.null
Mar 6, 2012 10:50:42 AM org.apache.coyote.http11.Http11BaseProtocol start
INFO: Starting Coyote HTTP/1.1 on http-28080
Mar 6, 2012 10:50:43 AM org.apache.jk.common.ChannelSocket init
INFO: JK: ajp13 listening on /0.0.0.0:28082
Mar 6, 2012 10:50:43 AM org.apache.jk.server.JkMain start
INFO: Jk running ID=0 time=0/125 config=null
Mar 6, 2012 10:50:43 AM org.apache.catalina.startup.Catalina start
INFO: Server startup in 108250 ms

Error while starting Sun Directory Server 6.0

Hello,
I recently migrated from Sun Directory Server 5.2 to Sun Directory Server 6.0. I am trying to start the server. I get the following error
bash-3.2# ./start-slapd
Enter PIN for Internal (Software) Token:
Enter PIN for Internal (Software) Token:
[29/Mar/2013:11:39:47 -0400] - ERROR<4780> - SSL - conn=-1 op=-1 msgId=-1 - Security Initialization: Unable to authenticate to slot for cipher family cn=RSA,cn=encryption,cn=config ( error -8177 - The security password entered is incorrect. )
Server not running!! Failed to start ns-slapd process.
Please help me here. I dont know the PIN for Internal (Software) Token. Please help.

Hi,
it seems you're trying to start an instance which is configured for SSL, so at startup time, it's asking the default keystore password to access the internal security certificate/device.
You should know that password.
Thanks,
Marco

Sun Directory Server crashed

Hi ,
i dont know where to post this question because i really dont understand myself the error
i downloaded Sun Directory Server 5.2 and installed in both my Solaris
one of them is Solaris 8 ( Production Server)
the other one is Solaris 10 ( Another Prod Server )
i did master-master ldap replication but it works okay for quite sometimes ( few days )
only today i found today that one of the directory server is crashing and what i found in the log is
Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfe000000       /usr/lib/libpthread.so.1
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfdfd0000       /usr/lib/libCrun.so.1
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfdfb0000       /usr/lib/libmp.so.2
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfdf90000       /usr/lib/libaio.so.1
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfdf40000       /usr/lib/libresolv.so.2
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfede0000       /usr/platform/SUNW,Sun-Fire-480R/lib/libc_psr.so.1
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfded0000       /usr/lib/nss_files.so.1
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfdea0000       /var/Sun/mps/bin/https/lib/libAdmservPlugin.so
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfde70000       /var/Sun/mps/lib/libadmsslutil52.so
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): 0xfde40000       /v[19/Dec/2006:17:17:10] config (10607): # An error report file has been saved as hs_err_pid10607.log.
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): # Please refer to the file for further information.
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:10] config (10607): #
[19/Dec/2006:17:17:10] config (10607):
[19/Dec/2006:17:17:14] info (10610): Installing a new configuration
[19/Dec/2006:17:17:14] info (10610): [LS ls1] http://ils1app3.tpcils.com, port 390 ready to accept requests
[19/Dec/2006:17:17:14] info (10610): A new configuration was successfully installed
[19/Dec/2006:17:17:14] info (10610): Using the Java HotSpot(TM) Server VM v1.4.1_01 from Sun Microsystems Inc.
[19/Dec/2006:17:17:14] info (10610): Java VM classpath: /var/Sun/mps/bin/https/jar/NSServletLayer.jar:/var/Sun/mps/bin/https/jar/NSJavaUtil.jar:/var/Sun/mps/bin/https/jar/NSJavaMiscUtil.jar:/var/Sun/mps/bin/https/jar/servlet.jar:/var/Sun/mps/bin/https/jar/servlet-2.3-filters-api.jar:/var/Sun/mps/bin/https/jar/jspengine.jar:/var/Sun/mps/java/ldapjdk.jar:/var/Sun/mps/java/jss311.jar:
[19/Dec/2006:17:17:14] info (10610): Loading IWSSessionManager by default.
[19/Dec/2006:17:17:14] info (10610): IWSSessionManager: Maximum number of sessions is 1000
[19/Dec/2006:17:17:14] catastrophe (10610): Server crash detected (signal SIGSEGV)
[19/Dec/2006:17:17:14] info (10610): Crash occurred in function PR_Write from module /var/Sun/mps/lib/libnspr4.so
[19/Dec/2006:17:17:14] config (10610):
[19/Dec/2006:17:17:14] config (10610): An unexpected exception has been detected in native code outside the VM.
[19/Dec/2006:17:17:14] config (10610):
[19/Dec/2006:17:17:14] config (10610): Unexpected Signal : 11 occurred at PC=0xFEEBB384
[19/Dec/2006:17:17:14] config (10610):
[19/Dec/2006:17:17:14] config (10610): Function=
[19/Dec/2006:17:17:14] config (10610): PR_Write+0x0
[19/Dec/2006:17:17:14] config (10610):
[19/Dec/2006:17:17:14] config (10610): Library=/var/Sun/mps/lib/libnspr4.so
[19/Dec/2006:17:17:14] config (10610):
[19/Dec/2006:17:17:14] config (10610):
[19/Dec/2006:17:17:14] config (10610): Cannot obtain thread information
[19/Dec/2006:17:17:14] config (10610):This is happening is the Solaris 8
while in the Solaris 10 ( new box ) i cant see there is an error being logged.
Any help/idea would be highly appreciated.
Thanks

Could it be because of too many load calls to LDAP server?
or different java version ??

Sun Directory Server and OID Synchronization

I'm having a problem with synchronizing OID with our existing Sun Directory Server. This is a one way synchronization, using Sun DS as the source, and OID as the destination. I've successfully installed OID with SSL enabled (this is part of an Oracle Portal installation), and followed what docs I could find. I created an integration profile based off the iPlanet Import profile, and imported a custom mapping profile based off a differing DIT naming convention (o=company.com vs dc=company,dc=com). I have applied an ACI that should allow the synchronization profile user to update entries on the OID side, and a user in Sun DS that has access to the appropriate areas on that side. I was able to successfully bootstrap and import all of our users, and it was also able modify the last changelog number.
Having said all of that, incremental changes aren't propagating to OID. I'm not sure where to look or what steps to take to troubleshoot this, as I'm brand new to OID. There's an agent execution command that is blank in the integration profile, but according to what I've found that's the default and is acceptable.
Am I missing a step here? According to the docs, all I need to do is enable the profile, and away it goes.
One last thing I had to do to overcome an issue with the changelog number not updating was adding our internal root ca's certificate to the local JVM's cacerts file. I accomplished this with the keytool command, and it seemed to work fine. I'm unsure if it's the SSL config that is hosed and is causing this, or if it's a configuration parameter I'm missing.. but I don't have anywhere to start as far as troubleshooting is concerned.

On your integration profile, did you set the debug level to 63? You should have a _____.aud and a _____.trc file in your $ORACLE_HOME/ldap/odi/log directory that will provide more info. Did you start your DIP server (odisrv) with the oidctl command?
You might also look at downloading the "diptester" utility for troubleshooting OID synchronization issues.
- Brian

Sun Directory Server as Primary Domain Controller.

Hello,
I've recently installed Sun Directory Server, Access Manager, and DSEE Identity Manager, on CentOS 5.2, with success, but my question is:
Can I use this directory as a primary domain controller for my network, I want to know if it is possible to integrate this directory in the same way that Active Directory works, I mean connecting Windows computers to the DC with some kind of connector (because windows won't connect to another directory than AD natively). I know that there are some MSGina replacements, like pgina, but I'm looking for some serious solution, especially for computers running Windows Vista.
Thanks in advance.

Hi,
thanks for your answer, but.. there is a way to configure the DSEE to be like a native 2000/2003 Active Directory?, I mean, connecting directly to the DSEE without using Samba, I know that is possible to use that solution, but you lose some functionality.
I've been trying to do some research about the topic, like modifying the bind DNS to act like a AD DNS, and it works at a certain grade, windows xp detects the SVR records but when it tries to connect to the directory it fails giving me an error telling that the DC isn't available. It will be great to make such environment, Windows XP / Vista connected to DSEE without third party software.
Any comment would be greatly appreciated.
Thanks.

Sun Directory Server giving errors during installion

Hi,
Iam new to the LDAP world.
Iam trying to install, a Sun Directory Server on windows platform.
Iam using the zipped package of the installation.
While installing , the error i encounterd is as follows:
Error: dsccsetup failed.
Please help in installing the server.
Thanks

Hi.
We need more info to help you. Which version are you trying to install (6.0 / 6.1 / 6.2) ? Which command are you running ? Can you give all the output not only the error ?
Regards,
Carole.

Question on Sun Directory Proxy Server 5.2.4

Hello Guys,
Is it a good idea to have DPS and DS on the same server? Did anyone run into any issues? We have four Sun DS servers four-way master replicated on Windows 2003 std. We are in the process of evaluating Sun Directory Proxy server to resolve single point of failure between our custom apps and LDAP servers. I would appreciate any insights on Sun DPS implementation on Windows 2003 Std.
Thanks

While it might not be too good an idea (you essentially want the DPS for load balancing AND failover, right? So why risk putting it on the same machine ;) ), it does work.
I recently implemented DPS on Solaris, and things generally work fine. (The command line interface isn't too reliable though). If you are thinking of routing all your traffic over SSL (ie, Client---ssl--->DPS---ssl--->DS), make sure you apply the latest patch available for the DPS. The dps524.jar that comes with the default installer isn't what it used to be (JES 2005Q4), and will give you issues when configuring SSL for DPS. Apart from that, things are more or less a breeze.

Failed to configured referral on LDAP Sun Directory

Similar Messages

Maybe you are looking for