HELP! LDAP server problem

I'm using IDS 5.1 in our system, yesterday it had problems, other servers connected it's port 389 said connection time out. The network was ok, the service was ok, but users could not authenticated. In the ldap server files in the directory changelogdb had been held for days, the errors log said:
[11/Jan/2006:10:49:39 +0800] NSMMReplicationPlugin - agmt_delete: begin
[11/Jan/2006:10:49:48 +0800] NSMMReplicationPlugin - agmt_delete: begin
[11/Jan/2006:10:53:55 +0800] NSMMReplicationPlugin - _cl5GetNextEntry: failed to get entry;
db error - 12 Not enough space
[11/Jan/2006:10:53:55 +0800] NSMMReplicationPlugin - _cl5TrimFile: failed to commit transac
tion; db error - -30989 DB_RUNRECOVERY: Fatal error, run database recovery
[11/Jan/2006:10:53:56 +0800] NSMMReplicationPlugin - _cl5TrimFile: failed to begin transact
ion; db error - -30989 DB_RUNRECOVERY: Fatal error, run database recovery
[11/Jan/2006:10:53:56 +0800] NSMMReplicationPlugin - _cl5TrimFile: failed to begin transact
ion; db error - -30989 DB_RUNRECOVERY: Fatal error, run database recovery
Does anyone know what happened and what might cause this problem?
Thanks

As indicated by the log:
11/Jan/2006:10:53:55 +0800] NSMMReplicationPlugin - _cl5GetNextEntry: failed to get entry;
db error - 12 Not enough space
So check out your disk space first.

Similar Messages

  • Install ldap server problems

    ok, maybe here its the right place to post my question:
    i am trying to install sun one directory server, and othe ldaps as well, on my windows xp home edition notebook that uses a dsl connection, with no domain name, and i am having trouble doing so.
    i installed the same server (and other ldaps) on my windows 2000 with no problem, but this 2000 machine is on a domain network.
    maybe the domain is what is required. i am not sure though. i am new on ldap, please help.

    Typically, installing an ldap server will require a fully-qualified domain name and a static IP address.
    You are probably using DHCP to obtain an IP address since you mention that you are at home and on DSL.
    You should refer to the installation guide for Directory Server. Docs can be found at docs.sun.com, search on the product name, titles only and you should be able to find the right one for the version you are using.
    If you are mainly doing this to evaluate tools and servers, you might want to try the new version of Sun Java Studio Enterprise (6 2004Q1), which bundles the directory server (and other useful Sun Java servers). This product will be released at the end of this month.
    Watch this web site for an announcement soon (~ 3-29-04) http://wwws.sun.com/software/product_categories/application_development.html
    The full product name is Sun Java Studio Enterprise 6 2004Q1 (although Windows XP Home edition is not
    a supported platform). Typically, you would probably find Win XP Pro to have more of the networking features necessary for installing and using servers.

  • Problem instaliing sun one LDAP server on windows server 2008 r2

    Hi all ,
    I am trying to install Ldap server (Sun ONE Directory Server) on windows server 2008
    I am using apache-tomcat-7.0.28 and java jdk1.7.0_05
    I am following this manual for installing :
    https://blogs.oracle.com/marginNotes/entry/installing_directory_server_enterprise_edition1
    I have a problem with the cacao agent and how to install it .
    I've got this error message :
    c:\Program Files\Sun\dsee7\bin>dsccsetup cacao-reg
    Configuring Cacao...
    ## Failed to run "c:/Program Files/Sun/dsee7/ext/cacao_2/bin/cacaoadm.bat" set-
    aram "jdmk-home=c:/Program Files/Sun/dsee7/lib/private"
    #### Cannot create service for instance: [cacao.instance.name].
    #### Cannot perform firstime inialisation and configuration.
    ## Exit code is 1
    Failed to configure Cacao.
    I stuck and with no other solutions . I hope if you could to help with this issue .
    i will glad to know if there is any other ways to install this specific Ldap server ,
    Thanks,
    Alon

    You most likely skipped the step of starting the installed server prior to trying to access admin URL. Please check this document:
    http://docs.sun.com/source/817-1830-10/win.html
    Relevant section is:
    You can start the Administration Server in either of the following ways:
    # Select Start Menu -> Programs -> Sun ONE Web Server, and choose Start Web Server Administration Server.
    # From the Control Panel�s Services item.
    HTH...

  • Authentication problem by external ldap server for WLS 7.0

    Hi all,
    I have configured iPlanet directory Server to serve as authentication security
    provider for WLS 7.0.While doing so I have created a Test security realm and made
    it as default.I have also configured the other default settings for the remaining
    security providers for the realm.
    Now, while I start the WLS with the default username and password, boot-error
    comes as given below. As a matter of fact I have also created groups with relevant
    username and pwd in the ldap server as specified bu the Bea documentation.
    I have tried to remove the problem since last 4 days but all in fiasco.
    If anybody has any pointer to the problem - it will be a great help.
    The error :
    * To start WebLogic Server, use a username and *
    * password assigned to an admin-level user. For *
    * server administration, use the WebLogic Server *
    * console at http://[hostname]:[port]/console *
    D:\bea\weblogic700\samples\server\config\petstore>"D:\bea\jdk131_03\bin\java"
    -h
    otspot -Xms32m -Xmx200m -Dpet.mode= - Dweblogic.management.discover=false -Dweblo
    gic.Name=petstoreServer -Dbea.home="D:\bea" -Dweblogic.management.username=weblo
    gic -Dweblogic.management.password=weblogic -Dweblogic.ProductionModeEnabled=tru
    e -Djava.security.manager -Djava.security.policy=="D:\bea\weblogic700\server\lib
    \weblogic.policy" weblogic.Server
    Starting WebLogic Server...
    <Nov 19, 2002 10:08:04 AM IST> <Notice> <Management> <140005> <Loading configura
    tion D:\bea\weblogic700\samples\server\config\petstore\.\config.xml>
    <Nov 19, 2002 10:08:21 AM IST> <Notice> <Security> <090082> <Security initializi
    ng using realm RitTestRealm.>
    <Nov 19, 2002 10:08:22 AM IST> <Critical> <WebLogicServer> <000364> <Server fail
    ed during initialization. Exception:java.lang.SecurityException: User weblogic
    i
    s not permitted to boot the server
    java.lang.SecurityException: User weblogic is not permitted to boot the server
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1076)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1116)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:703)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:588)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:276)
    at weblogic.Server.main(Server.java:31)
    >
    Regards,
    Ritwik

    Thanks Vijay - it has worked by creating the Administrator group in LDAP but Weblogic
    documentation also states the creation of any group in Ldap server with the boot
    username and pwd and then adding the group in the admin role of WLS7.0 - but this
    did not work.
    If there is any info regarding the same - pl. do let me know
    Regards,
    Ritwik
    "Vijay" <[email protected]> wrote:
    >
    Ritwik,
    I think WebLogic 7 requires a group called "Administrators" in the LDAP
    server
    and requires an user to be added to that group. I have this working in
    one of
    my projects. The group really doesnt need to be an LDAP administrative
    group.
    Can you provide any additional information. I might be able to help since
    I got
    this working only a coupla days back.
    Vijay
    "Ritwik Batabyal" <[email protected]> wrote:
    Hi all,
    I have configured iPlanet directory Server to serve as authentication
    security
    provider for WLS 7.0.While doing so I have created a Test security realm
    and made
    it as default.I have also configured the other default settings forthe
    remaining
    security providers for the realm.
    Now, while I start the WLS with the default username and password, boot-error
    comes as given below. As a matter of fact I have also created groups
    with relevant
    username and pwd in the ldap server as specified bu the Bea documentation.
    I have tried to remove the problem since last 4 days but all in fiasco.
    If anybody has any pointer to the problem - it will be a great help.
    The error :
    * To start WebLogic Server, use a username and *
    * password assigned to an admin-level user. For *
    * server administration, use the WebLogic Server *
    * console at http://[hostname]:[port]/console *
    D:\bea\weblogic700\samples\server\config\petstore>"D:\bea\jdk131_03\bin\java"
    -h
    otspot -Xms32m -Xmx200m -Dpet.mode= - Dweblogic.management.discover=false
    -Dweblo
    gic.Name=petstoreServer -Dbea.home="D:\bea" -Dweblogic.management.username=weblo
    gic -Dweblogic.management.password=weblogic -Dweblogic.ProductionModeEnabled=tru
    e -Djava.security.manager -Djava.security.policy=="D:\bea\weblogic700\server\lib
    \weblogic.policy" weblogic.Server
    Starting WebLogic Server...
    <Nov 19, 2002 10:08:04 AM IST> <Notice> <Management> <140005> <Loading
    configura
    tion D:\bea\weblogic700\samples\server\config\petstore\.\config.xml>
    <Nov 19, 2002 10:08:21 AM IST> <Notice> <Security> <090082> <Security
    initializi
    ng using realm RitTestRealm.>
    <Nov 19, 2002 10:08:22 AM IST> <Critical> <WebLogicServer> <000364><Server
    fail
    ed during initialization. Exception:java.lang.SecurityException: User
    weblogic
    i
    s not permitted to boot the server
    java.lang.SecurityException: User weblogic is not permitted to bootthe
    server
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1076)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1116)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:703)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:588)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:276)
    at weblogic.Server.main(Server.java:31)
    >
    Regards,
    Ritwik

  • Crystal Reports XI R2 Server problem when trying to load groups from LDAP

    Hi,
    I'm using Crystal Reports XI R2 SP4 on RedHat Linux. My users are being authorized through LDAP (OID). My problem is that after removing all groups (right now no groups/users are visible in CMC) in CMC Authentication tool and then trying to add them again I'm receiving following error:
    "LDAP: Failed to commit objects to server : Duplicate object name in the same folder."
    I've checked connectivity to LDAP server and it's ok. Could it be connected to CMS problems/corruption? Any help/suggestions would be appreciated.
    Regards,
    Marcin

    The only personal folders visible from under Admin panel are for users Administrator and Guest. I've tried to query CMS tables but these store entries not in plain text so I cannot identify entries connected to personal folders. I have also tried to do this via Query Repository tool but all returned entries were ok.
    I have also noticed that when trying to load group from LDAP after it returns error "LDAP: Failed to commit objects to server : Duplicate object name in the same folder." entry for this group is created in CMS table. Also this group is then visible in admin Groups panel. No users are created with the group and when I'm trying to list users belonging to added group it returns "internal secLDAP security plug-in error" but without any other suggestion what went wrong.

  • Help on ldapsearch: ldap_search: Can't connect to LDAP server  -- No error

    Hi,
    I just want to do a basic search
    ldapsearch -h "xxx" -b "dc=yyy.com" -s sub "objectclass=*"
    Here is what I got:
    ldap_search: Can't connect to the LDAP server -- No error
    Please help
    Thanks,
    Lynne

    Since you havent specified the -p (port) option, the default is taken to be 389. You might want to check that first.
    If thats fine, try to ping the host you are trying to access.
    One of the above shd solve your problem.

  • SunOne 5.2 LDAP server / Tivoli WebSEAL 5.1 problems

    Does anyone have experience installing Tivoli WebSEAL against the SunOne LDAP server?
    I've noticed that, upon attempting an install, I get an "unexpected error" from Tivoli.
    Also, the 7 ACIs that the install creates are destroyed when I restart the LDAP server, even though the install suffix "secAuthority=Default" remains.
    IBM Tech Support directed me to ask Sun, so I'm wondering if I have something set up wrong in the LDAP server, maybe the wrong plug-in enabled or something?

    Hi Samuel,
    I faced quite a smilar problem when I was installing Sunone Dir. server 5.2 on my solaris system, which already had 5.1 software.
    Had posted this problem in the list earlier.
    Discussion pointed that the LD_LIBRARY_PATH variable needed to be set to point to the new libldap50.so directory(which us serverroot/lib).
    I copied all the *ldap50.so files in serverroot/lib to the my standard lib directory(/usr/lib) and it worked for me.
    Hope this helps.
    Cheers!
    Vivek

  • Need help setting up LDAP server for Address Book

    I've set up Panther servers before for AFP which is pretty simple but now the office I work at wants me to setup an LDAP server so they can share the same contact information, probably about 2,000+ entries. I'm guessing that this will have to be entered in the LDAP server entry by entry.
    I need to know how to setup the server and what settings need to be on the clients' computers, such as in Address Book.
    The server is an older G4 tower and I've got 8 computers hooked up to it on a simple network. I don't think I'll need to make the LDAP server accessible from outside the network but it's something I'll have to worry about for the future.
    Thanks for any help you can offer.

    bump

  • Problem with deleting object in LDAP server

    Hi,
    I am writing a Java Ldap client which performs object search/deletion/addition/modification.
    Now I can search the object via DN using the client program.
    When I try to delete, the program goes through without any exception. But the object
    still exists in the Ldap server.
    Did I miss anything in my program?
    BTW, I can use the same uid/passwd to delete the user from the Netscape Ldap console.
    But not from the client program.
    Here is the short program:
    try {
    Hashtable env = new Hashtable();
    env.put(Context.INITIAL_CONTEXT_FACTORY,
    "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL, "ldap://localhost:389");
    env.put(Context.SECURITY_AUTHENTICATION, "simple");
    env.put(Context.SECURITY_PRINCIPAL, "uid=sysadmin, ou=Directory Administrators,
    o=abc.com");
    env.put(Context.SECURITY_CREDENTIALS, "sysadmin");
    DirContext ctx = new InitialDirContext(env);
    ctx.destroySubcontext("userId=steve, groupId=client, o=abc.com");
    System.out.println("Deletion successful");
    } catch (Exception e) {
    e.printStackTrace();
    System.exit(1);

    Use FM
    EPS_DELETE_FILE or CONVT_DELETE_FILES
    to delete file or you can use
    DELETE DATASET
    statement.
    rgds,
    TM.
    Please mark points if helpful.

  • App Server 8.0 LDAP SSL Problems

    Hello,
    I have been able to get the following java code to connect to an LDAP server to work in a servlet (within a j2ee-module) under the Sun J2EE application server 8.0 when I am connecting to a non-ssl LDAP server:
    LDAPConnection conn = new LDAPConnection();
    conn.connect(ldap_host, Integer.parseInt(ldap_port));
    StringBuffer sb = new StringBuffer("uid=");
    sb.append(cuid).append(",").append(ldap_base);
    String dn = sb.toString();
    conn.authenticate(3, dn, password);
    I have been having a bear of the time implementing the same thing but with SSL by changing the host and port to a SSL LDAP instance and substituting the following code:
    LDAPConnection conn new LDAPConnection();
    JSSESocketFactory jssf = new netscape.ldap.factory.JSSESocketFactory(null);
    conn = new LDAPConnection(jssf);
    I have used the following command to insert the cert from the LDAP server into the keystore:
    keytool -import -trustcacerts -alias <ca-cert-alias> -file <cert>
    I have also tried to inject the cert into the cacerts file found under the SUNWappserver/domains/domain1/config/cacerts.jks file directly using keytool.
    No matter what I do, when the SSL version of the code is executed I get the following exception:
    [#|2004-07-14T13:59:40.372-0400|INFO|sun-appserver-pe8.0.0_01|javax.enterprise.system.stream.out|_ThreadID=12;|
    DEBUG Wed Jul 14 13:59:40 EDT 2004: <class removed for security purposes>.doPost:
    Uncaptured Exception: JSSESocketFactory.makeSocket <host and port removed for security purposes>, Default SSL context init failed: Cannot recover key|#]
    [#|2004-07-14T13:59:40.374-0400|INFO|sun-appserver-pe8.0.0_01|javax.enterprise.system.stream.out|_ThreadID=12;|
    DEBUG Wed Jul 14 13:59:40 EDT 2004: <class removed for security purposes>.doPost:
    netscape.ldap.LDAPException: JSSESocketFactory.makeSocket <host and port removed for security purposes>, Default SSL context init failed: Cannot recover key (91)
    at netscape.ldap.factory.JSSESocketFactory.makeSocket(JSSESocketFactory.java:111)
    at netscape.ldap.LDAPConnSetupMgr.connectServer(LDAPConnSetupMgr.java:509)
    at netscape.ldap.LDAPConnSetupMgr.openSerial(LDAPConnSetupMgr.java:435)
    at netscape.ldap.LDAPConnSetupMgr.connect(LDAPConnSetupMgr.java:274)
    at netscape.ldap.LDAPConnSetupMgr.openConnection(LDAPConnSetupMgr.java:199)
    at netscape.ldap.LDAPConnThread.connect(LDAPConnThread.java:109)
    at netscape.ldap.LDAPConnection.connect(LDAPConnection.java:1067)
    at netscape.ldap.LDAPConnection.connect(LDAPConnection.java:938)
    at netscape.ldap.LDAPConnection.connect(LDAPConnection.java:781)
    at com.qwest.nts.portal.LdapHelper.authenticate(LdapHelper.java:51)
    at com.qwest.nts.portal.servlet.PortalServlet.doPost(PortalServlet.java:68)
    at com.qwest.nts.portal.servlet.BaseServlet.doGet(BaseServlet.java:50)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:748)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:861)
    at sun.reflect.GeneratedMethodAccessor68.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:324)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:246)
    at java.security.AccessController.doPrivileged(Native Method)
    Am I missing something here? What does one need to do to get the Sun application server to enable SSL connections to an LDAP server? I am a bit confused what keystore to use since there are numerous copies of cacerts.jks and keystore.jks among both the application server config files and the jdk/jre config files found under SUNWappserver.
    I attempted to see debug messages by adding -Djavax.net.debug=all directly to the java command found in the startserv script for this web appliaction. I am not sure if this is the correct way to set system parameters when using the J2EE Sun application server, but it should work, no? When I do this I don't see any additional messages in the server's log file found at /SUNWappserver/domains/domain1/logs/server.log. All I see is System.out.println's from the java code and the exception.
    Thanks in advance for any help.
    - Dan

    Harpreet,
    Thanks for the reply. Yes I do just want to authenticate to the LDAP server from some code in my servlet. It is working against a non-ssl server right now. I guess I am not using the LDAPRealm that the appserver provides because I didn't now about it. I just pulled working LDAP code from another project (written for weblogic). As I said before all is working fine against the non-ssl server, however, I need to authenticate against a SSL server. As for your other question, why am I using JSSESocketFactory, I don't have a good answer. The application I am using as an example around here uses ldapsdk.jar. Are you saying that these LDAP classes are already built in?
    Thanks
    - Dan
    Hi Dan
    A couple of questions that will help me understand
    this better.
    1. It seems you just want to authenticate to the LDAP
    server
    from some code in your servlet - is that right?
    (On a side note: why dont you use the LDAPRealm that
    the appserver
    provides? It currently does not perform SSL
    authentication but that is
    something we are looking at). This way you dont end up
    reinventing the wheel.
    2. Any particular reasons on not using J2SE Security
    factory classes
    (Since you use netscape JSSESocketFactory - you will
    have to use
    Netscape provided flags to see what is going on over
    the wire). That
    is the reason javax.net.debug flags are not showing
    any useful output.
    PS: javax.net.debug=ssl should suffice
    Some comments and clarifications:
    The truststore that you should bother about - is the
    one under
    domains/domain_name_of_the_domain_u_use/cacerts.jks.
    Cacerts.jks has your imported(trusted certs) while
    keystore.jks has
    your server private keys and certificates.
    (more info @
    http://java.sun.com/j2ee/1.4/docs/tutorial/doc/Security
    .html#wp142440)
    There has been a relevant thread that you may look at
    http://forum.java.sun.com/thread.jsp?forum=136&thread=5
    1519
    Hope that helps
    - Regards
    Harpreet
    I have been able to get the following java code to
    connect to an LDAP server to work in a servlet(within
    a j2ee-module) under the Sun J2EE applicationserver
    8.0 when I am connecting to a non-ssl LDAP server:
    LDAPConnection conn = new LDAPConnection();
    conn.connect(ldap_host,Integer.parseInt(ldap_port));
    StringBuffer sb = new StringBuffer("uid=");
    sb.append(cuid).append(",").append(ldap_base);
    String dn = sb.toString();
    conn.authenticate(3, dn, password);
    I have been having a bear of the time implementingthe
    same thing but with SSL by changing the host andport
    to a SSL LDAP instance and substituting thefollowing
    code:
    LDAPConnection conn new LDAPConnection();
    JSSESocketFactory jssf = new
    netscape.ldap.factory.JSSESocketFactory(null);
    conn = new LDAPConnection(jssf);
    I have used the following command to insert the cert
    from the LDAP server into the keystore:
    keytool -import -trustcacerts -alias <ca-cert-alias>
    -file <cert>
    I have also tried to inject the cert into thecacerts
    file found under the
    SUNWappserver/domains/domain1/config/cacerts.jksfile
    directly using keytool.
    No matter what I do, when the SSL version of thecode
    is executed I get the following exception:
    [#|2004-07-14T13:59:40.372-0400|INFO|sun-appserver-pe8.
    >
    .0_01|javax.enterprise.system.stream.out|_ThreadID=12;|
    DEBUG Wed Jul 14 13:59:40 EDT 2004: <class removedfor
    security purposes>.doPost:
    Uncaptured Exception: JSSESocketFactory.makeSocket
    <host and port removed for security purposes>,Default
    SSL context init failed: Cannot recover key|#]
    [#|2004-07-14T13:59:40.374-0400|INFO|sun-appserver-pe8.
    >
    .0_01|javax.enterprise.system.stream.out|_ThreadID=12;|
    DEBUG Wed Jul 14 13:59:40 EDT 2004: <class removedfor
    security purposes>.doPost:
    netscape.ldap.LDAPException:
    JSSESocketFactory.makeSocket <host and port removed
    for security purposes>, Default SSL context init
    failed: Cannot recover key (91)
    at
    netscape.ldap.factory.JSSESocketFactory.makeSocket(JSSE
    ocketFactory.java:111)
    at
    netscape.ldap.LDAPConnSetupMgr.connectServer(LDAPConnSe
    upMgr.java:509)
    at
    netscape.ldap.LDAPConnSetupMgr.openSerial(LDAPConnSetup
    gr.java:435)
    at
    netscape.ldap.LDAPConnSetupMgr.connect(LDAPConnSetupMgr
    java:274)
    at
    netscape.ldap.LDAPConnSetupMgr.openConnection(LDAPConnS
    tupMgr.java:199)
    at
    netscape.ldap.LDAPConnThread.connect(LDAPConnThread.jav
    :109)
    at
    netscape.ldap.LDAPConnection.connect(LDAPConnection.jav
    :1067)
    at
    netscape.ldap.LDAPConnection.connect(LDAPConnection.jav
    :938)
    at
    netscape.ldap.LDAPConnection.connect(LDAPConnection.jav
    :781)
    at
    com.qwest.nts.portal.LdapHelper.authenticate(LdapHelper
    java:51)
    at
    com.qwest.nts.portal.servlet.PortalServlet.doPost(Porta
    Servlet.java:68)
    at
    com.qwest.nts.portal.servlet.BaseServlet.doGet(BaseServ
    et.java:50)
    at
    javax.servlet.http.HttpServlet.service(HttpServlet.java
    748)
    at
    javax.servlet.http.HttpServlet.service(HttpServlet.java
    861)
    at
    sun.reflect.GeneratedMethodAccessor68.invoke(Unknown
    Source)
    at
    sun.reflect.DelegatingMethodAccessorImpl.invoke(Delegat
    ngMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:324)
    at
    org.apache.catalina.security.SecurityUtil$1.run(Securit
    Util.java:246)
    atjava.security.AccessController.doPrivileged(Native
    Method)
    Am I missing something here? What does one need todo
    to get the Sun application server to enable SSL
    connections to an LDAP server? I am a bit confused
    what keystore to use since there are numerous copies
    of cacerts.jks and keystore.jks among both the
    application server config files and the jdk/jreconfig
    files found under SUNWappserver.
    I attempted to see debug messages by adding
    -Djavax.net.debug=all directly to the java command
    found in the startserv script for this web
    appliaction. I am not sure if this is the correctway
    to set system parameters when using the J2EE Sun
    application server, but it should work, no? When Ido
    this I don't see any additional messages in the
    server's log file found at
    /SUNWappserver/domains/domain1/logs/server.log. AllI
    see is System.out.println's from the java code andthe
    exception.
    Thanks in advance for any help.
    - Dan

  • Problems getting Web server to connect with LDAP server.

    Have 4.1.8 iplanet Web and 4.13 LDAP running on Win2000 sp2. Both are working fine separately, i.e. 'have good anonymous LDAP://URL responses, and 'have working application CGI responses from web server. 'Have previously had same setup running on another server. However, with this install on win2000 cannot get Global settings LDAP feature to work ~ getting " An error occured while contacting th LDAP server. A connection to the the directory server could not be opened. Have checked DNS settings, etc. All seems to be in order. Any suggetions?

    Hi,
    What edition of Win 2K are you using (Pro/Server/Ad Server). The problem could be your DNS settings only.Ensure which machine is your DNS Server is running,is it on NT? if so change it to win 2K server.
    Delete your LDAP machines A record from DNS server and add it again. This will solve your problem.
    Refer the URL :
    http://knowledgebase.iplanet.com/ikb/kb/articles/5135.html

  • Please Help.  How can you monitor a directory using jndi connection to a ldap server?

    How can you monitor a directory using jndi connection to a ldap server? I
    want the ldap server to monitor the content change in a file system
    directory on another computer on the network. Can someone please help.
    Thanks
    Fred

    Hi,
    Why do you want to use LDAP for Hard disk monitoring..???
    U can do this by creating a MD5 checksum for all the files existing in some
    perticular
    directory and every hour or any configurable period u can recalculate the
    checksum
    to find out the change in the content.
    I guess all u need is to get the code for "updatedb" utility of Linux and
    instrument it for ur needs..
    Hope it helps...
    -aseem
    mr wrote:
    How can you monitor a directory using jndi connection to a ldap server? I
    want the ldap server to monitor the content change in a file system
    directory on another computer on the network. Can someone please help.
    Thanks
    Fred

  • Error message at iWS v.4 (LDAP server contacting problem)

    At Users & Groups window appear this error message:
    "An error occurred while contacting the LDAP server."
    How can I eliminate this error?
    LDAP and iDS v.5 running on the same machine at Solaris 2.8
    Thank you for your help
    Zdenek

    Please ensure you specified all the details properly as given below with examples
    Host Name: Specifies the name of the LDAP server. You must enter a host name even if the directory server is running on the local machine. <hostname or IP address>
    Port: Specifies the port on which the LDAP server runs.<389> is the default. change if it's different than the default port.
    If you are going to use SSL with a directory server, then you should enter the port number that the directory server is using for SSL.
    Use Secure Sockets Layer (SSL) for connections. Specifies whether the server should use SSL for communications with the directory server. If you click Yes, then you must also configure the Administration Server to use SSL communications.
    Base DN: Specifies the distinguished name where directory lookups will occur by default. (for example, o=arius.com your domain name in the network). A DN is the string representation for the name of an entry in a directory server.
    Bind DN: Specifies the distinguished name that the Administration Server will use to initially bind (or log in) to the directory server (for example, cn=Directory Manager). Binding determines the permission level you are granted for the duration of a connection. The DN supplied in a bind request can be the DN of an alias entry.
    This bind DN is used only to initially search for the user name you entered in the Administration Server authentication dialog box. Once the entry corresponding to this user name is located, the Administration Server rebinds to the directory server using the retrieved entry. Therefore, if the user name you specified when you first logged into the Administration Server does not have access to the directory server.
    Bind Password: Specifies the password used for authentication.

  • Help needed to figure out URL and username for the LDAP server

    Given that LDAP directory parameters as follows, how can i identify the exact parameters to be used in my LDAP service access Java code. Im using JNDI to access a LDAP server given by an Ip address (say, 10.1.1.20) and the port number (say, 389)
    Given: -D "cn=mycn,ou=mystaff,o=myorg,dc=test,dc=my,dc=org" -w secret
    Heres my sample Java code
    env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL, "<URL>");
    env.put(Context.SECURITY_AUTHENTICATION, "simple");
    env.put(Context.SECURITY_PRINCIPAL, "<PRINCIPAL>");
    env.put(Context.SECURITY_CREDENTIALS, "secret");
    ctx = new InitialDirContext(env);
    SearchControls controls = new SearchControls();
    controls.setSearchScope(SearchControls.SUBTREE_SCOPE);
    results = ctx.search("ou=mystaff,o=myorg", null);Could any one please help me to recognize what will be the values to be comes to URL, and PRINCIPAL , so that i can search all the objects inside "ou"
    Note: Actually i tried several times, bt i was getting "Invalid Credentials" exception.. i doubt that is because the URL or the user name i gave was not syntactically correct. Thats y i need to verify with you all.
    Thanks in advance
    Saj

    env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL, "<URL>");env.put(Context.PROVIDER_URL, "ldap://10.1.1.20:389");
    env.put(Context.SECURITY_AUTHENTICATION, "simple");
    env.put(Context.SECURITY_PRINCIPAL, "<PRINCIPAL>");env.put(Context.SECURITY_PRINCIPAL, "cn=mycn,ou=mystaff,o=myorg,dc=test,dc=my,dc=org");
    env.put(Context.SECURITY_CREDENTIALS, "secret");
    ctx = new InitialDirContext(env);
    SearchControls controls = new SearchControls();
    controls.setSearchScope(SearchControls.SUBTREE_SCOPE);
    results = ctx.search("ou=mystaff,o=myorg", null);

  • Help: which LDAP server should I use with weblogic 5.1

    Hi:
    I try to use LDAP for user profile management. I am free to use any LDAP
    server as long as it is easy to work with weblogic 5.1 or 6.0.
    Any suggestions?
    Thank you.
    li

    This is what I did for my DS settings
    1. select Oracle JDBC Driver
    2. set Classes12.jar in Websphre classpath - (Oracle thin driver)
    3. create DS with option User defined JDBC provider
    means I have added Thin driver provided by Oracle , instead of deprecated Thin driver from IBM.

Maybe you are looking for

  • 16:9 is stretched when exported to 4:3

    I have a project filmed and edited in anamorphic 16:9. However I need to export it in two aspect ratios: 16:9 and 4:3 (letterboxed). The 16:9 version exports with no problems, however the 4:3 is streched! I have made new sequences in both 720x480 and

  • Does passthrough work for both HTTP and HTTPS and back?

    I have pass through configured correctly for HTTP on S1WS6.5 to S1AS7, and it works correctly. When a secure page is hit, an redirection loop starts between the Web Server and Application Server.

  • Tables used in sap plm

    hi all can somebody  give me <b>some imp. tables used in sap plm.[/b regards. subhasis.

  • BI Content Roles and Authorizations

    Hi All, We just installed a BW system and trying to activate the Business Content. But its giving some authorization issues. Can anyone please give the list of transactions/roles/profiles/authorizations that needs to be added to my user id so as to i

  • How to hint movie with JMF

    Hello, I would like to know how to make hinted movies with JMf, but no One seem to talk about this in forums... Any idea ?