How to configure Open Directory base DN

Similar Messages

• Configure Open Directory using CLI

  We have a Leopard Server in Advanced Mode.
  If you have a fresh install of Leopard Server with nothing configured, is there a way to configure Open Directory to be an Open Directory Master completely using CLI utilities?
  Wasn't able to find anything in Apple's PDFs

  I agree with Dal78 Apple using a base DN of servername.example.com rather than just example.com is illogical. In fact originally they did seem to use just example.com as the format but in recent years now use server.example.com as the format. When I first encountered this change it was still possible to overridge the use of servername.example.com and force it to use just example.com as the format. In more recent times I have decided to leave things the way Apple do it.
  I don't know if there is an official answer as to why, but a possible guess is that you can now have multiple Open Directory servers for a single domain. This is the 'Locales' option in Server.app. It maybe that including the servername makes it possible/easier to implement this.
  I also agree Strontium90 do not use a .local root domain for Open Directory. In theory there are hacks to (sort of) get this to work, but Apple engineers will typically run screaming for the woods when they encounter this.
  PS. Briefly Apple also did the same illogical thing with DNS zones, whereby the zone name for a domain was servername.example.com instead of example.com this at least they have stopped doing.

• Do I need to configure Open Directory before I configure mail?

  I am doing a slow step-by-step configuration of a new 10.6.2 box and I am marginally skilled. Before I migrate a handful of accounts from the old server to the new, I want to make sure mail services work on the new server. Later I would like to try experimenting with Open Directory. Since I will be creating local user accounts on the server to configure mail, will these migrate to Open Directory later or will I need to reconfigure the accounts? If the latter is true, it suggests I should install Open Directory first.
  (I apologize if this belongs in another discussion group.)
  Paul

  I have discovered that the answer is that I do not have to configure Open Directory first. Found this on the OD discussion area:
  http://discussions.apple.com/thread.jspa?threadID=2243066&tstart=0
  Paul

• How to repair Open Directory Master after Changing Hostname

  Summary:
  How to repair Open Directory after Changing your Server's Hostname (see separate post)
  Problem:
  I had to change our server's hostname from a private hostname (server.name.private) to a public hostname (name.dyndns.org).
  Procedure:
  1. Precautions:
  Since I was anticipating major dramas I tested the change of hostname on a clone ( I used Super Duper, and I very strongly advise everybody to heed this warning because a change of hostname will corrupt your server services, in particular Open Directory)
  Second, I exported the network users from Server Admin and copied the archive to the Drop Folder of the server's local account (because the network accounts will be unavailable after demoting the OD Master.)
  2. Change hostname and demote OD Master
  a) I re-booted the server from the clone
  b) I changed the hostname in Server App and I noticed that the Open Directory Password and the Kerberos database were still stuck with the old hostname.
  c)  I then demoted to a standalone directory (Server Admin) and I tried to promote the server to an OD Master using the Server App (Manage Network Accounts). Server App always returned an error saying I should check my network settings.
  3. List of 'fixes'
  I tried the following fixes to no avail (which does not mean that you can skip them)
  a) I checked the DNS entries, forward and reverse were working fine (sudo checkip -changehostname)
  b) Checked with Lookup in Network Utility, all was fine
  c) I deleted all system certificates (Keychain) which showed the name of the previous hostname
  ( N.B. you need not delete email certificate and private/public keys)
  d) I tried to assign a new static IP in Networking Preferences (had no visible result)
  e) I re-booted from the working drive and I re-paired permissions on the clone; I ran disk repairs.
  Despite all this I could not re-create an OD Master.
  I then looked for this dubious folder /var/root/Library/Application Support/Certificate Authority.
  I could not find this folder when using the Finder's Go To Folder, nor did "Easy Find" see this folder.
  I was about to give up when I read the posts on this page and I entered the Terminal commands
  sudo rm -R /var/root/Library/Application\ Support/Certificate\ Authority/
  I had not much hope when I set about to re-create the OD Master from the Server App.
  But lo and behold !!! I did not trust my eyes when Server App claimed that the OD Master had been successfully created. And indeed, Server admin showed a running OD Master, LDAP, Kerberos and Password Server all running again !
  Final touch: re-import the user accounts.
  Epilogue:
  I woud not have been able to fix this issue had not so many others shared their experience and the working solution.
  (Refer : https://discussions.apple.com/thread/3219325?start=0&tstart=0 )
  Thank you all !
  Let's hope that Apple will fix this annoying issue in the next server update.
  Regards,
  Twistan

  Hi Rhyan,
  Please try clearing the security cache
  http://www.sharepointanalysthq.com/2014/05/active-directory-groups-and-sharepoint-security/
  https://sergeluca.wordpress.com/2013/07/06/sharepoint-2013-use-ag-groups-yes-butdont-forget-the-security-token-caching-logontokencacheexpirationwindow-and-windowstokenlifetime/
  http://webactivedirectory.com/active-directory/windows-active-directory-cached-user-credentials/
  Please remember to click 'Mark as Answer' on the answer if it helps you

• Can´t configure Open Directory Master

  After a reinstall I can´t config Open Directory Master. I have this logs:
  Mar  4 12:22:28 servidor slapd[14293]: @(#) $OpenLDAP: slapd 2.4.23 (Oct 19 2011 00:16:13) $
                      [email protected]:/private/var/tmp/OpenLDAP/OpenLDAP-186.2~3/servers/slapd
  Mar  4 12:22:28 servidor slapd[14293]: daemon: SLAP_SOCK_INIT: dtblsize=8192
  Mar  4 12:22:28 servidor slapd[14293]: bdb_monitor_db_open: monitoring disabled; configure monitor database to enable
  Mar  4 12:22:28 servidor slapd[14293]: slapd starting
  Mar  4 12:22:28 servidor slapd[14293]: daemon: posting com.apple.slapd.startup notification
  Mar  4 12:22:47 servidor slapd[14293]: SASL [conn=1025] Failure: no secret in database
  Mar  4 12:22:50 servidor slapd[14293]: SASL [conn=1028] Failure: no secret in database
  Mar  4 12:22:51 servidor slapd[14293]: => bdb_idl_delete_key: c_get failed: DB_LOCK_DEADLOCK: Locker killed to resolve a deadlock (-30994)
  Mar  4 12:22:51 servidor slapd[14293]: conn=1014 op=37: attribute "entryCSN" index delete failure
  Mar  4 12:23:10 servidor slapd[14293]: => bdb_idl_delete_key: c_get failed: DB_LOCK_DEADLOCK: Locker killed to resolve a deadlock (-30994)
  Mar  4 12:23:10 servidor slapd[14293]: conn=1014 op=101: attribute "entryCSN" index delete failure
  Mar  4 12:23:17 servidor slapd[14293]: SASL [conn=1036] Failure: no secret in database
  Mar  4 12:23:20 servidor slapd[14293]: SASL [conn=1040] Failure: no secret in database
  Mar  4 12:23:47 servidor slapd[14293]: SASL [conn=1098] Failure: no secret in database
  Mar  4 12:23:51 servidor slapd[14293]: SASL [conn=1111] Failure: no secret in database
  Mar  4 12:24:18 servidor slapd[14293]: SASL [conn=1179] Failure: no secret in database
  Mar  4 12:24:21 servidor slapd[14293]: SASL [conn=1182] Failure: no secret in database
  Mar  4 12:24:24 servidor slapd[14293]: daemon: shutdown requested and initiated.
  Mar  4 12:24:24 servidor slapd[14293]: daemon: posting daemon shutdown notification.
  Mar  4 12:24:24 servidor slapd[14293]: slapd shutdown: waiting for 0 operations/tasks to finish
  Mar  4 12:24:30 servidor slapd[14293]: slapd stopped.
  and:
  2012-03-04 12:04:51.855 CET - opendirectoryd (build 172.10) launched...
  2012-03-04 12:04:52.073 CET - Logging level limit changed to 'error'
  2012-03-04 12:04:52.153 CET - Initialize trigger support
  2012-03-04 12:04:52.486 CET - Registered node with name '/Active Directory' as hidden
  2012-03-04 12:04:52.487 CET - Registered node with name '/Configure' as hidden
  2012-03-04 12:04:52.487 CET - Discovered configuration for node name '/Contacts' at path '/Library/Preferences/OpenDirectory/Configurations//Contacts.plist'
  2012-03-04 12:04:52.487 CET - Registered node with name '/Contacts'
  2012-03-04 12:04:52.575 CET - Registered node with name '/LDAPv3' as hidden
  2012-03-04 12:04:52.620 CET - Registered node with name '/Local' as hidden
  2012-03-04 12:04:52.672 CET - Registered node with name '/NIS' as hidden
  2012-03-04 12:04:52.697 CET - Discovered configuration for node name '/Search' at path '/Library/Preferences/OpenDirectory/Configurations//Search.plist'
  2012-03-04 12:04:52.698 CET - Registered node with name '/Search'
  2012-03-04 12:04:52.920 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/legacy.bundle'
  2012-03-04 12:04:53.159 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/search.bundle'
  2012-03-04 12:04:54.162 CET - '/Search' has registered, loading additional services
  2012-03-04 12:04:54.162 CET - Initialize augmentation support
  2012-03-04 12:04:54.217 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/SystemCache.bundle'
  2012-03-04 12:04:54.247 CET - Successfully registered for Kernel identity service requests
  2012-03-04 12:04:54.264 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/PlistFile.bundle'
  2012-03-04 12:04:54.310 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/FDESupport.bundle'
  2012-03-04 12:04:54.707 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ConfigurationProfiles.bundle'
  2012-03-04 12:04:54.708 CET - Registered subnode with name '/Local/Default'
  2012-03-04 12:05:17.128 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ldap.bundle'
  2012-03-04 12:07:47.863 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/configure.bundle'
  2012-03-04 12:07:48.030 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/keychain.bundle'
  2012-03-04 12:08:42.226 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/AppleODClient.bundle'
  2012-03-04 12:10:17.881 CET - Registered subnode with name '/LDAPv3/127.0.0.1'
  2012-03-04 12:10:29.747 CET - Unregistered node with name '/LDAPv3/127.0.0.1'
  2012-03-04 12:24:08.488 CET - Registered subnode with name '/LDAPv3/127.0.0.1'
  2012-03-04 12:24:30.792 CET - Unregistered node with name '/LDAPv3/127.0.0.1'
  Anyone may help me?

  It happens after a clean install and posterior data recovery through TimeMachine. With Server Admin it was imposible change Standalone to Master.
  Thanks a God I have only a few users and after a hard week end I back up data and I did a new clean installation with a enterely new OD.
  Thanks for your interest.

• How to migrate Open Directory from 10.6 to another server with 10.8?

  Hello all,
  I have a Mac Pro running Mac OS X Server 10.6.8 with Open Directory active. Now I bought a new Mac Pro running MAC OS 10.8 and I also bought the OS X Server app.
  What I want to know is how can I migrate the users and their home folders from old server with Snow Leopard to the new one? The Open Directory Archive does this job?
  Regards,
  Carlos.

  Ok. I did a test and I saw that it exports only the information account. So I suppose that I have to copy the home folder using scp or something similar. Is that correct? 
  I also have to keep the same hostname from the old server in the new server or this can be done in a different way?
  Thanks.

• How to configure Output Directory at Jobs

  Allo.
  I am quite new in IR eventhough I played with FR for months already.
  I need to set a BQY job to run every morning and inside the job has multicycle things. One of it is to export the processed BQY into my drive D:\\InterativeReporting\. Now, I manage to go through until the job parameter -> modify cycle -> process option and the last page shows me to use Output Directory.
  From the docs I know that this Output Directory need to be configure manually but it's not written in any docs!
  So, I had done;
  1. checked the documentation of HBI (hs_user.pdf, hs_admin.pdf)
  2. checked IR users docs
  3. Checked FR & Prod Reporting docs
  4. hoping it will work like FR with it's external directory where we need to change a bit at the scheduler.properties and go through all .properties under BIPlus/Lib/
  5. sacrifice my fried chicken lunch to nearby kitten
  Does anybody knows how to configure the output directory? Please let me know. I can't afford to keep sacrificing my lunch..
  Thanks!
  Daniel.

  Hi Guys,
  Yeah, I found it at the Developer Guide and follow the direction there. Spent entire morning to try it and it works!
  However, it should have been faster using the Physical Resources feature available at Workspace! But I got good lessons there with java -after numerous hair pulling experience and all zoo words shouting. LOL.
  I got to bounce to Singapore last week and I left my laptop at my apartment, sorry for late reply and thanks guys!
  Daniel.

• How to configure old AirPort Base Stations with current Mac

  Hi everyone,
  I noticed that you can't use the current AirPort Utility to configure old AirPort Base Stations. I'm talking about the pre-Extreme models that only had 802.11b (Graphite and Snow). It won't find them and even entering their IP manually won't let you enter the configuration.
  Copying over the older AirPort Admin Utility from a 10.3 system won't let you configure them either, the app itself runs fine though. You need to use an older PPC Mac with OS 9 or max OS X 10.3 if I recall correctly.
  Is there a way to do it directly from a current Intel Mac running Leopard?
  Thanks
  Björn

  *Airport Admin Utility* for Graphite and Snow
  <http://www.apple.com/downloads/macosx/apple/application_updates/airportadminuti lityforgraphiteandsnow425.html>

• How does Configurator's directory structure work? Can database/devices be recognized once they're "lost"?

  Yes this is as bad as it sounds. Configurator started freezing and crashing today. It asked to be reinstalled after "Core Data" errors. I went to a back-up and started overwriting the existing directories, but nothing seems to work. I've copied about 200 resource files into every resource directory I can find, but each time I open Configurator, it doesn't see the 230+ devices it has configured.
  Does anyone have any advice on how to do this? Is there some file that can be deleted and rebuilt? There's so much I fail to understand about this software.
  And make sure everyone backs things up more often than I do.
  Thanks!

  Yes this is as bad as it sounds. Configurator started freezing and crashing today. It asked to be reinstalled after "Core Data" errors. I went to a back-up and started overwriting the existing directories, but nothing seems to work. I've copied about 200 resource files into every resource directory I can find, but each time I open Configurator, it doesn't see the 230+ devices it has configured.
  Does anyone have any advice on how to do this? Is there some file that can be deleted and rebuilt? There's so much I fail to understand about this software.
  And make sure everyone backs things up more often than I do.
  Thanks!

• How i configure external directory and email

  hi every one
  i have just installed and login to oracle beekeeper successfully. now i want to intergate the external directory to my active directory so that all users in it will be mapped in oracle beehive secondly i can use them for email purpose.
  i am really new to oracle beehive , i have read the administration manuals. but still confusing how to start , the parameters in external directory creation for active directory cannot understandable for me, what does authectic attributes means.
  kindly guide me in this regard and secondly if any image base document avaible so that i configure it through that.
  regards
  Oraclebeehive new user

  Hello,
  The primary Authentication Attribute, is just the LDAP attribute you will use to be able to log on Beehive
  That can be an UID, the email address, the cn or with AD the sAMAccount
  eg: uid: 123455667
  mail: [email protected]
  cn: firstname.lastname
  these attributes and their associated values are on AD and must be available for ALL employees as well as UNIQUE.
  Often the email address, the UID or the sAMAccount have unique value.
  Hope that help
  However, You may want to take some days of expertise to help you on this setting. That will simplify and speed up your learning curve and Beehive implementation.
  Regards,
  Fred

• How to configure a Snow base station with Snow Leopard?

  According to "Mac OS X v10.6: About incompatible software"
  http://support.apple.com/kb/HT3258?viewlocale=en_US
  ...AirPort Admin Utility for Graphite and Snow 4.2.5 is incompatible with Snow Leopard.
  I have a Snow AirPort Base Station, and AirPort Utility 5.4.2 doesn't seem to be able to see it. (At least I can't figure out how to make it do so.) Can it not work with a Snow Base Station?
  Now what?

  One solution is to keep a pre-Snow Leopard OS installation (either on another partition or external drive) and then boot from that when you need to configure the snow AirPort base station (ABS).
  Another solution is to use another Mac running a pre-Snow Leopard OS to configure the snow ABS.
  Since the snow ABS was discontinued 6 years ago I can understand why support is going away.
  The last PowerPC was shipped only 3 years ago and that is not supported by Snow Leopard either.

• How to configure Integration Directory for Integration process async sync

  Hi Experts,
                   I am confused about doing configuration in Integration Directory i.e receiver determination,interface determination and receiver agreement and sender agreement for my integration process as it involve synchronous send at target side.
  In my Scenario , we get Purchase order request(asynchronously) from SRM system in proxy xml format which we have to map to Cxml format send it to third party system(say system 2) as http request.Then we will recieve a response from system2 in Cxml format through HTTP.Now,we have to map this response as to SRM system via proxy code for successful and error case .If error occured we also have to mail to the respective department about the error occured via mail adapter.Proxy to XI is a asynchronous communication and XI to System2 is a synchronous communication .Then again XI to SRM is a asynchronous communication via proxy.I have request and response External defination for Cxml i.e HTTP side.
  I have done following integration process in ESR
  Start- Receive(1)---Transformation(2)-send(3)-Fork(4)--
  stop
  ...................................................................................................... .....[----Branch 1 [-Transformation(5)-Send(6)-
  .......................[-----Branch 2 -
  SWITCH STEP to check error code[
  ............................................................................................................[.otherwise branch of switch
  Fork(4)----[
  .......................[----Branch 1-Transformation (9)-send(10)-
  Here,
  Recieve(1) -- is used for recieve request from SRM.Mode is asynchronous
  Transforamtion(2)-- is used for operation mapping between request of SRM to HTTP request.
  send(3) --is used to sending request synchronous to HTTP,mode is synchronous,used synchronous abstract interface,abstract reqhttp and abstract resphttp
  switch-switch Branch1 is used for checking error response to be true---
  Transformation(5)--- is used to map HTTP response to Mail response structure
  Send(6)----
  is used to send mail content to Mail adapter
  Transformation(9)---- is used to map HTTP response to Proxy response
  Send(10) --- used to send mapped proxy response to SRM as to update status by calling calling Function module using proxy code.
  Thanks
  Deepak

  Deepak,
  In BPM data does not flow in Backword direction!
  take any step in your BPM the message it is goiong to receive will be what a step just before it is giving to BPM.
  Now in your case
  IR Part:
  You have to call Third part Synchronously and the input to it will be what Proxy has given to you.
  Create an Abstract Synchronous(in case of abstract you need not bother it is Inbound or Outbound) in which(I mean the Message Interface) The Output message will be what you have Received from Proxy and the input message will be what you are going to receive from the Third party as a Response.  Now you would have Inbound Synchronous Interface created for calling Third party.
  Have a Interface Mapping between the Abstract Synchronous and Inbound Synchronous Message Interface.
  ID Part:
  For synchronous Step:  BPM will; be sender with  Message Interface Abstarct Synchronous
  Third Party will be receiver With Inbound Interface(Synchronous). Use the INterface Mapping between Abstract Synchronous and Inbound Synchronous that You have created in IR.
  Have a Receiver Agreement for the Thirs part.
  No Sender agreement required in case of BPM as a Sender.
  Thanks,
  Sunil Singh

• Active Data Guard-How to configure Auxiliary Data Base's Listener.

  HI,
  I am stuck in creating listener/tnsnames for auxiliary database as the problem happens because of the auxiliary instance has just started. It is now in NOMOUNT stage. The instance registration with the listener is performed by PMON process and to start the PMON process database need to be in mount stage. So, before the instance registration by PMON with the listener there is actually noting to register and hence the instance is BLOCKED.
  http://www.oracle.com/technology/deploy/availability/pdf/oracle-openworld-2009/adg_hol_2009.pdf
  I am following the above document.
  LSNRCTL> status
  Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER)))
  STATUS of the LISTENER
  Alias LISTENER
  Version TNSLSNR for Linux: Version 11.2.0.1.0 - Production
  Start Date 05-JUL-2010 11:06:23
  Uptime 0 days 0 hr. 11 min. 44 sec
  Trace Level off
  Security ON: Local OS Authentication
  SNMP OFF
  Listener Parameter File /u01/app/11.2.0/grid/network/admin/listener.ora
  Listener Log File /u02/app/oracle/diag/tnslsnr/oracle/listener/alert/log.xml
  Listening Endpoints Summary...
  (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=LISTENER)))
  (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.127.133)(PORT=1521)))
  (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.127.140)(PORT=1521)))
  Services Summary...
  Service "+ASM" has 1 instance(s).
  Instance "+ASM1", status READY, has 1 handler(s) for this service...
  Service "eagledb" has 1 instance(s).
  Instance "eagledb1", status READY, has 1 handler(s) for this service...
  Service "eagledbXDB" has 1 instance(s).
  Instance "eagledb1", status READY, has 1 handler(s) for this service...
  Service "eagledb_DGB" has 1 instance(s).
  Instance "eagledb1", status READY, has 1 handler(s) for this service...
  Service "nyc" has 1 instance(s).
  Instance "nyc", status BLOCKED, has 1 handler(s) for this service...
  The command completed successfully
  I found some simillar solution on below link but it is aplicable for 10g or below.
  http://arjudba.blogspot.com/2008/05/connection-to-auxilary-instance-failed.html
  I am using enterprise linux with clusterware 11g rel 2 with data base 11f rel 2 on single machine.
  Thanks
  Anis
  99826412
  Muscat
  Edited by: user12979506 on Jul 5, 2010 10:13 PM

  The "auxiliary" is, I presume, actually a physical standby.
  If so why is it in NOMOUNT? Why don't you start it?
  alter database recover managed standby database cancel;
  alter database open read only;

• How to configure Active Directory LADP with WLS 8.1

  Hi
  somebody help me configure LDAP Active Directory with BEA WebLogic 8.1
  I can't understand what i should do.
  ThanX

  WLS 8.1 sp1 has couple of issues with Active Directory. You need to get fixes from
  BEA. sp2 is supposed to have these fixes included.
  Anant
  "Neil" <Neil-reply-in-newsgroup> wrote:
  This seems strange. I would make sure your installation is correct
  (particularly the lib/mbeantypes directory). If that is correct, I would
  test it with a new domain created with the domain configuration wizard
  to
  rule out any strange configuration possibilities. If both of those fail,
  I'd
  file a support case.
  - Neil
  "Max" <[email protected]> wrote in message
  news:[email protected]...
  Jay Zimmett <[email protected]> wrote:
  Read this:
  http://edocs.bea.com/wls/docs81/secmanage/providers.html#1172008
  Max KUlinich wrote:
  Hi
  somebody help me configure LDAP Active Directory with BEA WebLogic8.1
  I can't understand what i should do.
  ThanX
  I try do this but no god results. I get this exeption :
  java.lang.reflect.InvocationTargetException
  atweblogic.security.providers.authentication.LDAPAtnDelegate$LDAPFactory.newIn
  stance(LDAPAtnDelegate.java:3129)
  at weblogic.security.utils.Pool.getInstance(Pool.java:57)
  atweblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDA
  PAtnDelegate.java:2646)
  atweblogic.security.providers.authentication.LDAPAtnDelegate.listUsers(LDAPAtn
  Delegate.java:1814)
  atweblogic.security.providers.authentication.LDAPAuthenticatorImpl.listUsers(L
  DAPAuthenticatorImpl.java:167)
  at sun.reflect.GeneratedMethodAccessor184.invoke(Unknown Source)
  atsun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl
  .java:25)
  at java.lang.reflect.Method.invoke(Method.java:324)
  atjavax.management.modelmbean.RequiredModelMBean.invoke(RequiredModelMBean.jav
  a:1304)
  atweblogic.management.commo.CommoModelMBean.invoke(CommoModelMBean.java:464)
  atcom.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1557)
  atcom.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1525)
  atweblogic.management.internal.RemoteMBeanServerImpl.invoke(RemoteMBeanServerI
  mpl.java:765)
  atweblogic.management.console.utils.Security.getUserList(Security.java:1436)
  atweblogic.management.console.actions.security.ListUsersAction.updateContents(
  ListUsersAction.java:56)
  atweblogic.management.console.actions.security.ListLWSecurityAction.getContent
  s(ListLWSecurityAction.java:85)
  atweblogic.management.console.tags.security.LWTableTag.getRowData(LWTableTag.j
  ava:462)
  atweblogic.management.console.tags.security.LWTableTag.printTable(LWTableTag.j
  ava:141)
  atweblogic.management.console.tags.security.LWTableTag.doEndTag(LWTableTag.jav
  a:133)
  atweblogic.management.console.webapp._security.__usertable._jspService(__usert
  able.java:327)
  at weblogic.servlet.jsp.JspBase.service(JspBase.java:33)
  atweblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(Servle
  tStubImpl.java:1053)
  atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
  :387)
  atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
  :305)
  atweblogic.servlet.internal.RequestDispatcherImpl$ForwardAction.run(RequestDis
  patcherImpl.java:382)
  atweblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubjec
  t.java:317)
  atweblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
  atweblogic.servlet.internal.RequestDispatcherImpl.forward(RequestDispatcherImp
  l.java:286)
  at weblogic.servlet.jsp.PageContextImpl.forward(PageContextImpl.java:151)
  atweblogic.management.console.actions.ForwardAction.perform(ForwardAction.java
  :35)
  atweblogic.management.console.actions.internal.ActionServlet.doAction(ActionSe
  rvlet.java:173)
  atweblogic.management.console.actions.internal.ActionServlet.doGet(ActionServl
  et.java:91)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
  atweblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(Servle
  tStubImpl.java:1053)
  atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
  :387)
  atweblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java
  :305)
  atweblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(W
  ebAppServletContext.java:6310)
  atweblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubjec
  t.java:317)
  atweblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
  atweblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletCo
  ntext.java:3622)
  atweblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java
  :2569)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)
  Caused by: netscape.ldap.LDAPException: error result (49); 80090308:LdapErr:
  DSID-0C09030F, comment: AcceptSecurityContext error, data 525, vece;Invalid credentials
  at netscape.ldap.LDAPConnection.checkMsg(LDAPConnection.java:4852)
  at netscape.ldap.LDAPConnection.internalBind(LDAPConnection.java:1757)
  at netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1294)
  at netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1303)
  at netscape.ldap.LDAPConnection.bind(LDAPConnection.java:1613)
  atweblogic.security.providers.authentication.LDAPAtnDelegate$LDAPFactory.newIn
  stance(LDAPAtnDelegate.java:3108)
  ... 43 more

• Cisco Mobile 8.0 iphone: How to configure the Directory? is it the same on the IP phones?

  Hi,
  I have a few iphones running Mobile 8.0 and Mobile 8.1.  Everything works fine except for the Directory.
  Im looking to get the the directory working on the Mobile 8.x phones; the Coorporate Directory (the same as in the IP Phones) is this possible on the  Cisco Mobile 8.X?
  If so, how to get it to work?
  I've read about setting up LDAP for the Mobile 8.x phones; is this what's needed or is this to access my MS Active Directoy data from my business side?
  Im running UCCM 7.x and on my IP phones I have an option 5 for Coorporate Directory, I want this on my Mobile 8.x phones.
  thanks

  Your organisation's Active Directory is what I'm referring to (or most other LDAP directories if you're not using AD, although they're not all supported). You would indeed need to populate your Active Directory with the user's extension numbers for this to be of any use to you.
  We do indeed use the directory on Cisco Mobile, but because we already have all End Users in our Communications Manager imported via LDAP, we're not maintaining two directories, the number that the End User is allocated comes from our LDAP database.
  If all your phone users are manually created then you are going to have a bit of extra administration burden to provide the directory to Cisco Mobile users.