How to setup an LDAP filter in OpenDirectory

Similar Messages

• Hos to setup a LDAP filter in OpenDirectory

  Hello,
  I hope I am posting to the right forum.
  I have an existing central directory managed by LDAP.
  The users can authenticate against my LDAP server.
  In the LDAP directory, the users have a special attribute, making a list of machines and services they can or cannot access.
  How to configure OpenDirectory to apply a filter to the LDAP records, so only users with a given value (lets say "macosx" in a given attribute) can authenticate?
  For example, on another machine (FreeBSD) I have the following in pal_ldap configuration:
  nssbasepasswd ou=People,ou=csim,dc=cs,dc=ait,dc=ac,dc=th?one?csimAccountPermission=sambalogin
  where csimAccountPermission=sambalogin is the filter and only users with that key will be able to use samba service.
  TIA,
  Olivier

  Please try this forum, its for OS X server.
  http://discussions.apple.com/category.jspa?categoryID=96

• How to setup a query filter?

  I'm trying to run the query cards method using a queryfilter object[][]. Can someone provide a working example of the filter. What I'm using below is throwing a SQL error:
  SQL Open Error (0x80040e21): SELECT DISTINCT C.OBJECTID, C.NAME, C.LASTMODIFIED, C.IMAGEUUID, C.URL1, C.URL2, C.URL3, C.URL4, FC.FOLDERID FROM PTCARDS C, PTFOLDERCARDS FC, PTCARDSECURITY CS, PTVGROUPMEMBERSHIP GM1, PTFOLDERSECURITY FS, PTVGROUPMEMBERSHIP GM2 WHERE C.CRAWLERID = ? AND C.OBJECTID = FC.CARDID AND FC.CARDSTATE = 2 AND C.OBJECTID = CS.OBJECTID AND CS.GROUPID = GM1.GROUPID AND GM1.USERID = ? AND FC.FOLDERID = FS.OBJECTID AND FS.GROUPID = GM2.GROUPID AND GM2.USERID = ? ADO Error: count = 1, return code = 0x80040e21 Multiple-step OLE DB operation generated errors. Check each OLE DB status value, if available. No work was done. (SQL State (null))
  object[][] aQuery = {
  new object[] {PT_PROPIDS.PT_PROPID_NAME},
  new object[] {PT_FILTEROPS.PT_FILTEROP_CONTAINS},
  new object[] {"Presentation"}
  IPTQueryResult pResult = pCatalog.QueryCards(PT_CLASSIDS.PT_CRAWLER_ID,203,false,false,PT_PROPIDS.PT_PROPID_NAME | PT_PROPIDS.PT_PROPID_LASTMODIFIED | PT_PROPIDS.PT_PROPID_OBJECTID | PT_PROPIDS.PT_PROPID_FOLDER_PATH | PT_PROPIDS.PT_PROPID_CARD_PARENTFOLDERID | PT_PROPIDS.PT_PROPID_IMAGEUUID,null,0,100,aQuery);

  I'm trying to run the query cards method using a queryfilter object[][]. Can someone provide a working example of the filter. What I'm using below is throwing a SQL error:
  SQL Open Error (0x80040e21): SELECT DISTINCT C.OBJECTID, C.NAME, C.LASTMODIFIED, C.IMAGEUUID, C.URL1, C.URL2, C.URL3, C.URL4, FC.FOLDERID FROM PTCARDS C, PTFOLDERCARDS FC, PTCARDSECURITY CS, PTVGROUPMEMBERSHIP GM1, PTFOLDERSECURITY FS, PTVGROUPMEMBERSHIP GM2 WHERE C.CRAWLERID = ? AND C.OBJECTID = FC.CARDID AND FC.CARDSTATE = 2 AND C.OBJECTID = CS.OBJECTID AND CS.GROUPID = GM1.GROUPID AND GM1.USERID = ? AND FC.FOLDERID = FS.OBJECTID AND FS.GROUPID = GM2.GROUPID AND GM2.USERID = ? ADO Error: count = 1, return code = 0x80040e21 Multiple-step OLE DB operation generated errors. Check each OLE DB status value, if available. No work was done. (SQL State (null))
  object[][] aQuery = {
  new object[] {PT_PROPIDS.PT_PROPID_NAME},
  new object[] {PT_FILTEROPS.PT_FILTEROP_CONTAINS},
  new object[] {"Presentation"}
  IPTQueryResult pResult = pCatalog.QueryCards(PT_CLASSIDS.PT_CRAWLER_ID,203,false,false,PT_PROPIDS.PT_PROPID_NAME | PT_PROPIDS.PT_PROPID_LASTMODIFIED | PT_PROPIDS.PT_PROPID_OBJECTID | PT_PROPIDS.PT_PROPID_FOLDER_PATH | PT_PROPIDS.PT_PROPID_CARD_PARENTFOLDERID | PT_PROPIDS.PT_PROPID_IMAGEUUID,null,0,100,aQuery);

• How to setup Inline Filter?

  Hi Folks,
  Can you tell me how to setup an Inline filter (Embedded in the analysis) compare to Named filter in analysis?
  Thanks,
  Vj

  Refer this doc..
  http://docs.oracle.com/cd/E23943_01/bi.1111/e10544/filter.htm
  Inline filter is nothing but Filters saved along with Analysis &these are not saved as a separate object in the My folders or shared folders as a subject area content, if it savedcthen we will call it as Named filter.

• Can I setup a spam filter on my ipad2 email?

  How do I setup a spam filter on my ipad2 email?

  You have to set up any spam filters in your webmail email using a browser. The Mail app on the iPad does not have a spam filter function. Go to your webmail and set it up in the account preferences.

• VSOM 7.0.1 LDAP Filter AD

  Hello!
  LDAP server settings are as follows: 
  Name: SFC.LOCAL
  Host Name: 192.168.104.252
  port: 389
  Member of: %USERID%@sfc.local
  Database search for users: OU=Accounts,DC=sfc,DC=local
  User ID attribute: sAMAccountName
  How to create a filter selecting users from a specific location in aerarhii AD?
  People are on the way: 
  OU=SPK,OU=Offices,OU=Delegate,OU=Common,OU=Accounts,DC=sfc,DC=local
  try like this: 
  search path: OU=Accounts,DC=sfc,DC=local
  Filter: (&(sAMAccountName=%USERID%)(memberOf=CN=SPK,OU=Offices,OU=Delegate,OU=Common,OU=Accounts,DC=sfc,DC=local))
  Runtime Error: The user with the given name is not found in the LDAP filter by (&(sAMAccountName=drozdov.alexander)(memberOf=CN=SPK,OU=Offices,OU=Delegate,OU=Common,OU=Accounts,DC=sfc,DC=local))
  in it may be inaccurate filter configuration?

  Hello Alex,
  Here is the example to do LDAP serach filter configuration. Let me know if this help
  •General Settings
  Hostname: ds.cisco.com
  Port: 389
  Principal: %USERID%@cisco.com
  User Search Base: ou=Cisco Users,dc=cisco,dc=com
  Userid Attribute: sAMAccountName
  •LDAP Search Filter:
  Select a Cisco mailing list you are on from mailer.cisco.com, and substitute its name for <anyMailer> in the Filter below
  Search Path: ou=Cisco Users,dc=cisco,dc=com
  Filter: (&(sAMAccountName=%USERID%)(memberOf=CN=<anyMailer>,OU=Mailer,OU=Cisco Groups,DC=cisco,DC=com))
  Br,
  Nadeem Ahmed

• Final Cut Server - How to setup a search by timecode within a production.

  I'm relatively new to FCS and trying to setup the structure necessary for our work environment. Does anyone know how to setup the ability to search assets by TC within a production by creating a timecode option in the asset filter? I found some default timecode options in lookups but not sure if they would meet the needs.

  You're off to a good start, assuming you can truly connect to your server within your private network.
  To get VPN working over a public network, you'll need to do the following:
  1.  Change your server from an automatically acquired IP address from DHCP, to a manual one.  In one of the steps below, you will forward VPN ports from your router at the firewall to your server's private IP address.  If your server's address gets changed by your DHCP server, then the forwarding won't work.  You can take the automatically assigned address it has now, and convert it to a manual one, keeping the same address.
  1a.  At your DHCP server (time capsule, for you), configure to reserver the IP address that is assigned to your server, so it can't dynamically assign some other device to that address by accident.
  2.  At your router/firewall (time capsule for you), manually forward the Ports used for VPN services to the intrnal IP address of your server.  I think apple's airport config utility makes this pretty self explanatory.
  3.  If you suspect there's any chance that your external IP address changes occassionally (many IPS's do this), then sign up for a service like DYN-DNS (free).  Once you have an account with them, you run the DYNDNS daemon on your server.  It will ascertain the external IP address of your network, and forward this info to the DYNDNS server.  when you try to connect to <youraccountname>.dyndns.org, it will automatically redirect you to the public IP address of your server.
  Once you do step 2 above, the public will begin probing your server.  It's remarkable how quickly it begins.  Use good passwords on your server.  Use a good shared secret for VPN.  Dont turn on any server services (ex., SSH) that aren't absolutely essential, and if you do, mae sure they have good passwords, and use RSA certificates for them if possible (turning off SSH password access completely).

• LDAP Servers not listed when trying to setup new LDAP connection

  Using SQL Developer: 1.5.1
  Oracle Database 10g Enterprise Edition Release 10.2.0.2.0
  Windows XP client environment
  Can anyone clarify how to setup LDAP connections in SQL Developer. We use LDAP for our connections with all the other Oracle tools like SQL*Plus and other developer tools like forms. LDAP is working fine for all of those tools. However, when I try to setup an LDAP connection for SQL*Developer no servers are found for the drop down box. Do we need to put the sqlnet.ora and ldap.ora files somehwere so that SQL Developer can find them? Does SQL Developer even need them? How does the LDAP server get populated in SQL Developer? Thanks. I have tried looking at other posts on this issue and nothing really jumped out at how to do this. I do have some older version Oracle homes setup also. For example we have a Oracle 6i home setup on our machines for the old versions of forms and reports.

  I set it to C:\Oracle10g_DevSuiteHome_1\NETWORK\ADMIN. This is under one of my Oracle Homes on this machine that contains the sqlnet.ora and the LDAP.ora files. This didn't appear to make any difference. Still no LDAP servers listed when you try to add or build a new connection. I tried some of my other Oracle Homes and still no effect. I have also tried copying the sqlnet.or and the ldap.ora files to other directories. I have switched my default Oracle Home to point to the 9i and above homes and this made no difference.
  I have never had to do anything with an environment variable called TNS_ADMIN before. I almost remember a variable called TNS_ADMIN years ago in the registery that had to be modified and it was TNS_ADMIN if I remember correclty. When you said to set an environment variable you did mean to just set or create a new environment variable using the My Computer > Properties > Advanced Tab > Environment Variables on the client machine. I just want to make sure I set the right variable. Thanks for you help and suggestons.
  By the way I can connect just fine using basic or advanced connections. I just would like to use LDAP so I don't have to maintain connections when port, server or SID change. For example we just failed over and the fail over database is on a different server. We do this as a test or when needed for failover purposes. If you are using the basic and advanced connections you need to go in a update connection information. If we use LDAP this is all maintained by the DBAs and individual clients shouldn't have to maintain any connection information as long as the have the right SID. The documentation for SQL Developer doesn't really seem to address how to setup LDAP connections it just mentions that you can do it and it sounds simple.

• How to setup three SharePoint sites on one server?

  Hello,
  How to setup three SharePoint sites on one server?  I have three sites like:
  http://site1
  http://site2
  http://site3
  And need to have them running up on one server. I recall some changes need to be done to the host file, but not sure.  Can you advise on what to change?
  Thanks,
  Paul
  Paul

  you need to make entries in DNS to get this done.
  check here:http://spshare.blogspot.com/2012/05/how-to-create-host-header-web.html
  nice blog with step by step explanation:
  http://thuansoldier.net/?p=1323
  Please remember to mark your question as answered &Vote helpful,if this solves/helps your problem. ****************************************************************************************** Thanks -WS MCITP(SharePoint 2010, 2013) Blog: http://wscheema.com/blog

• How to setup multiple base station under one network?

  How to setup multiple base station under one network? I have 6 rooms but one airport base station makes really difficult to get good signal from every rooms. I wonder if I can setup multiple airport base stations talking to each other under the same network to build up the signal strength will help solve this problem. But, is it possible? How?

  One route would be to utilize a "roaming" network. In a roaming network, you would connect multiple AirPort Extreme Base Stations (AEBS) to the same Ethernet. Of course, this would require that your home is already wired for Ethernet.

• How can I make a filter in number app

  How can I make a filter in a row in number apps? Sometimes i need to filter my name in a list from an excel sheet. What I need is to know if I van use data filtering in number app.

  It's best to never move iTunes media around in Finder. Add it to the Library through the iTunes interface by dragging them into the window. Once they've been added to the library, you can try using Get Info on the files in iTunes and change the tag info to make them group together. (A unique album name should do this.) If you want them to be included with TV Shows, you can try using Get Info to set the Kind to TV Show (found under the Options tab in Get Info), but I'm not sure if it will work. Otherwise, you could make a playlist and drag them into to access them all in one convenient spot.
  If you add the items as noted above and they still do not appear in your library, it's probably because they are not a compatible format.
  Message was edited by: Diane Wordsmith

• How to Setup SSL on Oracle Application Server 10g Release 2 (10.1..2)

  Hi All,
  Can anybody tell me How to setup the SSL on Oracle Application Server 10g Release 2 (10.1.2).
  I have all the required documents like
  1. Oracle Application Server Portal Server Configuration Guide.
  2. Oracle Application Server Web Cache Configuration Guide.
  3. Oracle Application Server SSO Administration Guide.
  I tried to follow all this documents but still i am not able to set SSL for Oracle Portal Server.

  The Portal Configuration Guide, available on OTN at http://www.oracle.com/technology/documentation/appserver1012.html does provide some very specific information on how to set up OracleAS Portal.
  Section 6.3.2.1 Configuring SSL for OracleAS Portal describes various configurations, such as:
  SSL to OracleAS Single Sign-On
  SSL to OracleAS Web Cache
  SSL Throughout OracleAS Portal
  External SSL with Non-SSL Within Oracle Application Server
  For larger enterprise configurations, you can refer to the Enterprise Deployment Guide.
  Can you give a bit more background on what you are trying to set up? Which scenario, what sort of hardware, software versions, and so on.
  Regards,
  Pete

• How can I use LDAP searching from OSX Lion Server to Mozilla Thunderbird?

  How can I use LDAP searching from OSX Lion Server to Mozilla Thunderbird?  We have a super awesome contacts server that works great for our Mac users.  About 30% of our company are on PCs, and I would like to use the Mozilla Thunderbird mail client for them.  I see that in Thunderbird I can set up LDAP searching, and would like to have this feature point to our contacts server.  I've tried several different settings, and looked all over the web, but could not find the proper way to configure this.  Does anyone know if this can be done, or if not, would have a better suggestion?  Thank you for your time!!

  try double clicking keychain acces should launch and ask if you want to install login, system, System roots
  A dialog box will launch asking where to install the cert since your configuring a vpn I would put the certificate it in system.

• How to setup a static IP for a wireless printer

  This problem has been ongoing for several versions of OS X and the last five printers I've had and I'm finally over messing with it.  For some reson, when using a wireless printer with OS X this is a repetetive problem, and I think if I configured the printer to a static IP address instead of using DHCP, it might work better.  At least once a week, if not more often, I'll print something and get the ubiquitous Dock error of "Printer is not connected".  The printer is still in Preferences, but if I delete it, then it doesn't show up as it should for selection.
  The only way to fix this is reboot, and then the printer shows up again in Preferences.  I select it and all is well again...until a few days pass and the same thing happens again.  Using an HP LaserJet P1102w, still a current model, but it doesn't matter which printer I use.  I also have an Epson Artisan 725 and the same thing happens with it about once a week.  Also, this happens from both my Mac and my wife's Mac, so it's not an issue with just my machine.
  I've searched for documentation on how to setup a static IP address for a wireless printer with the Airport Extreme, but all I find are tutorials on how to do it with an ethernet hard-wired printer.  Any help would be greatly appreciated.

  You could set up your router to do manual assignment of IP address instead of using DHCP, but that is a PITA, because then you'd have to manually set up IP for all your devices.
  If you have AirPOrt Extreme, you could do this:
  In your Apple TV, go to the Settings >> About and write down the MAC address of your ATV
  Start up the AiPort Admin Utility
  Go to Network tab
  click + in the DHCP reservations
  Choose an IP you want for your ATV & Enter the MAC address
  From now on, this IP address will be reserved to the MAC address and only your ATV will be able to get it, no other device will.
  It is not a static IP in a true sense, but behaves just like one.
  Works great for me...
  If you don't have a AP Extreme, I'm sure other routers will allow you do reservations too.

• How to setup Charms in a 2 tier landscape ?

  Hi All,
  We have a two tier landscape i.e only having development and production system so how to setup STMS and all other settings in this type of scenario.
  Can we use Virtual system in STMS as a Quality system ? If yes then please guide us and tell me how to proceed as if we dont know how to add virtual system in SMSY in solman. Please provide us with a clear picture and give us detail documentation if possible.

  Hi All,
  Please tell me as per the SAP standard recommendation is it necessary to have a cycle like DEV->QUAL-PROD for Charms as we are not having any Quality system or Client here in our landscape.
  Please suggest a way how to proceed in this case. Please help me out.