LDAP for Linux

Hi All,
I have 3 questions regarding LDAP on linux.
1. How can we start LDAP(OpenLdap) on linux machine?
2. How can we check LDAP is started or not ?
3. How can we uninstall Ldap on linux?
If any body have any solution for that , could please share with me?
It's very very urgent.please send your feedback. Ihope I'll get response very soon
Regards
Pattanaik

pattanaikhr wrote:
If you don't know , simply tell you don't know.Please don't coloring this forum.I'm sorry (no I'm not), but, you can't tell me what to post. And telling you that this was the wrong forum for your post, and providing you with another example of how it was wrong, is perfectly applicable.
I've some hope over this forum so that's why I have posted my questions here.And? I have a lot of "hope" for this forum, too. But, I don't expect to get applicable, informed answers on topics that have nothing to do with the advertised purpose of the forum.
IOW, if you want relevant, quality answers to a question, post it in the right place, and this isn't it.

Similar Messages

Any issues with using LDAP on LINUX for GRC 5.2 UME?

Our company is converting our LDAP servers from AIX to LINUX. The DNS name used in our UME connection should not change. Are there any issues with using LDAP on LINUX? We are currently on GRC 5.2 SP9 (in the middle of upgrading to SP12).
Also, I have been trying to connect our test UME system to a test LDAP box that has already been converted to LINUX but keep getting a 'connection failed' error when I try to test it.
Do you have to reboot the server to test changing the LDAP connections? I've been trying it by going into UME, pulling up the LDAP tab, hitting the Modify button, entering the new userid and password for test LDAP, and hitting the Test Connection button. I've verified that this userid and password is correct for test LDAP.
Is there a way to get more information about why the connection failed?
Thanks.

I've been told by our LDAP Support group that none of the other configuration settings should have to be changed. I should only have to change the id and password to connect to a test version of LDAP instead of our regular connection to the production LDAP.
Can you test a connection for a different userid/password without having to reboot/restart the server? Do I need to change these two settings, save then, reboot/restart, and then do the Test Connection button?
Thanks.

C/C++ version of LDAP SDK 4.1 for Linux platform

Hi All,
I am looking for C/C++ version of LDAP SDK 4.1 for Linux platform.
Do you have any pointer from where I could download this library?
Thanks in Advance,
Shyam Shukla

The only version available on sun.com is LDAP C-SDK 5.08 <http://www.sun.com/download/products.xml?id=3ec28dbd>
The 4.1 version is very old and no longer available.
Note that future versions of the LDAP C-SDK will be directly available from Mozilla.org as we've completed the merge of all of our changes back to Mozilla.org (this is with LDAP C-SDK 6.0.2).
Builds are not available yet, but should be soon.
Regards,
Ludovic.

Novell Client for Linux 2 beta & VMWare - bridged only?

OpenSUSE 11.1 with Novell Client for Linux 2.0 SP2 beta.
OpenSUSE is installed as a VMWare Workstation guest using NAT. When attempting to use contextless login, the Novell Client hangs. If you disable contextless login and then browse to the right context, you can login OK.
If you change the virtual NIC from NAT to Bridged, contextless login works fine. If at all possible, we need to use Bridged instead of NAT (long story).
Any idea what could be the problem? From what I can tell, SLP, DA, etc are set correctly, but I could be wrong.
Thanks.

Originally Posted by Thorsten Kampe
* mlazovjp (Mon, 14 Dec 2009 18:56:02 GMT)
> OpenSUSE 11.1 with Novell Client for Linux 2.0 SP2 beta.
>
> OpenSUSE is installed as a VMWare Workstation guest using NAT. When
> attempting to use contextless login, the Novell Client hangs. If you
> disable contextless login and then browse to the right context, you can
> login OK.
>
> If you change the virtual NIC from NAT to Bridged, contextless login
> works fine. If at all possible, we need to use Bridged instead of NAT
> (long story).
>
> Any idea what could be the problem? From what I can tell, SLP, DA, etc
> are set correctly, but I could be wrong.
Use NAT only if you need NAT - otherwise use bridged.
Thorsten
I was afraid that someone was goign to say something like that :)
We use port security hardware on our network, which will disable a port on the switch if it detects multiple MAC addresses on the same port. A virtual machine's bridged networking sets port security off and disables the port, so we have had to resort to NAT for all virtual machines. We can ask for exceptions to be made for a subset of our lab computers, but that is not an ideal solution.
Not only is that extra overhead for us to manage these exceptions, but we will not be able to realize our long-term goal of providing the virtual machine to our students to use on their personal notebooks since we cannot provide them port security exceptions.
I am still having problems grasping the reason that a contextless lookup (via LDAP, I assume) would misbehave while coming from a NATted connection but a bridged connection works fine on the exact same virtual machine. Shouldn't the communication between the VM and the LDAP server work properly either way??

Instant Client 10.2 for Linux now works with OID

The bug that broke LDAP support in 10.2.0.1 for Linux has been fixed,
the patch number is 4673628.
In case anybody is interested :^)
Yours,
Laurenz Albe

No, you'll have to download it from Metalink, which means that you need
a support contract.
Laurenz Albe

Cldapsdk for linux 64 bit AMD

We are using sun's cldapsdk as client library
to connect to LDAP server. Since we need to support
our software for linux 64 bit AMD platform we are
in great need for cldapsdk for the same platform.
Please let me know when are you planning
the release the client library for LDAP for the
above mentioned platform

Even I have the same problem. Is there any solution?

Networked Home Folders for Linux users

Is this possible in OS X server? I can't find any mention of it anywhere.
We recently acquired a group of animators who work in linux and would like their home folders remoted. i would also like to get them sucked into the same OD user structure to avoid multiple logins and such.
Is this possible and does anyone know of any resources to help?

All is possible with openLDAP (i.e. OD)!
So you want linux people to authenticate against OD, and have their home folders hosted by a Mac (or a linux box?)
I can tell you how I set up my Fedora 8 machine to authenticate against OD:
1. run authconfig utility as root and select LDAP as a source of authentication info. Since OD uses Kerberos you also want to select the Kerberos option.
2. enter all your OD info (ip, base to search, TLS or not etc).
authconfig should update /etc/nsswitch.conf to look to ldap for name services and it should give you a working /etc/ldap.conf and /etc/openldap/ldap.conf. You may need to make some changes by hand.
restart xserver (logout or reboot) and it should just work.
If your home folders are on the linux box you will need to set an NFS option so that OS X will properly mount your NFS export.
1. make sure linux machine has "insecure" option in its /etc/exports file and is exporting to samesubnet as your Macs.
2.
.... actually just follow these direction:
http://www.oreilly.com/pub/a/mac/2007/06/27/discover-the-power-of-open-directory -part-2.html

DNSDHCP Java Console for Linux usage question

Hi All,
This should be one of the simplest things, but it defeats me. I have downloaded and installed the DNSDHCP Java Console for Linux on my SLED11 workstation. I start it up and am presented with a login screen:
Server Address: [ ] Port: [ 636 ]
(e.g. 192.168.xxx.xxx)
Username: [ ]
(e.g. cn=admin,o=companyname)
Password: [ ]
[v] Use SSL
Questions:
Server address: is that supposed to be my OES DNS/DHCP server? Or my eDir server? I've tried each.
Username: is that supposed to be my tree admin? I've tried it.
Password: I think I got this one.
SSL: I *think* my server is set up for SSL, but I'm not sure. I've tried it both ways.
I have tried every combination except the one that works. Can anyone suggest something that I may be missing?
Thanks,
Toney.

Most of the time eDir servers default to SSL, and you have to check (or uncheck) the box under the LDAP Group object to require TLS authentication (or something like that)--so if you haven't done that then non-ssl will likely not work. I have had some boxes that wont do SSL though.... In that case, non-ssl usually works for me. You can also configure the same things under iManager.

What is the difference between 11i for LInux (VS) 11i for Windows

Hi,
I have downloaded 11i E-Business suit for Windows and
Installed it successfuly.
I am having problem with windows plateform regarding listner, connection manager, service host, rpc all these stopping/terminating by itself and system rebooting.
I would like to install 11i on Linux.
Q1. Which files I need to download again?
Q2. Is there any script I need to run for LInux?
I have run adautostg.pl and it hasnot given me any error for start cd but when it came to appl_top it said as "This is for windows, continue any way" and I said yes. so it made stage.
I can't run setup as user Oracle as it is not allowed to write on disk, can u also give me suggestion about that?
I am installing 11i on single node.
Q3. I can use the same files of windows for linux as
I saw some .sh shell commands and
startcd/rapidwiz/adautostg.pl is also used in
unix/linux.
Warm Regards,
Rashid.

I have run installation of 11i for windows on Linux plateform and now I would like to share it with u all.
1. I run adautostg.pl by using command $perl adautostg.pl and it has staged all the startcd disks without any error.
2. when it came to other cdies it has prompted me as "this file if for windows; continue any way" and I pressed ok and it has staged all the files without any furthur error.
3. After it, I have made the necessary adjustments to run rapidwiz command and it run successfully. Now it has copied all the 113 files successfuly.It has run adrun9i.sh and is giving me error on process 5. (at 20% of installation) that it cannot run files
adcctclean.sql INSTE8
adclobconv.sql INSTE8
adclobtmp.sql INSTE8
adcmclean.sql INSTE8
adcrdb.sh INSTE8
adcrdbrdlg.sh INSTE8
adcrobj.sh INSTE8_APPLY
adcrobj.sql INSTE8
addbccnv.sql INSTE8
addbprf.sh INSTE8
addbprf.sql INSTE8
addbupdgsm.sql INSTE8
adlicnse.sql INSTE8
adsvdb.sh INSTE8
adsvdcnv.sh INSTE8
adsvdlsn.sh INSTE8
adupdlib.sql INSTE8
afdbprf.sh INSTE8_PRF
afdbprf.sql INSTE8
afmkinit.sh INSTE8_SETUP
Directory: /mnt/hda7/proddb/9.2.0/appsutil/install
adlnkoh.sh INSTE8
Directory: /mnt/hda7/proddb/9.2.0/appsutil/scripts/PROD_localhost
adautocfg.sh INSTE8
adchknls.pl INSTE8_SETUP
addbctl.sh INSTE8
addlnctl.sh INSTE8
adpreclone.pl INSTE8
adstopdb.sql INSTE8
adstrtdb.sql INSTE8
config.c INSTE8
successfuly. I think these files are required for linux installation and are found in linux cdies "RDBMS".
If someone can send me these 11i files for linux at [email protected] I will proceed furthur and will let u know what will happend next in experiment :)

Oracle Workflow 2.6 with Oracle 8.1.7 for linux

Is Oracle Workflow Server 2.6 available for Linux as a
standalone product against an Oracle 8.1.7 database?
Oracle Workflow does not seem to be included in the Integration
Server option with the 8.1.7 installation.
I've only found the Oracle Workflow Server included with the 9i
database. Will this work with 8.1.7 as well or does it require
9i db?
Thanks in advance for your help,
Josi Antonio

Is Oracle Workflow Server 2.6 available for Linux as a
standalone product against an Oracle 8.1.7 database?
Oracle Workflow does not seem to be included in the Integration
Server option with the 8.1.7 installation.
I've only found the Oracle Workflow Server included with the 9i
database. Will this work with 8.1.7 as well or does it require
9i db?
Thanks in advance for your help,
Josi Antonio

Oracle8i for Linux Release announcement

I received a copy of this Oracle marketing announcement today:
The Linux tidal wave continues and Oracle is right at the
forefront. We have
been experiencing tremendous demand on Linux since Oracle8 was
announced for
that platform last October. Over 50,000 developers have
downloaded Oracle8
for Linux from Oracle Technology Network (OTN) since March, with
the first
20,000 coming in just the first 10 days! We now have over 800
paying
customers with over half the orders coming from enterprise
accounts and most
of the remainder orders from mid-sized businesses.
This week Oracle is announcing the shipping of Oracle8i for
Linux. Already,
20,000 developers have registered for early access. With new
internet
technologies like Java and XML built right into Oracle8i for
Linux, this
release promises to be the hottest yet.
Read on for more information about:
- What are we announcing?
- What are the key messages?
- What is the pricing for Oracle8i on Linux?
- Why does Oracle care about Linux?
- Who are Oracle's major Linux Partners?
- Which products are available on Linux?
- Who is driving the Oracle on Linux effort and what are we
doing?
- Where to find more information about Oracle on Linux?
What are we announcing?
Oracle is announcing today that it has been receiving extremely
strong demand
for its Linux based products over the past quarter and is also
shipping
Oracle8i for Linux to manufacturing.
What are the key messages?
Linux represents the ultimate commodity operating system -- its
fast, reliable
and almost free! Businesses can now spend their time focusing on
the higher
value software they buy to run their businesses (such as
databases and applications).
With over 800 customers paying for Oracle on Linux, Linux is
progressing from
its roots as a student and developer operating system to a viable
deployment
environment in large business.
Oracle has the best database on Linux. With over 50,000 people
using Oracle8
and over 20,000 people registered through Oracle Technology
Network (OTN) for
Oracle8i, Oracle is the overwhelming choice for the Linux
operating system.
What is the pricing for Oracle8i on Linux?
Pricing of Oracle8i on Linux follows the standard Oracle price
list (see
http://appsweb.us.oracle.com/amapp/). Linux may be a freeware
operating
system, but Oracle on Linux is not free. Oracle does offer
developer licenses
through Oracle Technology Network (OTN) which allows developers
to use Oracle
software for non-commercial use.
Why does Oracle care about Linux?
Linux is hot! It is rapidly becoming the preferred platform for
small ISP's
and is used extensively by many of the internet's largest portal
sites. For
Oracle, Linux is the fastest growing operating system, growing at
three times
that of WindowsNT. Oracle on Linux presents customers a viable
low-cost, yet
highly stable alternative to WindowsNT. That said, with 46% of
the NT market,
Oracle is also the best selling database on NT!
Oracle now has over 800 customers on Linux. This statistic alone
strongly
contradicts the common perception that Linux is solely used by
students and
developers. Linux has already established a foothold in many
Fortune 100
companies and although deployments are still currently small
compared to NT
and Solaris, they are accelerating rapidly.
Which products are available on Linux?
Currently available on Linux are:
- Oracle8.0.5 Standard and Enterprise Edition
- Oracle8i Release 8.1.5
- Oracle Application Server 4.0.7 (40 Bit)
- Oracle Application Server 3.0.2 (40 Bit)
- Oracle WebDB 2.0.5.6.1
Who are Oracle's major Linux Partners?
Redhat Software - Linux distributors. Oracle has also made an
equity
investment in RedHat. (http://www.redhat.com)
Caldera System - Linux distributors. Novell spin-off, focus
primarily on
enterprise customers. (http://www.caldera.com)
Turbolinux - Linux distributor. Has a mostly Asia presence.
(http://www.turbolinux.com)
VA Linux Systems - Hardware vendor, making Linux systems.
(http://www.linux.com)
Linuxcare - Linux support provider. (http://www.linuxcare.com)
Who is driving the Oracle on Linux effort?
There are two teams within Oracle working closely to drive the
Oracle strategy
and goals on Linux: Internet Platform Marketing and the Linux SBU
(Strategic
Business Unit).
Where to find more information about Oracle on Linux?
Internal: http://worldwide-marketing.us.oracle.com/iPlatform
External: http://platforms.oracle.com/linux
http://technet.oracle.com
Email [email protected]
Contacts: Hongwei Lu ([email protected])
David Lee ([email protected])
Press Release
ORACLE CAPITALIZES ON ENTERPRISE DEMAND FOR LINUX OFFERINGS WITH
ANNOUNCEMENT
OF ORACLE8i ON LINUX
Early Adopters Programs Draws Nearly 20,000 Developers
REDWOOD SHORES, Calif., July 19, 1999--Oracle Corporation, the
number one
choice for e-business, today announced dramatic growth and demand
for Oracle
on Linux with strong adoption in both enterprise and general
business markets.
Oracle also announced the general availability of Oracle8i on
Linux, after a
successful early adopter's program.
Since Oracle Corp. announced Oracle8 on Linux, there have been
over 50,000
downloads from Oracle Technology Network
(http://technet.oracle.com/ ). Now,
after the announcement of Oracle8i, there have been nearly 20,000
registrants
for early access in the first few weeks. Outside the development
community,
Oracle has also seen overwhelming customer adoption with an
excess of 800
paying customers today -- over half of these orders from
enterprise accounts
and the remainder from small to mid-sized businesses and
organizations.
"Until the availability of Oracle database on Linux, we either
had to rely on
NT or use one of the shareware database servers available for
Linux," says
Jonathan August, President and CEO of Internection, Inc., a
company providing
customized Internet services solutions to businesses, including
web hosting
and e-commerce solutions. "Neither solution provided us the
security,
performance, manageability or reliability required by our
customers. Oracle
brings enterprise credibility and robustness to our products. As
a result,
we've gained access to customers ranging from small businesses to
Fortune 100
enterprises like Prudential and Pfizer. Our total revenue since
the addition
of Oracle on Linux has increased by 250%."
"Oracle on Linux combines enterprise level reliability,
scalability and
performance with a free, robust and well-supported operating
system," says
Nick Marden, technical director of e-commerce, Xoom.com, and
e-commerce
service provider. "It enables Xoom.com to better understand our
members'
needs and respond to them quickly. Oracle on Linux represents an
extraordinary value and it gets the job done."
"Oracle is committed to bringing superior technology to the Linux
community,"
says Chuck Rozwat, senior vice president of Server Technologies
at Oracle.
"Oracle8i on Linux comes with both Java and XML built right in.
Together they
offer the most cost-effective way to deploy scalable Internet
applications."
Oracle8i is the first and only database specifically designed for
the
Internet. Oracle8i extends Oracle's long-standing technology
leadership in
the areas of data management, transaction processing and data
warehousing to
the new medium of the Internet. Oracle8i is the centerpiece of
Oracle's
Internet Platform, which also includes Oracle Application Server
and Oracle's
Internet development tools.
Oracle Corporation is the world's leading supplier of software
for information
management, and the world's second largest software company.
With annual
revenues of more than $8.8 billion, the company offers its
database,
application server, tools and application products, along with
related
consulting, education and support services, in more than 145
countries around
the world.
For more information about Oracle, please call 650/506-7000.
Oracle's World
Wide Web address is (URL) http://www.oracle.com/.
Trademarks
Oracle is a registered trademark and Oracle8i is a trademark or
registered
trademark of Oracle corporation. Other names may be trademarks
of their
respective owners.
Oracle Worldwide Marketing
null

Yeah, I got a couple of those....but if you go to Oracle, there
is nothing about it, and nothing new on the OTN download...
We can hope...
DAVID
Jamie Kinney (guest) wrote:
: I received a copy of this Oracle marketing announcement today:
: The Linux tidal wave continues and Oracle is right at the
: forefront. We have
: been experiencing tremendous demand on Linux since Oracle8 was
: announced for
: that platform last October. Over 50,000 developers have
: downloaded Oracle8
: for Linux from Oracle Technology Network (OTN) since March,
with
: the first
: 20,000 coming in just the first 10 days! We now have over 800
: paying
: customers with over half the orders coming from enterprise
: accounts and most
: of the remainder orders from mid-sized businesses.
: This week Oracle is announcing the shipping of Oracle8i for
: Linux. Already,
: 20,000 developers have registered for early access. With new
: internet
: technologies like Java and XML built right into Oracle8i for
: Linux, this
: release promises to be the hottest yet.
: Read on for more information about:
: - What are we announcing?
: - What are the key messages?
: - What is the pricing for Oracle8i on Linux?
: - Why does Oracle care about Linux?
: - Who are Oracle's major Linux Partners?
: - Which products are available on Linux?
: - Who is driving the Oracle on Linux effort and what are we
: doing?
: - Where to find more information about Oracle on Linux?
: What are we announcing?
: Oracle is announcing today that it has been receiving extremely
: strong demand
: for its Linux based products over the past quarter and is also
: shipping
: Oracle8i for Linux to manufacturing.
: What are the key messages?
: Linux represents the ultimate commodity operating system -- its
: fast, reliable
: and almost free! Businesses can now spend their time focusing
on
: the higher
: value software they buy to run their businesses (such as
: databases and applications).
: With over 800 customers paying for Oracle on Linux, Linux is
: progressing from
: its roots as a student and developer operating system to a
viable
: deployment
: environment in large business.
: Oracle has the best database on Linux. With over 50,000 people
: using Oracle8
: and over 20,000 people registered through Oracle Technology
: Network (OTN) for
: Oracle8i, Oracle is the overwhelming choice for the Linux
: operating system.
: What is the pricing for Oracle8i on Linux?
: Pricing of Oracle8i on Linux follows the standard Oracle price
: list (see
: http://appsweb.us.oracle.com/amapp/). Linux may be a freeware
: operating
: system, but Oracle on Linux is not free. Oracle does offer
: developer licenses
: through Oracle Technology Network (OTN) which allows developers
: to use Oracle
: software for non-commercial use.
: Why does Oracle care about Linux?
: Linux is hot! It is rapidly becoming the preferred platform
for
: small ISP's
: and is used extensively by many of the internet's largest
portal
: sites. For
: Oracle, Linux is the fastest growing operating system, growing
at
: three times
: that of WindowsNT. Oracle on Linux presents customers a viable
: low-cost, yet
: highly stable alternative to WindowsNT. That said, with 46% of
: the NT market,
: Oracle is also the best selling database on NT!
: Oracle now has over 800 customers on Linux. This statistic
alone
: strongly
: contradicts the common perception that Linux is solely used by
: students and
: developers. Linux has already established a foothold in many
: Fortune 100
: companies and although deployments are still currently small
: compared to NT
: and Solaris, they are accelerating rapidly.
: Which products are available on Linux?
: Currently available on Linux are:
: - Oracle8.0.5 Standard and Enterprise Edition
: - Oracle8i Release 8.1.5
: - Oracle Application Server 4.0.7 (40 Bit)
: - Oracle Application Server 3.0.2 (40 Bit)
: - Oracle WebDB 2.0.5.6.1
: Who are Oracle's major Linux Partners?
: Redhat Software - Linux distributors. Oracle has also made an
: equity
: investment in RedHat. (http://www.redhat.com)
: Caldera System - Linux distributors. Novell spin-off, focus
: primarily on
: enterprise customers. (http://www.caldera.com)
: Turbolinux - Linux distributor. Has a mostly Asia presence.
: (http://www.turbolinux.com)
: VA Linux Systems - Hardware vendor, making Linux systems.
: (http://www.linux.com)
: Linuxcare - Linux support provider. (http://www.linuxcare.com)
: Who is driving the Oracle on Linux effort?
: There are two teams within Oracle working closely to drive the
: Oracle strategy
: and goals on Linux: Internet Platform Marketing and the Linux
SBU
: (Strategic
: Business Unit).
: Where to find more information about Oracle on Linux?
: Internal: http://worldwide-marketing.us.oracle.com/iPlatform
: External: http://platforms.oracle.com/linux
: http://technet.oracle.com
: Email [email protected]
: Contacts: Hongwei Lu ([email protected])
: David Lee ([email protected])
: Press Release
: ORACLE CAPITALIZES ON ENTERPRISE DEMAND FOR LINUX OFFERINGS
WITH
: ANNOUNCEMENT
: OF ORACLE8i ON LINUX
: Early Adopters Programs Draws Nearly 20,000 Developers
: REDWOOD SHORES, Calif., July 19, 1999--Oracle Corporation, the
: number one
: choice for e-business, today announced dramatic growth and
demand
: for Oracle
: on Linux with strong adoption in both enterprise and general
: business markets.
: Oracle also announced the general availability of Oracle8i on
: Linux, after a
: successful early adopter's program.
: Since Oracle Corp. announced Oracle8 on Linux, there have been
: over 50,000
: downloads from Oracle Technology Network
: (http://technet.oracle.com/ ). Now,
: after the announcement of Oracle8i, there have been nearly
20,000
: registrants
: for early access in the first few weeks. Outside the
development
: community,
: Oracle has also seen overwhelming customer adoption with an
: excess of 800
: paying customers today -- over half of these orders from
: enterprise accounts
: and the remainder from small to mid-sized businesses and
: organizations.
: "Until the availability of Oracle database on Linux, we either
: had to rely on
: NT or use one of the shareware database servers available for
: Linux," says
: Jonathan August, President and CEO of Internection, Inc., a
: company providing
: customized Internet services solutions to businesses, including
: web hosting
: and e-commerce solutions. "Neither solution provided us the
: security,
: performance, manageability or reliability required by our
: customers. Oracle
: brings enterprise credibility and robustness to our products.
As
: a result,
: we've gained access to customers ranging from small businesses
to
: Fortune 100
: enterprises like Prudential and Pfizer. Our total revenue
since
: the addition
: of Oracle on Linux has increased by 250%."
: "Oracle on Linux combines enterprise level reliability,
: scalability and
: performance with a free, robust and well-supported operating
: system," says
: Nick Marden, technical director of e-commerce, Xoom.com, and
: e-commerce
: service provider. "It enables Xoom.com to better understand
our
: members'
: needs and respond to them quickly. Oracle on Linux represents
an
: extraordinary value and it gets the job done."
: "Oracle is committed to bringing superior technology to the
Linux
: community,"
: says Chuck Rozwat, senior vice president of Server Technologies
: at Oracle.
: "Oracle8i on Linux comes with both Java and XML built right in.
: Together they
: offer the most cost-effective way to deploy scalable Internet
: applications."
: Oracle8i is the first and only database specifically designed
for
: the
: Internet. Oracle8i extends Oracle's long-standing technology
: leadership in
: the areas of data management, transaction processing and data
: warehousing to
: the new medium of the Internet. Oracle8i is the centerpiece of
: Oracle's
: Internet Platform, which also includes Oracle Application
Server
: and Oracle's
: Internet development tools.
: Oracle Corporation is the world's leading supplier of software
: for information
: management, and the world's second largest software company.
: With annual
: revenues of more than $8.8 billion, the company offers its
: database,
: application server, tools and application products, along with
: related
: consulting, education and support services, in more than 145
: countries around
: the world.
: For more information about Oracle, please call 650/506-7000.
: Oracle's World
: Wide Web address is (URL) http://www.oracle.com/.
: Trademarks
: Oracle is a registered trademark and Oracle8i is a trademark or
: registered
: trademark of Oracle corporation. Other names may be trademarks
: of their
: respective owners.
: Oracle Worldwide Marketing
null

Is there really a Cisco VPN client for Linux? _Really?_

Hello folks,
        I've finally after almost experiencing a brain aneurysm by trying to think too hard got my Cisco 881-SEC-K9 router properly configured for a multipoint IPSec VPN tunnel to my Amazon Virtual Private Cloud, so that hurdle is finally passed and I actually feel it was a very important milestone in my life somehow. I never thought I'd see the day I actually got my hands on a legitimate Cisco non-stink... erm.. I mean, non-linksys router. Now I just can't seem to find a 'client' VPN program for Linux. I'm currently running a Xen Hypervisor environment on openSUSE Linux because it's the only Linux distribution that completes all of my strenous requirements in a Linux server environment. It's also the most mature, and secure Linux on this planet, making it the most appreciable Linux distribution for my research needs. Using NetworkManager is not really an option for a basic Linux server environment, and OpenVPN is just too confusing to comprehend for my tiny little head. I've heard mention of some mysterious "Easy VPN" but after hours of digging online can't find any information about it, even the Cisco download link leads to a Page Not Found error. I do see a Linux VPN API for the AnyConnect program, but is that an actual VPN client, or just an API? It seems to want my money to download it but I don't have any money nor do I really know what it is because it's all secretive-like, closed source, and I can't even find a simple README file on it explaining what it is exactly. I'm just an out-of-work software developer trying to connect to my home router for personal use and I can't really afford to fork over a million and a half dollars for a single program that I'm only going to need to download once in my lifetime that should have been included with the router in the first place. I more than likely won't even be able to figure out how to use the program anyways because I don't know anything about VPN connections which is why I bought this router so I can try to figure it all out as part of the not-for-profit open source, volunteer research I'm presently trying to conduct. Is there some kind of evaluation or trial period for personal use? That would be really nice so I could at least figure out if I'm going to be able to figure it out or not. I hate throwing money away when it's in such short supply these days. There's really no alternative to a Cisco router. It's an absolute necessity for the things I'm trying to accomplish, so trying to settle for something else and going on with my life is not really an option. No, this is something I just need to face head on and get it over with.
<Rant>
       Maybe I have a little too much crazy in me for my own good, but I don't see why it should take so much money just to learn how to do something for personal reference, it's not really a skill I would ever use otherwise. Wouldn't it be great if Cisco made their VPN client open source and free to the public to use and modify, to improve on, to learn and to grow and bring the whole world closer together as a community? Even the source code to the old discontinued Cisco VPN client could be used as a valuable learning tool for some poor starving college student or Open Source Software developer somewhere trying to get by on Ramen Noodles and Ramen Noodle Sauce on Toast (don't tell me you never thought about it). Through the ripple effect, It would drastically improve sales over the course of time, because it would open the door to a whole new market where those who previously could not afford to participate now could. That's the true power of Open Source. It creates a more skilled work force for the future by openly contributing and sharing knowledge together. What if the next big internet technology and the solution to world tyranny - the solution to end all wars forever - were locked in the mind of an unemployed software developer who couldn't afford to upgrade their cisco router software or access the software they needed because it was closed source and required committing to an expensive service contract to download? That would be just terrible, wouldn't it? I guess there's no way to ever know for sure. I suppose I'd be just as happy if some kind soul out there could point me to an easy to use alternative to an always on VPN connection that runs in the background which doesn't require NetworkManager or having to spend days upon days digging through and trying to comprehend either some really poor or extremely complex documentation? I apologize for all the run on sentences posed as questions, but I've just got some serious mental burnout from all of this, being unemployed is some hard work folks. I could really use a vacation. Perhaps a camping trip to the coast is in order after I get this working, that sounds nice, doesn't it? Nothing like a good summer thunder storm on the ocean beach - far away from technology - to refresh the mind.
</Rant>

I do tend to talk too much and I don't mince any words either. What I am however, is really appreciative for the help. I know you hear that all the time, but you have no idea how much time and headache you just saved me. I think vpnc might be just what I've been looking for, unless someone can think of a client for Linux that I might be able to throw a little further. I'm very security minded now, after the backlash of Blackhat 2013, there's no telling which direction the internet might head next. Oh, you didn't hear? Well wether they realize it or not, DARPA basically declared war with other government agencies by releasing their own version of a spy program for civilians to use against the whoever -- possibly even the governmnet itself. They even went so far as to suggest it's private usage to blanket entire cities in information gathering. Civilians are a powerful foe, as they are not bound by the oath of office, any evidence they obtain is admissible in court, wether they know that or not. There's a very important reason for that. It's to prevent another civil war from ever happening, we shed enough blood the first time around less people forgot. It's something that can and will be avoided because our civilization has advanced beyond the need for bloodshed. The courts have to obey the majority rule, no matter what. For the first time in history, cyberwarfare can reach into the physical world to cause serious damage to physical structures like the nuclear facility incident in Iran. There's scarry bills trying to sneak through congress that are changing the landscape of technology forever for the entire world. We're at a pivotal point now where things can happen. It will be interesting to see how it all plays out over the next decade or so. No matter which way you look at it, just be preparerd to sell a whole lot of routers.

[SOLVED] Lousy fonts with .chm viewer for Linux

I installed the .chm file viewer HelpExplorer 3.0 in both Windows XP and Arch Linux (chm = compiled HTML help file). In Windows XP, with default fonts installed, the fonts in text read with this viewer appear crisp, sharp and anti-aliased. In Arch with KDE 3.5.7, on the other hand, the fonts appear fuzzy, grainy and don't seem to be anti-aliased, in contrast with their appearance in all other apps (except for a few such as Dillo) which render text good-looking, sharp and anti-aliased.
HelpExplorer for Linux was provided as a tarball that included a precompiled 'helpexplorer' binary. The program doesn't seem to allow for customizing font settings.
The following fonts are installed in Arch (in /usr/share/fonts/):
ttf-bitstream-vera-1.10-5 is installed by default
gsfonts 8.11-4 is installed by default
PostScript Type 1 fonts installed: Century Schoolbook, Nimbus, URW Bookman, URW Gothic, URW Palladio
ttf-ms-fonts-2.0-1 (Microsoft TTF: Andale Mono, Arial, Comic, Courier, Georgia, Impact, Tahoma, Times New Roman, Trebuchet)
font-bh-ttf-1.0.0-3 (Luxi BH)
xorg-fonts-100dpi-1.0.1-1 (courier, helvetica, lucida, new century, times)
The "Files" section of my xorg.conf looks as follows:
Section "Files"
RgbPath "/usr/share/X11/rgb"
ModulePath "/usr/lib/xorg/modules"
FontPath "/usr/share/fonts/misc:unscaled"
FontPath "/usr/share/fonts/misc"
FontPath "/usr/share/fonts/75dpi:unscaled"
FontPath "/usr/share/fonts/75dpi"
FontPath "/usr/share/fonts/100dpi:unscaled"
FontPath "/usr/share/fonts/100dpi"
FontPath "/usr/share/fonts/PEX"
# Additional fonts: Locale, Gimp, TTF...
FontPath "/usr/share/fonts/cyrillic"
# FontPath "/usr/share/lib/X11/fonts/latin2/75dpi"
# FontPath "/usr/share/lib/X11/fonts/latin2/100dpi"
# True type and type1 fonts are also handled via xftlib, see /etc/X11/XftConfig!
FontPath "/usr/share/fonts/Type1"
FontPath "/usr/share/fonts/ttf/western"
FontPath "/usr/share/fonts/ttf/decoratives"
FontPath "/usr/share/fonts/truetype"
FontPath "/usr/share/fonts/truetype/openoffice"
FontPath "/usr/share/fonts/truetype/ttf-bitstream-vera"
FontPath "/usr/share/fonts/latex-ttf-fonts"
FontPath "/usr/share/fonts/defoma/CID"
FontPath "/usr/share/fonts/defoma/TrueType"
EndSection
I've attached a screenshot of some text displayed in the HelpExplorer reader in Arch (the font is Times New Roman): http://img216.imageshack.us/my.php?imag … ot1zh9.png
[img=http://img216.imageshack.us/img216/8401/snapshot1zh9.th.png]
What do I need to do to improve the font appearance in this program in Linux?
Last edited by RobF (2007-10-02 18:06:46)

I found a solution of sorts by installing and running the Windows version of HelpExplorer in Wine or Crossover. There is still very little control over fonts but when I enlarge the default font (with 2x CTRL-+) I do get a nice-looking anti-aliased Times New Roman font, and this solution would be my preferred way of reading .chm files in Linux (i.e. better than KchmViewer or Xchm).
Recap of the problem:
1. The .chm viewer HelpExplorer Viewer 3.0 when installed in Windows XP renders fonts crisp and clear and anti-aliased.
2. The Linux version of HelpExplorer Viewer 3.0 (delivered as a precompiled executable in a tarball) doesn't render fonts antialiased, regardless of what I tried, and they look grainy and unattractive.
3. The Windows version of HelpExplorer Viewer 3.0 when installed and run in Arch in Wine or Crossover does render the default font they offer (looks like Times New Roman) fairly crisp and clear and anti-aliased, at least at the enlarged setting.
Can someone explain to me what might be going on? Why is it that the Linux version cannot render fonts anti-aliased when the Windows version running in the emulator in Linux can? Is there something that I have to change in my fonts config, fonts location, symlinks or path to get the anti-aliased fonts to work in HelpExplorer in Linux?
Robert

Konqueror browser for Linux has an useful CPU limitation feature for websites using Flash content. Can you add such a feature in Firefox?

I have recently found that Konqueror browser for Linux can help user to limit cpu usage while visiting a website using flash technology by changing settings in the Flash section and adjusting the slider from VERY HIGH settings to HIGH and MEDIUM and so on. It actually works, and it does not have a direct impact on the general performance for flash player but it may generate some conflicts if other extensions such as add-blocker or click-to-flash are enabled also.
Maybe you can add a similar setting in Firefox in the browser option section or just as an useful addon or extension.

Sorry for being late with my reply. I've just tested that addon that you mentioned in your post ( https://addons.mozilla.org/en-US/fire.../system-monitor/ ) , it looks like a system monitor and nothing more than that.
As for the memory tip ( about:memory ) I agree that it can be extremely useful for users that have less than 1 gb memory installed on their system. I know very little about computers but I can tell your tip for optimizing memory usage in firefox has merits.
Me, I have another problem with cpu overload in Firefox, Internet Explorer, Opera and most of the browsers with flash support enabled. Each and every time time I visit a page that features all sort of adds and gadgets based on flash technology, and each time I try to watch a video online my cpu goes all the way up to 100% and stays there until i finally decide to close the browser.
I am running winxp and also linux on a Dell Optiplex GX260 machine with 2000 MHz cpu, 1024 Mib ram and 128 Mib video card, it is not the best computer in the world but still 2000 MHz should be enough for a limited and uneventful web experience.
It is not as much an issue with the web browser, any browser, the whole problem is caused by funny people claiming to be deeply involved with web development, and promoting flash technology for ages instead of choosing other alternatives, more user friendly. All I am saying is that flash ruined the entire web experience making people to believe that they actually need dual-core cpu and coreduo and deepfreeze cpu and so on which is only partially true.
I always get better results for cpu usage when watching online videos that use media player as default player and not flash player, and my cpu stays below 70% usage which is not much but still it is not 100% usage.
Konqueror offered me a nice surprise, and I was able to limit cpu usage once I moved that slider from Very High setttings for flash player to Medium settings. I got something between 80-90% cpu usage as a result, and I was very pleased to finally see a working solution to my problem at least for linux if not for windows.
The only other browser that I can use for windows only, which handles both flash player and cpu usage well is Kmeleon browser which is a long forgotten project but does offer nice features once you find some plugins that it needs to make it come to life again.

Pam.conf does not use ldap for password length check when changing passwd

I have already posted this in the directory server forum but since it is to do with pam not using ldap I thought there might be some pam experts who check this forum.
I have dsee 6.0 installed on a solaris 10 server (client).
I have a solaris 9 server (server) set up to use ldap authentication.
bash-2.05# cat /var/ldap/ldap_client_file
# Do not edit this file manually; your changes will be lost.Please use ldapclient (1M) instead.
NS_LDAP_FILE_VERSION= 2.0
NS_LDAP_SERVERS= X, Y
NS_LDAP_SEARCH_BASEDN= dc=A,dc= B,dc= C
NS_LDAP_AUTH= tls:simple
NS_LDAP_SEARCH_REF= FALSE
NS_LDAP_SEARCH_SCOPE= one
NS_LDAP_SEARCH_TIME= 30
NS_LDAP_SERVER_PREF= X.A.B.C, Y.A.B.C
NS_LDAP_CACHETTL= 43200
NS_LDAP_PROFILE= tls_profile
NS_LDAP_CREDENTIAL_LEVEL= proxy
NS_LDAP_SERVICE_SEARCH_DESC= passwd:ou=People,dc=A,dc=B,dc=com?one
NS_LDAP_SERVICE_SEARCH_DESC= group:ou=People,dc=A,dc=B,dc=C?one
NS_LDAP_SERVICE_SEARCH_DESC= shadow:ou=People,dc=A,dc=B,dc=C?one
NS_LDAP_BIND_TIME= 10
bash-2.05# cat /var/ldap/ldap_client_cred
# Do not edit this file manually; your changes will be lost.Please use ldapclient (1M) instead.
NS_LDAP_BINDDN= cn=proxyagent,ou=profile,dc=A,dc=B,dc=C
NS_LDAP_BINDPASSWD= {NS1}6ff7353e346f87a7
bash-2.05# cat /etc/nsswitch.conf
# /etc/nsswitch.ldap:
# An example file that could be copied over to /etc/nsswitch.conf; it
# uses LDAP in conjunction with files.
# "hosts:" and "services:" in this file are used only if the
# /etc/netconfig file has a "-" for nametoaddr_libs of "inet" transports.
# the following two lines obviate the "+" entry in /etc/passwd and /etc/group.
passwd: files ldap
group: files ldap
# consult /etc "files" only if ldap is down.
hosts: files dns
ipnodes: files
# Uncomment the following line and comment out the above to resolve
# both IPv4 and IPv6 addresses from the ipnodes databases. Note that
# IPv4 addresses are searched in all of the ipnodes databases before
# searching the hosts databases. Before turning this option on, consult
# the Network Administration Guide for more details on using IPv6.
#ipnodes: ldap [NOTFOUND=return] files
networks: files
protocols: files
rpc: files
ethers: files
netmasks: files
bootparams: files
publickey: files
netgroup: ldap
automount: files ldap
aliases: files ldap
# for efficient getservbyname() avoid ldap
services: files ldap
sendmailvars: files
printers: user files ldap
auth_attr: files ldap
prof_attr: files ldap
project: files ldap
bash-2.05# cat /etc/pam.conf
#ident "@(#)pam.conf 1.20 02/01/23 SMI"
# Copyright 1996-2002 Sun Microsystems, Inc. All rights reserved.
# Use is subject to license terms.
# PAM configuration
# Unless explicitly defined, all services use the modules
# defined in the "other" section.
# Modules are defined with relative pathnames, i.e., they are
# relative to /usr/lib/security/$ISA. Absolute path names, as
# present in this file in previous releases are still acceptable.
# Authentication management
# login service (explicit because of pam_dial_auth)
login auth requisite pam_authtok_get.so.1 debug
login auth required pam_dhkeys.so.1 debug
login auth required pam_dial_auth.so.1 debug
login auth binding pam_unix_auth.so.1 server_policy debug
login auth required pam_ldap.so.1 use_first_pass debug
# rlogin service (explicit because of pam_rhost_auth)
rlogin auth sufficient pam_rhosts_auth.so.1
rlogin auth requisite pam_authtok_get.so.1
rlogin auth required pam_dhkeys.so.1
rlogin auth binding pam_unix_auth.so.1 server_policy
rlogin auth required pam_ldap.so.1 use_first_pass
# rsh service (explicit because of pam_rhost_auth,
# and pam_unix_auth for meaningful pam_setcred)
rsh auth sufficient pam_rhosts_auth.so.1
rsh auth required pam_unix_auth.so.1
# PPP service (explicit because of pam_dial_auth)
ppp auth requisite pam_authtok_get.so.1
ppp auth required pam_dhkeys.so.1
ppp auth required pam_dial_auth.so.1
ppp auth binding pam_unix_auth.so.1 server_policy
ppp auth required pam_ldap.so.1 use_first_pass
# Default definitions for Authentication management
# Used when service name is not explicitly mentioned for authenctication
other auth requisite pam_authtok_get.so.1 debug
other auth required pam_dhkeys.so.1 debug
other auth binding pam_unix_auth.so.1 server_policy debug
other auth required pam_ldap.so.1 use_first_pass debug
# passwd command (explicit because of a different authentication module)
passwd auth binding pam_passwd_auth.so.1 server_policy debug
passwd auth required pam_ldap.so.1 use_first_pass debug
# cron service (explicit because of non-usage of pam_roles.so.1)
cron account required pam_projects.so.1
cron account required pam_unix_account.so.1
# Default definition for Account management
# Used when service name is not explicitly mentioned for account management
other account requisite pam_roles.so.1 debug
other account required pam_projects.so.1 debug
other account binding pam_unix_account.so.1 server_policy debug
other account required pam_ldap.so.1 no_pass debug
# Default definition for Session management
# Used when service name is not explicitly mentioned for session management
other session required pam_unix_session.so.1
# Default definition for Password management
# Used when service name is not explicitly mentioned for password management
other password required pam_dhkeys.so.1 debug
other password requisite pam_authtok_get.so.1 debug
other password requisite pam_authtok_check.so.1 debug
other password required pam_authtok_store.so.1 server_policy debug
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optional pam_krb5.so.1 try_first_pass
#cron account optional pam_krb5.so.1
#other account optional pam_krb5.so.1
#other session optional pam_krb5.so.1
#other password optional pam_krb5.so.1 try_first_pass
I can ssh into client with user VV which does not exist locally but exists in the directory server. This is from /var/adm/messages on the ldap client):
May 17 15:25:07 client sshd[26956]: [ID 634615 auth.debug] pam_authtok_get:pam_sm_authenticate: flags = 0
May 17 15:25:11 client sshd[26956]: [ID 896952 auth.debug] pam_unix_auth: entering pam_sm_authenticate()
May 17 15:25:11 client sshd[26956]: [ID 285619 auth.debug] ldap pam_sm_authenticate(sshd VV), flags = 0
May 17 15:25:11 client sshd[26956]: [ID 509786 auth.debug] roles pam_sm_authenticate, service = sshd user = VV ruser = not set rhost = h.A.B.C
May 17 15:25:11 client sshd[26956]: [ID 579461 auth.debug] pam_unix_account: entering pam_sm_acct_mgmt()
May 17 15:25:11 client sshd[26956]: [ID 724664 auth.debug] pam_ldap pam_sm_acct_mgmt: illegal option no_pass
May 17 15:25:11 client sshd[26956]: [ID 100510 auth.debug] ldap pam_sm_acct_mgmt(VV), flags = 0
May 17 15:25:11 client sshd[26953]: [ID 800047 auth.info] Accepted keyboard-interactive/pam for VV from 10.115.1.251 port 2703 ssh2
May 17 15:25:11 client sshd[26953]: [ID 914923 auth.debug] pam_dhkeys: no valid mechs found. Trying AUTH_DES.
May 17 15:25:11 client sshd[26953]: [ID 499478 auth.debug] pam_dhkeys: get_and_set_seckey: could not get secret key for keytype 192-0
May 17 15:25:11 client sshd[26953]: [ID 507889 auth.debug] pam_dhkeys: mech key totals:
May 17 15:25:11 client sshd[26953]: [ID 991756 auth.debug] pam_dhkeys: 0 valid mechanism(s)
May 17 15:25:11 client sshd[26953]: [ID 898160 auth.debug] pam_dhkeys: 0 secret key(s) retrieved
May 17 15:25:11 client sshd[26953]: [ID 403608 auth.debug] pam_dhkeys: 0 passwd decrypt successes
May 17 15:25:11 client sshd[26953]: [ID 327308 auth.debug] pam_dhkeys: 0 secret key(s) set
May 17 15:25:11 client sshd[26958]: [ID 965073 auth.debug] pam_dhkeys: cred reinit/refresh ignored
If I try to then change the password with the `passwd` command it does not use the password policy on the directory server but the default defined in /etc/default/passwd
bash-2.05$ passwd
passwd: Changing password for VV
Enter existing login password:
New Password:
passwd: Password too short - must be at least 8 characters.
Please try again
May 17 15:26:17 client passwd[27014]: [ID 285619 user.debug] ldap pam_sm_authenticate(passwd VV), flags = 0
May 17 15:26:17 client passwd[27014]: [ID 509786 user.debug] roles pam_sm_authenticate, service = passwd user = VV ruser = not set rhost = not set
May 17 15:26:17 client passwd[27014]: [ID 579461 user.debug] pam_unix_account: entering pam_sm_acct_mgmt()
May 17 15:26:17 client passwd[27014]: [ID 724664 user.debug] pam_ldap pam_sm_acct_mgmt: illegal option no_pass
May 17 15:26:17 client passwd[27014]: [ID 100510 user.debug] ldap pam_sm_acct_mgmt(VV), flags = 80000000
May 17 15:26:17 client passwd[27014]: [ID 985558 user.debug] pam_dhkeys: entered pam_sm_chauthtok()
May 17 15:26:17 client passwd[27014]: [ID 988707 user.debug] read_authtok: Copied AUTHTOK to OLDAUTHTOK
May 17 15:26:20 client passwd[27014]: [ID 558286 user.debug] pam_authtok_check: pam_sm_chauthok called
May 17 15:26:20 client passwd[27014]: [ID 271931 user.debug] pam_authtok_check: minimum length from /etc/default/passwd: 8
May 17 15:26:20 client passwd[27014]: [ID 985558 user.debug] pam_dhkeys: entered pam_sm_chauthtok()
May 17 15:26:20 client passwd[27014]: [ID 417489 user.debug] pam_dhkeys: OLDRPCPASS already set
I am using the default policy on the directory server which states a minimum password length of 6 characters.
server:root:LDAP_Master:/var/opt/SUNWdsee/dscc6/dcc/ads/ldif#dsconf get-server-prop -h server -p 389|grep ^pwd-
pwd-accept-hashed-pwd-enabled : N/A
pwd-check-enabled : off
pwd-compat-mode : DS6-mode
pwd-expire-no-warning-enabled : on
pwd-expire-warning-delay : 1d
pwd-failure-count-interval : 10m
pwd-grace-login-limit : disabled
pwd-keep-last-auth-time-enabled : off
pwd-lockout-duration : disabled
pwd-lockout-enabled : off
pwd-lockout-repl-priority-enabled : on
pwd-max-age : disabled
pwd-max-failure-count : 3
pwd-max-history-count : disabled
pwd-min-age : disabled
pwd-min-length : 6
pwd-mod-gen-length : 6
pwd-must-change-enabled : off
pwd-root-dn-bypass-enabled : off
pwd-safe-modify-enabled : off
pwd-storage-scheme : CRYPT
pwd-strong-check-dictionary-path : /opt/SUNWdsee/ds6/plugins/words-english-big.txt
pwd-strong-check-enabled : off
pwd-strong-check-require-charset : lower
pwd-strong-check-require-charset : upper
pwd-strong-check-require-charset : digit
pwd-strong-check-require-charset : special
pwd-supported-storage-scheme : CRYPT
pwd-supported-storage-scheme : SHA
pwd-supported-storage-scheme : SSHA
pwd-supported-storage-scheme : NS-MTA-MD5
pwd-supported-storage-scheme : CLEAR
pwd-user-change-enabled : off
Whereas /etc/default/passwd on the ldap client says passwords must be 8 characters. This is seen with the pam_authtok_check: minimum length from /etc/default/passwd: 8
. It is clearly not using the policy from the directory server but checking locally. So I can login ok using the ldap server for authentication but when I try to change the password it does not use the policy from the server which says I only need a minimum lenght of 6 characters.
I have read that pam_ldap is only supported for directory server 5.2. Because I am running ds6 and with password compatability in ds6 mode maybe this is my problem. Does anyone know of any updated pam_ldap modules for solaris 9?
Edited by: ericduggan on Sep 8, 2008 5:30 AM

you can try passwd -r ldap for changing the ldap passwds...

LDAP for Linux

Similar Messages

Maybe you are looking for