LDAP Login Help
I am having a problem here and hope someone is able to help me out - I am banging my head against a wall.
I am trying to connect my MAC against a LDAP server. The server seems to run fine, and authenticates several linux box. So I assume it's a mac configuration issue. I configured the mac to use RFC 2307 mapping and the listing under "Directory Servers states "responding normally"
On the MAC I can do an ldapsearch and query the user records, I can even do an su -l and change to the ldap user once I am logged in as a local user, but the main login window doesn't take the exact same user/password combo. The LDAP logs show that the record for the user was found, though, but the logs look different look different from the su-l attempt. The system and secure log on the MAC don't show anything related to the LDAP login attempts when using the login window....
This is the LDAP log when authenticating using the login window
Mar 12 14:23:35 www1 slapd[25222]: conn=3 op=28 SRCH base="ou=People,dc=pbd,dc=com" scope=2 deref=0 filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(objectClass=s hadowAccount))(|(|(uid=tuser))(|(cn=tuser))))"
Mar 12 14:23:35 www1 slapd[25222]: conn=3 op=28 SRCH attr=homeDirectory userPassword gidNumber cn uid cn uidNumber loginShell _guest external uid cn
Mar 12 14:23:35 www1 slapd[25222]: conn=3 op=28 SEARCH RESULT tag=101 err=0 nentries=1 text=
Mar 12 14:23:35 www1 slapd[25222]: conn=3 op=29 ABANDON msg=29
Do you have ANY idea what is going on?
Thanks a lot!!!
Maik
I've got the same issue on my Leopard test machines. I've also posted on AFP548 today. So far 12 views and no replies.
Similar Messages
-
Understanding LDAP login permissions
Hi,
could someone help me digging out the question on witch side I have to configure LDAP login permissions ?
First we configured the Oracle Linux to use LDAP as the login method. After that we find out that everybody that has an account in the LDAP system now has access to that server.
So does we have to configure the access groups on the LDAP Server side or on the ldap client side.
Thanks a lot
*T
Edited by: tbrinkmann on Nov 7, 2012 5:47 AMHey Dude,
thanks for your replay.
Our uerid is not person related it is job related. Anyway I don´t like the idea of hundredths of server names configured to all the admin accounts. I would like to prefer the dear of a server group where all users that have access to that server is configured to. Could you be so kind to explain why you think that group permissions are not a good idea.
Thanks *T -
10.7 LDAP login shows all workgroups. It should only show the PrimaryGroup. How do I fix?
Curios...
Are you working with ROOT enabled or selected in Directory Utility?
Your LDAP server, what is it? OS etc. Lion?
What happens when you use ldapsearch? From Lion terminal? From other Client Terminal? Using Directory Utility?
Does the Lion Client find the users DN but does not drop and then reconnect using the DN?
Can the loged in user access any other services on the network?
Do they access
Are you using mixed authentication methods?
What is the relationship LDAP has with these if any? (Kerberos authentication of LDAP clients, LDAP Auth supporting kerberos, etc.?)
I think we have a very simple fix but need to know more...
Thanks -
LDAP authentication (Help urgently)
Dear All,
I am facing a problem, while running follwing code.
import java.util.Hashtable;
import java.util.Enumeration;
import javax.naming.*;
import javax.naming.directory.*;
public class JNDISearch
/** Creates a new instance of JNDISearch */
public static String INITCTX = "com.sun.jndi.ldap.LdapCtxFactory";
public static String MY_HOST = "ldap://INCHINADC:389";
public static String MY_SEARCHBASE = "DC=dnbchn,DC=com";
public static String MY_FILTER = "(OU=BA)";
public static void main(String args[])
try {
Hashtable env = new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY,INITCTX);
env.put(Context.PROVIDER_URL, MY_HOST);
//get reference for the Direct context
DirContext ctx = new InitialDirContext(env);
//scope of the search
SearchControls constraints = new SearchControls();
constraints.setSearchScope(SearchControls.SUBTREE_SCOPE);
NamingEnumeration results = ctx.search(MY_SEARCHBASE,MY_FILTER,constraints);
while(results != null && results.hasMore())
SearchResult sr = (SearchResult) results.next();
String dn= sr.getName();
System.out.println("Distinguished Name is " + dn);
Attributes attr = sr.getAttributes();
for (NamingEnumeration ne = attr.getAll(); ne.hasMoreElements()
Attribute attrs = (Attribute) ne.next();
String attrID = attrs.getID();
System.out.println(attrID + ":");
for (Enumeration vals = attr.getAll(); vals.hasMoreElements()
System.out.println("\t" + vals.nextElement());
System.out.println("\n");
}catch (Exception e){
e.printStackTrace();
System.exit(1);
Error is
javax.naming.PartialResultException: Unprocessed Continuation Reference(s); remaining name 'DC=dnbchn,DC=com'
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2763)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2737)
at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1808)
at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1731)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java: 368)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirC ontext.java:338)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirC ontext.java:321)
at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:248)
at loginauthentication.JNDISearch.main(JNDISearch.java:44)
Java Result: 1
can anybody help me to underatsnd this error? what it means? and how to fix it?
ASAP
RegardsHello,
I now that this is an old post but I am having a similar problem.
I am trying to access a topic jms using bam and I also have Invalid login/password.
Furthermore I can't access a topic or queue using JMSUtils. the problem is the same.
How did you solve your problem?
Thanks
Gonçalo Ribeiro (I am portuguese so if you know portguese ......) -
Snow Leopard hangs after LDAP login, mouse works, keyboard stops working
Afternoon,
It was suggested that I post my question below in a server forum rather than a client form.
Mike
Morning,
Earlier I posted a question about 10.5 brightness and 10.6. The user will deal with the brightness issue, so that's moot at the moment. I still have an issue with 10.6 hanging.
I have configured 10.6 to authenticate using OpenLDAP from a Red Hat box. The authentication works fine. I have added /home from the same linux box to the list of NFS mounts (Disk Utility->File->NFS Mounts?, I'm not in front of the mac box at this moment to verify). The /home filesystem does get mounted.
Very quickly after logging into a non-local, LDAP account, the mac box becomes useless in that I cannot start any programs, I can't logout, I can't do anything. If I double click on Terminal (Applications->Utilities->Terminal) I get the brief flash like Terminal is starting, but the application never appears on the desktop.
I can still ssh into the mac box. When I ssh in and run top, to see what's consuming the CPU, the machine is idle. My guess right now is every application is timing out or failing to start. I see nothing hogging the CPU nor the network.
When I log in using a local, non-LDAP account the mac box acts as I expect it to when launching applications, looking at NFS, surfing the web, etc.
Any ideas what's going on, what to check for, and how to fix this?
This is an iMac 27". I may need to contact Apple support on this one.
Mike
Additionally, the mouse continues to work, the keyboard stops working (wifi both), and the finder starts reporting -10810 on every application open attempt. I can select the Apple->Logout or Restart options, but nothing happens. I must ssh into the iMac and 'shutdown -r now' to get back to a login so I can login as root to make further changes.
MikeI was able to grab a crash log if that helps.
Mike
Process: coreservicesd [58]
Path: /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonC ore.framework/Versions/A/Support/coreservicesd
Identifier: coreservicesd
Version: ??? (???)
Code Type: X86-64 (Native)
Parent Process: launchd [1]
Date/Time: 2010-01-29 16:00:10.976 -0600
OS Version: Mac OS X 10.6.2 (10C2234)
Report Version: 6
Exception Type: EXCBADACCESS (SIGSEGV)
Exception Codes: KERNINVALIDADDRESS at 0x0000000000000000
Crashed Thread: 3
Thread 0: Dispatch queue: com.apple.main-thread
0 libSystem.B.dylib 0x0000000100007e3a machmsgtrap + 10
1 libSystem.B.dylib 0x00000001000084ad mach_msg + 59
2 com.apple.CoreFoundation 0x00000001009e87a2 __CFRunLoopRun + 1698
3 com.apple.CoreFoundation 0x00000001009e7c2f CFRunLoopRunSpecific + 575
4 com.apple.CoreFoundation 0x00000001009e79b6 CFRunLoopRun + 70
5 ...ple.CoreServices.CarbonCore 0x000000010030c972 _CoreServicesServerMain + 522
6 coreservicesd 0x0000000100000eac 0x100000000 + 3756
Thread 1: Dispatch queue: com.apple.libdispatch-manager
0 libSystem.B.dylib 0x0000000100020bba kevent + 10
1 libSystem.B.dylib 0x0000000100022a85 dispatch_mgrinvoke + 154
2 libSystem.B.dylib 0x000000010002275c dispatch_queueinvoke + 185
3 libSystem.B.dylib 0x0000000100022286 dispatch_workerthread2 + 244
4 libSystem.B.dylib 0x0000000100021bb8 pthreadwqthread + 353
5 libSystem.B.dylib 0x0000000100021a55 start_wqthread + 13
Thread 2:
0 libSystem.B.dylib 0x00000001000219da _workqkernreturn + 10
1 libSystem.B.dylib 0x0000000100021dec pthreadwqthread + 917
2 libSystem.B.dylib 0x0000000100021a55 start_wqthread + 13
Thread 3 Crashed:
0 ...ple.CoreServices.CarbonCore 0x00000001002c152e fmodWatchConsumer + 1098
1 libSystem.B.dylib 0x0000000100040f8e pthreadstart + 331
2 libSystem.B.dylib 0x0000000100040e41 thread_start + 13
Thread 4:
0 libSystem.B.dylib 0x0000000100012426 read + 10
1 ...ple.CoreServices.CarbonCore 0x00000001002c1f08 fmodWatchProducer + 140
2 libSystem.B.dylib 0x0000000100040f8e pthreadstart + 331
3 libSystem.B.dylib 0x0000000100040e41 thread_start + 13
Thread 5:
0 libSystem.B.dylib 0x00000001000219da _workqkernreturn + 10
1 libSystem.B.dylib 0x0000000100021dec pthreadwqthread + 917
2 libSystem.B.dylib 0x0000000100021a55 start_wqthread + 13
Thread 3 crashed with X86 Thread State (64-bit):
rax: 0x0000000000000000 rbx: 0x0000000101c835ee rcx: 0x00007fffffe00080 rdx: 0x0000000101ae202c
rdi: 0x0000000000000006 rsi: 0x0000000101c835f4 rbp: 0x0000000101f80f10 rsp: 0x0000000101f80db0
r8: 0x0000000101ae2078 r9: 0x0000000000000000 r10: 0x0000000000000000 r11: 0x000000010028272f
r12: 0x0000000000000000 r13: 0x0000000101c83624 r14: 0x0000000101c83624 r15: 0x0000000000000006
rip: 0x00000001002c152e rfl: 0x0000000000010202 cr2: 0x0000000000000000
Binary Images:
0x100000000 - 0x100000fff coreservicesd ??? (???) <6D7763A3-EBAF-99C6-FE9A-F79ABB1D96BC> /System/Library/CoreServices/coreservicesd
0x100004000 - 0x100004ff7 com.apple.CoreServices 44 (44) <210A4C56-BECB-E3E4-B6EE-7EC53E02265D> /System/Library/Frameworks/CoreServices.framework/Versions/A/CoreServices
0x100007000 - 0x1001c5ff7 libSystem.B.dylib ??? (???) <3814B353-9EE2-E2D3-2D5D-9FE26D4AF5D6> /usr/lib/libSystem.B.dylib
0x100256000 - 0x10025aff7 libmathCommon.A.dylib ??? (???) <95718673-FEEE-B6ED-B127-BCDBDB60D4E5> /usr/lib/system/libmathCommon.A.dylib
0x10025d000 - 0x10058ffef com.apple.CoreServices.CarbonCore 861.2 (861.2) <8D3CECD6-0184-C481-14DF-544F6C1BD4D9> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonC ore.framework/Versions/A/CarbonCore
0x100608000 - 0x1006d4fff com.apple.CFNetwork 454.5 (454.5) <34CC453F-9BFC-F6F6-78FE-304F19A8266F> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CFNetwo rk.framework/Versions/A/CFNetwork
0x100744000 - 0x10078eff7 com.apple.Metadata 10.6.2 (507.4) <89D9A7A8-00D8-6143-31C9-708275853E91> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Metadat a.framework/Versions/A/Metadata
0x1007b8000 - 0x100875ff7 com.apple.CoreServices.OSServices 352 (352) <991CA6C2-78C5-93CC-A7AA-7BF351991BC6> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/OSServi ces.framework/Versions/A/OSServices
0x1008cf000 - 0x10095ffff com.apple.SearchKit 1.3.0 (1.3.0) <3403E658-A54E-A79A-12EB-E090E8743984> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/SearchK it.framework/Versions/A/SearchKit
0x10099d000 - 0x100b10ff7 com.apple.CoreFoundation 6.6.1 (550.13) <65C48FB9-CE32-68C4-9457-D8392775ED55> /System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
0x100c29000 - 0x100c64ff7 com.apple.AE 496.1 (496.1) <9B43962D-4AE5-7CB5-EA81-50C27AF5AD94> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/AE.fram ework/Versions/A/AE
0x100c7e000 - 0x100d1efff com.apple.LaunchServices 362 (362) <0420B038-B12E-0976-A069-15894B398314> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/LaunchS ervices.framework/Versions/A/LaunchServices
0x100d64000 - 0x100d8cfff com.apple.DictionaryServices 1.1.1 (1.1.1) <CC593ECB-8FFA-BF81-0B0D-F8C606B31318> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Diction aryServices.framework/Versions/A/DictionaryServices
0x100da6000 - 0x100e03fef com.apple.framework.IOKit 2.0 (???) <4437494E-1E7F-EE0F-9FCA-AC5BC46DFD57> /System/Library/Frameworks/IOKit.framework/Versions/A/IOKit
0x100e25000 - 0x100fe3fff libicucore.A.dylib ??? (???) <7165A473-3A42-A15A-C6B0-75DECF1C3ECF> /usr/lib/libicucore.A.dylib
0x101052000 - 0x101058ff7 com.apple.DiskArbitration 2.3 (2.3) <857F6E43-1EF4-7D53-351B-10DE0A8F992A> /System/Library/Frameworks/DiskArbitration.framework/Versions/A/DiskArbitration
0x101061000 - 0x101077fef libbsm.0.dylib ??? (???) <83676D2E-23CD-45CD-BE5C-35FCFFBBBDBB> /usr/lib/libbsm.0.dylib
0x101080000 - 0x10108ffff com.apple.NetFS 3.2.1 (3.2.1) <3C6C2D5E-C1E2-9FF9-97A2-4141A5660EBB> /System/Library/Frameworks/NetFS.framework/Versions/A/NetFS
0x101098000 - 0x10114efff libobjc.A.dylib ??? (???) <4B6351E5-A293-D814-36E1-E75E35C25D86> /usr/lib/libobjc.A.dylib
0x101162000 - 0x1011dffef libstdc++.6.dylib ??? (???) <35ECA411-2C08-FD7D-11B1-1B7A04921A5C> /usr/lib/libstdc++.6.dylib
0x101240000 - 0x101251fef libz.1.dylib ??? (???) <3A7A4C48-A4C8-A78A-8B87-C0DDF6601AC8> /usr/lib/libz.1.dylib
0x101256000 - 0x101264ff7 libkxld.dylib ??? (???) <60D615F8-6AD1-0AFF-8303-6F3627296780> /usr/lib/system/libkxld.dylib
0x101268000 - 0x1012b4fff libauto.dylib ??? (???) <8145CA34-EA03-11D2-5C60-02C1E5750593> /usr/lib/libauto.dylib
0x1012c1000 - 0x101546fe7 com.apple.security 6.1.1 (37594) <E5DA8BFD-4A48-EFD4-E938-3BDFB356A8AF> /System/Library/Frameworks/Security.framework/Versions/A/Security
0x10163c000 - 0x1016f5fff libsqlite3.dylib ??? (???) <5A15E12A-AE8F-1A36-BBC7-564E7D7AD0FB> /usr/lib/libsqlite3.dylib
0x101705000 - 0x101746ff7 com.apple.SystemConfiguration 1.10.1 (1.10.1) <199E5964-B414-05BE-7930-D63309134523> /System/Library/Frameworks/SystemConfiguration.framework/Versions/A/SystemConfi guration
0x101769000 - 0x101794ff7 libxslt.1.dylib ??? (???) <87A0B228-B24A-C426-C3FB-B40D7258DD49> /usr/lib/libxslt.1.dylib
0x10179f000 - 0x1018b6fef libxml2.2.dylib ??? (???) <4355C785-9388-1061-6427-D004E92A3766> /usr/lib/libxml2.2.dylib
0x103294000 - 0x1032b4ff7 com.apple.DirectoryService.Framework 3.6 (621.1) <1B6C18CD-2257-1CEB-00C4-1BD8EB267DDE> /System/Library/Frameworks/DirectoryService.framework/DirectoryService
0x7fff5fc00000 - 0x7fff5fc3bde7 dyld 132.1 (???) <A43F7314-3A8C-4391-3237-46790EE6313A> /usr/lib/dyld
0x7fffffe00000 - 0x7fffffe01fff libSystem.B.dylib ??? (???) <3814B353-9EE2-E2D3-2D5D-9FE26D4AF5D6> /usr/lib/libSystem.B.dylib
-------------------------------------------- -
Login Help - Login screen comes up but nothing happens when I hit "login"
Hi,
I am a total newbie to APEX and have limited experience with Oracle in general, so please, be kind ;)
I am attempting to get APEX installed with 10g Express. I had installed 10g Express and it seemed to work fine. I went through the APEX install process and now when I go to my Database Homepage I see the login screen prompting for workspace, username, and password. I plug in my information and when I hit the "login" button nothing happens at all. No browser activity, no error, as if the button is just dead. I can connect to my DB via SQLPLUS and the oracle service and listener are running. Any help would be greatly appreciated.
Installed on a windows x64 server.
Tanks & Best Regards,
jimThis is the exact problem I had.
There are no errors in the log file, but no images either. I'm using the embedded HTTP server in the database (11g)
I found in the installation guide that the script to load the images is:
apex_epg_config.sql
It takes 1 parameter, the ORACLE_HOME. The example in the guide seems to indicate that it's looking for a temporary directory, but after trying that and failing, a look through the code showed that it was looking for the home directory. After running that, the images show up and it seems to work.
Now all I have to do is remember what I gave it for the admin password!
Thanks - JR
Edited by: John Row on Oct 31, 2008 3:34 PM -
Running Discoverer reports into portal using SSO portal login - help
Hi,
I am trying to run disco reports into oracle portal using discoverer portlet providers -list of worksheet. What I want to achieve is as follows
1) login to portal using SSO userid /pwd - Done
2) Enable discoverer for SSO - Done
*3) Use discoverer list of worksheets to show reports into portal but want to filter the list of worksheet to currently logged in portal user. This so that users looged in only sees the reports to which they have access in discoverer - Need Help*
*4) Once user runs this report then I want to filter the discoverer data based on users login or portal group - Help*
Can someone please help with issue no 3/4 urgently.
Mant thanks
GaneshHi Michael,
Assuming I have created the private connections using CAPI I still have my doubts as follows
Do I have to then login as each portal user and add the list of worksheet portlet for each user and selecting
"check the box called Display a different list of worksheets by allowing users to customize database connection and then check Show a default list of worksheets using connection, changing the connection to user's connection."
Considering we have 500+ users this will be huge cumbersom task for me.
Also when I tried to do this before loggin as each portal user when I logged in as second portal user I could see the list of worksheet portalet added by the first user which means I have to edit it but even that was not possible because it would not let me edit as only the page own whi created the portlet was allowed to edit (that is the first user)
OR
Do you have to give portal user permission to edit the page so that they can log on themselve to add the list of worksheet portlet on the page by selecting their private connection and selecting
"check the box called Display a different list of worksheets by allowing users to customize database connection and then check Show a default list of worksheets using connection, changing the connection to user's connection."
Finally I know someone has made it work using URL links and it works as follows
1) Map the portal and disco user into a table
2) Create disco private connections
3) when portal user loggs in and click on "Show my discoverer report" it then runs a PL/SQL package which in turn identifies the private connection details and creates a URL out of it as follows
[http://portal.ccm.ac.uk/discoverer/app/partialConnect?password=IRTIMUDV123_=qplus=VDUMITRI=browser_selected=connect=RELATIONAL=QPRIS=viewer]
clicking on this link open discoverer with private list of workbook/worksheet.
Please advise which way should I follow.
Thanks
Ganesh -
Issue with LDAP login authentication in CMC console
We have a existing issues with Business Objects BOE XIR2 SP2 and LDAP authentication with the BOE CMC Console.
We use websphere as the application server and it is installed on the same machine (Solaris) as BOE.
We have this issue on both our production and our recently rebuilt development environment to duplicate the issue.
Both environment have configured LDAP over SSL and we can login to BOE Infoview Reports with LDAP and we can map groups and users if we login to CMC but we can not login to CMC with secLDAP.
The specific error still being shown is "Security plugin error: Failed to set parameters on plugin".
Both environments (DEV and PROD) are fresh installs of BOE XIR2 SP2.
Any ideas are much appreciated
ThankyouThe CMC in XIR2 used com components for the SSL (rather than java like infoview) and I'm betting the WAS deployment is not finding them. Is WAS on a seperate server or is BOE installed there as well?
I'm not familiar with any regular fixes for an issue like this. If no other replies I'd recommend opening a case with either deployment(WAS on "nix") or authentication(WAS on windows) to see if they can trace down the problem.
Regards,
Tim -
Weblogic 9.2 Embedded LDAP Login denied!
Hi,
I am trying to put together users/ groups in the Embeded ldap for LDAP authentication. I saw in the embedded LDAP, the tree as
domainName->myrealm->groups,people etc by default.
Now, under the LDAP root domainName, I created a directory structure as:
domainName->myorg->groups,users.
In the weblogic console ( myrealm is the default security realm.)
under myrealm, I created LDAP Authentication Provider and gave all the LDAP provider specific info for searching etc.
I was able to see the users using the console screen.
Now in my Web Application, using the "FORM based Authentication"(using j_username etc) I tried to login.
I saw the AdminServer log:
--getDNForUser search("ou=people,ou=myrealm,dc=domainA", "(&(uid=ldapuser2)(objectclass=person))", base DN & below)
with the following exception:
--javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User ldapuser2 denied
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:191)
which means, Weblogic was trying to use the LDAP params which were pointing to 'myrealm'.
I was expecting weblogic to search as I specified in the provider:
"ou=users,ou=myorg,dc=domainA" rather than "ou=people,ou=myrealm,dc=domainA".
Remember I am using Embeded LDAP.
Please let me know whether what I am trying to achieve is something that Weblogic is capable of.
By the way, when I put my users under the 'myrealm' directory it does authenticate.
Please let me know
Thank you in advance.
AzimThese are the steps that I followed to connect weblogic 9.2 with LDAP Port 636(SSL Enabled) and it worked fine.
Steps for Installation of SSL
1. Modify the Provider Specific configuration in the Admin Console to use port 636 and ‘SSL Enabled’ (OR Modify config.xml)
<wls:port>636</wls:port>
<wls:ssl-enabled>true</wls:ssl-enabled>
2. Back up the D:\apps\bea\wls92\weblogic92\server\lib directory
3. Copy the certificate (xxxx.cer) to that directory
4. Import the certificate into the keystore:
5. D:\apps\bea\wls92\jrockit_150_12\bin\keytool -v -import -alias ldapcert -keystore DemoTrust.jks -file entrust_ssl_ca.cer -storepass DemoTrustKeyStorePassPhrase
6. Add the following parameter to the JAVA_OPTIONS in the start script (setDomainEnv.cmd):
a. -Dweblogic.security.SSL.allowSmallRSAExponent=true
7. Restart WebLogic (Admin) Server -
Account names can break LDAP logins?
I've successfully installed and patched (patches 118833-36, 119963-08 and 122032-05) my Solaris 10 system so it's using LDAP against the Sun Java System Directory Server Enterprise Edition 6.2.
On my test box, I have several test accounts setup.
On the one that is simply my last name, everything works fine. SSH logins, telnet logins, and password changes. SO I'm sure the pam.conf and nsswitch.conf works right.
On several other accounts, they work just as well.
However two accounts do not. getent -v | grep username shows the accounts. I can "su - account" from root and get in fine. However if I try to SSH or telnet in it rejects my password. The password being entered IS correct.
The one thing they have in common is that they are both contractor accounts, which due to corporate standards are
8 numeric digits starting with an 8, so something like 81234567 would be a contractor ID.
Renaming the bad contractor accounts in the LDAP editor (but NOT changing the password) allows me to SSH in.
Renaming the test account with my last name to a contractor style name breaks it.
I read "man -s 4 passwd" and couldn't find where our naming standard violates the Solaris system standard.
Thoughts?From the Solaris 10 Basic System Admin Guide at: http://docs.sun.com/app/docs/doc/817-1985/6mhm8o5l8?a=view#userconcept-30
"User names � They should contain from two to eight letters and numerals. The first character should be a letter. At least one character should be a lowercase letter."
Sun probably should have used the word "must" instead of "should." ie. First letter must be a letter.
The system behavior you are describing seems to bear this out. -
Hello Everyone,
Can anyone help me out to login in sqlplus environment as sysdba.
Regds
AmarHi
if your oracle db version is 9i then connect as following
connect <username>/<password> as sysdba
Regards
Shajesh Nair
Deloitte.
[email protected] -
can anyone help with session variable problem?? I cannot seem
to get my pages to take over the session variable, and am now
getting 80040e14 errors....lol .. I'm sorry .. you didn't say what server model .. I
thought you were
talking about PHP (for some reason).
In ASP, you will create the session variable like this (this
example sets a
session equal to a recordset variable)
Session("YourID")
=(rsyourrecordsetname.Fields.Item("YourID").Value)
From there it's easy. You can create a data binding object
that will allow
you to drop the session variable whereever you wish. Go to
the Data
Bindings window in the Application panel and click the +
sign. Then select
Session Variable and fill in YourID in the window (or
whatever you are
calling it).
Now an object will show in the Data Bindings window and you
can drop it
anywhere you wish on your pages. You can also carry the value
from page to
page using the Request Object to request it from a form
variable or a
previous page.
Code looks like this:
<%= Session("YourID") %>
You would request the page with the user's details like this:
<a href="page.asp?Member=<%= Session("YourID")
%>">
Does that make sense?
Nancy Gill
Adobe Community Expert
BLOG:
http://www.dmxwishes.com/blog.asp
Author: Dreamweaver 8 e-book for the DMX Zone
Co-Author: Dreamweaver MX: Instant Troubleshooter (August,
2003)
Technical Editor: DMX 2004: The Complete Reference, DMX 2004:
A Beginner's
Guide, Mastering Macromedia Contribute
Technical Reviewer: Dynamic Dreamweaver MX/DMX: Advanced PHP
Web Development
"peteneal" <[email protected]> wrote in
message
news:e25jga$qpo$[email protected]..
>I wasn't aware i needed session start in ASP with VB??
>
> is this what i need??
>
> there's no definitive description for the use of Session
Variable's - all
> i am
> trying to do is authenticate someone the simplest way
possible (have
> followed
> Newlands Tour's login) and from there to end on a user's
company details
> page...via the session variable
> -
Hi
I signed up for a year, can login to the site, but cannot login when I am trying to convert a pdf to Word. A message appears stating "An error occurred while signing in."
I changed my password but this did not help.
Please help!
Many thanksAre you still having trouble signing in to access the ExportPDF service?
-David -
I'm trying to consolidate logins across various systems, including a Solaris 10 box. One of the things I've discovered here is that Solaris' LDAP authentication requires shadowAccount object class be bound to an account for lookups to succeed. Solaris is the only system that requires this.
I've looked all over the place but can't find any details about this requirement, or more imporantly, how to disable it. I'm not interested in managing shadowAccount attributes for this project and would like to eliminate the dependancy if possible.
Anybody know if this is possible, or how to do it?
ThanksIf you switch to the openldap client than you don't need to use the shadow account. Openldap also has hosts based authentication so you can limit users to what boxes they can log in to.
I think if you stay with the native solaris ldap then you are stuck with shadow account. -
Emergency login help for business catalyts acct.
Since the LogIn issues BC encountered today worldwide.....All access and connections have been lost and cannot be reinstated with my current password. Since my email is my BC website email I am unable to request PW reset. It for some reason is different from my AdobeID. I need to speak with someone.....is there ANY phone support for BC NOW...I am receiving NO business email.
Help Please.
Rick Price
www.moebam.com
Alt Email [email protected]Hi Rick
I've triggered a password recovery e-mail, which should arrive at your Alt Email. If you are still having issues after that please send me a private message with a confirmation of the account that's having trouble, the site you're no longer able to access, and I'll revert with a solution as fast as possible.
Kind Regards,
Alex Pavelescu
Maybe you are looking for
-
A friend does complex photo retouch and had downloaded an image containing a worm that trashed files. He runs a PC. A tech friend of his suggested transferring his files from his PC to someone with a Mac since we are blessed with alomost no issues w
-
This is what happened: I bought a $20 App store gift card so i can get some gems on my Clash of Clans Account, once i entered the code i went into Clash of Clans and tried purchasing $10 worth of gems. But it says to change into the Sri Lankan Store
-
Webpage link does not allow return to iBook
My link to a webpage doesn;t offer a way to get back to the iBook.
-
I just bought a used computer and i am currently updating this computer to Mavericks upgrade for free. How can I wipe it clean, and also how can I reset the password from the sellers password?
-
Having trouble opening the download for turbo tax 2013
having trouble with turbo tax 2013 for the macbook pro will not let me open it