LDAP synchronization with third party directory server
Hi,
In release 2 I have created a java program, that synchronizes a MS Active Directory (and other LDAP compliant directorys) and the OID, with the purpose to maintain Portal users and groups automatically.
Often the tree structure in the third party DS is structured in an organizational manner (company, divisions, departments and users).
Is it possible to "copy" this structure into the OID so the users will be able to log on to the Portal application or is it necessary to create Portal users in the "cn=users" that was created during installation of the infrastructure database.
Any help will be appreciated, thanks
Steffen Vogdrup
You can configure the location of users in OID by modifying the value of the orclcommonusersearchbase attribute in cn=Common,cn=Products,cn=OracleContext,<subscriber_dn> to point to the highest node of the user subtree. However, there are three seeded users PUBLIC, PORTAL and PORTAL_ADMIN. These users will need to be moved directly under the new user search base. Any groups that contain references to these users in owner or uniquemember attributes will also have to be updated to reflect the correct DNs. After you have gone through these steps, you will need to run ssoca to reconfigure the SSO server and then run ptlasst in the MIDTIER mode to rewire Portal with the OID server.
Similar Messages
-
Lync integration with Third-Party mail server's
Hi all,
Does Lync integrates with any third party mail servers?
Or it integrates only with Exchange Server?
Regards,
ArunKumar.JAgree with Thamara. Exchange is the only platform supported for presence as well as voice functionality. The client uses EWS to communicate with the server to check calendar integration, nothing else is going to mimic this properly enough to
avoid issues.
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
SWC Unified Communications -
Skype for business online with Third party mail server
Dear All, I would like to ask you about the Skype for business. Now I have mail hosting account and I want to use email hosting account via outlook and skype for business online for conference. But when I try to open outlook and sent skype for business online meeting it shown error to me that "Unable to identify the calendar owner. Please contact your support team" Please kindly feedback me about this issues. Best Regards, Zhuge_Laing
Hi, Zhuge_Laing, and welcome to the Community, To receive the information you require more quickly, please click on the "Looking for Skype For Business" link above the messages list here, and follow the links through to the Office 365 Support Team. Alternately, this link will take you to the same place: https://support.skype.com/faq/FA34551 Regards,Elaine
-
SharePoint 2013 on-premises integration with third party email account
the Email sending issue from SharePoint is causing too much time waste
First let me explain how our SharePoint is deployed
Sharepoint version : 2013
Deployment type : on-premise
Authentication : from Domain controller also hosted locally
domain name ; say domain.com this domain.com is same as our website address hosted on godaddy
SharePoint computer name on local DNS : sharepoint.domain.com
OS and IIS : 2008 r2 , IIS 7.5
Network firewall : 25 26 ports opened for sharepoint , both incoming and outgoing.
Server firewall : turned off
Email configuration Attempts by IIS 6.0
We tried following setting on IIS 6.0 SMTP local server properties
In General tab
qualified name was shown as : sharepoint.dts-solution.com
IP assigned : sharepoint server IP , advanced putted two entries of IP with ports as 25,26
In Access tab
Authentication : selected as Anonymous
Connection : All except below list : empty list
Relay : only the list below , one entry as 127.0.0.1 and other is local static IP of SharePoint server
in Delivery tab
outbound security : Basic authentication : accessed user in AD and given the right password, also checked with annonymous -not working
outbound connection: all default values and port = 25
Advance : fully qualified domain name = sharepoint.domain.com , DNS test showed success, rest every check box unchecked
On sharepoint central management settings
Outbound email = sharepoint.domain.com
from and reply to address = [email protected]
IIS 7.5 SMTP settings
In IIS 7.5 sharepoint application we added SMTP settings as smtp server = godaddy out going smtp , user name as [email protected] , password = godaddy password , port : godaddy outgoing port .
Godaddy account
Our website hosted on godaddy with same name as domain.com
open relay not possible on emails.
Results
After setting alerts on SharePoint sites and assigning tasks with alerts we receive email in queue folder but they never get forwarded. We just wish to use any of our email *.domain.com to send outgoing emails from SharePoint . Its been a while we have no
success.
Tech LearnerHi,
As I understand, you are using SharePoint 2013 integrating with third party SMTP server which provides email function.
From SharePoint side, I'd suggest you refer to the link below to configure email integration:
http://technet.microsoft.com/en-us/library/ee956941(v=office.15).aspx
If you have already confirm that message is sent from SharePoint, while stuck in queue on SMTP server, then the issue might be related to relay on SMTP server. Since the issue is related to third party product, we do not have enough resource here,
I'd recommend you contact their support engineer for more assistance:
https://support.godaddy.com/help/category/154/email
https://support.godaddy.com/help/article/3552/managing-your-email-account-smtp-relays
Thanks for the understanding.
Regards,
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
[email protected] .
Rebecca Tu
TechNet Community Support -
A third-party directory servers/security provider (LDAP)
Here is a scenario. If a security provider is a third-party directory servers that supports LDAP, is there a way to define roles in my schema table but LDAP be my authentication security provider? Sounds like a double security provider! (Looks like I had asked something similar long time ago)
Or does the LDAP server needs to be a real provider (authentication and authorization and handle roles as well and not leave anything for me except permissions) while I set up permissions in system-jazn-data.xml and define roles in web.xml that matches the roles in ldap?
Since the third party security provider throws in a login dialog, I may not have to use custom login module. But, I want to set up permissions. Hope I am making sense. Default realm jazn will now be replaced by something that says it is ldap. Is that assumption correct?
If I make sense, please point to a doc about the above scenario.
ThanksHi,
Here is a scenario. If a security provider is a third-party directory servers that supports LDAP, is there a way to define roles in my schema table but LDAP be my authentication security provider? Sounds like a double security provider! (Looks like I had asked something similar long time ago
You can use this scenario assuming you have a LoginModule that gets the authenticated user from LDAP and then queries the database for the security roles. This however doe not work with any of the LoginModules that are published on OTN or contained in OC4J
Frank -
Best Third party Fax Server for integration with SOA
Hi
Which is the best third party fax server for integration with SOA ??
I am having requirement to configure Fax for client..
Edited by: 910947 on Feb 16, 2012 4:12 AMi am having following option
Using Java API like InterFAX
or
Using Fax Server like SilentFax or RightFax
or
Using Virtual Fax Server like GreenFax or myfax
Which is the best solution, i should go for that will best fit with my SOA Suite??? -
Replace Self-Signed FAST Search Certificate with Third Party Certificate
We are trying to replace the Self-Signed FAST Search Certificate with Third Party Certificate in our SP 2010 environment. And are facing issues while enabling the SSL communication between the FAST servers and the corporate servers.
Our FAST search servers are in a different farm than that of the Corporate Servers.
The details of the certificate we received is as follows:
Issued to : FastSearchCert
Issued By: Issuer Name
Valid From: 4/21/2015 to 4/20/2017
We were able to successfully renew the certificate on the FAST Search Server by following the below steps:
1. Login to the Administrative and the Non-Administrative nodes
of the FAST server. Go to Windows Service and stop the FAST Search for SharePoint and the FAST Search for SharePoint Monitoring services in both the servers.
Follow the below steps in the Administrative Node followed by the Non-Administrative Node
2.
Install the certificate in the following paths in the certificate store:
“Certificates(Local Computer)\Personal”
“Certificates(Local Computer)\Trusted Root Certification Authorities”
3. Ensure that the user account configured for the “FAST Search Server 2010 for SharePoint” has access to the private key of the certificate.
4. Go the Administrative node of the FAST farm and follow the below steps:
Go to the certificate store.
Expand the Personal folder and then click the Certificates folder. Double-click the third party signed FAST certificate.
Open the Details tab and then click Thumbprint. Note down this thumbprint.
5. Next, open
Microsoft FAST Search Server 2010 for SharePoint with Administrator
Privileges.
6.
Navigate to the directory, “D:\FASTSearch\installer\scripts” and execute the below command to replace the current certificate with the newly created
third party signed FAST certificate.
.\ReplaceDefaultCertificate.ps1 -thumbprint "certificate thumbprint".
7. The FAST certificate was renewed successfully.
Once the certificate has been renewed successfully in both the nodes, follow the below step:
8. Start the FASTSearch for SharePoint and the FAST Search
for SharePoint Monitoring services in the administrator server.
Next, while enabling the SSL communication between the FAST servers and the other corporate servers, we follow the below steps:
1.
Copy the new certificate from any of the FAST servers to all the web-front end and application servers in the corporate farm, in order to enable SSL communication between these servers and the FAST farm.
2. Also, copy the script
‘SecureFASTSearchConnector.ps1’ from the location “%FASTSearchFolder%\installer\scripts” in the FAST servers
to the web-front end and application servers of the corporate farm.
3. Follow the below steps on each of the servers in the corporate farm:
Open ‘SharePoint 2010 Management Shell’ with administrator privileges and navigate to the directory in which
SecureFASTSearchConnector.ps1’ script is located.
And then, execute the below command:
.\SecureFASTSearchConnector.ps1 -certThumbprint "certificate thumbprint" –ssaName “FASTCibtebtSSA” –username “DOMAIN\SP_Farm”
Where,
-certThumbprint
- Thumbprint of the certificate
-ssaName – FAST Content SSA
-username – The account configured to run the SharePoint
Search Service
On execution of the above command, we receive an error message stating that the "Connection to the Content Distributor servername.corp.abc.org: 14391 could not be validated...instance of FAST search server backend is running"
Please help us resolve this issue. We have not been able to find the cause of the above error for a long time.
Any help is much appreciated.Your tip on exporting from eDir to locate a missing private key was very helpful. Here are my steps to renew an expired third party certificate when the private key, generated 30 months ago in my case, could not be located.
In iManager, browse the tree and locate the likely certificate object. The Attributes for the object show Subject Name = webmail.acme.com. Selected the certificate and exported to webmailcert.pfx.
Then, the openssl commands in TID 7004039, "How to convert a SSL PFX to a PEM file", were run against the .pfx file to create cert.pem, key.pem and server.key files.
TID 7015500, "How to determine if private key belongs to public key (certificate)", was followed to determine if the public key (downloaded from third party) and private key (just retrieved from iManager) match - they did - that is, the private key converted from webmailcert.pfx matches the downloaded certificate.
TID 7013103, "How to create a .pem File for SSL certificate Installations", was followed to manually create a server.pem file using openssl.
TID 7010584, "How to setup SSL Certificate for Apache", part labeled "Additional Information" was followed to modify /etc/apache2/vhosts.d/vhost-ssl.conf file. Server.pem file created above copied to /etc/apache2/ssl.crt/ and /etc/ssl/servercerts/ directories as specified in vhost-ssl.conf.
Restarted apache2.
www.digicert.com has an SSL Certificate Checker that can be used to verify the installation is successful. -
DMS document migration from Third Party DMS server(Omnidocs)
HI guys,
I would like to migrate document from Third party DMS server to sap DMS server.
What is the apporach.
1. The thir party dms server is protected with login name and password.
How i can extract data from the software.
Please spread your thoughts on this.
what is the function module to download the contents of the server. by passing the url.
with regards
Giriuse ALE scenario to send the documents
-
SAP IDM 7.0 integration with third party system
Hi Experts,
I know SAP IDM 7.0 can integrate with third party systems and create user ids on most of the third party systems.
But I need to know regarding If it is possible to integrate with following systems
1) Microsoft Exchange 2007 ( I know till exchange 2003 SAP IDM support )
2) Microsoft Active directory 2008 ( I know till Actice directory 2003)
3) EMC Documentum 6.5
4) ARIS 7.1.0
5) BlackBoard, Release 9.0
6) Oracle 10g ( Is it possible to create users at oracle level ? or at what level ? )
7) Sun Solaris Sparc ( Is it possible to create users at OS level )
If you have information how on this please share. I know that provisioning framework will have templates for most of the target systems. I want to know if they are available for above systems on SAP IDM 7.0 or if not have we can connect to them?Hi Matthew
Your expertise in SAP IDM is indeed a great help!!
>Can't see why not, it's all done via SQL commands. I've done similar things with MSSQL
You mean that there will be oracle 10g drivers/oledb connectors in SAP IDM and in through SQL commands like "create user alfredo identified by alfredos_secret; " we can create user in oracle database ?. As you said this should be possible. What about creating user( user management ) in oracle 10g application like dba or scot and assigning the privileges in oracle application?
>might need to do via UNIX scripts, but it can be done
You mean that Unix scripts will be defined in SAP IDM and SAP IDM will execute these scripts in the Sun Solaris Sparc ?. It should be possible as you said. By the way how we will be able connect to Sun Solaris sparc ? Is it via the option "file " under the "Repositories" with repositories wizard and later executing the file from SAP IDM ?
Thank you once again for your expert answers on third party systems. -
SGD with Third Party Authentication issue
Hi
I am trying to setup SGD with Third Party Authentication and have done all the requisites for this.
I input the SGD URL and get the Third Party Login page but after I input my credentials, I get redirected to the SGD default login page which should not be the case. I had already set "Tomcat Authentication" as false in server.xml and enabled the Third Party authentication scheme in Array Manger
What else am I missing ?
Kindly advise
SGD ver4.31
ThanksEvery now and then I have found the same. One thing that almost always solved the problem was recreating a new trusted user, you can follow the steps from:
[http://docs.sun.com/source/820-1088/trusted_users.html|http://docs.sun.com/source/820-1088/trusted_users.html]
Especially the step to test the trusted_user is a very good test to see if the trusted user is ok: http://server/axis/services/rpc/externalauth
When prompted, log in as the trusted user.
An other way to test it is via the api-test functionality: http://server/sgd/admin/apitest/
First setup a session: webtopsession->startSession(0)
Then authenticate via externalauth->setSessionIdentity
These steps are the minimal steps to perform 3rdParty Authentication
(There is also an example jsp for 3rd Party Authentication on the wikis.sun: [http://wikis.sun.com/display/SecureGlobalDesktop/Single+sign-on+(before+4.40)|http://wikis.sun.com/display/SecureGlobalDesktop/Single+sign-on+(before+4.40)] )
- Remold -
How can I force the close of a third party ActiveX server.
We have a third party ActiveX executable that refuses to shut itself down once in a while. And when I say once in a while, I mean one out of every 20-30 times it's attempted. All termination commands are being sent and recieved properly, and all refnums are being closed. No errors are ever generated, all operations report successful, but the thing just won't die. Problem is of course, that if we attempt to restart our software after the ActiveX app fails to terminate, it generates server execution errors when trying to open a new instance. We are not expecting a speedy resolution from the third party, but it is becoming a great inconvenience for our customers. I would like to be able to kill the process thro
ugh the OS as a last resort. Problem is, to do that I need a ProcID. Is there any way to retrieve a ProcID for the ActiveX server through LabVIEW? Alternatives and suggestions are welcome.Hello codeman,
Thank you for your inquiry regarding closing a third party ActiveX server. It sounds like the third party application is having trouble closing. There are several Windows Utility VIs available that could help in this case. One of the Utility VIs is called Get Window Refnum and should return an instance of a Windows window. The following links are great resources when dealing with this issue.
http://digital.ni.com/public.nsf/websearch/136F6B1F34CBB76E852563FC007AEFC7?OpenDocument
http://sine.ni.com/apps/we/niepd_web_display.display_epd4?p_guid=B45EACE3EF4556A4E034080020E74861&p_node=DZ53008&p_submitted=&p_rank=&p_answer=&p_source=External
Other responses similar to these can be found on the ni.com website by clicking the support tab at the top
of the home page. Then search for �refnum instances� from Technical Resources at the top of the page or topics similar to this. I hope these resources help. Let me know if I can further assist you.
Shea C.
Applications Engineering -
EDI Integration using PI with third party connectors
Hi Experts ,
I would like to know the extra cost factors associated if going for EDI integration with PI with third party connectors like seeburger .
1. We have NW 2004s ECC installed . Do we need to purchase PI separately? If yes how much will it cost ?
2. How licensing will happen in case of PI ?
3. How much Seeburger will cost ? Is there any sort of AMC associated with seeburger
4. Do we install Seeburger and PI on the same box ?
5. How will be the landscape with Seeburger Instance ?
6. How we will be able to move Seeburger Objects across the landscape ? DEV->QA->PRD
Regards ,Santosh Rawat wrote:>
> Hi Experts ,
>
> I would like to know the extra cost factors associated if going for EDI integration with PI with third party connectors like seeburger .
>
> 1. We have NW 2004s ECC installed . Do we need to purchase PI separately? If yes how much will it cost ?
Yes your need to but PI separately,its independed product,its not come with ECC.
> 2. How licensing will happen in case of PI ?
Better to talk with SAP Sales team,they will help you with genuine answers.
> 3. How much Seeburger will cost ? Is there any sort of AMC associated with seeburger
Its depends on which See Burger Adapter You are going to use,.
> 4. Do we install Seeburger and PI on the same box ?
Yes ,we need to deploy the seeburger drivers on PI Server.
> 5. How will be the landscape with Seeburger Instance ?
google it,you wil find the answer i am not sure
> 6. How we will be able to move Seeburger Objects across the landscape ? DEV->QA->PRD
As per my knowledge when you develop any interface using seer burger adapter or predefined mappings,its same procedure to transport also.
Regards,
Raj -
Does Microsoft support disks which have been converted from MBR to GPT with third-party tools?
Before opening a ticket with Microsoft to get the official response, does Microsoft support disks which have been converted from MBR to GPT with third-party tools?
We have various disks on Windows Server 2008 R2 fileserver cluster that are all MBR with various mount points added to overcome the 2TB limitation on MBR disks. Due to the time involved in physically moving the 30Tb+ of data to GPT disks, I would
like to investigate the option of a lossless conversion tool. Does anybody have any experience of these in production environments that could comment?
Any advice and details of experiences would be really appreciated!
CRM AdvisorHi,
Besed on my research, Microsoft supports a fileserver cluster if the disks have been converted from MBR to GPT using a third-party tool.
For more detailed information, please refer to the links below:
Convert MBR to GPT
https://social.technet.microsoft.com/Forums/en-US/3007346f-cf7b-4089-9628-36d394da8240/convert-mbr-to-gpt
Change a Master Boot Record Disk into a GUID Partition Table Disk
http://technet.microsoft.com/en-us/library/cc725671.aspx
Best Regards,
Mandy
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] -
Muse: In-Browser Editing with third-party FTP
Hi,
I recently finished a new website for my client. The domain already exist. Therefore, we will upload the new website, designed in Muse, directly to our hosting server's FTP. Is it possible to activate in-browser editing by using an third-party FTP? And if yes, which steps I have to do?
Thank you very much for your answers!Hi,
The June 2014 update to Muse enables In-Browser Editing for Muse sites hosted with third-party (non-Adobe) providers.
See https://helpx.adobe.com/muse/using/whats-new.html#In-browser%20Editing%20enhancements for specifics.
Abhishek -
CUPS 8.5 Third-party compliance server Options
Can any one recommend a good Third-party compliance server that interacts with Cups 8.5? I see that they are supported but cant seem to find a list of recommeded ones.
FaceTime is the one Cisco recommended.
Michael
Maybe you are looking for
-
I open the browser and the Hime Page opens as expected. When I open a link to an item or article on the page in a new Tab Firefox stops responding and thye top line on the screen shows that to be the case. The only way to resolve the issue is to exit
-
Headphone Jack Light + Internal Speakers Gone?
When I took out the cable to my speakers from my PowerBook's headphone jack I noticed a red light inside the socket. I plugged the cable back in and the light turned off but came back on about half a second after I took it out again. There is a small
-
Apple TV Hooked up to two receivers-Ad wireless speakers?
Presently I have my 5.1 HDMI receiver hooked up to my AppleTV with wired speakers in my den. I also have another old receiver that also runs my AppleTV (analog) with speakers in my sunroom which are also wired. I am able to play my AppleTV music to b
-
I installed a new font but it does not appear in Pages
I installed a new Font called "FOLK" it appears in the FontBook application but when I launch Pages and try to use it I do not see the font in the list. What gives?
-
IE 11 using Javascript 1.3
I have a web project that has to work on multiple browsers. When I use the following link to test the javascript versions this is what I get: Link: http://jsfiddle.net/Ac6CT/ For IE 11 I get 1.3 (my code breaks) For IE 9 on Vista I get 1.7 (my code w