LDIF Importing a user with a non-encrypted password fails, anywork arounds?

Similar Messages

• Export and Import of Users with ABAP datasource to  target standalone EP.

  Hi Friends,
  My customer is having
  Source System:BS2
  ABAP+ JAVA --- usage type : BW, EP
  datasource -- ABAP
  now, they need datasource as LDAP
  so i have suggested as attached SOW
  1.Install New Instance BS3 with JAVA,EP,EP Core
  2.Patching BS3 to SP15 level
  3.Import PCD from BS2 to BS3
  4.Configure SSO between BS2 and BS3
  5.Configure Data source to LDAP
  6.Testing the Configurations
  7. Uninstall JAVA DATABASE from BS2
  Target System:
  Standalone JAVA-- only EP
  datasource -- LDAP configured
  I have completed all steps successfully from 1 to 5
  In source system, 45 users are there with ABAP datasource and ABAP roles...  Now how can i import those users with ABAP roles into target System ( Standalone  EP)
  Any Usermapping is required to configure.
  Please suggest me to workaround on this.
  Regards,
  Venkat.

  You have to do this manually. In theory you can make a specially formatted text file to create the users and assign their portal groups, but it is quicker to just add them using the useradmin tool. If you export a user from the Java useradmin tool you can see the format of the text file. I ahve written an ABAP in the past to do the text file creation, but I can't find it now

• Powershell script or command to Import AD USers with GUID

  I need to import few users with their GUID's from our Training domain to Production domain. Our requirement is Users need to login their existing pc's local profile, once they move to
  Production environment.
  Our setup;<o:p></o:p>
  Training domian:melbourne.com<o:p></o:p>
  Domin controller: Training<o:p></o:p>
  Production domain: melbourne.com<o:p></o:p>
  Domin controller:
  Production
  Note:
  I tried ADMT but it is not allowed to do for source and target as same domain name.
  It is really appreciate any one’s expertise on this scenario to import AD users and computers.

  You're not going to be able to force creation of an object with any specific guid.  That's not relevant to what you're trying to do any way.   You also won't be able to clone the SID, since a, it's not supported, and b, the sid contains the
  unique domain identifier which will be different for each domain even though the names are the same.
  You could use sidhistory to help fix the permissions (add the sid from the account in test to the sidhistory of the account in production).  But you'd need a trust relationship between the domains, and I'm not sure if that is supported when the domains
  have the same name. You might need to add a different UPN suffix and set accounts to migrate to have that suffix to get around that.  I've never actually looked into that situation.
  ADMT won't do it though.  You might have a command prompt utility that can do it in ADMT. But you should be able to do it with powershell by calling an api. You can probably use Ashley McGlone's sidhistory module for most of this.
  https://gallery.technet.microsoft.com/scriptcenter/PowerShell-Module-for-08769c67
  You will want to review the details and requirements relating to modifying sidhistory:
  http://msdn.microsoft.com/en-us/library/ms677982(v=vs.85).aspx
  Okay looking closer, you'll need to do this from C++.  The easiest way is probably to use the sidcloner binaries (https://code.msdn.microsoft.com/windowsdesktop/SIDCloner-add-sIDHistory-831ae24b#content
  ) and call them on demand.
  Honestly the best thing is probably get a consultant to come spend a few hours to do it for you.  Messing with sidhistory can be a huge time sink.

• Importing new users with plain text password using a csv file does not work

  Hello everyone,
  I am using csvde -i -f filename to import a number of users and their plain text passwords but it seems
  that the "Password" parameter in my csv file is not recognized.
  PS D:\csvfiles> csvde -i -f .\testimport.csv
  Connecting to "(null)"
  Logging in as current user using SSPI
  Importing directory from file ".\testimport.csv"
  Loading entries.
  Add error on line 2: No Such Attribute
  The server side error is "The parameter is incorrect."
  0 entries modified successfully.
  An error has occurred in the program
  No log files were written.  In order to generate a log file, please
  specify the log file path via the -j option.
  I'm probably doing something wrong but I can not see it. If you know what that is please let me know.
  Many thanks

  I suggested LDIFDE.exe or you can use the following PowerShell script to import your CSV file, if you have the Active Directory PowerShell Module installed:
  http://gallery.technet.microsoft.com/scriptcenter/ed20b349-9758-4c70-adc0-19c5acfcae45
  Enfo Zipper
  Christoffer Andersson – Principal Advisor
  http://blogs.chrisse.se - Directory Services Blog

• Using SQLDriverConnect with special characters in password fails, same info with ODBC (Oracle instant client) works fine

  Hi,
  on a windows 2008 machine that has the Oracle instant client 11_1 installed (11.01.00.06) i am calling SQLDriverConnect in the following way:
  std::string str = "Driver={Oracle in instantclient11_1};Dbq=//10.10.101.66:1521/orcl;;Uid=myUser;pwd=a;b";
  odbcRc = SQLDriverConnect(hdbc, NULL, (SQLTCHAR*)str.c_str(), str.size(), (SQLTCHAR*)szConnStrOut, 1024, &cbConnStrOut, SQL_DRIVER_NOPROMPT)) == SQL_ERROR);
  as long as the password contains no special chars (namely semicolon) it works fine. but when I try to use special chars in the password It stops working, with an invalid username/password error.
  State: 28000 Native error: 1017 Message: [Oracle][ODBC][Ora]ORA-01017: invalid username/password; logon denied
  i tried different variations of adding " (\") over the password, over the entire pwd=a;b or braces { but nothing seems to work.
  the thing is that using ODBC works! what I did was:
  open ODBC, go to System DSN tab, add "Oracle in instantclient11_1", then fill the following information:
  Data source name: Anything
  TNS Service Name: //10.10.101.66:1521/orcl
  User ID: myUser
  then i press test connection, enter the password "a;b"
  and it works!
  I cannot figure out what's my problem.
  Thanks,
  Roy.

  I've created your test table in my Oracle database using this extra character and I'm able to describe it properly.
  SQL> desc test;
  Name Null? Type
  ATTIVITÀ VARCHAR2(40)
  My character set being used is:
  SQL> select * from v$nls_parameters;
  NLS_CHARACTERSET
  WE8ISO8859P15
  NLS_NCHAR_CHARACTERSET
  AL16UTF16
  NLS_LENGTH_SEMANTICS
  BYTE
  So as long as it doesn't work for you in your native Oracle database I don't think it would work with DG4ODBC. So yes, it would be best to log a service request so that the Oracle database support can check out the NLS issue.
  Edited by: kgronau on Sep 28, 2011 9:21 AM
  To be complete here the describe of the MySQL table native and using DG4ODBC:
  mysql> create table TEST (attività Varchar(40));
  Query OK, 0 rows affected (0.00 sec)
  mysql> desc TEST;
  ---------------------------------------------------+
  | Field | Type | Null | Key | Default | Extra |
  ---------------------------------------------------+
  | attività | varchar(40) | YES | | NULL | |
  ---------------------------------------------------+
  1 row in set (0.00 sec)
  SQL*Plus: Release 11.2.0.2.0 Production on Wed Sep 28 09:20:17 2011
  SQL> desc "gateway"."TEST"@MYSQL_DG4ODBC_EMGTW_1122_DB;
  Name Null? Type
  attività VARCHAR2(80)
  So in general it should work.

• 5th gen is locked with a non-simple password. i forgot it and restoring didnt work.. suggestions??

  Well basically I wasn't thinking and decided it was a good idea to make a complex password.  When I woke up, I didn't have a clue. Now I need any suggestions to just reset my Ipod. I don't have anything important because I got it Saturday.... PLEASE HELP. thanks

  Not knowing what happens when you tried:
  Place the iOS device in Recovery Mode and then connect to your computer and restore via iTunes. The iPod will be erased.
  iOS: Forgot passcode or device disabled
  If recovery mode does not work try DFU mode.                        
  How to put iPod touch / iPhone into DFU mode « Karthik's scribblings        
  For how to restore:                                                             
  iTunes: Restoring iOS software
  To restore from backup see:
  iOS: Back up and restore your iOS device with iCloud or iTunes       
  If you restore from iCloud backup the apps will be automatically downloaded. If you restore from iTunes backup the apps and music have to be in the iTunes library since synced media like apps and music are not included in the backup of the iOS device that iTunes makes.
  You can redownload most iTunes purchases by:           
  Downloading past purchases from the App Store, iBookstore, and iTunes Store        
  If problem what happens or does not happen and when in the instructions? When you successfully get the iPod in recovery mode and connect to computer iTunes should say it found an iPod in recovery mode.

• Authenticating Unix users with LEAP

  Scenario : WLAN (AP350 V11.21) with LEAP authentication against an ACS V3.0 server (on W2K). Pre-existing Unix users with traditional Unix-crypted passwords. Usernames with their associated encrypted passwords are successfully imported on ACS database with the csutil utility.
  Authorization fails because LEAP uses a derivative of CHAP/MS-CHAP and it needs the plain password on the ACS side.
  WLANs are increasingly used on places like educational campuses where Unix is widely deployed. Has anyone found a solution to authenticate Unix users with LEAP?
  Thanks in advance

  I know it's It's not supported yet. When PEAP is added to Aironet and ACS, this problem will go away. I believe that is happening in ACS 3.1 and some future version of the Aironet software.
  An ugly workaround would be to setup User Changeable Passwords. You'd inform people with UNIX accounts that they have an ACS account created, but that wireless will not work for them until they use a LAN-based system to log in and change their ACS password. You could give them the option of using the same password, of course.

• Exporting Users with Password

  Is there any way to export to a file the list of users with non-encrypted passwords? I have to migrate the list of users to another Radius.
  Thank you in advance

  As far as I know, you cannot export...

• Login with encrypted password doesn't work

  Hi, simple problem:
  in login settings with encrypted password option on
  The login doesn't work => Error:"AFTER.Trigger_Login_CheckLogin*"
  (tested with a user that has an encrypted password)
  without encrypted password
  The login works
  (tested with a user that has a clean password)
  Where I wrong?
  Thanks
  Gabriele

  Hi Gabriele,
  how many varchars did you define for the column that´s holding the encrypted passwords ? It has to be at least 32 chars due to the MD5 encryption, if it´s lesser than that, the passwords will get truncated.
  Cheers,
  Günter Schenk
  Adobe Community Expert, Dreamweaver

• Zen Touch users (and possibly non Zen Touch users) with Firmware issues click he

  i just got back from the mall.i visited the electroworld branch from which i purchased my zen. i explained to them what my problem is, at first they recharged the player in a usb port in front of me...then they also reformatted it too...told me to stick to the firmware that came with the product..the player responded and thanked them..but hr later, it blacked out again..i came back to the store manager showed him my zen ( he couldnt deny it doesnt have a problem ) and within minutes told me...they are going to give me a replacement. (the diagnosis was AUTO-OFF). they did and im very thankful. right now im charging the new player and hoping...i mean really hoping that this zen works. because im not going to waste my time again even with that warranty. if this zen is defecti've, im gonna li've with its defect..but im going to save up for the fruit's company in my next purchase..better yet why not a new pda...i can play [size="+2"]ZEN TOUCH USERS (and possibly non Zen Touch users)!!!
  OH MY GOD
  !!! I can't believe it, but after at least 5 hours of troubleshooting, I got it to work!!
  I don't know if all of these steps are necessary or not, but this is what I did in approximately this order (I'm so excited now, I'm not even sure if this is the exact order, but I'm almost positi've this is how I did it verbatim). I really, truly hope this works for everyone else.:
  ON YOUR ZEN TOUCH:
  .) Don't connect device to USB yet
  2.) Clean Disk
  3.) Format Disk
  *Don't bother with restart firmware or reboot; these options are useless.
  ON YOUR PC:
  .) Do NOT connect device to USB yet.
  2.) I did what everyone suggested and rolled my Windows Media Player to v0 (using Add/Remove programs in Control Panel), made sure I had SP2, had the latest drivers, blah blah blah. I'm not sure if this is necessary, but I also uninstalled my Firefox WMP plugin just to be safe. :smileyindifferent:
  3.) I un-installed (using Add/Remove programs in Control Panel) and re-installed my Zen Touch drivers, both my 2.0.00 and .30.03 (.30.03 is needed ONLY if you have XP Pro 64-bit edition). I'm not sure if re-installing the drivers is even necessary, but just to be safe, let's say it is. :smileyvery-happy:
  ---THIS IS THE IMPORTANT PART!---
  4.) I plugged my device into my USB port. When it prompts you whether you want to Sync the device with Windows Media Player or Take No Action, don't ignore it and close out. SYNC IT! I made the mistake of thinking that because my firmware was corrupted and my drivers weren't recognizing my Zen Touch as nothing more than a worthless hard dri've that there was no way it would sync with WMP. IT DOES
  !!! I don't know how but it freakin' does!
  5.) Open up your firmware update file and try to update again. Mine worked immediately and updated the player within seconds!
  NOTE: As mentioned on Creative's Support page, probably the only thing they were right about, your device will no longer be compatible with MediaSource. If you want to add music, you have to do it with Windows Media Player 0's Sync page now. And for the love of god, don't update Windows Media Player! It's not worth it! Winamp is way better anyways!
  Good luck everyone! I sincerely mean that. :manhappy:
  Message Edited by invisiblephrend on 06-07-2008 :32 PMusic files in it, watch movies, save medical books etc..

  I also strongly recommend that when Windows Media Player asks you whether you want to sync automatically or manually to choose the manual option. Automatic just randomly grabs music files and could likely add?music you don't want on your device.

• How do I import a user schema "99user.ldif" in  ldap sun one 5.1

  I would like to know what are the steps needed to import user schema "99user.ldif" from another existing ldap server to a new installed ldap server. When I tried to use the initalize database option it did not work. I assumed I might have missed some steps.
  Do I need to create a new database ?

  turn on the audit log and then rename the user with the gui. The audit log will show the ldif statements used to perform the operation.
  You need to use the modrdn changetype and additionally sepecify the option to remove the old rdn.

• How to share a project with a non-Adobe user and present it to prospect customers?

  I Have to share my project with a person who will present it to prospect customers. I cannot ask this person to open an Adobe account. Is there a way for him to access my DPS folio and show it? Or can I export it in a way that allows to appreciate the interaction features built inside?
  Thanks!

  OK, got it. Thank you!
  2015-01-17 14:46 GMT+01:00 Bob Levine <[email protected]>:
      How to share a project with a non-Adobe user and present it to
  prospect customers?  created by Bob Levine
  <https://forums.adobe.com/people/BobLevine> in Digital Publishing Suite
  - View the full discussion
  <https://forums.adobe.com/message/7105349#7105349>

• HT201269 I have encrypted back up of my iphone on my laptop, forgotten the encryption key. want to delete the old backup, remove encryption option and resynch with my iPhone in none encrypted. Have deleted the old back up but can't get ride of the encrypt

  have an encrypted copy of my iPhone back up on my laptop. forgotten the access code. I have deleted the back up and want to remove the encryption option and resynch with my iphone none encrypted, what are my options other than removing iTune from my laptop and reloading it

  1) You asked "Does she need to reconnect to that itunes/computer and if so what do we need to do to remove this folder of pics from her ipod?" Yes, you have to connect the iPod to that computer and go to the Photos pane for the iPod in iTunes and uncheck sync photos and the click on synce/apply. In the future do not check sync photos.
  iOS and iPod: Syncing photos using iTunes
  2)
  Create a NEW account for using these instructions. Make sure you follow the instructions. Many do not and if you do not you will not get the None option. You must use an email address that you have not used with Apple before.
  Creating an iTunes Store, App Store, iBookstore, and Mac App Store account without a credit card
  Then on the iPod go to
  - Settings>Messages>Send and receive and sign out your ID and sign into hers. Make sure that only her ID email address is listed.
  - Settings>FaceTime sign out of your ID and sign into hers. Make sure that under You can be reached at only her ID email address is listed
  - Settings>iCloud and sign out and sign in with hers
  Contnue to use the commpn ID/account for Settings>iTunes and App stores.

• HT3529 can my daughter send text messages to non iphone users with only an apple id?

  Can you send a text message from ipod touch to non iphone users with only an apple id and no phone number?

  The Apple Messages app will only send Messages to another uses who has the Messages app on their iPod touch, iPad or iPhone. For Messsging an iPod touch or iPad you use the E-mail address they have in Settings>Messages>Send and Receive.  An Phone number will also be listed if they also have an iPhone with iOS 6 using the same Apple ID and yo can use the number.
  You can Message an iPhone by its phone number of the Apple ID email address listed in Settings>Messages>Send and Receive.

• Ldif import change the userPassword attribute

  Hi all,
  I post a message here because i am facing an obstacle.
  I made an migration from Sun directory server 6 on sun sparc server to an linux server with directory server 7.
  I have got an issue about the ldif import.
  When i export ldap data from my old server, i have got ldif-export.ldif file and when i import it i have no error :
  Started initialization of "xxx.xxx.xxx.xxx:389"; Apr 29, 2013 10:14:12 AM
  Sent 1314 entries...
  Sent 3794 entries...
  Sent 3795 entries.
  Completed initialization of "xxx.xxx.xxx.xxx:389"; Apr 29, 2013 10:14:16 AM
  But when i do an ldap search i can see that my new dsee server does not contain the same password than my old server for the users password attribute .
  and this in spite of the ldif-export file contain exacly the same password than the old server in production.
  I think when i do an import the new server change the pasword or something like this.
  for example on my old server my user teo
  userPassword:: teo
  cn: neo
  uid: neo
  objectClass: top
  objectClass: neoDevice1
  and on my new server i have got :
  userPassword:: bmVv
  cn: neo
  uid: neo
  objectClass: top
  objectClass: neoDevice1
  i took the precaution to change the server propertie with this command to be sure to respect the same config than the old server
  ./dsconf set-server-prop pwd-storage-scheme:CLEAR
  I can't find where the issue is or what propertie to change for fix it.
  Otherwise there is no other problem in my ldif import all seems to be correct except userPassword attibute.
  Thanks for your help

  Hello,
  sorry for this late reply...
  as far as I understand, you would like to use the export/import mechanism to turn in clear all the passwords, is that correct?
  Unfortunately I'm afraid that what you're asking is not possible...
  If the userPassword attribute is "encrypted" in the original Directory Server instance database, then regardless of what you set in the 'encryption-scheme', in the export.ldif file you will still have the attribute encrypted.
  The same thing happens when you try to import from an ldif file: regardless of what you have set in the 'encryption-scheme' in the Directory Server, if the attribute in the ldif file is 'encrypted', it will stay 'encrypted' also in the database.
  The only way to have the userPassword attribute in clear is change the encryption-scheme and update the userPassword field of every entry.
  HTH,
  Marco