Localizeddirectory.asp with OpenLDAP
Hello everyone,
I want to use OpenLDAP as my LDAP Server then I'm trying to integrate my OpenLDAP server with corporate directory. I use localizeddirectory.asp script in Cisco IP Phone Service SDK and modify it with my own settings. But the problem is I get the "HTTP 500 Internal Server Error" message when I try to access the file from the web browser. The script works with microsoft AD but doesn't work with OpenLDAP.
So I really need everyone's help on this one. Is it possible to configure localizeddirectory.asp Linux version in that same way like Microsoft Active Directory? Can anyone show me how to do this?
Thanks a lot before. Sorry for my bad english.
Aga
Very strange. Not sure why framework of any version would interfere with ASP application. Only suggestion I'd have is to run Process Monitor and see if it shows you something. ProcMon is here;
http://technet.microsoft.com/en-ca/sysinternals/bb896645.aspx
Ludek
Follow us on Twitter http://twitter.com/SAPCRNetSup
Similar Messages
-
Jabber for iPhone 9.6 Integration with OpenLDAP
Hi everyone! i just found an issue when try to integrated jabber for iphone version 9.6 with OpenLDAP that seem like not working and want to describe my environment as below.
Using BE6K 9.1 includes,
- CUCM 9.1.2
- IM&Presense 9.1
- Jabber for Window 9.6 integrate with OpenLDAP using EDI on jabber-config.xml is working properly.
- Jabber for iPhone 9.6 integrate with OpenLDAP using BDI on jabber-config.xml not working(cannot lookup)
- Jabber Voice for iPhone and Android can integrate with OpenLDAP which configure in phone configuration
- Both of Jabber can't access the photo in OpenLDAP with "jpegPhoto" attribute.
By the way im also included jabber-config.xml files for further troubleshooting. Another question, is it possible to include EDI and BDI for working together in one jabber-config.xml file
One another file is jabber for iphone log when im trying to search "anu" word in searching box
-- 2557-02-02 20:48:06.045 DEBUG [3d8d018c] - sidebar search, string is : a <------ started from this line in my log file for easier troubleshooting.
If you need more log or any files for troubleshoot just tell me. Thanks for reading!.
<Jabber-config.xml>
<?xml version="1.0" encoding="utf-8"?>
<config version="1.0">
<Directory>
<DirectoryServerType>BDI</DirectoryServerType>
<BDILDAPServerType>OpenLDAP</BDILDAPServerType>
<BDIPrimaryServerName>10.0.1.11</BDIPrimaryServerName>
<BDIServerPort1>389</BDIServerPort1>
<BDIConnectionUsername>cn=xxx,dc=xxxx,dc=xx,dc=xx</BDIConnectionUsername>
<BDIConnectionPassword>xxxxxxxBDIConnectionPassword>
<BDIUseJabberCredentials>false</BDIUseJabberCredentials>
<BDIEnableTLS>false</BDIEnableTLS>
<BDIPredictiveSearchFilter>uid</BDIPredictiveSearchFilter>
<BDIUserAccountName>uid</BDIUserAccountName>
<BDIBaseFilter>(&(objectClass=inetOrgPerson)</BDIBaseFilter>
<BDISearchBase1>ou=users, dc=xxxx,dc=xx,dc=xx</BDISearchBase1>
<BDIUseANR>false</BDIUseANR>
<ConnectionType>1</ConnectionType>
<PrimaryServerName>10.0.1.11</PrimaryServerName>
<UseWindowsCredentials>0</UseWindowsCredentials>
<UseSecureConnection>0</UseSecureConnection>
<SearchBase1>ou=users, dc=xxx,dc=xx,dc=xx</SearchBase1>
<UserAccountName>uid</UserAccountName>
<BaseFilter>(&(objectClass=inetOrgPerson)</BaseFilter>
<PredictiveSearchFilter>uid</PredictiveSearchFilter>
<ConnectionUsername>cn=xxxx,dc=xxx,dc=xx,dc=xx</ConnectionUsername>
<ConnectionPassword>xxxxxx</ConnectionPassword>
<PhotoSource>jpegPhoto</PhotoSource>
</Directory>
</config>Hi noom_ekkalak ,
Thanks for your answer!
I have specific LDAP parameter in TCT phone configuration as you say, then try to connect the "Directory" setting in Jabber Voice, but it didn't work . i just get the error “Unable to verify account” all the time. :(
Besides this ,is there anything i need to specific? How did you specific Jabber Voice "Directory" parameter?
Thank you! -
Problem with OpenLDAP and JNDI
I'm having problem working with OpenLDAP and JNDI.
First I have changed LDAP's slapd.conf file:
suffix "dc=antipodes,dc=com"
rootdn cn=Manager,dc=antipodes,dc=com
directory "C:/Program Files/OpenLDAP/data"
rootpw secret
schemacheck offthan i used code below, to create root context:
package test;
import javax.naming.Context;
import javax.naming.InitialContext;
import javax.naming.NamingException;
import javax.naming.NameAlreadyBoundException;
import javax.naming.directory.*;
import java.util.*;
public class MakeRoot {
final static String ldapServerName = "localhost";
final static String rootdn = "cn=Manager,dc=antipodes,dc=com";
final static String rootpass = "secret";
final static String rootContext = "dc=antipodes,dc=com";
public static void main( String[] args ) {
// set up environment to access the server
Properties env = new Properties();
env.put( Context.INITIAL_CONTEXT_FACTORY,
"com.sun.jndi.ldap.LdapCtxFactory" );
env.put( Context.PROVIDER_URL, "ldap://" + ldapServerName + "/" );
env.put( Context.SECURITY_PRINCIPAL, rootdn );
env.put( Context.SECURITY_CREDENTIALS, rootpass );
try {
// obtain initial directory context using the environment
DirContext ctx = new InitialDirContext( env );
// now, create the root context, which is just a subcontext
// of this initial directory context.
ctx.createSubcontext( rootContext );
} catch ( NameAlreadyBoundException nabe ) {
System.err.println( rootContext + " has already been bound!" );
} catch ( Exception e ) {
System.err.println( e );
}this worked fine, I could see that by using "LDAP Browser/Editor".
and then I tried to create group with code:
package test;
import java.util.Hashtable;
import javax.naming.*;
import javax.naming.ldap.*;
import javax.naming.directory.*;
public class MakeGroup
public static void main (String[] args)
Hashtable env = new Hashtable();
String adminName = "cn=Manager,dc=antipodes,dc=com";
String adminPassword = "secret";
String ldapURL = "ldap://127.0.0.1:389";
String groupName = "CN=Evolution,OU=Research,DC=antipodes,DC=com";
env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
//set security credentials, note using simple cleartext authentication
env.put(Context.SECURITY_AUTHENTICATION,"simple");
env.put(Context.SECURITY_PRINCIPAL,adminName);
env.put(Context.SECURITY_CREDENTIALS,adminPassword);
//connect to my domain controller
env.put(Context.PROVIDER_URL,ldapURL);
try {
// Create the initial directory context
LdapContext ctx = new InitialLdapContext(env,null);
// Create attributes to be associated with the new group
Attributes attrs = new BasicAttributes(true);
attrs.put("objectClass","group");
attrs.put("samAccountName","Evolution");
attrs.put("cn","Evolution");
attrs.put("description","Evolutionary Theorists");
//group types from IAds.h
int ADS_GROUP_TYPE_GLOBAL_GROUP = 0x0002;
int ADS_GROUP_TYPE_DOMAIN_LOCAL_GROUP = 0x0004;
int ADS_GROUP_TYPE_LOCAL_GROUP = 0x0004;
int ADS_GROUP_TYPE_UNIVERSAL_GROUP = 0x0008;
int ADS_GROUP_TYPE_SECURITY_ENABLED = 0x80000000;
attrs.put("groupType",Integer.toString(ADS_GROUP_TYPE_UNIVERSAL_GROUP + ADS_GROUP_TYPE_SECURITY_ENABLED));
// Create the context
Context result = ctx.createSubcontext(groupName, attrs);
System.out.println("Created group: " + groupName);
ctx.close();
catch (NamingException e) {
System.err.println("Problem creating group: " + e);
}got the error code: Problem creating group: javax.naming.directory.InvalidAttributeIdentifierException: [LDAP: error code 17 - groupType: attribute type undefined]; remaining name 'CN=Evolution,OU=Research,DC=antipodes,DC=com'
I tried by creating organizational unit "ou=Research" from "LDAP Browser/Editor", and then running the same code -> same error.
also I have tried code for adding users:
package test;
import java.util.Hashtable;
import javax.naming.ldap.*;
import javax.naming.directory.*;
import javax.naming.*;
import javax.net.ssl.*;
import java.io.*;
public class MakeUser
public static void main (String[] args)
Hashtable env = new Hashtable();
String adminName = "cn=Manager,dc=antipodes,dc=com";
String adminPassword = "secret";
String userName = "cn=Albert Einstein,ou=Research,dc=antipodes,dc=com";
String groupName = "cn=All Research,ou=Research,dc=antipodes,dc=com";
env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
//set security credentials, note using simple cleartext authentication
env.put(Context.SECURITY_AUTHENTICATION,"simple");
env.put(Context.SECURITY_PRINCIPAL,adminName);
env.put(Context.SECURITY_CREDENTIALS,adminPassword);
//connect to my domain controller
env.put(Context.PROVIDER_URL, "ldap://127.0.0.1:389");
try {
// Create the initial directory context
LdapContext ctx = new InitialLdapContext(env,null);
// Create attributes to be associated with the new user
Attributes attrs = new BasicAttributes(true);
//These are the mandatory attributes for a user object
//Note that Win2K3 will automagically create a random
//samAccountName if it is not present. (Win2K does not)
attrs.put("objectClass","user");
attrs.put("samAccountName","AlbertE");
attrs.put("cn","Albert Einstein");
//These are some optional (but useful) attributes
attrs.put("giveName","Albert");
attrs.put("sn","Einstein");
attrs.put("displayName","Albert Einstein");
attrs.put("description","Research Scientist");
attrs.put("userPrincipalName","[email protected]");
attrs.put("mail","[email protected]");
attrs.put("telephoneNumber","999 123 4567");
//some useful constants from lmaccess.h
int UF_ACCOUNTDISABLE = 0x0002;
int UF_PASSWD_NOTREQD = 0x0020;
int UF_PASSWD_CANT_CHANGE = 0x0040;
int UF_NORMAL_ACCOUNT = 0x0200;
int UF_DONT_EXPIRE_PASSWD = 0x10000;
int UF_PASSWORD_EXPIRED = 0x800000;
//Note that you need to create the user object before you can
//set the password. Therefore as the user is created with no
//password, user AccountControl must be set to the following
//otherwise the Win2K3 password filter will return error 53
//unwilling to perform.
attrs.put("userAccountControl",Integer.toString(UF_NORMAL_ACCOUNT + UF_PASSWD_NOTREQD + UF_PASSWORD_EXPIRED+ UF_ACCOUNTDISABLE));
// Create the context
Context result = ctx.createSubcontext(userName, attrs);
System.out.println("Created disabled account for: " + userName);
//now that we've created the user object, we can set the
//password and change the userAccountControl
//and because password can only be set using SSL/TLS
//lets use StartTLS
StartTlsResponse tls = (StartTlsResponse)ctx.extendedOperation(new StartTlsRequest());
tls.negotiate();
//set password is a ldap modfy operation
//and we'll update the userAccountControl
//enabling the acount and force the user to update ther password
//the first time they login
ModificationItem[] mods = new ModificationItem[2];
//Replace the "unicdodePwd" attribute with a new value
//Password must be both Unicode and a quoted string
String newQuotedPassword = "\"Password2000\"";
byte[] newUnicodePassword = newQuotedPassword.getBytes("UTF-16LE");
mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE, new BasicAttribute("unicodePwd", newUnicodePassword));
mods[1] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE, new BasicAttribute("userAccountControl",Integer.toString(UF_NORMAL_ACCOUNT + UF_PASSWORD_EXPIRED)));
// Perform the update
ctx.modifyAttributes(userName, mods);
System.out.println("Set password & updated userccountControl");
//now add the user to a group.
try {
ModificationItem member[] = new ModificationItem[1];
member[0]= new ModificationItem(DirContext.ADD_ATTRIBUTE, new BasicAttribute("member", userName));
ctx.modifyAttributes(groupName,member);
System.out.println("Added user to group: " + groupName);
catch (NamingException e) {
System.err.println("Problem adding user to group: " + e);
//Could have put tls.close() prior to the group modification
//but it seems to screw up the connection or context ?
tls.close();
ctx.close();
System.out.println("Successfully created User: " + userName);
catch (NamingException e) {
System.err.println("Problem creating object: " + e);
catch (IOException e) {
System.err.println("Problem creating object: " + e); }
}same error.
I haven't done any chages to any schema manually.
I know I'm missing something crucial but have no idea what. I have tried many other code from tutorials from net, but they are all very similar and throwing the same error I showed above.
thanks in advance for help.I've solved this.
The problem was that all codes were using classes from Microsoft Active Directory, and they are not supported in OpenLDAP (microsoft.schema in OpenLDAP is just for info). Due to this some fields are not the same in equivalent classes ("user" and "person").
so partial code for creating user in root would be:
import java.util.Hashtable;
import javax.naming.ldap.*;
import javax.naming.directory.*;
import javax.naming.*;
import javax.net.ssl.*;
import java.io.*;
public class MakeUser
public static void main (String[] args)
Hashtable env = new Hashtable();
String adminName = "cn=Manager,dc=antipodes,dc=com";
String adminPassword = "secret";
String userName = "cn=Albert Einstein,ou=newgroup,dc=antipodes,dc=com";
env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
//set security credentials, note using simple cleartext authentication
env.put(Context.SECURITY_AUTHENTICATION,"simple");
env.put(Context.SECURITY_PRINCIPAL,adminName);
env.put(Context.SECURITY_CREDENTIALS,adminPassword);
//connect to my domain controller
env.put(Context.PROVIDER_URL, "ldap://127.0.0.1:389");
try {
// Create the initial directory context
LdapContext ctx = new InitialLdapContext(env,null);
// Create attributes to be associated with the new user
Attributes attrs = new BasicAttributes(true);
attrs.put("objectClass","user");
attrs.put("cn","Albert Einstein");
attrs.put("userPassword","Nale");
attrs.put("sn","Einstein");
attrs.put("description","Research Scientist");
attrs.put("telephoneNumber","999 123 4567");
// Create the context
Context result = ctx.createSubcontext(userName, attrs);
System.out.println("Successfully created User: " + userName);
catch (NamingException e) {
System.err.println("Problem creating object: " + e);
}hope this will help anyone. -
I am using the Oracle Internet Directory 11.1.1.5.0 connector with OpenLDAP as my target system.
Every time I run the "LDAP Connector User search Reconciliation", I see the following error for each user.
<Feb 21, 2013 3:54:57 PM EST> <Error> <ORACLE.IAM.CONNECTORS.ICFCOMMON.RECON.SEARCHRECONTASK> <BEA-000000> <oracle.iam.connectors.icfcommon.recon.SearchReconTask : handle : Recon event skipped>
The reconciliation events do get generated in OIM and the reconciliation engine does link the account when a user match is found.
I am wondering what is causing that error to be thrown and whether if performance of the LDAP reconciliation is affected by this error.Any updates i am facing same problem.
thanks in advance -
How to Integrate EBS 12 with OpenLDAP
Hi,
I have a requirement to integrate OpenLDAP with EBS 12.2, bidirectionally.
Is there a direct way of doing this, so that if a user is created in Oracle EBS (FND User) and attached to hr employee (with supervisor assigned and organization details), this information can be synchronized with OpenLDAP?
DulaPlease see
https://blogs.oracle.com/stevenChan/entry/indepth_using_thirdparty_identity_managers_with_eb
Integrating Oracle E-Business Suite Release 12.2 with Oracle Access Manager 11gr1 (11.1.1.5.0) using Oracle E-Business Suite AccessGate(Doc ID 1368292.1)
Integrating Oracle E-Business Suite Release 12.2 with Oracle Access Manager 11gr2 (11.1.2) using Oracle E-Business Suite AccessGate(Doc ID 1576425.1)
Troubleshooting Oracle Application Server 10g SSO and OID with Oracle E-Business Suite Release 12 (Doc ID 380487.1)
ApPsMaStI
sharing is Caring -
A serious problem in ASP with SQL 2008
hi everybody,
iI have a problem, and it’s about asp classic working with SQL server 2008>
first of all I have a Recordset look like this:
<%
Dim rsBlackBox_Page
Dim rsBlackBox_Page_cmd
Dim rsBlackBox_Page_numRows
Set rsBlackBox_Page_cmd = Server.CreateObject ("ADODB.Command")
rsBlackBox_Page_cmd.ActiveConnection = MM_MAXsqlServer_STRING
rsBlackBox_Page_cmd.CommandText = "SELECT IDmaxPage, txtTitiel_E, txtBrief_E, txtName_E, txtPath FROM dbo.tbl_Pages, dbo.tbl_Upload_Media WHERE bitShowInBlcakBlock = 1 AND MAXmediaUploadID=intPhotoSmallID ORDER BY IDmaxPage DESC"
rsBlackBox_Page_cmd.Prepared = true
Set rsBlackBox_Page = rsBlackBox_Page_cmd.Execute
rsBlackBox_Page_numRows = 0
%>
Now I have a code to bring information from that recordset, and this code look like this:
<img src="images/<%
if (not rsBlackBox_Page.eof) then
Response.Write(rsBlackBox_Page.Fields.Item("intPhotoSmallID").Value& “ alt=”””& (rsBlackBox_Page.Fields.Item("txtPath").Value)&””””)
end if%>" width="57" height="65" />
and this code suppose to print the path of the image and alt attribute , form DB, unfortunately this code can’t working, when I made some change in the code, like:
<img src="images/<%
if (not rsBlackBox_Page.eof) then
tempY=(rsBlackBox_Page.Fields.Item("txtName_E").Value)
tempX=(rsBlackBox_Page.Fields.Item("txtPath").Value)
Response.Write(tempX&"""")
Response.Write(" alt="""&tempY&"""")
end if%>" width="57" height="65" />
it’s works, can any one please explain what happened to this code, cuz I have a lot of values to print, and there is no way to make it work.
thank you in advance.No, It does not return any errors, and the page appear normally, but no results was shown,
and thank you for your note, but i thought that this is the right place to post my question, because the recordset was created by Dreamweaver. -
Dtlogin with Openldap 2.3.20
Hi,
recently after many problems I have stopped my tests to implement Openldap 2.3.20 with Padl libraries. I started to setup Openldap with native libraries following instructions from a kind friend and from Gary Tay homepage. I use for the moment the unencrypted protocol "ldap://". For the moment client and server are inside the same Sun Sparc Machine.
Commands like getent passwd, getent group, finger, listusers, su and id work fine with ldap users so I think the nss_ldap module is ok.
Authentication of ldap user with "ssh" works fine.
The big problem is that I can't make authentication of ldap user with X-win 6.0 ("Login incorrect; please try again").
From months I'm trying to implement this system please help me, I can show you my definitions.
Thank you
FrancescoI think the SSL mechanism is not working properly, as even when I reduce the ssf restrictions in OpenLDAP, I get a "TLS: can't accept." from slapd.
-
Messaging server with openldap
Hi all,
Is anybody here has an experience in handling sun java messaging server 7u2 with open ldap?
I tried to connect the messaging server with open ldap but still got error "Could not connect to LDAP server".
Isn't possible for them to communicate?
Pls advise.Hi, Shane,
I seem to be half way with the external LDAP stuff but run into problems. I added a set of objectclasses and attribute types to OpenLDAP. Next I changed the option.dat (and ran a cnbuild):
ALIAS_URL0=extldap:///$V?*?sub?$R
REVERSE_URL=extldap:///$V?$N?sub?$R
LDAP_EXT_HOST=10.20.30.40
LDAP_EXT_USERNAME=cn=Manager,dc=domain,dc=nl
LDAP_EXT_PASSWORD=secret
LDAP_EXT_BASEDN=dc=domain,dc=nl
LDAP_EXT_MAX_CONNECTIONS=10
LDAP_EXT_INITIAL_CONNECTIONS=0
DOMAIN_MATCH_URL=extldap:///dc=domain,dc=nl?objectclass?sub?(&(objectClass=sunManagedOrganization)(|(associatedDomain=$D)(sunPreferredDomain=$D)))
Would this constitue a valid configuration?
The good news is that I see LDAP connections arriving at the OpenLDAP server. The bad news is that:
1. I get errors on the ALIAS_URL0 and REVERSE_URL LDAP queries (see below for the log)
2. the $D in the DOMAIN_MATCH_URL is not replaced by the domainname before the LDAP query is started, so in the output of imsimta test -rewrite -debug and in the log file of OpenLDAP the $D characters show up instead of the domainname they should represent
Ad 1. error log in OpenLDAP:
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: read active on 12
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Aug 28 15:18:50 ws22763 slapd[7535]: connection_get(12)
Aug 28 15:18:50 ws22763 slapd[7535]: connection_get(12): got connid=10
Aug 28 15:18:50 ws22763 slapd[7535]: connection_read(12): checking for input on id=10
Aug 28 15:18:50 ws22763 slapd[7535]: conn=10 op=0 do_bind
Aug 28 15:18:50 ws22763 slapd[7535]: >>> dnPrettyNormal: <cn=Manager,dc=domain,dc=nl>
Aug 28 15:18:50 ws22763 slapd[7535]: <<< dnPrettyNormal: <cn=Manager,dc=domain,dc=nl>, <cn=manager,dc=domain,dc=nl>
Aug 28 15:18:50 ws22763 slapd[7535]: conn=10 op=0 BIND dn="cn=Manager,dc=domain,dc=nl" method=128
Aug 28 15:18:50 ws22763 slapd[7535]: do_bind: version=3 dn="cn=Manager,dc=domain,dc=nl" method=128
Aug 28 15:18:50 ws22763 slapd[7535]: ==> bdb_bind: dn: cn=Manager,dc=domain,dc=nl
Aug 28 15:18:50 ws22763 slapd[7535]: conn=10 op=0 BIND dn="cn=Manager,dc=domain,dc=nl" mech=SIMPLE ssf=0
Aug 28 15:18:50 ws22763 slapd[7535]: do_bind: v3 bind: "cn=Manager,dc=domain,dc=nl" to "cn=Manager,dc=domain,dc=nl"
Aug 28 15:18:50 ws22763 slapd[7535]: send_ldap_result: conn=10 op=0 p=3
Aug 28 15:18:50 ws22763 slapd[7535]: send_ldap_result: err=0 matched="" text=""
Aug 28 15:18:50 ws22763 slapd[7535]: send_ldap_response: msgid=1 tag=97 err=0
Aug 28 15:18:50 ws22763 slapd[7535]: conn=10 op=0 RESULT tag=97 err=0 text=
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: activity on 1 descriptor
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: activity on:
Aug 28 15:18:50 ws22763 slapd[7535]:
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: activity on 1 descriptor
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: activity on:
Aug 28 15:18:50 ws22763 slapd[7535]: 12r
Aug 28 15:18:50 ws22763 slapd[7535]:
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: read active on 12
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Aug 28 15:18:50 ws22763 slapd[7535]: connection_get(12)
Aug 28 15:18:50 ws22763 slapd[7535]: connection_get(12): got connid=10
Aug 28 15:18:50 ws22763 slapd[7535]: connection_read(12): checking for input on id=10
Aug 28 15:18:50 ws22763 slapd[7535]: ber_get_next on fd 12 failed errno=0 (Success)
Aug 28 15:18:50 ws22763 slapd[7535]: connection_read(12): input error=-2 id=10, closing.
Aug 28 15:18:50 ws22763 slapd[7535]: connection_closing: readying conn=10 sd=12 for close
Aug 28 15:18:50 ws22763 slapd[7535]: connection_close: conn=10 sd=12
Aug 28 15:18:50 ws22763 slapd[7535]: daemon: removing 12
Aug 28 15:18:50 ws22763 slapd[7535]: conn=10 fd=12 closed (connection lost)
and in the output of imsimta test -rewrite -debug:
15:15:10.38: Looking up host "host.domain.nl".
15:15:10.38: - found on channel l
15:15:10.38: Routelocal flag set; scanning for % and !
15:15:10.38: Checking reverse URL cache for: [email protected]
15:15:10.38: Applying reverse URL pattern extldap:///$V?$N?sub?$R to: [email protected]
15:15:10.38: Resulting URL: extldap:///$V?$N?sub?$R
15:15:10.38: mmc_open_url_reason called to open extldap:///$V?$N?sub?$R, flags = 384
15:15:10.38: URL with quotes stripped: extldap:///$V?$N?sub?$R
15:15:10.38: LDAP URL identified
15:15:10.38: URL context #1 will be used
15:15:10.38: Performing URL search on: extldap:///$V?$N?sub?$R
15:15:10.39: URL open result -2: Search failed: Bad search filter (87)
15:15:10.39: URL resolution failed, status = -2
15:15:10.39: Override postmaster:
15:15:10.39: Mapped return address: [email protected]
15:15:10.39: from_access mapping check: ||MAIL|l|[email protected]|
Ad 2: the imsimta test -rewrite output:
*** Debug output from rewriting a forward envelope address:
15:10:59.48: Rewriting: Mbox = "user", host = "domain.nl", domain = "$*", literal = "", tag = ""
15:10:59.48: Rewrite: "$*", position 0, hash table -
15:10:59.48: Found: "$A$E$F$U%[email protected]"
15:10:59.48: Match, pattern = "domain.nl", current = "(*domaincheck*)"
15:10:59.48: old state = not checked.
15:10:59.48: Domain check on domain.nl.
15:10:59.49: mmc_open_url_reason called to open extldap:///dc=domain,dc=nl?objectclass?sub?(&(objectClass=sunManagedOrganization)(|(associatedDomain=$D)(sunPreferredDomain=$D))), flags = 0
15:10:59.49: URL with quotes stripped: extldap:///dc=domain,dc=nl?objectclass?sub?(&(objectClass=sunManagedOrganization)(|(associatedDomain=$D)(sunPreferredDomain=$D)))
15:10:59.49: LDAP URL identified
15:10:59.49: URL context #1 will be used
15:10:59.49: Performing URL search on: extldap:///dc=domain,dc=nl?objectclass?sub?(&(objectClass=sunManagedOrganization)(|(associatedDomain=$D)(sunPreferredDomain=$D)))
15:10:59.50: URL open result 0: Search succeeded but result set was empty
15:10:59.50: Added domain result 0 to cache for domain.nl.
15:10:59.50: new state = fail pending.
15:10:59.50: Rewrite failed due to prechannel mismatch.
and in OpenLDAP:
Aug 28 15:14:39 ws22763 slapd[7535]: conn=9 op=1 SRCH base="dc=domain,dc=nl" scope=2 deref=3 filter="(&(objectClass=sunManagedOrganization)(|(associatedDomain=$d)(?sunPreferredDomain=$D)))"
Some questions:
1. are the settings in option.dat correct
2. if so, why is the $D not expanded before the LDAP lookup is performed?
3. it seems OpenLDAP doesn't like the search filter; where can I find the meaning of the $R
Your help greatly appreciated.
/rolf -
I'm sorry, I'm a n00b at this... as soon as I get the link, I
will have access to my website files from the host. From there I
want to update the website. The tech at the host says I need to be
knowledgable with ASP, which I'm not.... I've read a little about
it and have come to understand that ASP basically allows you to add
content to certain parts of a site that will look different to
different viewers. There are only certain parts of our page that
have this feature. Is there a good place online that I can go to
read more information that will explain it in terms that I will
understand, or am I just going to have to wing it... :)
Thanks^^<I'm worried> This is a scary way for you to start
out....
Murray --- ICQ 71997575
Adobe Community Expert
(If you *MUST* email me, don't LAUGH when you do so!)
==================
http://www.dreamweavermx-templates.com
- Template Triage!
http://www.projectseven.com/go
- DW FAQs, Tutorials & Resources
http://www.dwfaq.com - DW FAQs,
Tutorials & Resources
http://www.macromedia.com/support/search/
- Macromedia (MM) Technotes
==================
"beck4582" <[email protected]> wrote in
message
news:fe3ipn$62r$[email protected]..
> The tech is kind of clueless, I've learned in the last
hour... It turns
> out
> that someone else here in the office had the website
files on a disk. I've
> downloaded them to my computer and I'm trying to learn
the steps to edit
> it
> now... I don't know how to take what exists and edit it
exactly because I
> can't
> find the file where the layout with all of the links
shown is - the
> original
> project I guess you would call it, so it looks like I
might have to
> recreate
> the website using the files we have... The website is
> www.usadproducts.com.
> -
Cisco ISE v1.1.3 intergration with OpenLdap
Hi Guys,
We are trying to intergrate our ISE server with a Secondary OpenLdap server (Zentyal). The current primary server we are using for authentication is Active directory. We have managed to test the binding to the Secondary server successfully and added it in the Identity source sequences.
The error we are getting when authenticating the OpenLdap end user machine is as below:
1006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
12304 Extracted EAP-Response containing PEAP challenge-response
11808 Extracted EAP-Response containing EAP-MSCHAP challenge-response for inner method and accepting EAP-MSCHAP as negotiated
Evaluating Identity Policy
15006 Matched Default Rule
15013 Selected Identity Store - Zentyal
22043 Current Identity Store does not support the authentication method; Skipping it
Anyone who has experienced such an issue?
Please helpHi Salodh,
You were right!!! We installed a 3rd party supplicant that supported GTC on the Windows machine and the authentication succeeded. Next step is now Profiling the machine otherwise Thanks so much for your help and time. -
Using ASP with oo4o - cannot open database
I was using ODBC - ADODB in some ASP pages to interact with an Oracle DB (8.17). Everything works fine but large queries get very slow.
I was trying to move to Oracle oo4o but I cannot connect to the DB.
Here's the code (pretty basic)...
Dim OO4OServer, OO4ODB
Set OO4OServer = CreateObject("OracleInProcServer.XOraServer")
Set OO4ODB = OO4OServer.OpenDatabase("Applix", "Applix_View/view", 0)
SQL = "SELECT first_name,last_name,ext FROM hd_contact where contact_id=" & BadgeNo
Set RS = OO4ODB.CreateDynaset(SQL , ORADYN_NOCACHE)
It fails on the OpenDatabase statement:
Microsoft VBScript runtime (0x800A000D)
Type mismatch: 'OpenDatabase'
Any ideas?user6732738 wrote:
hi, i'm trying to do an small program, where i'm connecting to the DB, using JDBC driver for sql server 2008. This is my connection code:
try{
Class.forName("com.microsoft.sqlserver.jdbc.SQLServerDriver");
parametros = "jdbc:sqlserver://localhost:1433;databaseName=java;integratedSecurity=true;";
con = DriverManager.getConnection(parametros);
msg.showMessageDialog(this,"Connection to DB OK","information",1);
}catch(SQLException e){
mensaje.showMessageDialog(this,e.getMessage(),"Sql Error",0);
System.out.println(e.getMessage());
}catch(ClassNotFoundException e2){
msg.showMessageDialog(this,e2.getMessage(),"Sql Error",0);
This is the error message i get: Cannot open database java requested by the login. The login failed
If i change my database "java" to "master", I can make a successfull connection. I don't want to use a user and password on my java code, instead i want to use integrated security. How can i fix this?Did you load the library required for integrated security as described in the Microsoft SQL Server JDBC driver documentation? -
Identity firewall with OpenLDAP ?!
Hi Guys
I am interested to use identity firewall but I am using OpenLDAP , as far as I know there is no OpenLDAP agent like AD Agent!
Does it mean that I only able to use OpenLDAP for VPN authentication and not for identity feature ?
Thanks
EhsanProbably the answer is Yes I guess , ASA identity feature works only with Microsoft Active Directory !!!!
-
Editor for ASP with syntax highlighting? (I use Bluefish)
Is there a decent, simple (or not-so-simple) editor for ASP code? Or, is there a way to get Bluefish to highlight ASP correctly?
Don't suggest VIM. I love it, but I haven't learned the intricacies of it yet.
And, yes, I apologize for writing ASP...Hi,
this is a short introduction, might help at start:
Starts with some generell settings, please note that I just add these
settings to the files in /usr/share/scite, most of the stuff can also be set in
files in your ~. Refer to scite docs for filenames onn that.
SciTEGlobal.properties: general settings which are mostly scattered over
the file. Find the lines and tweak them.
# I like my Scite with tabs and a statusbar, displaying line and column
tabbar.visible=1
tabbar.hide.one=1
tabbar.multiline=1
statusbar.visible=1
#comment out this line to have it displayed under the textfield not besides
#split.vertical=1
#display line numbers (create enough space for 4 digits)
line.margin.visible=1
line.margin.width=4
# ask b4 automatically reload an altered file on disk
are.you.sure.on.reload=1
# show name and number of my tab in titlebar
title.full.path=1
title.show.buffers=1
# save the buffer state in a file
and reload on startup
save.recent=1
save.session=1
load.on.activate=1
# allows 25 tabs
buffers=25
# I plain hate tabs and using 8 spaces is waste of place
# converts tab hits to spaces
tabsize=2
indent.size=2
use.tabs=0
# some sane fontsettings: - the ! activates pango -> AA fonts
# sets them all to similar sizes and monospace font
# after the if PLAT_GTK these must be tabs in intendation!
if PLAT_GTK
font.base=font:!bitstream vera sans mono,size:9
font.small=font:!bitstream vera sans mono,size:8
font.comment=font:!bitstream vera sans mono,italics,size:9
font.code.comment.box=$(font.comment)
font.code.comment.line=$(font.comment)
font.code.comment.doc=$(font.comment)
font.text=font:!bitstream vera sans mono,size:9
font.text.comment=font:!bitstream vera sans mono,size:8
font.embedded.base=font:!bitstream vera sans mono,size:9
font.embedded.comment=font:!bitstream vera sans mono,size:9
font.monospace=font:!bitstream vera sans mono,size:9
font.vbs=font:!bitstream vera sans mono,italics,size:9
# uuh, netscape - long time not seen, replce with firefox
if PLAT_GTK
command.print.*=a2ps "$(FileNameExt)"
command.scite.help=mozilla-firefox "file://$(SciteDefaultHome)/SciTEDoc.html"
# add a vertical line at column 80
edge.column=80
edge.mode=1
edge.colour=#E0E0E0
go on to html.properties file; to get the advantages you need the php.api
and the phpfunctions.properties from http://scintilla.sourceforge.net/SciTEExtras.html
there you also find api files for ASP
#replace netscape with mozilla-firefox again
if PLAT_GTK
command.go.$(file.patterns.web)=mozilla-firefox "file:///$(FilePath)"
# load the .api file which I downloaded from the web; it contains, per line,
# a short explaination of each command
# $file.patterns.php is defined for *.php and friends by file extensions
api.$(file.patterns.php)=$(SciteDefaultHome)/php.api
# the calltips for the hypertext lexer shall not be case sensitive
calltip.hypertext.ignorecase=1
# define how the calltipps should be parsed, the following is the same as
# the standard anyway, but might be overwritten by some people in SciTEGlobal
calltip.hypertext.parameters.start=(
calltip.hypertext.parameters.end=)
calltip.hypertext.parameters.separators=,
# some calltips have an additionally explaination after the final ")"
# -this makes display them in a second line
calltip.hypertext.end.definition=)
# autocopleter stuff
# defines which type of characters let the autocompletion pop up
autocomplete.hypertext.start.characters=_$(chars.alpha)
# also the autocompletion should not be case sensitive since, grrr php and html
autocomplete.html.ignorecase=1
# extend the "Extras" menu with some commands
# Tidy Checking
command.name.1.$(file.patterns.web)=HTML Tidy Validate
command.1.$(file.patterns.web)=tidy -quiet -errors $(FilePath)
error.select.line=1
# Tidy Cleanup and indent
command.name.2.$(file.patterns.web)=HTML Tidy Cleanup
command.2.$(file.patterns.web)=tidy -i -wrap 80 -m $(FilePath)
# the executed command alternates the file, so it should be saved b4 and must be
# re-read -> activate are.you.sure.on.reload=1 , makes things easier to handle
# !!!! THERE IS NO UNDO ON THIS COMMAND !!!!
command.save.before.1.$(file.patterns.web)=1
command.is.filter.2.$(file.patterns.web)=1
# activate a lint checker for php files
command.name.1.$(file.patterns.php)=Check PHP syntax
command.1.$(file.patterns.php)=php -l $(FilePath)
the tidy doesn't work onClick, but it shows you the errors in line and column
some pictures to show stuff:
the gray edge at column 80 and the php-lint checker in action:
autocomplete code:
the calltip, NOTE: it is wrapped after the ) which was our setting:
calltip.hypertext.end.definition=)
and the delimiter , let highlight the the correct argument:
whoever want's jump in and wikify that, go ahead, leave me a note where
I shall help.
-neri -
Migrating an Asp and SQL Server Application to ASP with Oracle 9i
Dear All,
We have an ASP + SQL Server 2000 application and want to use Oracle 9i database instead. I wanted to know what to use - whether oo40 or ADO and the pros and cons. Also if you know links to useful articles and sample codes for the same, please send them to me. Any help in this regard is highly appreciated.
Thanks and Regards
SurajAssuming you have a reasonably functional ASP page using ADO to connect to SQL Server, you probably have developers & infrastructure in place that are comfortable using ADO. Because of this, I would advise staying with ADO when you migrate to Oracle.
If you were going to implement a brand new application and didn't want the option to migrate to a different database, I'd suggest using OO4O. OO4O would give you the ability to use more of the Oracle database functionality (i.e. objects, etc) and would probably a bit faster than ADO. Of course, the drawback is that it's a Windows & Oracle-only API.
Justin -
How do I integrate ICS5.x with openLDAP?
I struggled mightily to get openLDAP to work with iPlanet?s Calendar Server 5.x (ICS5.) The upshot of the problem is that ICS5 has some unique schemas that need to migrate their way into openLDAP. What I?ve done is use the Perl script migrateSchemaTo5.pl supplied in the ICS5 opt/perl directory to migrate the following old style (pre r5) schema files that iPlanet supplies in the directory C:\iPlanet\CalendarServer5\cal\bin\config to LDIF format:
ics50-schema.conf (most important)
ns-wcal-schema.conf (not so important, may be able to survive without this one)
um50-common-schema.conf (important, ics50-schema.conf relies on this one)
Once in LDIF format, it is easy to grep through them and convert to the .schema format of the other openLDAP schema files supplied in the <openldap-root>/schema directory. Alas, the problems don?t end there as openLDAP complains if there are empty MUST or MAY clauses in the .schema files, so get rid of any of those.
When done, I put the new .schema files in the schema directory and included them in the slapd.conf file as such:
include c:/openldap/schema/inetorgperson.schema
include c:/openldap/schema/ns-wcal.schema
include c:/openldap/schema/um50-common.schema
include c:/openldap/schema/ics50.schema
Note that order is important as ics50.schema, for example, depends upon the um50 schema file being loaded first. If you have difficulty starting slapd after adding the schema files, add one at a time and monkey with the individual files until it works and proceed to the next.
You?ll know you have a fully functional implementation of ICS 5.x if you can successfully subscribe to multiple calendars. Check the http.log in the <ICS5root>/var/logs directory for any errors in adding LDAP entries to the directory for verification.
Hope this helps! -Jake
Maybe you are looking for
-
Value is not coming in excise invoice ..
Hi .all, We have created one plant . For that we did STO , delivery , PGI , and billing ( commercial and excise ). But in Excise invoice , excise value is not coming ... Pls Advc ....
-
WHY IS FACE TIME FAILING?!
There seems to be a problem with face time, not only with Iphone but with Ipod as well, according to my friend who owns an ipod. Either the screen stays stuck in the previous end image of face time, or it just shows a black screen for you OR the othe
-
G5/iSight Behavior Changes/Problems
Couple of things changed on my iMac. First loading cd's on to iTunes take forever and it used to start playing the disc after the first song was loaded now it doesn't play at all. if I hit play while the disc is loading it goes crazy making all kinds
-
How can I get my Canon 885 to work on my Macbook Air - no software download from Apple?
I have a Canon 885 printer, and can't get a download from Apple for it. I hacve downloaded the file from Canon, but the computer doesn't seem to want to see it. Can anyone help?
-
Cumulative Sum in Pl/Sql query
Hi, If my column has 10, 20, 30 ,40, 50. I want to select the rows that make the combination to 100. Please let me know if you need more details.