Problems to autenticate users with Messager Express.
Greetings,
I'm relatively new to iPlanet MS. I have IMS 5.1, Directory Server 4.13 and Delegated Administrator for Messaging and Collaboration 1,1.
When I create an user into of a domain diferent to the default domain with iDA and I try the Messager Express with this new user, I receive the following error:
Invalid user name or password
This is the LDAP tree:
org.org
|
Organization 1 (default domain)
| |
| People --- user1
| Group
| |
| Organizacion 2
| |
| People -- user2
Organization 3
|
People --- user3
Any user who belongs to the organization 1 does not have any problem to use Messenger Express. If user1 send a mail to user2, user2 receive the mail. user2 (or user3) can to use Calendar Server, but does not the Messenger Express.
How I can resolve this problem ?
Thanks in advice
Frank,
First, since this is not the default domain, make sure you are logging in as: [email protected] ([email protected]).
Second, take a look at the directory server access log and make sure it is searching for the user under o=org3, o=org.org.
Michelle
Similar Messages
-
Problem in creating users with password restrictions
I have enabled the following option in the Authentication>Enterprise tab of CMC.
Must contain at least N Characters and specified N as 7
Enforce mixed-case passwords
However I am able to create user with password as abcd.
Please suggest.
Thanks in AdvanceI might be missing something but the rule applies to users changing their pw not administrators creating accounts. If the administrator sets this rule it would be thought/assumed that they would enforce their own rule when creating accounts. The users however should not be able to select 4 character passwords.
I'll run some tests and see if I find out anything different.
Tested this on XIR2 SP4 and XI 3.0 The rules apply to the user not the administrator creating the account.
So create an account while the 7 character pw is enabled. By default the user logs in with the pw (any amount of characters) and is prompted to change their pw. They cannot choose anything less than 7 characters. So unless an administrator creates an account with a password less than 7 characters AND deselects the option to force a pw change. All new users will be forced to select a 7 character password.
This is by design. If it forced the administrator to create accounts without a 7 character pw they could simply deselect the options(as administrators) so there is no security in forcing this.
Regards,
Tim
Edited by: Tim Ziemba on Aug 13, 2008 5:28 PM
Edited by: Tim Ziemba on Aug 13, 2008 5:33 PM -
Problem syncing Nokia 6301 with Outlook Express
I'm using bluetooth. The connection is fine - everythink works EXCEPT when I try to sync contacts between outlook express and the phone, zero contacts are synced. There are no error messages.
All other functions work -- able to back up and transfer photos, etc. I tried every setting imaginable, and no luck
Of course the most important thing that I need is contacts backed up...
Thanks!!!!!!!!!!!!!!
Version of PC Suite and XP:
6.80.22 Nokia PC Suite
Outlook Express 6
Operating system:
Microsoft Windows XP
Build 2600
Service Pack 2
Language: English (United States)
Language for non-Unicode programs: English (United States)
Locale: English (United States)
Input language: English (United States)
Nokia PC Suite:
Version 6.80.22
Language: English
Connectivity Cable Drivers:
Version 6.80.5.1
Bluetooth stack:
Microsoft Bluetooth stack
Version 5.1.2600.2180I have my contacts in SIM and phone memory, the SIM is for "safekeeping". I make backup to memory card and PC with PC Suite and in addition I have contacts in SIM, I have lost some years ago my contacts and I don't want to there again.
I don't see dublicates because I have chosen that only visible memory is phone memory.
There seems in your setup that something remains "hanging" after sync and the sync does not happen.
I don't think you need to boot the PC, you can try to "untick" the connection methos you are using after sync in PC Suite -Manage connections. Then "retick" it and you are most likely able to sync again.
AND BTW, your phone model is such that it propably won't let you sync until you have "ok"ed the sync window in phone screen.
I am sure booting PC is not the only way to remedy the situation.Message Edited by manta on 07-Nov-2006
03:18 PM -
Problem authenticating Wireless users with peap
Good afternoon,
I am currently trying to authenticate wireless users using PEAP and an external RADIUS server. The problem is when I try to authenticate I get this error :
AAA/AUTHEN/PPP : Pick method list 'Permanent Local'
DOT11-7-AUTH_FAILED : Station ... Authentication failed
It shouldn't use local authentication, but the aaa server I configured.
I looked on the internet but didn't find a working solution.
Does anyone know why it is not working ?
Here is my running configuration :
Current configuration : 4276 bytes
! Last configuration change at 00:45:40 UTC Mon Mar 1 1993
! NVRAM config last updated at 16:38:23 UTC Thu Jul 24 2014
! NVRAM config last updated at 16:38:23 UTC Thu Jul 24 2014
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname ap
logging rate-limit console 9
enable secret 5 $1$QVC3$dIVAarlXOo52rN3ceZm1k0
aaa new-model
aaa group server radius rad_eap
server 192.168.2.2 auth-port 1812 acct-port 1813
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
no ip routing
no ip cef
dot11 syslog
dot11 ssid test
authentication open eap eap_list
authentication key-management wpa version 2
guest-mode
eap profile peap
method peap
crypto pki token default removal timeout 0
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid test
antenna gain 0
stbc
beamform ofdm
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
antenna gain 0
no dfs band block
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
dot1x pae authenticator
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
interface BVI1
ip address 192.168.3.10 255.255.255.0
no ip route-cache
ip default-gateway IP
ip forward-protocol nd
ip http server
ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
radius-server attribute 32 include-in-access-req format %h
radius-server host 192.168.2.2 auth-port 1812 acct-port 1813 key 7 140441081E501F0B7D
radius-server vsa send accounting
bridge 1 route ip
line con 0
line vty 0 4
transport input all
end
Thank youI haven't setup autonomous APs before but I think I might see the problem. You are defining an authentication list called "eap_methods" but you never call for it in your SSID settings. Instead there you call a list named "eap_list" In addition, I think you might be missing one more command. So perhaps try this:
dot11 ssid test
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa version 2
guest-mode
Hope this helps!
Thank you for rating helpful posts! -
Relation between users with messages
Hello,
I have a table of Users:
create table dbo.User
Id int identity not null,
Name nvarchar (400) null,
// Other coluns as Login, Password, etc.
create table dbo.Role
Id int identity not null,
Name nvarchar (20) null
create table dbo.UserRole
UserId int not null,
RoleId int not null
Each user has one or more roles.
I need to relate users one to each other in periods of type.
For example, one professor to its students during 4 months in 2015.
And I also need to track messages between users.
One of my ideas would be the following:
create table dbo.UserToUser
FirstUserId int not null,
SecondUserId int not null,
StartDate datetime not null,
EndDate datetime not null
Being both ProfessorId and StudentId FK's of Users table.
create table dbo.Message
ToId int not null,
FromId int not null,
Text nvarchar(max) not null,
Created datetime not null
Being both ToId and FromId FK's of Users table.
Should this be done in another way?
Thank You,Review the following design:
create table dbo.Users
Id int identity PRIMARY KEY,
Name nvarchar (400)not null UNIQUE,
-- // Other coluns as Login, Password, etc.
create table dbo.Role
Id int identity PRIMARY KEY,
Name nvarchar (20) not null UNIQUE
create table dbo.UserRole
UserId int not null REFERENCES Users,
RoleId int not null REFERENCES Role,
PRIMARY KEY (UserId, RoleID)
create table dbo.UserToUser
FirstUserId int not null REFERENCES Users,
SecondUserId int not null REFERENCES Users,
StartDate datetime not null,
EndDate datetime not null,
PRIMARY KEY (StartDate, FirstUserID, SecondUserID)
create table dbo.Message
ToId int not null REFERENCES Users,
FromId int not null REFERENCES Users,
Text nvarchar(max) not null,
Created datetime not null,
PRIMARY KEY(ToId, FromId, Created)
Kalman Toth Database & OLAP Architect
SQL Server 2014 Database Design
New Book / Kindle: Beginner Database Design & SQL Programming Using Microsoft SQL Server 2014 -
Problems for Japanese users with ELS
We have some (but not all) Japanese users reporting errors at the point in our startup where we read the ELS (Encrypted Local Store).
We've run a test application that saves and reads objects to and from the ELS. When reading an object we just wrote, we get an error ("general internal error"). When we read an array of these objects, we get a 2030.
The test class has only simple data types and does not implement IExternizable. It has a [RemoveClass] tag.
Any ideas?Hi Richard,
Would you mind opening a new bug on this issue over at bugbase.adobe.com? Please post back with the bug number or URL so that others affected can add their vote and comments.
Thanks,
Chris -
Problems using Google Talk with Messages
Hello everybody. I have configured my Google Talk account in Messages; everything was working fine, but I came across an annoying issue.
A friend of mine has Google Talk too: he uses Windows with Google's “official” application, together with the web plugin for Gmail. He is in my buddy list and we can chat, but we cannot make voice calls, nor use video chat: I see all buttons greyed out (except the “text chat” one).
Any ideas to make it work?
Thank you very muchHi,
iChat or Messages to a Browser has never worked.
He needs to get a Mac or you need to change to using a Browser.
The Why.
Google talk run a Jabber server.
Most Jabber App have a module call Jingle Library that does the A/V stuff. See Jingle
Jingle use different A/V protocols to those used by iChat and Messages.
The linked article seems to get changed fairly regularly.
Currently it reads
Jingle is an extension to the Extensible Messaging and Presence Protocol (XMPP) which adds peer-to-peer (P2P) session control (signaling) for multimedia interactions such as in Voice over IP (VoIP) or videoconferencing communications. It was designed by Google and the XMPP Standards Foundation. The multimedia streams are delivered using the Real-time Transport Protocol (RTP). If needed, NAT traversal is assisted using Interactive Connectivity Establishment (ICE).
As of December 2009, the proposed Jingle specification has not yet been approved by the XMPP Standards Foundation, but is now a Draft Standard, meaning: "Implementations are encouraged and the protocol is appropriate for deployment in production systems, but some changes to the protocol are possible before it becomes a Final Standard."[1]
The libjingle library, used by Google Talk to implement Jingle, has been released to the public under a BSD license. It implements both the current standard protocol and the older, pre-standard version.
I have bolded the last part.
This article has reads that Google (And XXMP/Jabber) "Created" the Jingle process. In the past the wording around this has varied and the implied involvement by Google has varied along with it.
Before that it did not mention Google in that way and also said the Google version was not that compatible with versions in other Jabber apps.
This "Older" version would be 3 years out to date.
iChat and Messages connect using SIP (Session Initiation Protocol) for A/V chats.
This works with an Intervening server acting as an "Telephone Operator" at both ends to check the Acceptability or the Incoming call and the ports to be used (it also checks that where the Visible Invite went is the person replying/Accepting).
AS you both have Google IDs in may be simpler fro you to use a web Browser and download the Google Web Browser Plugin.
NOTE:
This may have issues if you use the FLASH Plugin as well.
At one time Google Used Flash to generate the Video and it seems their plugin is very closely "related" in the way it works.
9:37 PM Friday; February 1, 2013
Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
iMac 2.5Ghz 5i 2011 (Mountain Lion 10.8.2)
G4/1GhzDual MDD (Leopard 10.5.8)
MacBookPro 2Gb (Snow Leopard 10.6.8)
Mac OS X (10.6.8),
Couple of iPhones and an iPad
"Limit the Logs to the Bits above Binary Images." No, Seriously -
Export problems to mpeg 2 with FC Express HD
anyone know why FCE quits everytime I try to export to mpeg 2 ??
thanks mattHow are you exporting to MPEG-2? The current version of QuickTime no longer has MPEG-2 export in it. It's only available through Compressor or third party software. If you're using an old export module that may be the problem.
-
how would one allow a user through message express to access all the other users in the directory server through the the address book?
in other words what is the configuration you need to set up in message express or on the server etc to allow the user to access the directory server for lookup info. I currently have a corporate directory listed with nothing in it and a personal address book.There's an example of exactly that in the Messaging Express Customization Guide.
-
Yes another user with problem with Apple Mobile Device Support, I am getting the error message: Service 'Apple Mobile Device'(Apple Mobile Device) failed to start. Vertify that you have sufficient privileges to start system service....I hit retry and it came up again. I hit ignore and it prompted me to hit finish so Itunes can open. I looked thru alot of these posts on here to try and resolve this problem myself but it's not working too well...I downloaded Itunes to my desktop so I can right click it with the program i downloaded called WinRAR. I extracted it and then went into the folder called Itunes64setup. I saw the file called AppleMobileDeviceSupport64 in there so I began to try and download it on it's own. Well that didn't work as I planned and got this error message:
Apple Mobile Device Support wasn't installed on your computer. The installer encountered errors before Apple Mobile Device Support could be configured. Your system has not been modified. To retry these operations at a later time,please run the installer again.
Well I tried to run it again and came up with the same message...I see that some people got great support to help them so I am hoping someone can help me as well. I know "b nor" is very qualfied and hopefully can help me! Please advise what I can do. Thank youHi Iss9243,
Welcome to the Support Communities!
You've already tried some great troubleshooting steps, but the article below gives you quite a few more for this issue. Hope it helps ....
iTunes 11.1.4 for Windows: Unable to install or open
http://support.apple.com/kb/TS5376
Cheers,
- Judy -
Problem with the user-defined message search in PI 7.3.1
Hi, all
I having been trying out the new user-defined message search in PI 7.3.1(with TREX). I am stuck on creating the search critera section and could not move forward. Here is how I define the filter:
Here is a sample payload:
<?xml version="1.0" encoding="utf-8" ?>
<ns:JOB_MT xmlns:ns="urn:peoplesoft:batch:job_r:message">
<MsgData>
<JOB>
<ACTION_FLAG>NewPerson</ACTION_FLAG>
<EMPLID>XXXXX</EMPLID>
<REG_NO />
<LAST_NAME>XXXX</LAST_NAME>
<FIRST_NAME>XXXX</FIRST_NAME>
</JOB>
</MsgData>
</ns:JOB_MT>
I have tried the xpatch search criteria as the following:
/ns:JOB_MT/MsgData/JOB/EMPLID
/ns:JOB_MT xmlns:ns="urn:peoplesoft:batch:job_r:message"/MsgData/JOB/EMPLID
Both failed to return the emplid field when I clicked on the "test search criteria" against a PI message. Can you advise what I did wrong?
Thanks,
Jonathan.Hi.
Did you put the prefix?
Regards -
Problem deleting users with delegated admin
Hello,
I seem to be having a problem deleting users with delegated administrator. I am using JES 2005Q4.
Here is what I do:
I set Inetuserstatus and mailuserstatus to deleted. Then run msuserpurge to delete the mail box. This seems to be working fine. Then I do a commadmin domain purge and it will actually delete the persons ldap record, but it does not delete the o=pab records or the o=PIserverDB records.
I am probably missing a step here, and would apprecidate it somebody could point me in the right direction.
Thanks,
GaryDA patches:
119777-10 most current release for Solaris
119778 for X86
119779 for Linux
118540-23 Communication Express Solaris Sparc
118541 X86
118542 Linux
118207-42 Messaging core Solaris sparc
118208 X86
118209 Linux
116574-02 Veritas Vcsha (sparc only)
118242-03 and 118245-03 Dssetup sparc
118243 and 118246 X86
118247 Linux
122018-02 Outlook Connector
(all the currently released patches. Most have t-patches available from tech support post the above numbers) -
Problem: Using iTunes 6 with multiple user accounts in XP
I recently installed iTunes 6.0.0.18 as an upgrade in Windows XP Professional. After installing the software and a restart, I attempted to use iTunes with success as the Administrator. However as another user, iTunes when launched will prompt the user with the user license agreement. When the user accepts the agreement, iTunes never opens, however I have noticed that the hard drive where the music files are located is continually accessed. When logging out an "End Task" message pops up stating that Quicktime Helper Files are still being used.
After the problem arose I attempted twice to completely uninstall iTunes, restart, cleanup the directories, reinstall, and then give all users full control permissions in both the directory structure of iTunes and the registry, with the exact same results.
Currently I have no fix for this problem, but I suspect that it is an issue with the software (iTunes 6.0.0.18). I have since downgraded back to iTunes 5.0.1.4 and am not having any issues.Hello B,
So I finally had time to download the latest version of iTunes (ver. 6.0.1.3) and install it (logged on as the Administrator account). Please note that during the install I did get an error message that stated something to the effect that "a program tried to access memory location XXXX which is "READ" only." I believe this to be the new memory lock "virus" deterrent system that Intel has recently introduced with the latest 64-bit processors and motherboards, (which I have) but I am only guessing. In any case the installer finished in the background without incident.
After installing iTunes I launched it as the Administrator, and everything work just fine. I then logged off and logged in as my user account and attempted to run iTunes. I got the license agreement window, clicked "Accept" and nothing happened, but again I noticed that the Network card and my NAS were being accessed. I launched "services.msc" to check, as you suggested, to see if my QuickTime service had started. Much to my surprise the service was not listed. So I figured, well if there is such a service that needs to be launched then perhaps launching QuickTime would start this service, (still baffled to why the service is not listed in Windows Services). I launched QuickTime, and while leaving QuickTime open I then attempted to launch iTunes. Much to my surprise it started! I then closed both apps and have attempted to start iTunes several times since with success. A crazy fluke but, the steps listed above seemed to work for me. I can only hope that it helps others out who may be experiencing the same issue.
So it seems that my issue has been resolved. Thank you for all your time and efforts on this matter, I do appreciate it.
Jamie -
Is there a way to avoid a iPlanet Messaging Express home user to copy and paste email body content and avoid attachment deliver attempts?Cause this could grant home users to take ownership of enterprise's documents, sending to them selves and after that, in their own homes, they access Messaging Express, recieve their email with the forbbiden content and then copy and paste to it's own's hard disk.
It may be possible, but then what would prevent the user from running a "screen grabber" to capture the data. The underlying question that you need to ask is, "Who can you trust?" If you're concerned about confidential documents being stolen/disclosed, then that is where your security starts. If someone can't access a document, they can't E-mail it or transport it elsewhere. Who says they can only use E-mail? Using ftp is more efficient, or a floppy/Zip/Jazz drive could also be used. Trying to "secure" the E-mail client would be like plugging a single hole in a water pipe full of leaks. You have to shut off the water at the source.
-
Our IBM Unix system uses a program called VSIFax (Esker) to create PDF documents such as invoices. Users that have updated to Acrobat version 11.0.10 can open the PDF but then when trying to save the document the get a message "This document could not be saved. There was a problem reading this document (21)." The problem is only occuring with updated version 11.0.10 (11.0.9 works fine).
More information about this issue can be found here:
https://forums.adobe.com/thread/1672655
A "quick" fix that worked for me was to uninstall Adobe... then download the base install for Adobe Reader 11.0.
Then download each of the individual updates and run them sequentially.
I've installed back up to the last security update which is version 08 and have been able to do normal Save As operations.
You will have to disable automatic updates in order to stay at version 08 until Adobe resolves this issue in a later release.
http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows
Adobe Reader 11.0 - Multilingual (MUI) installer AdbeRdr11000_mui_Std
Adobe Reader 11.0.01 update - Multilingual (MUI) installer AdbeRdrUpd11001_MUI.msp
Adobe Reader 11.0.02 update - All languages AdbeRdrSecUpd11002.msp
Adobe Reader 11.0.03 update - Multilingual (MUI) installer AdbeRdrUpd11003_MUI.msp
Adobe Reader 11.0.04 update - Multilingual (MUI) installer AdbeRdrUpd11004_MUI.msp
Adobe Reader 11.0.05 security update - All languages AdbeRdrSecUpd11005.msp
Adobe Reader 11.0.06 update - Multilingual (MUI) installer AdbeRdrUpd11006_MUI.msp
Adobe Reader 11.0.07 update - Multilingual (MUI) installer AdbeRdrUpd11007_MUI.msp
Adobe Reader 11.0.08 security update - All languages AdbeRdrSecUpd11008.msp
Maybe you are looking for
-
How can i recover my bookmarks and saved passwords?
i have accidentally uninstalled Firefox software. how can i recover my bookmarks and saved passwords for the various sites. Please help on this regard. I'm in a serious trouble now.
-
Error message for iTunes radio
Two days ago I got this message when I tried to listen to the radio through iTunes. "An error occurred while contacting the radio tuning service. Check your internet connection, or try again later." My internet connection is fine. It still won't conn
-
IPhoto version 9.6.1 - Restore photos in trash
How can I restore photos in my trash that haven't been emptied? The trash indicates I have 3000 photos, I can click on the trash and view the pics...but don't know how to retrieve them. Any assistance would be great... Thanks in advance for any help
-
Cant drag and drop new music to itunes or ipod
since updateing itunes i cant seem to drag and drop new songs over to itunes. like i was able to do in the past all the time. is it a fix or a bug with the new verson? i know i can add them in the other way but i found drag and drop so easy. thanks A
-
New to Mac, embarrassed to ask, but can I insert....
mini digital disks into my iMac or will they get stuck? Someone said I had to insert them into a drive that opens with a tray. iMac 20 Mac OS X (10.4.8) Mac Rules!!!