Proxy Servers, Password Resets/Expirations and Password Policies
Our current configuration has two directory proxy servers and two directory servers, all running DSEE 6.3.1. The LDAP clients point to the proxy servers and the proxy servers point to the directory servers.
When the LDAP clients user the proxy servers, users aren't notified on password resets or expirations. When I point one of the LDAP clients directly at on the directory servers, bypassing the proxy servers, the expected behavior of being required to change a password on reset or notification of password expiration works fine.
We would like this to work via the proxy servers as well. Can anyone point me in a direction or two to determine why this isn't working as expected ?
TIA!
I opened a service call on this and in speaking with the rep, who was reading the CR mentioned in the first reply, he said it contained a note about the fix being scheduled for release in DSEE 7.x. I'm not sure if it made it into the recently released 7.0 or not.
A patch released for the 6.3.1 proxy servers on the 21st of December didn't include mention of the CR in the notes, although there was mention of another CR that sounded like it might be related.
Since it appears the CR was created in late November, I'd be surprised if either the DPS 6.3.1 patch or the 7.0 full release address the CR. In either case, I'm assuming you'll have to wait if you don't have a support contract with Sun that covers DSEE.
Similar Messages
-
Reset expired Passwords?
Recently the DBAs overhauled out account policies to have passwords expire every X days. I'm running into my first expired account and I'm getting an ORA-28001: the password has expired error, but no prompt to reset the password.
I thought I'd put in a feature request for a password reset window for this situation, but it seems that there was already one out there: http://htmldb.oracle.com/pls/otn/f?p=42626:39:2786248920877118::NO::P39_ID:22121
Closed: "Context menu to Reset Password is available"
Does anybody know how to go about resetting expired passwords in SQL Developer?So my help-desk finally got around to doing an install of the 11g client. Still having an issue. I've done the following:
-Made my ORACLE_HOME the 11g client base dir.
-Made %ORACLE_HOME%\bin the first entry in my path
Still getting the same error. Even tried creating a new connection. I can connect with 11g SqlPlus.
Any thoughts? -
My apple id attached to my itunes account has expired and i have forgotten the password that was attached to it! I have created a new apple id but cannot transfer it to my itunes which all my apple products connect up to on my mac with all my pictures etc on!?! HELP!
My apple id attached to my itunes account has expired
They don't expire. As far as anyone knows Apple IDs live on forever - if you forgot its password use https://iforgot.apple.com. Good luck with the answers to whatever security questions it asks.
... I have created a new apple id but cannot transfer it to my itunes which all my apple products connect up to on my mac with all my pictures etc on!?!
Right! That's the reason you do not create a new Apple ID.
As far as Apple is concerned a new Apple ID is a completely different user, with absolutely, positively no access to anything available to any other Apple ID.
Concentrate your efforts on resetting the password to your old Apple ID. It has not expired, and is the only way to use all your existing iTunes purchases, App Store purchases, computer authorizations... etc. Forget about the new Apple ID you just created. -
Implementing password policie using Role and CoS
Hy all,
I have created a directory with the following partial structure (Sun directory 5.2 patch 2):
ou=people,o=accounts,c=an
|----- cn=user1
|----- cn=user2
|----- cn=user3
ou=services,o=accounts,c=an
|---------cn=user4
|---------cn=user5
|---------cn=user6
I want to assign different password policies based on the ou.
I read within the admin guide that there is a way to do that through CoS and Role: http://docs.sun.com/source/817-7613/useracct.html#wp19625
So I create following records:
- Customized Password Policy Container:
dn: cn=Customized Password Policy, c=an
objectClass: top
objectClass: nsContainer
cn: Customized Password Policy
- External User Customized Password Policy: (same as the global one)
dn: cn=externalUserPwdPolicy, cn=Customized Password Policy, c=an
objectClass: top
objectClass: passwordPolicy
cn: externalUserPwdPolicy
passwordInHistory: 5
passwordWarning: 432000
passwordExpireWithoutWarning: on
passwordRootdnMayBypassModsChecks: on
passwordLockout: on
passwordMaxFailure: 3
passwordMaxAge: 5184000
passwordCheckSyntax: off
passwordResetFailureCount: 1200
passwordMinLength: 8
passwordStorageScheme: SHA
passwordChange: on
passwordMinAge: 86400
passwordMustChange: off
passwordUnlock: off
passwordLockoutDuration: 3600
passwordExp: on
- Service Account Customized Password Policy: (same as the global one except that there is no expiration for password and the password minimum age is set to 2 days instead of one)
dn: cn=serviceAccountPwdPolicy, cn=Customized Password Policy, c=an
objectClass: top
objectClass: passwordPolicy
cn: serviceAccountPwdPolicy
passwordInHistory: 5
passwordWarning: 432000
passwordExpireWithoutWarning: on
passwordRootdnMayBypassModsChecks: on
passwordLockout: on
passwordMaxFailure: 3
passwordMaxAge: 5184000
passwordCheckSyntax: off
passwordResetFailureCount: 1200
passwordMinLength: 8
passwordStorageScheme: SHA
passwordChange: on
passwordMinAge: 172800
passwordMustChange: off
passwordUnlock: off
passwordLockoutDuration: 3600
passwordExp: off
- External User Role:
dn: cn=externalUserRole,c=an
objectclass: top
objectclass: LDAPsubentry
objectclass: nsRoleDefinition
objectclass: nsComplexRoleDefinition
objectclass: nsFilteredRoleDefinition
cn: externalUserRole
nsRoleFilter: (&(entrydn=*o=accounts*)(entrydn=*ou=people*))
Description: Filtered role for external users
- Service Account Role
dn: cn=serviceAccountRole,c=an
objectclass: top
objectclass: LDAPsubentry
objectclass: nsRoleDefinition
objectclass: nsComplexRoleDefinition
objectclass: nsFilteredRoleDefinition
cn: externalUserRole
nsRoleFilter: (&(entrydn=*o=accounts*)(entrydn=*ou=services*))
Description: Filtered role for external services account
- Template Container for Customized Password Policy:
dn: cn=pwdPolTemplateContainer, c=an
objectClass: top
objectClass: nscontainer
- Class of Service (CoS) Definition for password policy:
dn: cn=PwdPol_CoSDefinition, c=an
objectClass: top
objectClass: LDAPsubentry
objectClass: cosSuperDefinition
objectClass: cosClassicDefinition
cn: PwdPol_CoSDefinition
cosAttribute: passwordPolicySubentry operational
cosTemplateDn: cn=pwdPolTemplateContainer, c=an
cosSpecifier: nsRole
- Class of Service (CoS) Template for ExternalUserRole:
dn: cn="cn=externalUserRole, c=an", cn=PwdPolTemplateContainer, c=an
objectClass: top
objectClass: extensibleObject
objectClass: costemplate
objectClass: LDAPsubentry
cosPriority: 2
passwordPolicySubentry: cn=externalUserPwdPolicy, cn=Customized Password Policy, c=an
- Class of Service (CoS) Template for ServiceAccountRole:
dn: cn="cn=serviceAccountRole, c=an", cn=PwdPolTemplateContainer, c=an
objectClass: top
objectClass: extensibleObject
objectClass: costemplate
objectClass: LDAPsubentry
cosPriority: 2
passwordPolicySubentry: cn=serviceAccountPwdPolicy, cn=Customized Password Policy, c=an
- The thing is that it does not to work: if I disable the global password policy, I can set a 3 caracters password even if I specified in the sub password policy that passwordminlengnt is equal to 8 caracters.
Many thanks in advance for your help.
GregoireHmm,
Pretty cool.
I just finished doing it the hard-way when I saw your post :(.
I tried it anyways, and it did all the work that I had done by hand in the previous try. Which was ...
1) Creating the filtered role (same in both approaches).
2) Creating a Container for COS Templates.
3) Creating a COS Template with a dn having a cn string of the full dn to the role in 1) above. Had to use generic entry editor to add all the additional attributes as below ...
dn: cn="cn=TempFilter,ou=people,dc=example,dc=com",
�cn=PolTempl,dc=example,dc=com
objectclass: top
objectclass: extensibleObject
objectclass: LDAPsubentry
objectclass: costemplate
cosPriority: 1
passwordPolicySubentry: cn=TempPolicy,dc=example,dc=com
(started with a new costemplate and the added all the above attributes, also involved things like changing the naming attribute - the dn - from cosPriority to the one cn as shown above)
4) Creatiing a COS with ...
4.1) passwordpolicysubenty as a generated attribute that is overriding and operation (this is picked from the matched CoS template)
4.2) Use the template container's dn from 2) above for the TemplateDN value.
4.3) Use nsrole of the target enty to narrow down to the COS template as in 3) above. I.E. "template"->"attribute name" value is set to "nsRole"
(So when a user's nsrole maps to a cn value of an entry under the TemplateDN subtree. That template applies.) -
II message error not connecting, appears not to accept password, reset FaceTime and messages. Now says check network. Do not know what else to do
Unable to make or receive FaceTime calls after April 16, 2014
http://support.apple.com/kb/TS5419
Using FaceTime http://support.apple.com/kb/ht4319
Troubleshooting FaceTime http://support.apple.com/kb/TS3367
The Complete Guide to FaceTime + iMessage: Setup, Use, and Troubleshooting
http://tinyurl.com/a7odey8
Troubleshooting FaceTime and iMessage activation
http://support.apple.com/kb/TS4268
iOS: FaceTime is 'Unable to verify email because it is in use'
http://support.apple.com/kb/TS3510
Using FaceTime and iMessage behind a firewall
http://support.apple.com/kb/HT4245
iOS: About Messages
http://support.apple.com/kb/HT3529
Set up iMessage
http://www.apple.com/ca/ios/messages/
iOS and OS X: Link your phone number and Apple ID for use with FaceTime and iMessage
http://support.apple.com/kb/HT5538
How to Set Up & Use iMessage on iPhone, iPad, & iPod touch with iOS
http://osxdaily.com/2011/10/18/set-up-imessage-on-iphone-ipad-ipod-touch-with-io s-5/
Set Up Alert Sounds
http://www.quepublishing.com/articles/article.aspx?p=1873027&seqNum=3
Extra FaceTime IDs
http://tinyurl.com/k683gr4
Troubleshooting Messages
http://support.apple.com/kb/TS2755
Troubleshooting iMessage Issues: Some Useful Tips You Should Try
http://www.igeeksblog.com/troubleshooting-imessage-issues/
Setting Up Multiple iOS Devices for iMessage and Facetime
http://macmost.com/setting-up-multiple-ios-devices-for-messages-and-facetime.htm l
FaceTime and iMessage not accepting Apple ID password
http://www.ilounge.com/index.php/articles/comments/facetime-and-imessage-not-acc epting-apple-id-password/
Fix Can’t Sign Into FaceTime or iMessage iOS 7
http://ipadtutr.com/fix-login-facetime-imessage-ios-7/
FaceTime, Game Center, Messages: Troubleshooting sign in issues
http://support.apple.com/kb/TS3970
Unable to use FaceTime and iMessage with my apple ID
https://discussions.apple.com/thread/4649373?tstart=90
iOS 7 allows you to block phone numbers or e-mail addresses from contacting you via the Phone, FaceTime, or Messages
http://howto.cnet.com/8301-11310_39-57602643-285/you-can-block-people-from-conta cting-you-on-ios-7/
How to Block Someone on FaceTime
http://www.ehow.com/how_10033185_block-someone-facetime.html
My Facetime Doesn't Ring
https://discussions.apple.com/message/19087457#19087457
How to watch FaceTime calls on the big screen with Apple TV
http://www.imore.com/daily-tip-ios-5-airplay-mirroring-facetime
Send an iMessage as a Text Message Instead with a Quick Tap & Hold
http://osxdaily.com/2012/11/18/send-imessage-as-text-message/
To send messages to non-Apple devices, check out the TextFree app https://itunes.apple.com/us/app/text-free-textfree-sms-real/id399355755?mt=8
How to Text on the iPad
http://ipad.about.com/od/ipad_tricks/a/How-To-Text-On-The-Ipad.htm
How to Send SMS from iPad
http://www.iskysoft.com/apple-ipad/send-sms-from-ipad.html
How to Receive SMS Messages on an iPad
http://yourbusiness.azcentral.com/receive-sms-messages-ipad-16776.html
Apps for Texting http://appadvice.com/appguides/show/apps-for-texting
You can check the status of the FaceTime/iMessage servers at this link.
http://www.apple.com/support/systemstatus/
Cheers, Tom -
My ipad says my password has expired and has me locked out
How do I reset my iPad password when it say my password has expired and won't let me log on?
Hey Elizabeth VP
If the iPad is disabled, then the only option is to restore the iPad to the factory defaults. The articles below will explain how to take care of that and sort you out.
iOS: Forgotten passcode or device disabled after entering wrong passcode
http://support.apple.com/kb/ht1212
iOS: Unable to update or restore
http://support.apple.com/kb/HT1808
Thanks for using Apple Support Communities.
Regards,
-Norm G. -
When trying to update Aps, my iPhone repeatedly rejects my apple ID password. I reset it, and it still rejects it. I've reset it on my computer, phone still rejects it . . . tired of this.
Are you positive you're using the exact Apple ID to update these apps that was used to originally ontain them? You can verify such by right-clicking one the apps, in your iTunes library, & selecting "Get Info". This will show you the Apple ID used to originally obtain the app...does it match on your phone?
-
I am connecting my new iMac to my Buffalo router. I forgot my router password so I pushed the reset button and my computer was able to connect. The problem is, I can't figure out how to set my new password and lock the router. I went to the Buffalo website and downloaded the CD, as I can't find that either. I can't open any of it because it says it is Windows and can't open it. I am new to Apple!
kellyfromdanville wrote:
I am new to Apple!
Ah, new to routers too.
Perhaps it's best to have a local computer support person come set you up?
To explain everything would require writing a book here.
But this is what you want basically.
Router, new Wireless N, firmware updated.
1: Two accounts, one admin, one guest Internet access. Random +30 plus character lenght passwords each preferred.
(guest password to max password length of any iDevices)
2: Encryption: WPA2 AES. No Ping. No remote access. No MAC filtering. Visible.
3: Guest access on devices and computers only. Passwords written down and stored.
4: OpenDNS preferred but not mandatory.
If you get OpenDNS, you can log into their website for free and set parental controls on things like inappropriate sites for children. So whatever device is used on your network can't access a large portion of those sites (nothing is perfect) by most users who are not technical oriented.
What your doing now is running the bare bones unsecure router which can be used harmfully against you.
Even a Apple Airport router has to be very well secured. The defautl cd and out of the box setup is not a secure solution. -
My ipod won't let me connect to wi-fi, won't let me restore or reset it, and it keeps telling me i knew a passcode for any one and I never set a password up. How do I fix this? Says try again in 6180146 min. my passcode setting is off, but restrictions are on. Very frustrated. please help
Disabled
Place the iOS device in Recovery Mode and then connect to your computer and restore via iTunes. The iPod will be erased.
iOS: Wrong passcode results in red disabled screen
If recovery mode does not work try DFU mode.
How to put iPod touch / iPhone into DFU mode « Karthik's scribblings
For how to restore:
iTunes: Restoring iOS software
To restore from backup see:
iOS: How to back up
If you restore from iCloud backup the apps will be automatically downloaded. If you restore from iTunes backup the apps and music have to be in the iTunes library since synced media like apps and music are not included in the backup of the iOS device that iTunes makes.
You can redownload iTunes purchases by:
Downloading past purchases from the App Store, iBookstore, and iTunes Store -
I am trying to log on to iwork but it keeps saying that my password is incorrect. I have already reset it and entered my new password and it still is not working. what should i do?
I really can't comprehend the logic that leads to believe that password for old apple id will come to e-mail for new id. Buy may be I just misunderstood something. Contact Apple for assist with password retrieval. If you can verify yourself as account owner they may be able to help you.
-
need help with how to reset bios and admin password to reformat hard drive in 8440p elitebook? removal of cmos, resetting laptop, using cccleaner, windows password recovery and hiren's was noneffective, any help is appreciated. thanks
Hi,
As your notebook is a business class machine, security is more stringent - the password is stored in non-volatile memory and there are no 'backdoor' passwords. Your best option would be to contact HP regarding this.
Regards,
DP-K
****Click the White thumb to say thanks****
****Please mark Accept As Solution if it solves your problem****
****I don't work for HP****
Microsoft MVP - Windows Experience -
I smashed my screen to sent it to a phone shop to be repaired and he obviously reset it and my imessage said waiting for activation and I entered my password wrong and it won't let me retry and it says the same thing omg please help
Troubleshooting FaceTime and iMessage Activation
-
i have a airport extreme base station and i reset it and now the wifi connection is open to everyone... so how do i get a password back on it so everyone cant use it
Read the user guide:
http://support.apple.com/manuals/#airport -
Portal password Policies and MS Active directory Group Policies
Has anybody worked with EP6 and Active directory (as the writeable directory). More specifically I am trying to find experience or good documentation about working with the password policies for each. For example if you have the Portal password expiry at 90 days in portals, does the password expiry need be matched in AD.What if it is not, does this casue problems. If anyone as some expereice with this please reply.
Thanks
StephenHas anybody worked with EP6 and Active directory (as the writeable directory). More specifically I am trying to find experience or good documentation about working with the password policies for each. For example if you have the Portal password expiry at 90 days in portals, does the password expiry need be matched in AD.What if it is not, does this casue problems. If anyone as some expereice with this please reply.
Thanks
Stephen -
We are attempting to deploy Creative Cloud trial applications to a couple of users for testing purposes.
This is a corporate environment where we need to specify a particular proxy server by IP address, and port with a User-ID and password for identification in order to download files.
The Creative Cloud app appears to be ignoring the proxy settings in the browsers installed on the machine used to attempt a download. The Adobe Application Manager Enterprise Edition wants you to already have the files available. All technical support had is a white list, no help on how to specify a particular proxy server. Do we have to obtain media from Adobe, or is there a way to download these?
ThanksCreative Suite Enterprise Deployment | Adobe Developer Connection
Maybe you are looking for
-
Changing location of Iphoto library
I am looking to change my Iphoto library to an external hard drive, as my 250GB internal drive is just not large enough, especially as I am now using itunes to watch movies and TV shows. Is this a simple operation? The help menu has instruction on ch
-
Hi, I just started with a simple Business rules sample. All the time only the first condition in the rule set seem to be executed and the result is same inspite of conditions not matching the first condition. Am I doing something wrong? Thanks, Prabu
-
When I try to start any webdynpro application I get the following error : Category : /System/UserInterface Message ID : 000D60E5042D0066000000AD00000A7C00040FFAEC278FA0 Severity : Error Location : com.sap.tc.webdynpro.clientserver.cal.ClientManager.h
-
Hi all!!! Actually in transaction PP01, for OBJECT TYPE: Business Event type. I m unable to find out the Transparent table which stores the description. I tried to search in infotypes but failed... Can someone suggest the name of the transparent tabl
-
Stress test tool for Developer 6i
Hi! I'm looking for a stress test tool for a client/server 6i Forms/Reports application. Any suggestions appreciated! Br Niklas Danielsson