Root is running Sun One Directory Proxy Question ?

Similar Messages

• SUN ONE Directory proxy Server on NT Server

  I want to use the sun one directory proxy server on a NT Server as a LDAP Proxy Server to my customised database running on an AIX box. During the installation of the proxy server (called idar 5.0 SP1) it fails indicating that the "the server configuration directory may not be running".
  IWhat am i missing? Is the ldap proxy server dependent on SUN's directory server.

  Hi,
  u need to have a Directory Server for the installation of the Directory Proxy Server, but not essentially the Sun ONE Directory Server itself.
  regards,
  raj

• Sun One Directory Proxy unable to start error DPS.pid file was not found

  We finally able to install Sun One Directory Proxy 5.2 , but we are unable to start the Proxy server, we are getting error "Since the DPS.pid file was not found, DPS-server is assumed down
  Anybody has any clue / ideas that we would very help fulll?
  Thank

  I've been struggling with this and another problem with DPS for a couple of weeks.
  It generally starts up fine when you dont have SSL enabled. The moment you enable SSL, a couple of things go for a toss:
  1. The problem mentioned above surfaces. Are you facing this problem even without SSL?
  2. If you log into the Administration console, and try to make changes to the DPS configuration, it will give an error stating that "Error in writing to Configuration Directory". But apparently, it will manage to save things. Just that when you try to start it with SSL enabled, it won't. Neither from the command line, nor the GUI.
  Anyone managed to fix this? Sun informed us that there is a problem with Jars, but thats about it.

• Sun one directory client on windows xp- to run ldapsearch etc .....

  Hello,
  I'm new to sun one directory space.i want to know if there is any sun one directory client available for windows xp desktop to run basic ldapearch,ldapmodify commands.
  Thanks!

  How about something like this for a gui : [http://securityxploded.com/ldapsearch.php]
  You can also download the "Sun ONE Directory SDK for C 5.08" which actually contains a Windows commandline ldapsearch, ldapmodify, ldapdelete and ldapcompare : [Directory SDK for C 5.08|http://www.sun.com/download/index.jsp?cat=Application%20Development&tab=3#sdk]
  You'll want the "Windows NT 4.0 (optimize)" version for Windows XP.
  Steve
  Edited by: chilimonkey on Nov 15, 2009 8:41 PM

• Adding a windows client to a sun one Directory server running on Win 2000

  Hi,
  I am a newbie to sun one directory server but i am familiar with windows active directory.
  I have followed the instructions and installed Sun One Directory Server on Windows 2000 Server using a typical setup and create a domain and also created some users in that domain.
  The next thing i wanted to do was to add a windows 2000 professional desktop on this domain and login with one of the user accounts. I tried to adding the computer to the domain via the "My Computer->Network Identification->Properties->Domain" option and gave the domain name as the one i created on the Sun One Directory Server, but i get an error saying that domain was not found.
  Am i missing something here. Do i need to install some client piece on the windows 2000 desktop to add the box on the sun one domain and login in as one of the users.
  Any help will be deeply appreciated?
  Thanks,
  Raj...

  yes, you can use samba for a windows client to login to ldap
  http://www.samba.org/samba/docs/man/Samba-Guide/happy.html#id2536158
  , but for windows XP clients you need to tweak the registry
  http://www-jerry.oit.duke.edu/linux/docs/samba/winxp_client_registry_edit

• Migrating data from Sun ONE directory server into openLDAP

  Hi,
  I was to migrate the data from Sun ONE directory server into openldap. Has anybody done this or know about this. Can you please share the steps that needs to be done.
  NOTE: I have exported the data into LDIF file but when I run with ldapadd into the open ldap
  ldap_add: Invalid syntax (21)
  additional info: objectClass: value #1 invalid per syntax
  Are there specific schemas that i need. Where can I find them?
  Thanks

  Why would you want to migrate data into an OpenLDAP server ?Good Question, let me explain you my problem with Sun DS.
  No Question DS is the better product (even Red Hat realized this).
  Problem: DS is not a base Solaris 10 OS component, for patch support
  you need some additional plan, now sun marketing nightmare comes ;o)
  Every year service plans are changed (want a SJES or a DS or a DSEE ?)
  so use solaris with OpenLDAP, or linus with NSDS.
  Sun please give us a Solaris Core Component called LDAP Server (no need for trillions of entries).
  joe

• Install Sun ONE Directory Server 5,2 & how to use it for authenticate user

  Good afternoon, Excuse, are newbie in the scope I am learning and putting desire to him, this in my situation I am trying to install Sun ONE Directory Server 5,2 since I understand that this it is application LDAP for Solaris, ok I want to install it to authenticate user against the system, that is to say, to be able to acces the server entering with a created user from the data base of LDAP and make think user that his created in the system. But the documentation that I finds indicates the installation of Sun ONE Directory Server 5,2 but it not clearly about how to use it for authentication. Some one have any manual step by step of Sun ONE Directory Server 5,2 installation and how to make it for authentication systems users.
  I read the forum seeking for anwser and i get confuse
  Thanks for the help and sorry for any inconvenient
  Message was edited by:
  Aku_28
  Message was edited by:
  Aku_28

  I think that I found the Sun endorsed book locations for using LDAP accounts that don't use authentication besides "crypt". I now can use an account with a "ssha" password. It can be more than 8 characters long.
  Chapter 14 System Administration Guide: Naming and Directory Services
  Read page 201 which is the pam.conf file pam_ldap setups. I edited my "/etc/pam.conf" file to reflect this
  Chapter 7 Directory Server 5.2 2005Q4 - Administration Guide
  Read page 316-318 which has a graphical technique to specify password syntax. I set it up and then tried the password by running "su - brahms". It now requires a longer password than 8 characters and it is set up to use "ssha" for that UID entry "brahms".

• Why doesn't Sun ONE Web Proxy Server support full replication?

  Sun believes caching on-demand is a much more appropriate model for either the World Wide Web or an intranet. Common indexes should be distributed, but data can (and should) be stored wherever is most appropriate on the network. If Proxy Servers are deployed, there will be a 50 percent to 75 percent chance that the document will be cached locally and no chance of getting stale data.
  Sun ONE Web Proxy Server uses sophisticated statistical analysis to store the documents most likely to be needed. It also manages document expiry and version control, and by default checks the home server every time a document is requested. Full replication like that performed by other softwares presumes that each document needs to be fully replicated on every server. (Imagine doing that on the Web!) This model limits the scalability of the infrastructure, and requires many more servers, more hardware, and more management complexity. More importantly, it increases the likelihood of getting stale data. A document checked in at one location may take a day or more to be fully replicated around the world.

  If you have a support contract, get in touch with a support engineer. We've run into a bug related to following referrals in the "off-the-shelf" version of the proxy server. I believe there is a hotfix that solves the issue.

• Problems while installing Sun ONE Directory Server.

  Hi all,
  I'm a newbie to LDAP amd my problem is -
  When I started Installing SunONE DS on machine first time, at the end of the installation, it thrown an error message.
  "The program cant start because nss3.dll is missing from your computer. Try reinstalling the program to fix this problem."
  Later, I copied nss3.dll file to "C:\Windows\System32" and then started the installation then it thrown error again as follows -
  "Configuration of the Directory Server failed.
  Error Directory Server configuration failure
  Checking connection to the Configuration Directory Server... failed.
  The Administration Server cannot be configured.
  Error Administration Server configuration failure
  Error Configuration of the server(s) failed.
  Click Next to continue. "
  What is the reason behind this?

  Bingo, It worked. Yup, I'm using SODS 5.2, I have copied all .dll files from nsbasesystem.zip to "C:\Windows\System32".
  but now the problem is -
  Sun One Directory server service is running
  but
  Sun ONE Administration server process is not running
  I have tried to start it manually but it didn't worked. It initiates the starting of process and then suddenly shows error message that
  "The Sun ONE Administration server 5.2 service on local Computer started and then stopped. Some services stop automatically if they are not in use by other services or programs."

• Error installing Sun ONE Directory Server 5.2 under Windows 2000 SP3

  Hi,
  When I attempt to install the Sun ONE Directory Server 5.2 under Windows 2000 Server SP3, I get the following errors:
  Installing Sun ONE Server Basic System Libraries
  Installed:C:\WINNT\system32\icudt2.dll
  Installed:C:\WINNT\system32\icuin2.dll
  Installed:C:\WINNT\system32\icuuc2.dll
  Installed:C:\WINNT\system32\libadminutil52.dll
  Installed:C:\WINNT\system32\libadmsslutil52.dll
  Uninstalling C:\WINNT\System32\icudt2.dll
  Uninstalling C:\WINNT\System32\icuin2.dll
  Uninstalling C:\WINNT\System32\icuuc2.dll
  Uninstalling C:\WINNT\System32\libadminutil52.dll
  Uninstalling C:\WINNT\System32\libadmsslutil52.dll
  Uninstalling C:\WINNT\System32\libnspr4.dll
  Uninstalling C:\WINNT\System32\libplc4.dll
  Uninstalling C:\WINNT\System32\libplds4.dll
  Uninstalling C:\WINNT\System32\nsldap32v50.dll
  Uninstalling C:\WINNT\System32\nsldappr32v50.dll
  Uninstalling C:\WINNT\System32\nsldapssl32v50.dll
  Uninstalling C:\WINNT\System32\nss3.dll
  Uninstalling C:\WINNT\System32\sasl32.dll
  Uninstalling C:\WINNT\System32\smime3.dll
  Uninstalling C:\WINNT\System32\ssl3.dll
  Product Install Failed: java.io.FileNotFoundException: C:\WINNT\System32\libnspr4.dll (Access is denied)
  I've checked, and this file does not pre-exist under WINNT\System32.
  Any ideas why I'm getting this error? Is this a bug in the installer?
  Cheers,
  Scott

  IIRC this file, sasl32.dll, should get installed onto %WINDIR%\system32 when you install DS5.2 windows version.
  You may run WinZIP and File/Open "d52diu.zip" (DS5.2 zip image) and look for "nsbasesys.zip", double click to Open it and you should find "sasl32.dll" there.
  Gary

• Problems binding to Sun One Directory - LDAP_UNAVAILABLE

  Hello there
  We got a magic situation here. Customer has Sun One Directory. We call ldap_simple_bind_s and it returns LDAP_UNAVAILABLE.
  Here is the server log:
  bash-2.05$ grep conn=17708 access.log
  [2006-04-26 08:26:24,664] conn=17708 fd=0 slot=0 connection from 162.86.**** to 162.86.**** port 23930
  [2006-04-26 08:26:24,667] conn=17708 op=0 SRCH base="" scope=0 filter="objectclass=*"
  [2006-04-26 08:26:24,668] conn=17708 op=0 RESULT err=0 tag=0 nentries=1 etime=2 mem=22561688/37617664
  [2006-04-26 08:26:24,670] conn=17708 op=1 SRCH base="" scope=0 filter="objectclass=*"
  [2006-04-26 08:26:24,671] conn=17708 op=1 RESULT err=0 tag=0 nentries=1 etime=2 mem=22512536/37617664
  [2006-04-26 08:26:24,686] conn=17708 op=2 SRCH base="" scope=0 filter="objectclass=*"
  [2006-04-26 08:26:24,688] conn=17708 op=2 RESULT err=0 tag=0 nentries=1 etime=2 mem=22463384/37617664
  [2006-04-26 08:26:24,689] conn=17708 op=-1 fd=0 closed - B1
  As you can see, instead of binding damn server performs 3 empty searches! Any ideas? We are sure this Sun One Server works ok for other purposes...

  Bingo, It worked. Yup, I'm using SODS 5.2, I have copied all .dll files from nsbasesystem.zip to "C:\Windows\System32".
  but now the problem is -
  Sun One Directory server service is running
  but
  Sun ONE Administration server process is not running
  I have tried to start it manually but it didn't worked. It initiates the starting of process and then suddenly shows error message that
  "The Sun ONE Administration server 5.2 service on local Computer started and then stopped. Some services stop automatically if they are not in use by other services or programs."

• How to migrate Sun One directory server to a new physical server install

  need help
  We have to move our existing installation of sun on directory server 5.2 to a new physical server.
  We have a new physical server with a new host name. I am trying to find an easiest way to take a snapshot of our existing server and put it on a new installation
  So will installing sun one directory server , its shows me two choices either to create a new instance or copy configuration from a existing server
  What do i choose and which is the fastest route to replicate my old server
  Thanks a bunch in advance
  Sganb

  Hi,
  I'm glad you're still using the old, glorious Sun One Directory Server 5.2, because it brings me back a lot of memories... But are you seriously talking of the 'plain' version, with no patches/hot fixes on top? If that's the case, you're using of a software that has been developed in 2004 and released in Jan 2005! Just for you to be aware, in the last *8* (eight) years a considerable number (in the magnitude of 10^3) of bugs, security problems and performance issues has been identified and fixed...
  However, to provide a better answer to your question, it would be important to understand the 'big picture' in terms of scenario and requirements:
  1) Is this a critical 24x7 service for which you need to perform an on-line migration or you have a 'maintenance window' during which the service may be switched off?
  2) Is the old server member of replication environment? If yes, how many masters/slaves do you have already? Shall the new server be part of this topology? What role shall it have?
  3) Would it be possible to make the the old server able to communicate with the new server?
  4) How big is the database that you've got to migrate? Do you have any requirement in terms of caches?
  5) Do you take backups on a regularly basis and have in place working (*tested*) backup/restore procedures?
  6) Is the new server conserving or changing the O.S. and architecture? [SPARC->SPARC, x86->x86, SPARC->x86, Solaris -> ? , 32 .vs. 64-bit? ]
  7) What are the steps you did to 'install' the software on the new server?
  Thanks,
  Marco
  P.S.: I don't wanna sound 'scaring' with all these questions, neither this should be intended as an 'hidden advertising' for Oracle Professional/Consulting Services, but the only way to not put in jeopardy your data is being aware of the risks, having the control of what's going on and ... possibly have a 'B' plan ;-)
  P.S.S.: My last suggestion is to consider a migration to a later release AS SOON AS POSSIBLE; the latest is ODSEE 11.1.1.7, which is available here:
  http://www.oracle.com/technetwork/middleware/downloads/oid-11g-161194.html
  and seems to work pretty well ;-)

• Page size limitation on Sun ONE directory server 5.2

  Hi All,
  How do i know what is the Page size limitation on Sun ONE directory server 5.2?
  How do i cahnage it?
  Best Regards,
  Ayelet Regev
  [email protected]

  I enabled SSL in SUN ONE Directory Server 5.2, I use the following code to download the server certs,
       Hashtable env = new Hashtable(11);
       env.put(Context.INITIAL_CONTEXT_FACTORY,
       "com.sun.jndi.ldap.LdapCtxFactory");
       env.put(Context.PROVIDER_URL, "ldaps://bharatkumar.webm.webmethods.com:636/o=in");
       env.put(Context.SECURITY_AUTHENTICATION, "EXTERNAL");
       env.put(Context.SECURITY_PROTOCOL, "ssl");
       try {
       // Create initial context
       DirContext ctx = new InitialDirContext(env);
  System.out.println(ctx.lookup("ou=web"));
  ctx.close();
       } catch (NamingException e) {
       e.printStackTrace();
  But it throws the following error:
  javax.naming.CommunicationException: SASL bind failed: bharat.com:636 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.
  validator.ValidatorException: PKIX path building failed: sun.security.provider.c
  ertpath.SunCertPathBuilderException: unable to find valid certification path to
  requested target]
  at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:220)
  at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2637)
  at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:283)
  at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
  at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193
  How to rectify the above error?
  Kindly Help me.
  Thanks,
  Bharat

• Migrate from Sun One Directory Server 5.1 to 5.2

  Greetings
  I am trying to run the script provided with the 5.2 release MigrateInstance5; I have installed the server and have followed the instructions to a tee. I keep getting the error, Unable to start the Sun One Directory Server, when I run the script, I am at my wits end as this is supposed to be the easy step, I have to go from 4.2 to 5.2 next.
  Please help.

  Hello,
  We upgraded our directory server version for several times.
  If you want a secure method.
  export your data.
  Copy your schema file to the new install path, modify the information related to the old version and server (also the last line containing db number : keep only lines about the schema entry, it's ACI, objectclasse and attributes) and restart your directory.
  Import your data. (you might use a script to clean your ldif file : empty attributes ...)
  For the upgrade from 4.2 to 5.2 you will have to work a little bit more on the schema file as you have two of them instead of one. but the idea is the same.
  edit your New schema file, keep only the following lines "
  dn: cn=schema
  objectClass: top
  objectClass: ldapSubentry
  objectClass: subschema
  cn: schema
  aci: ....
  aci: ....
  copy and paste your custom attributes and then objectclasses form the corresponding files.
  On the import phase, check that you are not using objectclasses whiche were modified or suppressed.
  I hope it was helpfull.

• SSL on Sun One Directory Server

  I am trying to establish SSL connection with Sun One Directory Server 5.2. However, I am unable to establish connection to the server using Microsoft LDP tool if i specify secure port 636. Unsecure connection is established successfully.
  I followed the following steps to enable SSL/TLS on Sun One Server
  1. Generate certificate request
  2. Acquire SSL certificate from CA (used thawte site to obtain trial certificate by entering the certificate request)
  3. Imported certificate to server (server-cert)
  4. Trusting your Certificate Authority and all certificates it issues
  5. Enable SSL on server
  Do i require to add a client certificate to keytstore? From where should i obtain a client certificate? Please help.

  1. Try and make sure that the certificate is issued to the hostname. Similarly, connect from MS to DS using the DS's hostname, not IP.
  2. Import CA root test certificate from thwate on both the DS certstore, as well as MS LDAP client's keystore.
  3. If the purpose of certificates is only encryption, you may look at the client for an option to disable hostname verification.
  4. No client cert is needed, unless you have configured LDAP for certificate based authentication.
  Hope the above help.
  Ankush
  http://www.iamcg.net