Using IPlanet LDAP Server!!!

Similar Messages

• Using an LDAP server as a data source?

  I'm evaluating data services and one of our requirements is to be able to retrieve data from an LDAP server. This isn't for authentication.
  We store information about users in an LDAP directory. The workflow I'm testing retrieves a customer number from a DB2 database and then retrieves the customer information in the LDAP directory.
  Is there a way to do this without having to write a bunch of code? The "import metadata" menu doesn't list LDAP as one of the data providers.
  thanks!

  There is no point-and-click (Import Data Source Metadata) way to use an LDAP server as a datasource. You have to use the Java Function provided on dev2dev. If you need help with it, please post here.
  - Mike

• Using iPlanet LDAP to just authenticate name/pwd

  I'm experimenting with setting up an LDAPAuthenticator, using iPlanet LDAP, for
  some application security. Our LDAP record has a name and password, but nothing
  about groups or roles. It's likely that I won't be able to add any fields to
  our LDAP structure in order to support the LDAPAuthenticator.
  The application I'm targeting will allow anyone in the LDAP directory into the
  application, but one part of the application will only be available for a select
  few (also in the LDAP directory).
  I'm looking for options for how to arrange this. It almost appears that I'll need
  a custom authenticator that merges the LDAPAuthenticator with a database lookup,
  or perhaps merging the external LDAP with the WL internal LDAP, where the only
  records in the internal LDAP will be ones with "special" access.
  What are straightforward and/or correct ways to get this done?

  I'm experimenting with setting up an LDAPAuthenticator, using iPlanet LDAP, for
  some application security. Our LDAP record has a name and password, but nothing
  about groups or roles. It's likely that I won't be able to add any fields to
  our LDAP structure in order to support the LDAPAuthenticator.
  The application I'm targeting will allow anyone in the LDAP directory into the
  application, but one part of the application will only be available for a select
  few (also in the LDAP directory).
  I'm looking for options for how to arrange this. It almost appears that I'll need
  a custom authenticator that merges the LDAPAuthenticator with a database lookup,
  or perhaps merging the external LDAP with the WL internal LDAP, where the only
  records in the internal LDAP will be ones with "special" access.
  What are straightforward and/or correct ways to get this done?

• Authenticate Users Using an LDAP Server

  Hi,
  I did implement 'Authenticate Users Using an LDAP Server' according the link blow below.
  [http://www.oracle.com/technology/products/database/application_express/howtos/how_to_ldap_authenticate.html]
  It works OK to specific DN String, example 'cn=%LDAP_USER%,OU=Menahel,OU=Cmp,DC=ho,DC=discount'.
  We have a lot of domain rules, mean the users not located at the same DN.
  Is it possibale to use general DN string (base root) like 'cn=%LDAP_USER%,*,*,DC=ho,DC=discount?
  Thanks in advance,
  Shay

  Augusto, one thing to check (since it caught me out) is that your LDAP entries conform to the right format, namely
  "cn=Bob" etc
  When I was integrating HTMLDB LDAP against a Sun One Directory Server, it had me scratching my head for ages, until I realised that the LDAP entries had been created in the format of -
  "uid=bob" rather than "cn=bob"
  This might not be your problem, but it's worth checking anyway ;)

• Use another LDAP server (OPENLDAP)

  Hi:
  I really have to use another ldap server than oid... we have an openldap server (ldap v3) under linux and i want urgently to use it with portal...
  Anyone here have implemented portal authentication with Openldap under linux ?
  Please tell me the way you do it...
  thanks

  while debugging wwsso_log$, after creating this procedure in portal_sso:
  SQL> CREATE OR replace PROCEDURE debug_print (str VARCHAR2) AS
  2 PRAGMA autonomous_transaction;
  3 BEGIN
  4
  5 INSERT INTO wwsso_log$ VALUES
  6 (wwsso_log_pk_seq.nextval,
  7 substr(str, 1, 1000),
  8 sysdate,
  9 dbms_session.unique_session_id
  10 );
  11 /
  I have saw these exceptions:
  PORTALcncn=orcladmin********cn=Login Server (portal_sso),dc=ipb,dc=ptldap.ccom.ipb.pt389
  Unknown exception in auth_ldapORA-06520: PL/SQL: Erroao carregar biblioteca externa
  ORA-06522: Unable to load DLL
  exception: authenticate user
  exception authenticate_user: ORA-06520: PL/SQL: Erroao carregar biblioteca externa
  ORA-06522: Unable to load DLL
  exception generate_redirect: ORA-06520: PL/SQL: Erroao carregar biblioteca externa
  ORA-06522: Unable to load DLL
  My steps where all done ok:
  SQL> create or replace library auth_ext as 'D:\oracle\ora81\bin\ssoxldap.dll';
  2 /
  Biblioteca criada.
  SQL> commit;
  Confirmagco conclumda.
  The DLL is there:
  Directory of D:\oracle\ora81\bin
  02-11-00 02:12 48.128 ssoxldap.dll
  1 File(s) 48.128 bytes
  55.033.856 bytes free
  The LSNRCTL is working
  D:\oracle\ora81\bin>lsnrctl status extproc_connection_data.sa.ipb.pt
  LSNRCTL for 32-bit Windows: Version 8.1.7.3.0 - Production on 17-MAI-2002 17:00:
  50
  (c) Copyright 1998 Oracle Corporation. All rights reserved.
  A ligar a (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC0))(CONNECT_DATA=(SID=PLSExtProc)(PRESENTATION=RO)))
  STATUS do LISTENER
  Pseud=nimo LISTENER
  Verspo TNSLSNR for 32-bit Windows: Version 8.1.7.3.0 - Produc
  tion
  Data de Infcio 17-MAI-2002 14:23:13
  Tempo de funcionamento 0 dias 2 hr. 37 min. 37 seg
  Nfvel de Diagn=stico off
  Seguranta OFF
  SNMP OFF
  Fich. Parametros Listener D:\oracle\ora81\network\admin\listener.ora
  Fich. Diario do Listener D:\oracle\ora81\network\log\listener.log
  Resumo dos Servitos...
  PLSExtProc has 1 rotinas de tratamento de servito
  dbon has 1 rotinas de tratamento de servico
  dbon has 2 rotinas de tratamento de servico
  and the LDAPSEARCH is also working:
  D:\oracle\ora81\bin>ldapsearch -h ldap.ccom.ipb.pt -p 389 -D cn=orcladmin -b "cn=Login Server (portal_sso),dc=ipb,dc=pt" -v "cn=PORTAL"
  ldap_open( ldap.ccom.ipb.pt, 389 )
  padrpo de filtro: cn=PORTAL
  a devolver: ALL
  o filtro T: (cn=PORTAL)
  cn=PORTAL, cn=Login Server (portal_sso),dc=ipb,dc=pt
  sn=PORTAL
  cn=PORTAL
  userPassword=xxxxxxxxxx
  objectClass=top
  objectClass=person
  1 correspondencias
  What's WRONG ?
  Thanks

• Make the use of LDAP Server optional

  Hi,
  we are running an SAP EP 6 SP20 on Windows 2003 Enterprise Server. Our UME Configuration is defined as using an LDAP Server AND the Portal Database. Our portal is mostly used as an information basis used by anonymous access (Guest), some users are able to authenticate themself against the LDAP Server to get more services.
  No my question: Is it possible to configure the Portal in that way, that it uses the LDAP Server if available otherwise ignore it and therefore
  an authentication of users except the users defined in the portal database is not possible.
  At the moment our portal is not available if the LDAP Server is not available our target is to uncouple the strong binding to the LDAP Server.
  If the LDAP Server is down or not available no authentication against this UME-Datasource is possible, if available it can be used.
  I could not find any parameter or configuration example to configure this behaviour.
  The first priority for our portal is being available for information purposes, the second priority is being available for additional services needing authentication.
  Is there anyone there having an idea how to solve this?
  Regards
  Edmund

  Hi EG,
  As mentioned by GLM above, I share the same view.
  One suggestion maybe is to create those users in the Portal UME and then disable your SSO settings in IE (means that your users have to login to Portal). Till you have your LDAP up and running, then re-config your UME seetings in Portal, pointing to your LDAP and have that as your main UME source.
  Hope that helps.
  Ray

• Oracle Portal for LDAP Authentication using Iplanet directory server

  I have oracle portal on solaries machine and Iplanet directory server 5.1 on windows NT,
  Can i user portal user authentication Iplanet LDAP.
  Regards
  srinivas

  Yes You can. You have to provide the necessary info while running the ssoldap.sql.
  Vinodh R.

• Global data in a servlet using iPlanet Web Server

  Our configuration is an Applet->Servlet->JNI->C/C++ code.
  We have C code that does a number of lengthy mathematical calculations. This C code not only uses its own global variables but, it is also comprised of numerous subroutines that all call each other, reading and writing global C variables as they go. These globals are all isolated to the C code shareable object (.so) library that is included using the LoadLibrary call when the servlet is initialized.
  The problem is that in a multi-user environment (3-5 simultaneous users) we need to have each user have their own "copy" of the servlet (and the C code) so that users will not be accessing each other's global data. We can NOT have only one copy of the C code and define it as synchronized because the calculations that are performed can take a very long time and we can not hold off user requests while the firs user finishes.
  Our hope is that there is a way to configure the iPlanet Web server such that each new user that starts up a copy of the Applet/Servlet combination will get their own "space" so that they can work independently of any other user. We have at most 20 users of this system and only 3-5 simultaneous users so we should not have a problem with memory or CPU speed.
  If anyone has a solution, I would greatly appreciate it!

  The C library is shareable. But you don't want it to be shared. That's your question summarized, isn't it?
  You probably can't prevent it from being shared, so to prevent multiple use of it you would have to queue up the requests to be done one at a time. WynEaston's suggestion of having the servlet implement SingleThreadModel would help, but I believe the servlet spec allows servers to run multiple copies of a servlet that does that (as opposed to running a single copy in multiple threads).
  Your other alternative is to rewrite the math in Java, or at least in some object-oriented language where you don't need global variables (which are the source of your problem). All right, I can already hear you saying "But that wouldn't be as fast!" Maybe not, but that isn't everything. Now you have a problem in queueing theory: do you want a single server that's fast, but jobs have to wait for it, or do you want multiple servers that aren't as fast, but jobs don't have to wait? That's a question you would have to evaluate based on the usage of your site, and it isn't an easy one.

• Connection timeout when using iPlanet web-server uses Weblogic 6.1 proxy server to proxy requests to an HTTP server

  Hi all,
  My configuration is as follows: I have an iPlanet web-server that uses a WebLogic
  6.1 (sp1) server to proxy requests to another HTTP server. The HTTP request runs
  for 120 seconds. This causes Weblogic to timeout after a while. The error I get
  is as follows:
  <Aug 25, 2003 3:37:09 PM GMT+00:00> <Warning> <HttpClient> <Couldn't open connection
  java.net.ConnectException: Connection timed out
  at java.net.PlainSocketImpl.socketConnect(Native Method)
  at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:320)
  at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:133)
  at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:120)
  at java.net.Socket.<init>(Socket.java:273)
  at java.net.Socket.<init>(Socket.java:127)
  at weblogic.net.http.HttpClient.openServer(HttpClient.java:194)
  at weblogic.net.http.HttpClient.openServer(HttpClient.java:254)
  at weblogic.net.http.HttpClient.<init>(HttpClient.java:117)
  at weblogic.net.http.HttpClient.New(HttpClient.java:149)
  at weblogic.net.http.HttpURLConnection.connect(HttpURLConnection.java:109)
  at com.db.gmr.dcm.DebtIssueServlet.getVectorFromConnection(DebtIssueServle
  t.java:285)
  at com.db.gmr.dcm.IssuesUSThread.run(IssuesUSThread.java:29)
  >
  I get the same error when I added the following plug-in configuration parameters
  (in obj.conf):
  ConnectTimeoutSecs="170" ConnectRetrySecs="170".
  What do I need to do to extend this timeout? Any help you can provide will be
  greatly appreciated..
  Thanks
  Manish

  Hi all,
  My configuration is as follows: I have an iPlanet web-server that uses a WebLogic
  6.1 (sp1) server to proxy requests to another HTTP server. The HTTP request runs
  for 120 seconds. This causes Weblogic to timeout after a while. The error I get
  is as follows:
  <Aug 25, 2003 3:37:09 PM GMT+00:00> <Warning> <HttpClient> <Couldn't open connection
  java.net.ConnectException: Connection timed out
  at java.net.PlainSocketImpl.socketConnect(Native Method)
  at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:320)
  at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:133)
  at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:120)
  at java.net.Socket.<init>(Socket.java:273)
  at java.net.Socket.<init>(Socket.java:127)
  at weblogic.net.http.HttpClient.openServer(HttpClient.java:194)
  at weblogic.net.http.HttpClient.openServer(HttpClient.java:254)
  at weblogic.net.http.HttpClient.<init>(HttpClient.java:117)
  at weblogic.net.http.HttpClient.New(HttpClient.java:149)
  at weblogic.net.http.HttpURLConnection.connect(HttpURLConnection.java:109)
  at com.db.gmr.dcm.DebtIssueServlet.getVectorFromConnection(DebtIssueServle
  t.java:285)
  at com.db.gmr.dcm.IssuesUSThread.run(IssuesUSThread.java:29)
  >
  I get the same error when I added the following plug-in configuration parameters
  (in obj.conf):
  ConnectTimeoutSecs="170" ConnectRetrySecs="170".
  What do I need to do to extend this timeout? Any help you can provide will be
  greatly appreciated..
  Thanks
  Manish

• Access to Oracle 8i DB using iPlanet web server

  Hi ,
  I have been trying to implement Connection Pooling in my application using the built-in features of iPlanet App server 6.5 . For the same i have made the following entries:
  1. web.xml
  <resource-ref>
  <description>Ptrade Entry</description>
  <res-ref-name>jdbc/ptradeDataSource</res-ref-name>
  <res-type>javax.sql.DataSource</res-type>
  <res-auth>Container</res-auth>
  </resource-ref>
  2. ias-web.xml
  <resource-ref>
  <res-ref-name>jdbc/ptradeDataSource</ref-ref-name>
  <jndi-name>jdbc/ptrade/ptradeDB</jndi-name>
  </resource-ref>
  3. Also my class tries to ge the context using
  try {
  InitialContext ic = new InitialContext();
  ds = (DataSource)ic.lookup("java:comp/env/jdbc/ptradeDataSource");
  catch (NamingException ne) {
  System.out.println("Naming Exception" + ne);
  Connection dbc = ds.getConnection();
  return dbc;
  However i am getting an javax.naming.NameNotfoundException: can't locate jdbc/ptradeDataSource.
  Could somebody pls tell me what is wrong with my configuration and code?

  Hi Rahul,
  Thanks for bringing this page to my
  notice..But there are still a few doubts which i
  have...
  . I have worked on JNDI so far, so could you please
  tell me where exactly i need to define the namespace
  of JNDI ? In which all configuration files would i
  need to declare the database? more specifically,Would
  i need to make any changes to server.xml?Probably web.xml and server.xml
  2. Could you please share any xml files that would
  give the additions that i need to make in my setup?I don't use iPlanet. Not many people do these days that I know of.
  You could look at the Tomcat docs on how to set up a JNDI data source. That should help.
  3. Would i need to explicitly close the DB
  connections in my code?You should be already. If you're not, you're writing bad code. ResultSets and Statements need to be closed as well.
  %

• Using external LDAP server for  WL JNDI lookups

  I'm trying to find out if it is possible to re-direct JNDI calls to the WL
  server to an external LDAP server. I know you can install an external LDAP
  server for security purposes, but I would like to use an external LDAP
  server to handle all JNDI lookups (like for JNDI EJB name location, etc.).
  Is this possible?

  You typically need to use our JNDI store. We strongly recommend this for
  performance reasons..
  You can use the JNDI To LDAP bridge which is available from the sun web
  site.
  Michael Girdley
  BEA Systems Inc
  "Jack Archer" <[email protected]> wrote in message
  news:[email protected]..
  I'm trying to find out if it is possible to re-direct JNDI calls to the WL
  server to an external LDAP server. I know you can install an external LDAP
  server for security purposes, but I would like to use an external LDAP
  server to handle all JNDI lookups (like for JNDI EJB name location, etc.).
  Is this possible?

• Iplanet LDAP Server 5.1

  After installing LDAP Server 5.1 on a Windows XP machine the following post installation errors are shown:
  -Setup is unable to store configuration data in the LDAP directory
  -Unable to create Administrative Server configuration
  -Could not authenticate ldap connection, �unknown error�
  -Unable to set ACI in Configuration Directory Server
  -Setup�s post install mode failed for the sub component admin belonging to the component admin
  Any ideas as to the cause ?
  Thanks

  i face the same problem when i install iPlanet Application Server 6.0 SP4 to win 2000 server.Please post this question in the App server forum. This forum is for sun one directory server
  http://forums.sun.com/forum.jspa?forumID=753
  Edited by: etst123 on Jan 22, 2009 9:11 AM

• Using iPlanet Web Server 6.0 (with ASP or JSP), is it possible to create a StarOffice, Word or Acrobat document using a template and merging it with data from a database (say Oracle)?

   

  Hi,
  It is possible, But it has to be done through codes and iPlanet Web Server has nothing to do with it. But if you want to create the word document by ASP you have to install ASP plugin like ChilliASP (from Chilisoft) with iPlanet Web Server.Merging with database can be done through your code.
  To know more abt creating word doc through ASP try this link
  http://web.ukonline.co.uk/vance/code/aspworddoc.pdf
  Regards,
  T.Raghulan.

• I am using iPlanet Enterprise Server 4.1sp7,

  and I want to set up customized error responses. I have entered the file name of a valid html file in the "Error Response" link under the "preferences tab" for the server. However, it is not working, all I get is the default browser error page. Any ideas?

  Damien,
  Did you try entering in the absolute path to the file and not just the filename? Also, did you do a save and apply of the change so that the webserver process restarts and reloads the obj.conf changes?
  I tested this with iPlanet Web Server 4.1sp9 and it seems to be working properly there.

• Access pdf files on-line using iPlanet as server

  We are using Sun One Web Server as server. Our system generate files in pdf fomat and this pdf format must be available online. We created a folder inside server machine directory e.g. /var/opt/generatedreports/ .. The pdf files will open once a user clicks on the link.
  how could i check this directory-mapping?

  Ok, thanks. I think I will find a way to show the files. Maybe i'll use a jsp page instead. Thanks again.