[389-users] Expired password still allows samba login

.el5 Thank you for your guidance... David Hoskinson | DATATRAK Systems Engineer Mayfield Heights, Ohio, USA +1.440.443.0082 x 124 (p) | +1.319.471.3689 (m) david.hoskin...@datatrak.net<mailto:david.hoskin...@datatrak.net> | www.datatrak.net<http://www.datatrak.net/> -- 389 users mail

[389-users] Ldap authentication to multiple samba servers

I originally set it up and it created a "domain" or samba object, I am not sure what the proper term is. I am guessing that under the directory tab, under my domain I will see an object for each machine. Is this correct? Thanks for the help. David Hoskinson | DATATRAK System

[389-users] Samba constraint violation problem

After upgrading our samba due to security scan, we are having problems setting and changing samba passwords. Originally I believe we were using samba-3.0.33 but have upgraded to samba3-3.6.3-44.el5. Now I can successfully add new ldap user, but when I try to set samba password I get a constrai

[389-users] Logging Creation and Deletion

x27;t care about the 500 mb total size. I see some fields can be set with -1 to inactivate them but some can't... If anyone can explain this a little clearer I am sure its just something I am missing David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio, USA +1.440

Re: [389-users] Turn off anonymous bind

10, 2011 2:01 PM To: General discussion list for the 389 Directory server project. Cc: David Hoskinson Subject: Re: [389-users] Turn off anonymous bind so we should have under cn=config nsslapd-allow-anonymous-access: off nsslapd-allow-unauthenticated-binds: off ( see http://docs.redhat.com/

[389-users] Turn off anonymous bind

are correct. If I turn the setting back to on, it works again. Am I missing something... or is this not the correct method to achieve my goal. Thanks. David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio, USA +1.440.443.0082 x 124 (p) | +1.216.280.5457 (m

[389-users] Hiding key fields from ldap searches

what the aci's are for, but I am fuzzy on how this works. If someone could verify I would appreciate it and lead me in the right direction. We are trying to keep regular users from seeing these fields. thanks David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio

[389-users] Replication frequency

Should be an easy one... can anyone tell me how often replication takes place in a multimaster setup? Is this a timed event or does a change trigger the replication. Working on a status check and want to see which direction to go... thanks. David Hoskinson | DATATRAK International Systems

[389-users] Adding custom attribute

t doesn't show. I am just hunting and pecking here but think I am getting close... any help would be appreciated. David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio, USA +1.440.443.0082 x 124 (p) | +1.216.280.5457 (m) david.hoskin...@datatrak.net<m

[389-users] Best way to sync ldap and samba passwords

from command line in linux.Everything I am reading seems to point the opposite direction of what we want to do. Thanks. David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio, USA +1.440.443.0082 x 124 (p) | +1.216.280.5457 (m) david.hoskin...@datatra

[389-users] Start TLS request accepted. Server willing to negotiate SSL

for the password change function. Thanks for any help you may have. I am also under the impression I am supposed to copy the cacert.asc to each client machine so they can authenticate against the cert. is this true also? David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights

[389-users] SOLVED: RE: Password expiration policy problem

ect.org [mailto:389-users-boun...@lists.fedoraproject.org] On Behalf Of David Hoskinson Sent: Thursday, September 29, 2011 7:33 AM To: General discussion list for the 389 Directory server project. Subject: [389-users] Password expiration policy problem I have configured our directory server to have a global password

Re: [389-users] Problem with samba and 389 Directory server with LDAPS

. Cc: David Hoskinson Subject: Re: [389-users] Problem with samba and 389 Directory server with LDAPS On 09/28/2011 06:47 AM, David Hoskinson wrote: I do not have a server.crt.. I created my certs using the following page on the 389 documentation http://directory.fedoraproject.org/wiki/Howto:SSL

Re: [389-users] Problem with samba and 389 Directory server with LDAPS

another machine, but that machine was needed for another purpose and lost the setup. I know I must be missing something simple and am checking the HOWTO for samba on the 389-Directory Server site. David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio, USA +1.440.443

Re: [389-users] Setting up multi master replication error 81

Directory server project. Cc: David Hoskinson Subject: Re: [389-users] Setting up multi master replication error 81 On 08/31/2011 01:59 PM, David Hoskinson wrote: I just found this in /var/log/dirsrv/slapd-xxx/error Is it actually binding but password is invalid on one machine or the other? I thought

Re: [389-users] Setting up multi master replication error 81

users-boun...@lists.fedoraproject.org] On Behalf Of David Hoskinson Sent: Wednesday, August 31, 2011 3:49 PM To: 389-users@lists.fedoraproject.org Subject: Re: [389-users] Setting up multi master replication error 81 [root@xxx slapd-adm302]# /usr/lib64/mozldap/ldapsearch -h xxx.stag.cle.us -p 636

Re: [389-users] Setting up multi master replication error 81

importing, however I still get the message 81 can't contact ldap server. Hope this information helps helps me understand how this works better as this is the last step. On 08/31/2011 09:12 AM, David Hoskinson wrote: This seems to be getting me somewhere Thanks for the quick response I