Great! Con you send me additional informations and possibly the code?
It will be very helpful.
Thanks.
Dael Maselli.
Gary Windham wrote:
On Jun 16, 2008, at 8:49 AM, Rich Megginson wrote:
Dael Maselli wrote:
Hi all,
is there any method to deny simple bind operation unless in a secure
Michael Ströder, on 15/06/2008 13.30, wrote:
Dael Maselli wrote:
I _need_ also to support GSSAPI auth, and it doesn't work with SSL!
Do you mean you require SASL bind with GSSAPI within the LDAP connection?
Yes.
The Kerberos authentication itself is not affected by SSL anyway since
ts doesn't try simple bind. No?
Please, give me a hint, my institution is going to migrate all Authentication
and Authorization to a system based on FDS and MIT Kerberos. This would be
a very blocking issue.
Dael.
Michael Ströder, on 15/06/2008 13.03, wrote:
Dael Maselli wrote:
I'm
ment would help
https://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control-Bind_Rules.html
On Sun, Jun 15, 2008 at 1:23 PM, Dael Maselli <[EMAIL PROTECTED]> wrote:
Hi all,
is there any method to deny simple bind operation unless in a secure
channel (SSL or STARTTLS)? Do I
Hi all,
is there any method to deny simple bind operation unless in a secure
channel (SSL or STARTTLS)? Do I have to write a plug-in? Hints?
Thank you.
Dael Maselli.
--
___
Dael Maselli --- INFN-LNF Computing Service
ation that
doesn't
clear after changelog recreation but flush correctly after entries expire?
Now all 4 nodes works, but I hope there will be a bug-fix soon.
Thank you very much.
Dael.
Rich Megginson wrote:
Dael Maselli wrote:
Dear Richard,
The problem came back, this time in one node.
I'
reinitialized.
[14/Nov/2007:15:42:22 +0100] agmt="cn=m3-m1" (ds-m1:636) - Can't locate CSN 4739d5a50003 in the changelog (DB rc=-30990).
The consumer may need to be reinitialized.
So, please help me! What can I do now, we can't reinstall from scratch anytime
one
s
Well. I restarted from scratch. Now all works fine.
Now I have 4-way RW replicas with agreements from all to all.
Thank you for assistance.
Regards.
--
___
Dael Maselli --- INFN-LNF Computing Service -- +39.06.9403.2214
nn=1968 op=0 BIND dn="" method=sasl version=3
mech=EXTERNAL
[05/Nov/2007:11:55:15 +0100] conn=1968 op=0 RESULT err=0 tag=97 nentries=0 etime=0
dn="cn=ds-m1.infn.it,cn=config"
[05/Nov/2007:11:55:15 +0100] conn=1968 op=1 SRCH base="" scope=0 filter="(objectClass=*)&
Richard Megginson, on 31/10/2007 17.43, wrote:
Dael Maselli wrote:
[...]
"SSL Client Authentication". Here I had a problem! There was a pop-up that told
me
it can't connect to the other fds server, but I thought it was a bug, because I
checked
with tcpdump and saw no packet
lti master replica
configured B to be a multi master replica
created replication agreement from A to B
created replication agreement from B to A
Did replica init from A to B
Note that you should not do a replica init from B to A if you already
did one from A to B
--
n the changelog,
when fds gives the error "Can't locate CSN", I can't see the csn id in the
changelog of A nor B.
Thank you.
Dael Maselli wrote:
Do you have a changelog configured on B? Is B configured as a multiple
master? Is the replica ID for B different than A?
Yes
needs.
I think it is a misconfiguration and maybe it work if I reinstall FDS,
but i need to understand what's happening.
Thank you.
--
_______
Dael Maselli --- INFN-LNF Computing Service -- +39.06
is could affect replication with replica's consumers in which case the consumers should be
reinitialized.
the parts exchanges and I can do updates from B to A and not from A to B.
I tried to delete changelog as I read on the manual, also tried to
delete and recreate all the replica and agr
14 matches
Mail list logo
