Re: [389-users] loss of group members in AD after initialization of sync

- "Jean-Noel Chardron" wrote: > Richard Megginson a écrit : > > - "jean-Noël Chardron" wrote: > > > > > >> hello, > >> > >> When I initiate a first full synchronization of DS and AD I lost > >> members >

Re: [389-users] Unable to connect to Admin or DS from management console

- "Andrew Kerr" wrote: > I recently added a new fedora ds replica (1.2.0) to my master > (1.0.4). I was able to add the new machine, and replicate to it. I > set > up the replication via the console, and everything was working fine. > Today when I launch the console on the master and conne

Re: [389-users] General LDAP security

- "Chris Phillips" wrote: > http://www.mail-archive.com/fedora-directory-users@redhat.com/msg09428.html > > > On Tue, Jun 16, 2009 at 7:29 PM, John A. Sullivan III < > jsulli...@opensourcedevel.com > wrote: > > > In briefest summary, we create a separate user who has rights to see > but

Re: [389-users] loss of group members in AD after initialization of sync

- "jean-Noël Chardron" wrote: > hello, > > When I initiate a first full synchronization of DS and AD I lost > members > in groups > > error log shows : > > [10/Jun/2009:15:00:07 +0200] NSMMReplicationPlugin - > agmt="cn=zebigbos" > (zebigbos:636): map_entry_dn_inbound: looking for local

Re: [389-users] which user must have access to /var/run/dirsrv ?

- "dima vasiletc" wrote: > On 06/15/2009 07:53 PM, Richard Megginson wrote: > > ls -al /var/run/dirsrv > > > > drwxrwxrwx 2 dirsrv nobody 4096 2009-06-15 10:21 . > drwxr-xr-x 31 root root 4096 2009-06-15 10:21 .. > -rw-r--r-- 1 dirsrv

Re: [389-users] Performance cuestions about ds.

- "Julio Gómez Belmonte" wrote: > Hello everybody, > > This is my first message to the list, so I hope don't make recurring > questions. > > My question concerns the performance of directory server, I have a > directory with a large number of entries, ~ 20,000 objects. My > question is:

Re: [389-users] which user must have access to /var/run/dirsrv ?

- "dima vasiletc" wrote: > Hello > When i try start dirsrv i have error > Failed to delete old semaphore for stats file > (/var/run/dirsrv/slapd-MY-DOMAIN-COM.stats). Error 13 (Permission > denied). > > but access for dirsrv user permited. > also ls -al /var/run/dirsrv > > -- > С уваже

Re: FDS 1.1.1 RPM release dates [was [Fedora-directory-users] Announcing Fedora Directory Server version 1.1.1]

Danny Smith wrote: Rich, We're about to start testing an implementation of FDS-1.1.1, but we have a query about packaging dates: The update RPMs available for Fedora 8 (which we plan to use) seem to have build dates prior to this release announcement. Is this to be expected, e.g. did the F8

Re: [Fedora-directory-users] Recover directory database files when disk fills up!

Howard Wilkinson wrote: We had the disk with the directory database files fill up overnight, a rogue process :-[ Now the directory server will not start I get the following reported in the system logs. Jul 29 09:44:50 bastion ns-slapd: auxpropfunc error invalid parameter supplied

Re: [Fedora-directory-users] newbie question - roles AND groups?

Grzegorz Marszałek wrote: Hi! Would you be able to create a wiki page to explain your requirements for such a feature? That would be a very good place to start designing this feature. http://directory.fedoraproject.org/wiki/RolesAsGroupsRequirements I've got little carried away :) And sorr

Re: [Fedora-directory-users] Replication messages

DANIEL CRISTIAN CRUZ wrote: "Richard Megginson" <[EMAIL PROTECTED]> escreveu: DANIEL CRISTIAN CRUZ wrote: No one knows what DB_BUFFER_SMALL mean on Fedora DS? How does a change were not found in the changelog? A problem? A bug? Something "usual"?

Re: [Fedora-directory-users] Replication messages

DANIEL CRISTIAN CRUZ wrote: No one knows what DB_BUFFER_SMALL mean on Fedora DS? How does a change were not found in the changelog? A problem? A bug? Something "usual"? I believe this is the following bug - https://bugzilla.redhat.com/show_bug.cgi?id=442170 - we are still working on it.

Re: [Fedora-directory-users] newbie question - roles AND groups?

Grzegorz Marszałek wrote: Hello! I'm newbie to Fedora Directory, but is has two significant features - acl and nested roles. But I could find a way to use roles as groups. That is - I'd like to define role, and then use this to define posix group, which I can use via nss_ldap on my servers.

Re: [Fedora-directory-users] Replication messages

DANIEL CRISTIAN CRUZ wrote: Hi all, I had some error messages that I don't understood: [17/Jun/2008:14:39:11 -0300] NSMMReplicationPlugin - changelog program - agmt="cn=m1-m2-xxx" (m2:389): Failed to retrieve change with CSN 4857f6db0001; db error - -30999 DB_BUFFER_SMALL: User memory

Re: [Fedora-directory-users] password incorrect or directory problem

[EMAIL PROTECTED] wrote: Rich Megginson wrote: [EMAIL PROTECTED] wrote: Rich Megginson wrote: [EMAIL PROTECTED] wrote: Rich Megginson wrote: [EMAIL PROTECTED] wrote: Luke Bigum wrote: Sigid, I think Rich means the admin server access log, which is different to the directory server access l

Re: [Fedora-directory-users] FDS 1.1 Transport endpoint is not connected

tor is not connected error? It's similar to the B4 - it means there was a problem with the connection to the client. Thanks. -richard -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard Megginson Sent: Monday, February 11, 2008 7:43 PM To: Genera

Re: [Fedora-directory-users] FDS reinstall

Anand Vaddarapu wrote: Hi, Im trying to reinstall the FDS im getting following error. "could not copy file '/etc/dirsrv/config/certmap.conf to /etc/dirsrv/slapd-ldaptest1/certmap.conf' error :no such file or directory." any help much appreciated. Are you attempting to reinstall using a diff

Re: [Fedora-directory-users] FDS 1.1 Transport endpoint is not connected

Richard Hesse wrote: Started to play with FDS 1.1 for some dogfood testing. After running for 10-15 minutes, the server stopped responding to network requests and went silent. The process was running, the error log was updating with the ldbm event loop, but no socket requests were fulfilled. C

Re: [Fedora-directory-users] Console issue

hostname Edit /etc/dirsrv/admin-serv/adm.conf - update your ldap server hostname - you will then have to restart the admin server. Thanks vivek On Feb 12, 2008 8:37 AM, Richard Megginson <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> wrote: Anand Vaddarapu wrote: > Hi

Re: [Fedora-directory-users] Console issue

DS? Thanks in advance. Vivek On Feb 12, 2008 4:17 AM, Richard Megginson <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> wrote: Anand Vaddarapu wrote: > Hi, > > I am trying to access console from another computer but same network. > I am receivi

Re: [Fedora-directory-users] Admin-serv Seg fault

Jared B. Griffith wrote: I am getting seg faults when trying to start the admin-server of a 1.0.4 install I had done quite some time ago, and up until now was running perfectly. Nothing has changed on the server itself other than me stopping and starting both the ldap and admin server. I need

Re: [Fedora-directory-users] Console issue

Anand Vaddarapu wrote: Hi, I am trying to access console from another computer but same network. I am receiving following error " Can not connect to the Directory Server "ldap://localhost.localdomain:389";, LDAP error: failed to connect to server ldap://localhost.localdomain:389. would you

Re: [Fedora-directory-users] Is Fedora Directory Server support collective attribute

CheeYang Chau wrote: Hi, I just wonder if Fedora Directory Server support collective attributes? No, but Fedora DS supports something similar - Class of Service - http://directory.fedoraproject.org/wiki/Howto:ClassOfService -- Best regards, Chau Chee Yang E Stream Software Sdn Bhd URL: www.s

Re: [Fedora-directory-users] Announcing Fedora DirectoryServer 1.1Beta

Anthony Giggins wrote: Richard Megginson wrote: No, probably not. configure && make is pretty easy. However, if there is enough hue and cry from the developer community, we will consider it. Silly question where can I download the sources It not obvious to me wh

Re: [Fedora-directory-users] Announcing Fedora DirectoryServer 1.1Beta

Anthony Giggins wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard Megginson Sent: Thursday, 29 November 2007 1:15 PM To: General discussion list for the Fedora Directory server project. Subject: Re: [Fedora-directory-users] Announcing Fedora

Re: [Fedora-directory-users] Announcing Fedora Directory Server 1.1Beta

Anthony Giggins wrote: Richard Megginson wrote: You can grab them from the source RPMS - just edit the yum .repo (idmcommon.repo and dirsrv.repo) files and change RPMS to SRPMS For the fedora-ds-base sources, the sources are available from the Fedora SRPM repo What about for other

Re: [Fedora-directory-users] ldap_simple_bind: Can't connect to the LDAP server - Invalid argument

[EMAIL PROTECTED] wrote: Hello I am trying to use samba with Fedora Directory Server as it's backend, I am currently trying to configure samba to work with Fedora Directory Server using this guide: http://directory.fedoraproject.org/wiki/Howto:Samba#Samba_.26_Fedora_Directory_S erver_Integrati

Re: [Fedora-directory-users] Adding New Users

Jared B. Griffith wrote: Is there a way to modify what attributes a new user has when creating them? You mean, when creating new users in the Console? No, there is no easy way have additional UI elements for additional schema elements. You'd have to hack/write some Java code to do this. I kno

Re: [Fedora-directory-users] Importing Users

Jared B. Griffith wrote: Has anyone else experienced a very long time when importing a ldif file with a size of about 42 Mb? It is currently taking me about 2 hours to import the users using the Console. That might be doing an LDAP Add instead of a database import. Would it be faster using th

Re: [Fedora-directory-users] Announcing Fedora Directory Server 1.1 Beta

Anthony Giggins wrote: Where can I find the sources? I've had a look through the wiki and cant locate them You can grab them from the source RPMS - just edit the yum .repo (idmcommon.repo and dirsrv.repo) files and change RPMS to SRPMS For the fedora-ds-base sources, the sources are avail

Re: [Fedora-directory-users] Certifcate Database Errors

Anthony Giggins wrote: *From:* [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] *On Behalf Of *Anthony Giggins *Sent:* Tuesday, 27 November 2007 5:04 PM *To:* fedora-directory-users@redhat.com *Subject:* [Fedora-directory-use

Re: [Fedora-directory-users] Problems restoring backup

Kimmo Koivisto wrote: Hello I reinstalled FDS 1.0.4 and tried to restore backup, but something goes wrong and after restore is done, ldapsearch does not return any entries (and there should be about 1300 entries). Can you do a export (db2ldif) ? Looks like the database config changed some

[Fedora-directory-users] Announcing Fedora Directory Server 1.1 Beta

Fedora Directory Server 1.1 Beta is now available. See http://directory.fedoraproject.org/wiki/Release_Notes for information. smime.p7s Description: S/MIME Cryptographic Signature -- Fedora-directory-users mailing list Fedora-directory-users@redhat.com https://www.redhat.com/mailman/listinfo/fe

Re: [Fedora-directory-users] nsds5task

James wrote: Does anyone know much about the attribute nsds5task under cn=replica,cn="m-suffix",cn=mapping tree,cn=config ? I have a system with multiple directory servers using multi-master replication which has 2 suppliers and 3 dedicated consumers. The system receives a large amount of u

Re: [Fedora-directory-users] pb.conf and an intranet.

matt wells wrote: Does anyone know how I can use my intranet to query my Directory Server? I have the pb.conf file but the admin-serv interface is not permitted on my server. We only permit the normal 389 lookups. What I would like is for my intranet on server1 to query with pb.conf to server2 a

Re: [Fedora-directory-users] user self-service

Andrew Jennings wrote: Hi All I'm looking for a feature that would allow users to reset their passwords or recover from forgotten passwords through a GUI. I can't find a reference to anything like it in the docs. If you go to the home page of your admin server in your web browser, you will s

Re: [Fedora-directory-users] Fedora 7 and Fedors-DS

Gene Poole wrote: What can I expect if I install the current version of fedora-ds on Fedora7? Fedora DS version 1.0.4 or 1.1? Thanks, Gene Poole [EMAIL PROTECTED] -- Fedora-directory-users mailing list Fedora-directory-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-director

Re: [Fedora-directory-users] libnss_ldap-2.5.0.so update breaks admin server.

Brian T. Roy wrote: Platform is FC6. LDAP auth worked with libnss_ladap-2.4.90 AND libnss_ldap-2.5 HOWEVER after the 2.5 update (via Software Updater) Admin Server child processes crashed when loading libnss_ldap.so.2. The second un-updated system (the one I pulled libnss_ldap-2.4.90.so fro

Re: [Fedora-directory-users] libnss_ldap-2.5.0.so update breaks admin server.

Brian T. Roy wrote: Admin server began having child process seg faults after my box updated to libnss_ldap-2.5.so What platform? I know this is the culprit as I've tracked down (using strace) the seg fault to the use of libnss_ldap.so.2 I grabed libnss_ldap-2.4.90.so from another system whi

Re: [Fedora-directory-users] Password Encryption

Jared B. Griffith wrote: What is the default password encryption routine for FDS? SSHA Also, is it possible to change it? Yes. See http://www.redhat.com/docs/manuals/dir-server/ag/7.1/password.html#1077081 In addition to the ones in the doc, Fedora DS 1.0.4 supports SSHA256, 384, and 512,

Re: [Fedora-directory-users] Can't locate CSN in Multi-Master replica

sl version=3 mech=EXTERNAL [05/Nov/2007:11:55:15 +0100] conn=1968 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn="cn=ds-m1.infn.it,cn=config" [05/Nov/2007:11:55:15 +0100] conn=1968 op=1 SRCH base="" scope=0 filter="(objectClass=*)" attrs="supportedControl supported

Re: [Fedora-directory-users] add users

Zahra Bahar wrote: Hi all, I installed fedora ds and have noe console, but when I want to add a user it makes this error: can not save to directory server. java.lang.illegalArgumentExeption More info please. what should I do? -- Fedora-directory-users mailing list Fedora-directory-users@r

Re: [Fedora-directory-users] Question about caseIgnoreIA5Match

Balaji Ganesan wrote: From: Richard Megginson < [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> rm> Did you re-index the attribute after making that change? Thanks. re-indexing after changing type to Directory String fixed the problem. Should I just use Directory

Re: [Fedora-directory-users] Admin Server with multiple Directory servers

owned by the server user id. On 10/31/07, *Richard Megginson* < [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> wrote: matt wells wrote: > I have 4 directory servers. > I would really like to just run the admin-serv on one and let that > interface control the othe

Re: [Fedora-directory-users] Admin Server with multiple Directory servers

matt wells wrote: I have 4 directory servers. I would really like to just run the admin-serv on one and let that interface control the others. How do I do that? You need an external agent (the admin server) on each machine, in order to perform certain remote tasks via CGI, such as server start

Re: [Fedora-directory-users] Can't locate CSN in Multi-Master replica

Dael Maselli wrote: Richard Megginson, on 31/10/2007 17.43, wrote: Dael Maselli wrote: [...] "SSL Client Authentication". Here I had a problem! There was a pop-up that told me it can't connect to the other fds server, but I thought it was a bug, because I checked with tcp

Re: [Fedora-directory-users] Can't locate CSN in Multi-Master replica

ize from B to A if you already did the initialize from A to B. When you did the tcpdump, did you look at traffic on port 389 too, or just 636? I followed the manual at http://www.redhat.com/docs/manuals/dir-server/ag/replicat.htm#66943 I hope I was clear, sorry for my macaronic english

Re: [Fedora-directory-users] Question about caseIgnoreIA5Match

Balaji Ganesan wrote: I have the following entry in my schema, attributeTypes: ( someOID NAME ( 'mailAddress' ) DESC 'mailAddress' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) This attribute is indexed, using information below. dn: cn=mailAddress,cn=inde

Re: [Fedora-directory-users] show uesr's hash password

puestadelsol83 wrote: Hi! I want see user password. When I use console to create a new user in my ldap tree I can set user's password. FDS encrypt password automatically with the hash functione that I choose (in particular with SSHA) when I use ldapsearch -x "uid=SCarter" I see all SCarter att

Re: [Fedora-directory-users] Problem with AES

Andreas Kekkou wrote: Both names are exactly the same. Richard Megginson wrote: Andreas Kekkou wrote: Hi Richard, Nothing has changed. Executing the command you have suggested on both servers I get the same output: [EMAIL PROTECTED] alias]# ../shared/bin/certutil -L -P slapd-serverA- -d

Re: [Fedora-directory-users] problem with certificate

puestadelsol83 wrote: Sorry but I work with certificate last month an I don't remember the error. I don't solve problem but now is necessary to work with cert. I follow the guide and everything in cert installation seems correct but when I restart everything the messages is something like Ldap_

Re: [Fedora-directory-users] problem with certificate

puestadelsol83 wrote: Hi! I have some problem with certificate. I'm using Fc6 and here I install FDS. I follow the guide " Obtaining and Installing Server Certificates " and "Enabling SSL in the Directory Server, Admin Server, and Console" with console. Everything seems correct but when I estar

Re: [Fedora-directory-users] netscape error

Zahra Bahar wrote: Hi all, I installed fedora-ds-1.0.4-1 and j2re-1.4.2_16-fcs. but now when I want to connect to the console there is this error: can not connect to the directory server: netscape.ldap.LDAPException:error result(34);invalid DN; invalid DN syntax What did you type in as you

Re: [Fedora-directory-users] Can't locate CSN in Multi-Master replica

Dael Maselli wrote: I can't understand very well what fds do during replica. My node A has replica id 1 and node B has 2, in the changelog of A I see records like 4725e6040001 or 4725e80f0001 and in B records like 472224f20002, so I conclude that 5th digit from right is

Re: [Fedora-directory-users] Problem with getting FDS and AD to sync

Timothy Hunt wrote: Yes I can, but I also know for sure that 636 is using SSL. Did you configure the sync agreement to use SSL and to use port 636? Yes. Can you use ldapsearch from the command line? e.g. cd /opt/fedora-ds/shared/bin ./ldapsearch -h adhostname -p 636 -D "cn=administrator

Re: [Fedora-directory-users] Problem with getting FDS and AD to sync

Timothy Hunt wrote: But I can connect to port 636 on the AD server from the RDS box without a problem. Can you connect to port 389 on the AD server? Is it possible you have configured it to use port 636 but not to use SSL (or vice versa)? Yes I can, but I also know for sure that 636 is us

Re: [Fedora-directory-users] Problem with getting FDS and AD to sync

Timothy Hunt wrote: On Oct 25, 2007, at 12:50 PM, Richard Megginson wrote: Timothy Hunt wrote: I've taken over control of an FDS and an AD server which had been set up before I got to it. I'm still fairly new to LDAP and related things. I come from a unix background rather th

Re: [Fedora-directory-users] Can't locate CSN in Multi-Master replica

Dael Maselli wrote: Hi all, I have a multiple master configured with SSL Authentication, it seemed to work correctly, but since a moment (I don't know when) it gave me errors and it doesn't work anymore. When I try to do an update from A to B it works, but from B to A I get this in the B log:

Re: [Fedora-directory-users] Problem with AES

/fedora-ds/slapd-instancename/config/dse.ldif The personality name should match with the server cert name in your certdb. Cheers. Andreas Richard Megginson wrote: Andreas Kekkou wrote: Hi all, I'm running FDS in multi-master mode with two servers. Both servers are configured with TLS su

Re: [Fedora-directory-users] Problem with getting FDS and AD to sync

Timothy Hunt wrote: I've taken over control of an FDS and an AD server which had been set up before I got to it. I'm still fairly new to LDAP and related things. I come from a unix background rather than windows. At some point, users put into FDS were replicated on the AD server correctly.

Re: [Fedora-directory-users] Problem with AES

Andreas Kekkou wrote: Hi all, I'm running FDS in multi-master mode with two servers. Both servers are configured with TLS support. One of the servers logs the following error: [25/Oct/2007:08:50:55 +0300] - attrcrypt_unwrap_key: failed to unwrap key for cipher AES [25/Oct/2007:08:50:55 +030

Re: [Fedora-directory-users] gentoo and web console

Kirill Petrov wrote: Richard Megginson wrote: Kirill Petrov wrote: Richard Megginson wrote: I installed FDS on Gentoo 2007.0 using the instructions provided at this url: http://gentoo-wiki.com/HOWTO_Install_Fedora_Directory_Server I did everything according to the manual except that I

Re: [Fedora-directory-users] gentoo and web console

Kirill Petrov wrote: Richard Megginson wrote: I installed FDS on Gentoo 2007.0 using the instructions provided at this url: http://gentoo-wiki.com/HOWTO_Install_Fedora_Directory_Server I did everything according to the manual except that I installed apache 2.2.6 and had to modify httpd.conf

Re: [Fedora-directory-users] gentoo and web console

Kirill Petrov wrote: Hello everybody, I installed FDS on Gentoo 2007.0 using the instructions provided at this url: http://gentoo-wiki.com/HOWTO_Install_Fedora_Directory_Server I did everything according to the manual except that I installed apache 2.2.6 and had to modify httpd.conf to load

Re: [Fedora-directory-users] Re: backup/dump--restore/import

B does not. Will that work for anyone? It should work, assuming the same suffix/database/index configuration on both servers, and assuming the architecture of both machines are the same. On 10/24/07, *Richard Megginson* <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> wrote:

Re: [Fedora-directory-users] Re: backup/dump--restore/import

Linux Admin wrote: I can not really create a new dir on the original. I am doing DR. So if that does not work, what are my options in building the DR? What's "DR"? On 10/24/07, *George Holbert * <[EMAIL PROTECTED] > wrote: db2bak (binary backup) is pretty spec

Re: [Fedora-directory-users] Re: backup/dump--restore/import

Linux Admin wrote: It get really bad: on new clean server: Backup from CLI: db2bak Restore CLI: works OK then I bring the dir produce by db2bak from the server I am trying to restore to new box and teh same restore commad fails Then there must be something going wrong with the copy. Because ba

Re: [Fedora-directory-users] Re: backup/dump--restore/import

backup process) I get error 53 (cannot read dir) Check the server error log. Restore will take 3 subdirectires (netacpre root or userRoot) and will run OK. but then it stops working, you can not log in or on restart admin server would not start. On 10/24/07, *Richard Megginson* <[EM

Re: [Fedora-directory-users] Re: backup/dump--restore/import

Linux Admin wrote: If I want to do through GUI: which option do I use: Backup/Restore or Import/Export Backup creates a binary backup of your entire database. Export creates an LDIF (ASCII) dump of the database you specify (userRoot or NetscapeRoot). When I sued BackupI tried to restore int

Re: [Fedora-directory-users] mandated TLS connections

John gray wrote: -- Forwarded message -- From: *John gray* <[EMAIL PROTECTED] > Date: Oct 22, 2007 5:16 PM Subject: mandated TLS connections To: fedora-directory-users@redhat.com Hi all, I migrated fro

Re: [Fedora-directory-users] backup/dump--restore/import

Linux Admin wrote: Please forgive the newbee question here. What is the best way to backup/dump--restore/import a fedora ldap server (without downtime) Look at the scripts db2ldif.pl, ldif2db.pl, db2bak.pl, and bak2db.pl TIA -

Re: [Fedora-directory-users] Missing tasks directory

Martin Eckel wrote: Am Do 11.10.2007 22:15 schrieb Richard Megginson <[EMAIL PROTECTED]>: > Martin Eckel wrote: > > Am Di 09.10.2007 17:47 schrieb Richard Megginson <[EMAIL PROTECTED]>: > > > > > Martin Eckel wrote: > > > > Hi, > > > &g

Re: [Fedora-directory-users] Missing tasks directory

Martin Eckel wrote: Am Di 09.10.2007 17:47 schrieb Richard Megginson <[EMAIL PROTECTED]>: > Martin Eckel wrote: > > Hi, > > > > I have installed fedora-ds-1.0.4-1 on a FC6 Linux. I am able to run > > the startconsole, but when I open the Admin Server window and

Re: [Fedora-directory-users] AD with FDS with Dovecot

Esteban Torres Rodriguez wrote: I have installed my synchronous AD with FDS without no problem. The users I create all in AD. I want to install Postfix+Dovecot autenticando against FDS, but when I create a user in AD and synchronizes with FDS does not put the attributes to me to maildir, posix

Re: [Fedora-directory-users] Error 12 on sorted queries

Scott Lacy wrote: I'm still a little new at this, so hopefully this isn't a FAQ question, but I am having issues with sorted queries. Single-user queries, and queries without sorts seem to go fine, but I get error 12 (unavailable critical extension) trying to do sorted queries, and returns ze

Re: [Fedora-directory-users] Missing tasks directory

Martin Eckel wrote: Hi, I have installed fedora-ds-1.0.4-1 on a FC6 Linux. I am able to run the startconsole, but when I open the Admin Server window and select any item than an error message appears that it trys to access to /admin-serv/tasks/Configuration/ServerSetup. But the tasks director

Re: [Fedora-directory-users] Error Logging Performance

David Boreham wrote: Roman RATHLER wrote: If I activate error logging for ACL Control Summary or similar, the machine totaly goes into IO-Wait. It just writes maybe 100K/second but is totaly unusable any more... From normal 1% CPU Load (on a 2 Way Xeon) it moves to 200% CPU Utilization. Debug

Re: [Fedora-directory-users] slapi search internal errors popping up in error log

names or passwords? -richard -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard Megginson Sent: Monday, October 08, 2007 2:16 PM To: General discussion list for the Fedora Directory server project. Subject: Re: [Fedora-directory-users] slapi search

Re: [Fedora-directory-users] slapi search internal errors popping up in error log

Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard Megginson Sent: Saturday, October 06, 2007 1:46 PM To: General discussion list for the Fedora Directory server project. Subject: Re: [Fedora-directory-users] slapi search internal errors popping up in error log Richard Hes

Re: [Fedora-directory-users] slapi search internal errors popping up in error log

22 slapd-fds-pin.txt Thanks in advance. -richard -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard Megginson Sent: Saturday, October 06, 2007 1:46 PM To: General discussion list for the Fedora Directory server project. Subject: Re: [Fedora-directory

[Fedora-directory-users] Re: Setting up Netgroups with Fedora DS

Clementous Clement wrote: Richard, I'm trying to use Netgroups to employ control access to groups of hosts to groups of users just as with NIS. I've searched the web for decent example to create the netgroup containter within FDS, but haven't discovered any. http://directory.fedoraproject.o

Re: [Fedora-directory-users] slapi search internal errors popping up in error log

Richard Hesse wrote: [06/Oct/2007:00:24:51 +] - slapi_search_internal ("CN=fds1.sv.powerset.com, OU=Domain Control Validated, O=fds1.sv.powerset.com", subtree, objectclass=*) err 32 I'm guessing that this is cert related, but the TLS/SSL operations are working fine. Are you using

Re: [Fedora-directory-users] ldapmodify and Fedora DS migration

Scott Lacy wrote: All, I am migrating an LDAP server off of Netscape I-Planet to Fedora Directory Server 1.0.4. I am having some issues with ldapmodify in that the command that worked in I-Planet 5.0 to do adds, modifiess, and deletes from the same run doesn't seem to work in Fedora DS. Wi

Re: [Fedora-directory-users] RedHat 4/Fedora-DS - SSL Cert DB not readable?

, it does not remove the key and cert databases, because this could be potentially devastating if you had not backed them up first. -- Original Message --- From: Richard Megginson <[EMAIL PROTECTED]> To: [EMAIL PROTECTED], "General discussion list for the Fedora Direc

Re: [Fedora-directory-users] RedHat 4/Fedora-DS - SSL Cert DB not readable?

Travis wrote: I agree with Graham's original idea - its almost as if the server is not looking in the proper location for the database. Does anyone know where this is set? It looks for /opt/fedora-ds/alias/slapd-instancename-cert8.db - also grep -i nscert /opt/fedora-ds/slapd-instancename/co

Re: [Fedora-directory-users] libatomic.o missing; Solaris 8 Build

Jason wrote: hello, I'm trying to compile FDS 1.0.4 on a 280R running Solaris 8. After getting all of the prerequisites installed (gnu make, apr, ant, sun workshop compiler, etc) I started following the directions located here: http://www.directory.fedora.redhat.com/wiki/Building#External_Re

Re: [Fedora-directory-users] fds vs passsync vs AD

3:51 -0600, Richard Megginson wrote: Peter Santiago wrote: Richard Megginson wrote: [SNIP] Not passsync (the AD "plug-in" that only sync passwords one way from AD to FDS) but winsync (the component that runs in FDS that pushes user, group, and password changes to AD, and

Re: [Fedora-directory-users] fds vs passsync vs AD

Peter Santiago wrote: Richard Megginson wrote: [SNIP] Not passsync (the AD "plug-in" that only sync passwords one way from AD to FDS) but winsync (the component that runs in FDS that pushes user, group, and password changes to AD, and pulls user and group changes from

Re: [Fedora-directory-users] fds vs passsync vs AD

Peter Santiago wrote: Richard Megginson wrote: Glenn wrote: Paolo - Maybe your certificates are not set up correctly. You should have the same CA certificate in the database in both FDS and AD. Also, the server certs in each database should be issued by the same certificate authority. It

Re: [Fedora-directory-users] fds vs passsync vs AD

Glenn wrote: Paolo - Maybe your certificates are not set up correctly. You should have the same CA certificate in the database in both FDS and AD. Also, the server certs in each database should be issued by the same certificate authority. It is convenient to use the Certificate Authority inc

Re: [Fedora-directory-users] glibc errors

Bjorn Oglefjorn wrote: I am trying to track down the cause of some errors that have been occurring on a number of our servers using LDAP. We have noticed that when a certain LDAP group exceeds 65 users we begin seeing glibc errors for users in the group. Users that are not in the group do not

Re: [Fedora-directory-users] How can you monitor replication?

Ian Meyer wrote: Hello, We have a decent sized env. (1 master, 16 slaves in different datacenters across the world) and we're trying to find a way to effectively monitor the status of replication. When was the last update? How many changes were made? How long did it take from start to finish? I

Re: [Fedora-directory-users] new installation - console working but web can not find objects

e access log? Richard Megginson wrote: ergoxsx wrote: /opt/fedora-ds/admin-serv/logs shows the following. ldap.abc.com is registered in local dns server and also in /etc/hosts. [Wed Sep 26 13:57:34 2007] [notice] [client 10.0.0.22] admserv_host_ip_check: ap_get_remote_host could not resolv

Re: [Fedora-directory-users] Five-way MMR

Kimmo Koivisto wrote: Hello I have five servers with FDS 1.0.4 and I would like to use multimaster replication in those servers. I know that there is some kind of limit for the number of servers in MMR, four servers is the maximun if I remember correctly. So, can I add replication agreem

Re: [Fedora-directory-users] new installation - console working but web can not find objects

:1500/clients/dsgw/bin/dosearch Can you see the request for dsgw/bin/lang in the access log? any ideas? Richard Megginson wrote: ergoxsx wrote: hi, am a directory service newbie and i just got fedora-ds installed on fedora 7. i can search users/objects thru console but web can not do any

Re: [Fedora-directory-users] new installation - console working but web can not find objects

ergoxsx wrote: hi, am a directory service newbie and i just got fedora-ds installed on fedora 7. i can search users/objects thru console but web can not do any search. message is the ff: -- Forbidden You don't have permission to access /dsgw/bin/lang

Re: [Fedora-directory-users] question about SSL configuration with IP takeover HA setup

Ryan Braun wrote: On Friday 21 September 2007 18:27, Richard Megginson wrote: Rather then run the script, I tried to run it for one example first eastldap0:/opt/fedora-ds/alias#../shared/bin/certutil -d . -S -n "Server-Cert-eastldap1" -s "cn=eastldap1.test.com" -c &quo

Re: [Fedora-directory-users] question about SSL configuration with IP takeover HA setup

Ryan Braun wrote: On Friday 21 September 2007 16:37, Richard Megginson wrote: Ryan Braun wrote: On Thursday 20 September 2007 21:36, George Holbert wrote: Ok so I managed to create a new certificate using subjectAltName extenstions, and it works as advertised. I can run ldapsearchs

Re: [Fedora-directory-users] question about SSL configuration with IP takeover HA setup

Ryan Braun wrote: On Thursday 20 September 2007 21:36, George Holbert wrote: Ok so I managed to create a new certificate using subjectAltName extenstions, and it works as advertised. I can run ldapsearchs on eastldap on both eastldap0. Now my question is for generating certs for the other

Re: [Fedora-directory-users] Unknown attribute syntax OID

James Deuchar wrote: Hi, I'm trying to create some custom schema via 99user.ldif using: attributeTypes: ( 1.3.6.1.4.1.24813.1.10 NAME 'cmDateOfBirth' DESC 'Date of birth (format MMDD, only numeric chars)' EQUALITY numericStringMatch SUBSTR numericsNumberSubstringsMatch SYNTAX 1.3.6.1.

  1   2   3   4   5   6   7   8   9   10   >