Hi Ceri,
I think we need a bit more information from your SGD server. Could you
enable LDAP logging and provide us with any errors or odd log entries
that you see or if you're unsure about what's there, attach the entire
log file to the post (I recommend compressing the content for the sake
of the users of this mailing list :)).
To enable ldap logging use the following log filter (in the Admin
Console->Global Settings->Monitoring):
server/login/*:ldap.log
server/ldap/*:ldap.log
The logging will be placed in a file called ldap.log in
/opt/tarantella/var/log. To give us the best idea about what is
happening, restart the server and then try to login as an LDAP user.
Thanks,
-- DD
Ceri Davies wrote:
Hi Dean,
Thanks for picking this up.
The config command returns (I have changed the domain, I'm really
sorry to do that):
# tarantella config list --login-ldap --login-ldap-url
login-ldap-url: ldaps://ldap-id.example.ac.uk
login-ldap: 1
#
/opt/tarantella/var/log/stderrout.log is zero length, while
/opt/tarantella/var/log/jserver21175_error.log has a few entries for
each login; here are the entries without stack traces - if they look
relevant I'll post the whole thing but didn't want to spam the list too
much.
Failed to add naming listener for event type WebtopStateChanged for
ssgd1vm.example.ac.uk:1228144762019:5129041507248141857.
Failed to add naming listener for event type WebtopContentChanged for
ssgd1vm.example.ac.uk:1228144762019:5129041507248141857.
Failed to add naming listener for event type EmulatorSession for
ssgd1vm.example.ac.uk:1228144762019:5129041507248141857.
Failed to add naming listener for event type Print for
ssgd1vm.example.ac.uk:1228144762019:5129041507248141857.
I did attempt to add server/webtop debugging but I either got the syntax
wrong or there wasn't any as I ended up with a zero length file.
Thanks,
Ceri
On Mon, Dec 01, 2008 at 03:36:51PM +0000, Deany Dean wrote:
Hi Ceri,
Could you send the output from:
# tarantella config list --login-ldap --login-ldap-url
Also, are there any errors in the SGD logs? Located in
/opt/tarantella/var/log/stderrout.log and
/opt/tarantella/var/log/jserver_error<PID>.log
Thanks,
-- DD
Ceri Davies wrote:
I'm just getting started with SGD, using Solaris 10u6 and the latest
4.41 drop of TTA.
I'm having trouble getting applications assigned to users who are
authenticated via LDAP. I have this setup for my authentication
sequence:
1. System Authentication (performed by Secure Global Desktop):
1. Unix Authentication: search for the User Identity in the
Local Repository and use the matching User Profile.
2. LDAP Repository Authentication: use the LDAP User Identity
and search for a matching User Profile in the Local Repository.
3. Unix Authentication: use the UNIX User Identity and search
for a matching User Profile in the Local Repository using the
user's Unix Group ID.
4. Unix Authentication: use the UNIX User Identity and use the
default UNIX User Profile (System Objects / UNIX User Profile).
The users are being assigned to the User profile "User Profiles / System
Objects / LDAP Profile", but nothing appears in the Applications bit of
the webtop, despite there being multiple direct and indirect application
assignments.
I don't want to do any administration via LDAP, just authentication.
Any clue for me please?
Thanks,
Ceri
------------------------------------------------------------------------
_______________________________________________
SGD-Users mailing list
SGD-Users@filibeto.org
http://www.filibeto.org/mailman/listinfo/sgd-users
_______________________________________________
SGD-Users mailing list
SGD-Users@filibeto.org
http://www.filibeto.org/mailman/listinfo/sgd-users
------------------------------------------------------------------------
_______________________________________________
SGD-Users mailing list
SGD-Users@filibeto.org
http://www.filibeto.org/mailman/listinfo/sgd-users
_______________________________________________
SGD-Users mailing list
SGD-Users@filibeto.org
http://www.filibeto.org/mailman/listinfo/sgd-users
