Re: Schema object DN in OpenLdap

Le 24/09/15 14:32, Syed Mudassir Ahmed a écrit : > In Windows active directory, the schema object is > cn=schema,cn=configuration,dc=... > In OpenLdap, what's the DN for so? > > Sent from my iPad You just have to get the subschemaSubentry attribute in any entry, it will tell you where the schema

Re: Get all attributes

Le 24/09/15 15:19, Syed Mudassir Ahmed a écrit : > This solution applies to Windows active directory. For each value of > objectClass (top, person, etc) there is an object in > cn=schema,cn=configuration,dc=... . Each of these objects tells required and > optional attributes. For the given

Re: Question about fetching attributes

Le 18/09/15 13:47, Syed Mudassir a écrit : > Hi Everybody, >I am able to connect to Windows Active Directory. I am able to lookup an > object and get the attributes. However, this is the problem I am facing. >Suppose an entry has 'm' attributes out of which 'n' attributes are >

Re: Get all attributes

Le 21/09/15 20:03, Syed Mudassir Ahmed a écrit : > Hello all, it's actually possible to list all the possible attributes for a > given entry (both assigned and unassigned). I have done it after a hard r What is a hard r ?

Re: Get all attributes

Le 25/09/15 02:43, Syed Mudassir Ahmed a écrit : > I am curious to know how ldap API can do that? As the subschema tells where the schema is, we can load it on demand. Actually, this is not what we do : we fetch teh schema from the rootDSE, which always hold a reference to the schema (see later

Re: [ApacheDS] Bind with hashed password

Le 08/12/15 15:48, M. P. a écrit : > >> >> Hope you can explain that to your application developpers... > > I started to explain them that it should not be done the way it is > done now. I can provide them a newer version of the directory, more > secure, but like I said before, they use this

Re: [ApacheDS] Bind with hashed password

Le 08/12/15 12:09, M. P. a écrit : > Hi all, > > I'm working for a new company for some months now and I have as a > project to renew our directory server. The company uses ApacheDS 1.5.7 > and I have a question about it's behaviour. Pretty old. Switch to the latest version as fast as possible !

Re: [ApacheDS] Bind with hashed password

Le 09/12/15 11:32, M. P. a écrit : > Le 2015-12-08 16:22, Emmanuel Lécharny a écrit : >> >>> When searching for an explanation, I saw that there are interceptors >>> in apacheDS and as a supposition, maybe playing with them allows >>> apacheDS to accept the

Re: disable password policy for admin

Le 18/12/15 00:52, Ezsra McDonald a écrit : > Is there a way to apply a new password policy that does not enforce > password aging? I am trying to add the pwdPolicySubEntry attribute to a > user using the Directory Studio but no luck so far. from te top of my head, if you use 0 as the value, it's

Re: disable password policy for admin

Le 18/12/15 00:02, Ezsra McDonald a écrit : > How do you prevent the Admin user's password from expiring? We would like > to have that user ignore the policy. > This has been fixed recently : https://issues.apache.org/jira/browse/DIRSERVER-2084 We still have to release 2.0.0-M21 (something I'm

Re: DHCPOption problem

Le 15/12/15 19:18, Sherman Lilly a écrit : > Can I do it with Apache Directory Studio Yes. You can associate the dhcpOption Attribute to an editor that allows you to set its value. Check in the Preferences.

Re: Vulnerability in apache-commons-collections 3.2.1

Le 19/11/15 17:41, Kiran Ayyagari a écrit : > On Fri, Nov 20, 2015 at 12:37 AM, wrote: > >> >> Hi, >> >> We have a customer that's concerned about a reported vulnerability with >> commons-collections. >> >> The collections jar (I believe) is a runtime dependency for the

Re: Move ADS to new location on disk

Le 09/06/16 à 17:18, Ezsra McDonald a écrit : > Good question, sorry > > The OS is Enterprise Linux. > > I used the apacheds-2.0.0-M20-64bit.bin installer. The directories teh server is using are described in http://directory.apache.org/apacheds/advanced-ug/2.2-instance-layout.html Data will be

Re: Command Line tools?

Le 08/06/16 à 09:43, Peter Jamieson a écrit : >> -Original Message- >> From: Jim Willeke [mailto:j...@willeke.com] >> Sent: 07 June 2016 14:20 >> To: users@directory.apache.org >> Subject: Command Line tools? >> >> Are command line tools like ldapsearch included with the directory install

Re: ApacheDS replication

Le 08/06/16 à 10:55, Peter Jamieson a écrit : > Hi, > > I've had the occasional issue with changes I make on one side of apacheDS not > being replicated. > > Is there a way of forcing a synchronization? Hmmm, not that I know of. Once replication is setup, it's supposed to cacth up. I it's not,

Re: Move ADS to new location on disk

Le 10/06/16 à 00:13, Ezsra McDonald a écrit : > I found a wrapper.log in /opt/ApacheDS/opt/bin > > STATUS | wrapper | 2016/06/08 16:57:41 | --> Wrapper Started as Daemon > STATUS | wrapper | 2016/06/08 16:57:41 | Launching a JVM... > ERROR | wrapper | 2016/06/08 16:57:41 | JVM exited while

Re: ApacheDS issues TGT kerberos ticket with address on IBM java

Le 28/06/16 à 07:45, Martin Choma a écrit : > Hi, > > ApacheDS issues TGT kerberos ticket with address on IBM java , even if > noaddresses = true is explicitelly set in krb5.conf. This is not an Kerberos flag, it's an indication for the kerberos client to not send an address to the server,

Re: add new attribute via LDIF file

Le 06/02/16 23:34, Timothy Keith a écrit : > How can I add a new attribute through an LDIF file ? > > For this DN I would like to add a new attribute "telephoneNumber" with a > value. > > DN: uid=tkeith,ou=users,ou=system > > > Tim Use ldapmodify

Re: Password policy

Le 29/01/16 02:26, akary...@yahoo.gr a écrit : > Hi, > I'd like to enforce some rules for password values (such as use of at least 2 > capitals, 1 number, 1 symbol, etc). Is it possible to do this with > configuration in the server? I've seen the password policy view in Apache > Directory

Re: DHCP using Apache directory server

Le 28/01/16 15:46, Sherman Lilly a écrit : > How to do I do that? Assuming that you have a backup of your database content in a LDIF format, just delete the existing data from your disk (/instance//partitions/) Typically, on my linux box :

Re: DHCP using Apache directory server

Le 29/01/16 00:45, Sherman Lilly a écrit : > I haven't installed any relevant data that is important. So deleting the > database is not important but how do I start a new and make that > modification to the dhcp schema and the server startup properly. Since it > wasn't working I did load any data

Re: incorrect pattern ?

Le 26/01/16 09:10, Blangille Denis a écrit : > Hello, > > i'm sorry to be incomprehensible. > > When i talk about 'pattern', this is apacheds schema's. What LDAP schema are you using ? In any case, with Studio, you should be able to connect on the server and check the loaded schemas, to see if

Re: DHCP using Apache directory server

Le 01/02/16 20:22, Sherman Lilly a écrit : > Remember from previous post that I modified the dhcp schema to fix a > attribute description bug. But when I create the attribute it is list in > the drop down list when I select it. Also when I load the schema in a > schema browser it shows up. Studio

Re: DHCP using Apache directory server

Le 01/02/16 14:53, Sherman Lilly a écrit : > OK. I have blanked out the data and restarted the server. The server starts > up fine now. Now anytime I try to add a dhcp shema definition I get an > error. > > ERR_04269 ATTRIBUTE_TYPE for OID dhcpserverdn does not exist! This attribute is not defined

Re: DHCP using Apache directory server

Le 01/02/16 17:32, Sherman Lilly a écrit : > Sorry for the typo. I have to type what I see. Copy and paste isn't working. > > When you set object Class dhcpserver it requires the attribute > dhcpservicedn. It should be present. Is the DHCP schema enabled ?

Re: DHCP using Apache directory server

Le 28/01/16 14:50, Sherman Lilly a écrit : > Adding the above ldif resulted in the server not able to start. Running > server in console mode shows this error. > > ERR_134 Cannot deserialize the entry : ERR_04269 ATTRIBUTE_TYPE for OID > 2.16.840.1.113719.1.203.4.19 does not exist! Yes, you need

Re: Rebooted ApacheDS M2 getting invalid type 31

Le 27/01/16 22:44, steve.hamm...@oracle.com a écrit : > Everything was working for months. > Then search stopped working, so I thought I would resstart apache ds. > > How can I get my system back to running? Corupted database :/ Either you have a backup, or you might want to test an experimental

Re: ApacheDS and commons.io 2.5

Le 22/02/16 23:17, Accorsi, Carlo a écrit : > Hi Folks, > > Wondering if the next drop of Apache DS can include and updated dependency > for commons-io 2.5 ? > Security conscious customer is asking us.. > https://issues.apache.org/jira/browse/IO-487 > > > Let me know and I'll create a JIRA if

Re: StartTLS enforced

Le 25/02/16 16:33, s_humbi a écrit : > Hello,does anybody know, if there is a way to force the ldap-client to use > StartTLS ? I dont wont to offer our ldap-clients an unsecure way to talk with > our LDAP-Server. > Yes I can disable the default-Port 389 and only enable the SSL-Port 636.But >

Re: StartTLS enforced

Le 25/02/16 18:25, Ogg a écrit : > sure, i was aware of this feature, however it would be nice to see a roadmap > to have those insecure versions actually removed from apacheDS, eg promote > better security choices by not offering obviously broken protocols. It would be good if they were

Re: StartTLS enforced

Le 25/02/16 17:59, Ogg a écrit : > I also would be interested in the feature. It, would also be interesting to > deprecate TLS 1.0, TLS 1.1 and SSL any flavor. You can actually prohibit the use of ancient versions of SSL/TLS. We have added some parameter to do that : ads-enabledProtocols. For

Re: Get the count of matching results for a search

Le 25/02/16 14:18, Pushpalanka Jayawardhana a écrit : > Hi All, > > ​This is regarding getting the count of matching results for a LDAP search > we execute.​ > ​I found this [1] posted in 2013, which says A > pacheDs does not support numSubordinates > ​.​ > Is this still valid or, do we have a way

Re: Get the count of matching results for a search

Le 26/02/16 13:11, Lothar Haeger a écrit : > Emmanuel Lécharny wrote: > >>> Often organizations need to know how many entries are present within a >>> directory or container for audit purposes of security, legal, billing or >>> other purposes. >>

Re: Get the count of matching results for a search

Le 26/02/16 11:34, Jim Willeke a écrit : > numberSuborinates is not (at least what I have seen) used to show the > number of results, but rather the count of entries within a container entry. True. > > Often organizations need to know how many entries are present within a > directory or container

Re: StartTLS enforced

Le 26/02/16 17:01, s_humbi a écrit : > OK. I tested:Setting the value of attribute ads-confidentialityRequired to > TRUE and restart the server, > This attribute is present in the entry > ads-serverId=ldapServer,ou=servers,ads-directoryServiceId=default,ou=config > And yes! It is working!--> I

Re: StartTLS enforced

Le 25/02/16 22:53, Stefan Seelmann a écrit : > On 02/25/2016 05:56 PM, Emmanuel Lécharny wrote: >> Le 25/02/16 16:33, s_humbi a écrit : >>> Hello,does anybody know, if there is a way to force the ldap-client to use >>> StartTLS ? I dont wont to offer our ldap-clie

Re: Apache Directory Studio getting "stuck" on opening LDAP connection login

Le 21/01/16 10:02, Philip Colmer a écrit : > This is really weird ... switching back to LDAP API now works *and* > ADS is able to display the default schema, which wasn't working > yesterday. > > BTW, it is OpenLDAP that I'm connecting to and, yes, it is via LDAPS. FTR, Radovan detected a bug in

Re: incorrect pattern ?

Le 25/01/16 19:44, Blangille Denis a écrit : > Hello, Hi, > > How can i verify if a imported pattern is correct ? This is to link apacheds > and freeradius server. > Is a pattern for openldap works with apacheds ? Because freeradius server > provides this pattern. Can you be a bit more explicit

Re: DHCP using Apache directory server

Le 20/01/16 23:16, Stefan Seelmann a écrit : > On 01/19/2016 02:46 PM, Sherman Lilly wrote: >> I have got my schemas installed and working and the directory server is >> working properly. I am trying to add a value to "dhcpOption" and it will >> only accept a binary value. I figured out the value

Re: Apache Directory Studio getting "stuck" on opening LDAP connection login

Le 25/01/16 09:50, Philip Colmer a écrit : > Hi Stefan > > I've managed to get a thread dump for you. Ok, many thanks. That confirms what has been found last week by Radovan : there is a bug in the SslHandler class, and it causes an infinite loop. The bug is now fixed, and we will release

Re: logging all incoming requests

Le 15/02/16 18:55, Timothy Keith a écrit : > I am attempting to do pass-through authentication from an OpenLDAP > server. I would to have debugging logs for all incoming requests. > > Tim What kind of log do you want exactly ? If you want to have some logs about every received message, you can

Re: connection refused on Windows 7

Le 16/02/16 17:30, Timothy Keith a écrit : > The Apache Directory Studio and the server are on the same Windows 7 computer. > The only recent changes were the log4.properties file - attempting to > use DEBUG settings Check that you are connecting on the right port with the correct DN and

Re: logging all incoming requests

Le 19/02/16 03:27, Timothy Keith a écrit : > On Thu, Feb 18, 2016 at 1:40 PM, Timothy Keith > <timothy.g.ke...@gmail.com> wrote: >> On Mon, Feb 15, 2016 at 4:36 PM, Timothy Keith >> <timothy.g.ke...@gmail.com> wrote: >>> On Mon, Feb 15, 2016 at 1:37 PM,

Re: acl in apacheDS

Le 18/03/16 10:06, Peter Jamieson a écrit : > Hi Emmanuel, > > What I want is effectively the peername restriction in openldap acl. > Is it worth me raising an improvement JIRA for this? Definitively. > > Do you think it is something that could be done with a custom interceptor? > Is this

Re: acl in apacheDS

Le 18/03/16 10:41, Peter Jamieson a écrit : >>> Is there a way I can prevent modifications to the directory from all >>> servers except the local one (or a named address)? >> Not really. Protection are based on bound users, not on IP address or >> server's name. Now, if you have the DN of the

Re: acl in apacheDS

Le 18/03/16 11:36, Peter Jamieson a écrit : >> Le 18/03/16 10:41, Peter Jamieson a écrit : > Is there a way I can prevent modifications to the directory from all >> servers except the local one (or a named address)? Not really. Protection are based on bound users, not on IP address or >>

Re: acl in apacheDS

Le 18/03/16 09:23, Peter Jamieson a écrit : > Hi, > > I googled for ACLs in apacheds and got this link: - > > https://directory.apache.org/api/user-guide/5.1-aci-and-acls.html > > I was very excited until I saw the content :) Sorry for that... It really need some love :/ > > Is there a way I can

Re: ApacheDS exception saving configuration

Le 26/03/16 16:00, Richard Sand a écrit : > Hi - I've installed a clean w2k8 VM and installed ApacheDS and > ADStudio. I can bind to both 10389 and 10636 with uid=admin,ou=system > and was able to create my schema extensions. But when I try to do > anything with the configuration, e.g. turning off

Re: ApacheDS with Mavibot anytime soon?

Le 25/03/16 17:21, Ashma Shrestha a écrit : > Carlos, > > Thanks for the help. > > @Emmanuel - I know you have a busy schedule however, is there a timeline to > when we can expect a fix? Currently we are working a system which might > make this scenario of concurrent update and search occur more.

Re: command line commands

Le 03/03/16 23:39, brock samson a écrit : > i am running apacheds 2-m17, and i am trying to run command line commands > such as ldapdelete, ldapadd, etc. how do i go about making those command run > properly from my command line? do i need to set something into the PATH > variable, or reference

Re: command line commands

Le 04/03/16 18:25, brock samson a écrit : > actually i am running in windows. and i obviously cannot run those commands > directly from command line without referencing their definition from some > location. do they perhaps reside within the apacheds-service-2.0.0-m17.jar? I'm sorry, we don't

Re: ADS returns password expired when wrong password provided

Le 31/03/16 20:21, Ezsra McDonald a écrit : > We have ApacheDS configured to expire passwords after a fixed amount of > time. If a user lets their password expire and that user attempts to > authenticate with an *invalid* password, ADS will respond with an error > code related to their password

Re: ldapcontext.reconnect and count of wrong passwords

Le 11/05/16 23:05, Jörg Weule a écrit : > Hallo, > > my server with M21 is locking the account if I use a wrong password > several times with ldapsearch. Unfortunately the counter seems not to be > increased when the ldapcontext is binding with reconnect(null). > > Apache James for example makes

Re: ERR_250_ENTRY_ALREADY_EXISTS

Le 18/05/16 à 13:25, Joel Arula a écrit : > Hi > > I am using embeded aopache ds version 2.0.0-M21 > When setting up clean installation every startup after first one is failing > with > org.apache.directory.api.ldap.model.exception.LdapEntryAlreadyExistsException: > ERR_250_ENTRY_ALREADY_EXISTS

Re: ERR_250_ENTRY_ALREADY_EXISTS

Le 18/05/16 à 15:21, Joel Arula a écrit : > Hi Emmanuel > > Yes indeed. We have prepared customized configuration where there is. > > dn: ads-partitionId=ims,ou=partitions,ads-directoryServiceId=default,ou=config > ads-contextEntry:: >

Re: Apache Directory LDAP API support & documentation

Le 15/05/16 à 14:41, ywies...@bgu.ac.il a écrit : > Hey, > > We want to use your library in our project, but in your website it seems that > there are no new versions from the last half a year The latest version has been released on December, 2015, and we just talking about releasing a 1.0.0

Re: uid=admin,ou=system password expired

Le 03/05/16 18:50, Hal Deadman a écrit : > I have a replicated directory in my dev lab where the admin user has an > expired password on one of the two servers. Since I can't login as admin, > how might I go about resetting the password on that user short of > re-creating the instance? the

Re: Whare are the Nightly Builds for Apache Studio?

Le 09/05/16 18:45, Jim Willeke a écrit : > This older link does not seem to work: > https://cwiki.apache.org/confluence/display/DIRxSTUDIO/Nightly+Builds https://builds.apache.org/view/A-D/view/Directory/job/dir-studio/ Don't abuse it ;-)

Re: uid=admin,ou=system password expired

Le 07/05/16 02:00, Hal Deadman a écrit : > I was able to recreate the issue with a test instance. > > I created a fresh instance of M21 directory using M10 studio. I set > password expiration on password policy to some number, turned off grace > logins, and changed the password of the admin user.

Re: ApacheDS 64-bit Heap Limit

Le 01/08/16 à 10:20, Hakan Çelik a écrit : > Hi team, Hi Hakan, > > We're testing ApacheDS for storing our ~500k customer base. whoa ! It should have take hours to inject all of them ! FTR, we have worked on a bulk loader, but only with the Mavibot partition, which is not yet the default

Re: Active Directory Connect Timeout

Le 04/08/16 à 18:09, Syed Mudassir Ahmed a écrit : > Hi friends, > My Java application interacts with Microsoft Active Directory server using > Java JNDI LDAP API. > My application runs successfully for about an hour connecting to AD > successfully. After about an hour my application fails.

Re: [Studio] Some characters in quick filter are misinterpreted

Le 18/07/16 à 09:46, Stefan Düring a écrit : > hello, > > in Apache Directory Studio (Version: 2.0.0.v20151221-M10) when I > execute a search and try to filter the results via quick filter, some > characters I enter in the filter field are interpreted as shortcuts. > > e.g. > f - the quick filter

Re: ApacheDS issues TGT kerberos ticket with address on IBM java

Le 28/06/16 à 15:44, Martin Choma a écrit : > I have created https://issues.apache.org/jira/browse/DIRSERVER-2156 as you > suggest. There really is address send in TGS-REQ for krbtgt. Can you send the bytes that are sent to the server ? I'd liek to have alook at the content of the message. (you

Re: Installation on Ubuntu

Le 05/07/16 à 13:46, Onno van der Straaten a écrit : > Same thing btw with CentOS, same error message. Indeed. I just tested it, same error. As a workaround, remove line 38 in the /opt/apacheds-2.0.0-M22/conf/wrapper.conf file : # Java Additional Parameters

Re: Uneasy feeling about ApacheDS

Le 08/07/16 à 17:07, Accorsi, Carlo a écrit : > Dear Sir, > We have a production system using ApacheDS that's been running since 2011 > with 80,000+ users. > Emmanuel ,Kiran and the many other contributors have done an amazing job with > this software. Yes, there was a bit of a learning curve

Re: ERR_12005_NO_CHANGE No changes within entries

Le 11/07/16 à 14:36, Claude Libois a écrit : > Hello, > I'm using ApacheDS as embedded LDAP for unit testing. > I'm trying to add some attribute definition through ldif file which > contains: > dn: cn=schema > version: 1 > changetype: modify > add: attributetypes > attributetypes: (

Re: Uneasy feeling about ApacheDS

Le 06/07/16 à 07:15, Onno van der Straaten a écrit : > I'm new to ApacheDS and have been trying to setup a working configuration. > Failing. I am abandoning attempts to use this and will recommending against > using ApacheDS on the project I am currently working on. > > There are too many issues,

Re: Upgrade procedures?

Le 09/08/16 à 00:30, Hal Deadman a écrit : > I have two servers running M21 and replicating to each other. I stopped the > both and replaced the M21 jars with M23 jars and restarted the servers. > They started up but when I connected to the servers I couldn't see any > data. I also saw the

Re: Upgrade procedures?

Le 09/08/16 à 17:05, Hal Deadman a écrit : > I copied over the two new attribute type ldif files from a default m23 > instance to the correct location in my existing instance and replaced the > m21 jars with m23 jars in my existing install and the servers seem to have > started up in working

Re: Upgrade procedures?

Le 09/08/16 à 17:43, Kiran Ayyagari a écrit : > On Tue, Aug 9, 2016 at 8:50 PM, Emmanuel Lécharny <elecha...@gmail.com> > wrote: > >> Le 09/08/16 à 17:05, Hal Deadman a écrit : >>> I copied over the two new attribute type ldif files from a default m23 >>>

Re: Upgrade procedures?

Le 02/08/16 à 01:21, Ezsra McDonald a écrit : > I did some searches for upgrade procedures. Are they posted somewhere? > > Upgrade from M20 to M23 using .bin binary package. Although we haven't changed the underlaying data structure, which means you should just be able to install the new version

Re: [Studio] Java requirements for Studio on OS X

Le 03/08/16 à 23:08, Sean Brown a écrit : > What are the directory requirements for running Directory Studio on OS > X? The download page says a Java runtime environment 7 or later, but > when trying to run the download on OS X 10.11.6 with the latest Oracle > JRE version 8, it complains It has

Re: Index on mail attribute does not work

Le 01/07/16 à 04:25, Ezsra McDonald a écrit : > We had to rebuild our ADS using the plumber and the indexes did not build > right. > > We removed the mail index from the partition and restarted the instance. > Then we added a partition back and started it again. It takes a while but > finally

Re: Installation on Ubuntu

Le 01/07/16 à 12:56, Onno van der Straaten a écrit : > Hi list, > I am new to ApacheDS and I am trying to install it on Ubuntu. I am using > Ubuntu 14.04 and I noticed that ApacheDS does not run on that Linux distro. This is a clear bug introduced by the latest version. Can you create a JIRA, in

Re: Exploring triggers

Le 03/02/2017 à 09:14, Jim Willeke a écrit : > BTW: eDirectory has had LDAP Event Services which allows a client or a > server process to register for events and take an action. > > https://www.novell.com/documentation/developer/ldapover/ldap_enu/data/ag7bleo.html It's a slightly different

Re: Is it possible to use separate kerberos server with ApacheDS ldap server?

Le 07/02/2017 à 08:20, Yu Wei a écrit : > Hi, > > > I setup MIT kerberos server and verified that it worked well. > > Could I use my MIT kerberos server with apacheds ldap server? Why not ? People routinely use OpenLDAP in parallel of a MIT kerberos server. ApacheDS is *just* a plain LDAP

Re: ApacheDS 2.0.0-M23 non-gui adding a partition

Le 02/02/2017 à 15:44, Louis-Gabriel Thibault a écrit : > Hello Brian, > > On Thu, Feb 2, 2017 at 4:04 AM, Brian Burch wrote: > >> As I was using a development server, I decided to purge M23 and start >> again. Before I started the new server for the first time, I edited >>

Re: ApacheDS 2.0.0-M23 non-gui adding a partition

Le 02/02/2017 à 10:04, Brian Burch a écrit : > I have a stable 1.5.4 production directory and felt it was time to > upgrade to 2.0.0. All of my 1.5.4 customisation is done with shell > scripts and ldif files, which I track through source management. > > I was dismayed when the server upgrade

Re: Exploring triggers

Le 02/02/2017 à 17:04, Sathyanarayan, Harish a écrit : > Hi, > > Triggers in ApacheDS seems to be a fascinating topic from an LDAP server > pointof view, though I do not find any specific examples or usages around > that. Please suggest anything that would be worth looking at that is out >

Re: ApacheDS 2.0.0-M23 non-gui adding a partition

Le 02/02/2017 à 16:17, Louis-Gabriel Thibault a écrit : > Hello Emmanuel, > > On Thu, Feb 2, 2017 at 10:08 AM, Emmanuel Lécharny <elecha...@gmail.com> > wrote: > >> That is going to be fixed (don't have a date yet). And I wonder why a >> SIGKILL is sent instead

Re: Exploring triggers

Le 07/02/2017 à 10:56, s_humbi a écrit : > I was playing around a little bit with triggers and stored procedures. > > For me (as beginner) almost everything worked fine, except this big problem > (don't know if it is a bug or if i did something wrong): > If you restart the server, the attribute

Re: ApacheDS 2.0.0-M23 non-gui adding a partition

newlines and spaces are significant. Funny enough, if there is some secial chars in your entry, then they should be base64 encoded *before* the entry can be base64 encoded itself. For instance : dn: cn=lécharny,dc=com ObjectClass: person cn: lécharny sn: Emmanuel Lécharny is not a valid cotext entr

Re: Failed to setup kerberos with ApacheDS [Client not found in Kerberos database]

Le 06/02/2017 à 08:45, Yu Wei a écrit : > Hi Guys, > > I tried to setup kerberos with ApacheDS Studio by following the instruction > https://directory.apache.org/apacheds/kerberos-ug/4.2-authenticate-studio.html. > > I got below errors indicating "Client not found in Kerberos database", This

Re: [LDAP API 1.0.0-RC2] server side sorting control with DSMLv2

Le 30/01/2017 à 20:39, claud...@gmail.com a écrit : > Thx for the patch. (Btw is that an svn patch? Indeed... We probably wil migrate to Git after 2.0. > I was unable to apply it using "git apply" and using "patch -p0" I had > rejects for every file so I had to make most changes manually...)

Re: Full list of supported protocols

Le 01/02/2017 à 17:15, Laurence Blake a écrit : > Hi there, > > We are interested in trying out Apache Directory Studio. Would you be able to > advise a full list of supported protocols by Apache Directory? I guess you mean Apache Director *server*. Currently, it supports LDAP and Kerberos. The

Re: Apache Directory Studio with Kerberos login

Le 25/01/2017 à 01:20, Lamar Hansford a écrit : > Will do thanks! > > Will work through the rest. Thanks A LOT for the JIRA ticket ! -- Emmanuel Lecharny Symas.com directory.apache.org

Re: [LDAP API 1.0.0-RC2] server side sorting control with DSMLv2

Le 30/01/2017 à 11:37, claud...@gmail.com a écrit : > We don't directly send DSML, we have a custom version of Dsmlv2Engine > that uses org.apache.directory.api.dsmlv2.Dsmlv2Parser. The issue only > occurs if we provide the sort control, the code we have is working > otherwise. Yeah, sorry for

Re: [LDAP API 1.0.0-RC2] server side sorting control with DSMLv2

Le 27/01/2017 à 19:13, claud...@gmail.com a écrit : > Thanks for the fix. > > As I wrote initially I had already tried with registering the two > factories and got a ClassCastException. > I tried now with RC3 but as suspected I still get the same > ClassCastException: > >

Re: [LDAP API 1.0.0-RC2] server side sorting control with DSMLv2

Le 27/01/2017 à 14:09, Kiran Ayyagari a écrit : > On Fri, Jan 27, 2017 at 5:46 PM, claud...@gmail.com > wrote: > >> Hi, >> >> I have an application running in an OSGi container that uses the LDAP API >> and DSML parser and I would like to use the server side sorting control.

Re: [LDAP API 1.0.0-RC2] server side sorting control with DSMLv2

I have committed a fix for this problem. Yu might want to rebuild the API and test it. Le 27/01/2017 à 13:16, claud...@gmail.com a écrit : > Hi, > > I have an application running in an OSGi container that uses the LDAP > API and DSML parser and I would like to use the server side sorting >

Re: Apache Directory Studio with Kerberos login

Le 25/01/2017 à 01:13, Lamar Hansford a écrit : > Ok, found this is related to the Server SASL settings in Studio. Is this > expected behavior? Isn't SASL an independent protocol? Two things : - first, the NPE is clarely a bug. We should have detected that the entry was missing, instead of

Re: [LDAP API 1.0.0-RC2] server side sorting control with DSMLv2

va:82) > at > org.apache.mina.filter.codec.ProtocolCodecFilter.filterWrite(ProtocolCodecFilter.java:299) > > I have the feeling that some link between DSML and codec is missing > for the (sort) control... > > On 27/01/17 15:38, Emmanuel Lécharny wrote: >> I have committed a f

Re: starting apacheDS embedded instance with SSL support

Le 27/01/2017 à 23:06, Sathyanarayan, Harish a écrit : > Hi, > > I am running an embedded ApacheDS instance with SSL using the below code but > am getting SSL handshake error, what am I missing? Pls advice.. thanks What is the handshake error you get ? have you tried runing the server using

Re: Disabling SSLv3 Issues

Hi, what version are you using ? What Java version are you using ? Do you have any log on the server ? Le 21/02/2017 à 21:54, Lemp, Dustin a écrit : > Hey all, > I have a question and hope that someone here can help me out. I'm trying to > disable sslv3 on my openldap server. I'm adding

Re: Upgrading ApacheDS

Le 20/02/2017 à 16:20, Mike Davis a écrit : > We're currently running apacheds-2.0.0-M20 and would like to upgrade to > apacheds-2.0.0-M23. I'm not finding any specifics on an upgrade versus a > clean installation. Is there an upgrade process, or do we install the new > version and migrate data

Re: Multiple ObjectClasses and attributes

Sure you can. Just select the import from OpenLDAP format, and pick the file containing your definitions. Note that the syntex is slightly different : each At and OC has to be prefixed by 'attributeType' and 'ObjectClass', like in : attributetype ( 1.2.826.0.1268.1.0.1 NAME 'TESTSCHEMAVERSION20'

Re: Transferring an entire directory from one server to another

Le 09/02/2017 à 01:49, Steve Sobol - Lobos Studios a écrit : > Good afternoon > > I'm using Studio (on Windows 10) to create a directory tree and do some > local testing of a Java app I'm writing. I'm eventually going to want to > copy the tree over to an ApacheDS server which will run on Ubuntu

Re: Embedded ApacheDS

Le 09/02/2017 à 16:18, Cyril FILLON a écrit : > Hi all, > > > I am trying to setup an embedded ApacheDS 2.0.0-M23 server from my java code, > snippet is given below. > > I tried to create a new partition, but unfortunately it fails miserably since > I cannot see this partition from ApacheDS

Re: user modification/deletion of operational attributes

Le 17/01/2017 à 15:36, Mike Davis a écrit : > I have set up a special user that has rights to modify details of another > user. This prevents the need for our applications to log in as the admin > user, while still allowing password resets and such. > > > > I'd like to give that user rights to

Re: Failed to setup kerberos with Apache DS

Le 17/01/2017 à 10:19, Yu Wei a écrit : > I used openjdk-1.8.0 and installed jce. > > [dcos@mesos-ds security]$ pwd > /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.111-2.b15.el7_3.x86_64/jre/lib/security > [dcos@mesos-ds security]$ ls -al > total 64 > drwxr-xr-x. 2 root root 4096 1月 17 17:00 . >

<    1   2   3   4   5   6   7   8   9   >