Re: Help with applying ldif

Le 23/10/15 01:07, Jim Willeke a écrit : > Why not use a search like: > (&(objectClass=groupOfNames)(member=cn=user2,ou=People,dc=example,dc=com)) Yeah, way simpler. I totally overlooked the initial question, focusing on "relies on an attribute being set on the user entry to that maps to a group

Re: Claims based authentication with ApacheDS

Le 27/10/15 16:16, carlo.acco...@ibs-ag.com a écrit : > Hi, > > We're starting to hear our customers ask for 'claims based authentication' > with our product which back end with ApacheDS. > I've researched it a bit and it's clearly beyond the goals of an LDAP server. > My question is, are any of

Re: Vulnerability in apache-commons-collections 3.2.1

Le 19/11/15 17:41, Kiran Ayyagari a écrit : > On Fri, Nov 20, 2015 at 12:37 AM, wrote: > >> >> Hi, >> >> We have a customer that's concerned about a reported vulnerability with >> commons-collections. >> >> The collections jar (I believe) is a runtime dependency for the ApacheDS >> api. The binary

Re: [ApacheDS] Bind with hashed password

Le 08/12/15 12:09, M. P. a écrit : > Hi all, > > I'm working for a new company for some months now and I have as a > project to renew our directory server. The company uses ApacheDS 1.5.7 > and I have a question about it's behaviour. Pretty old. Switch to the latest version as fast as possible ! >

Re: [ApacheDS] Bind with hashed password

Le 08/12/15 15:48, M. P. a écrit : > >> >> Hope you can explain that to your application developpers... > > I started to explain them that it should not be done the way it is > done now. I can provide them a newer version of the directory, more > secure, but like I said before, they use this behavi

Re: [ApacheDS] Bind with hashed password

Le 09/12/15 11:32, M. P. a écrit : > Le 2015-12-08 16:22, Emmanuel Lécharny a écrit : >> >>> When searching for an explanation, I saw that there are interceptors >>> in apacheDS and as a supposition, maybe playing with them allows >>> apacheDS to accept the

Re: DHCPOption problem

Le 15/12/15 16:40, Sherman Lilly a écrit : > I am trying to Apache Directory server for a DHCP backend. I have got a lot > of it working but I have hit wall and need help. I am trying to add an > attribute the "dhcpOption". When I try to add it, it ask for a binary value > but I don't how to add it

Re: DHCPOption problem

Le 15/12/15 19:18, Sherman Lilly a écrit : > Can I do it with Apache Directory Studio Yes. You can associate the dhcpOption Attribute to an editor that allows you to set its value. Check in the Preferences.

Re: disable password policy for admin

Le 18/12/15 00:02, Ezsra McDonald a écrit : > How do you prevent the Admin user's password from expiring? We would like > to have that user ignore the policy. > This has been fixed recently : https://issues.apache.org/jira/browse/DIRSERVER-2084 We still have to release 2.0.0-M21 (something I'm cu

Re: disable password policy for admin

Le 18/12/15 00:52, Ezsra McDonald a écrit : > Is there a way to apply a new password policy that does not enforce > password aging? I am trying to add the pwdPolicySubEntry attribute to a > user using the Directory Studio but no luck so far. from te top of my head, if you use 0 as the value, it's

Re: Customised passwordValidator doesn't take effect

Le 28/12/15 19:03, NIEROBBY a écrit : > > > I am trying to customize passwordValidator but it is not working. > > What I did: > > 1) Create a new class inherited from PasswordValidator ( Just copy > DefaultPasswordValidator and did some changes ) That's the way to go. > 2) First, I tried to put t

Re: Use apacheDS LDAP server with Freeradius

Le 20/01/16 18:32, Blangille Denis a écrit : > Hello list, > > i would like to know if there exist some incompatibility between ApacheDS > LDAP server (M20 version) > and Freeradius (3.0.4 version). There is no reason it should not work. You just will have to load the radius schema into ApacheDS,

Re: DHCP using Apache directory server

Le 20/01/16 23:16, Stefan Seelmann a écrit : > On 01/19/2016 02:46 PM, Sherman Lilly wrote: >> I have got my schemas installed and working and the directory server is >> working properly. I am trying to add a value to "dhcpOption" and it will >> only accept a binary value. I figured out the value h

Re: Apache Directory Studio getting "stuck" on opening LDAP connection login

Le 21/01/16 10:02, Philip Colmer a écrit : > This is really weird ... switching back to LDAP API now works *and* > ADS is able to display the default schema, which wasn't working > yesterday. > > BTW, it is OpenLDAP that I'm connecting to and, yes, it is via LDAPS. FTR, Radovan detected a bug in t

Re: Apache Directory Studio getting "stuck" on opening LDAP connection login

Le 25/01/16 09:50, Philip Colmer a écrit : > Hi Stefan > > I've managed to get a thread dump for you. Ok, many thanks. That confirms what has been found last week by Radovan : there is a bug in the SslHandler class, and it causes an infinite loop. The bug is now fixed, and we will release shortl

Re: incorrect pattern ?

Le 25/01/16 19:44, Blangille Denis a écrit : > Hello, Hi, > > How can i verify if a imported pattern is correct ? This is to link apacheds > and freeradius server. > Is a pattern for openldap works with apacheds ? Because freeradius server > provides this pattern. Can you be a bit more explicit

Re: incorrect pattern ?

Le 26/01/16 09:10, Blangille Denis a écrit : > Hello, > > i'm sorry to be incomprehensible. > > When i talk about 'pattern', this is apacheds schema's. What LDAP schema are you using ? In any case, with Studio, you should be able to connect on the server and check the loaded schemas, to see if th

Re: Rebooted ApacheDS M2 getting invalid type 31

Le 27/01/16 22:44, steve.hamm...@oracle.com a écrit : > Everything was working for months. > Then search stopped working, so I thought I would resstart apache ds. > > How can I get my system back to running? Corupted database :/ Either you have a backup, or you might want to test an experimental

Re: DHCP using Apache directory server

Le 28/01/16 14:50, Sherman Lilly a écrit : > Adding the above ldif resulted in the server not able to start. Running > server in console mode shows this error. > > ERR_134 Cannot deserialize the entry : ERR_04269 ATTRIBUTE_TYPE for OID > 2.16.840.1.113719.1.203.4.19 does not exist! Yes, you need t

Re: DHCP using Apache directory server

Le 28/01/16 15:46, Sherman Lilly a écrit : > How to do I do that? Assuming that you have a backup of your database content in a LDIF format, just delete the existing data from your disk (/instance//partitions/) Typically, on my linux box : /opt/apacheds-2.0.0-M22-SNAPSHOT/instances/default/parti

Re: DHCP using Apache directory server

Le 29/01/16 00:45, Sherman Lilly a écrit : > I haven't installed any relevant data that is important. So deleting the > database is not important but how do I start a new and make that > modification to the dhcp schema and the server startup properly. Since it > wasn't working I did load any data y

Re: Password policy

Le 29/01/16 02:26, akary...@yahoo.gr a écrit : > Hi, > I'd like to enforce some rules for password values (such as use of at least 2 > capitals, 1 number, 1 symbol, etc). Is it possible to do this with > configuration in the server? I've seen the password policy view in Apache > Directory Studio

Re: DHCP using Apache directory server

Le 01/02/16 14:53, Sherman Lilly a écrit : > OK. I have blanked out the data and restarted the server. The server starts > up fine now. Now anytime I try to add a dhcp shema definition I get an > error. > > ERR_04269 ATTRIBUTE_TYPE for OID dhcpserverdn does not exist! This attribute is not defined

Re: DHCP using Apache directory server

Le 01/02/16 17:32, Sherman Lilly a écrit : > Sorry for the typo. I have to type what I see. Copy and paste isn't working. > > When you set object Class dhcpserver it requires the attribute > dhcpservicedn. It should be present. Is the DHCP schema enabled ?

Re: DHCP using Apache directory server

Le 01/02/16 20:22, Sherman Lilly a écrit : > Remember from previous post that I modified the dhcp schema to fix a > attribute description bug. But when I create the attribute it is list in > the drop down list when I select it. Also when I load the schema in a > schema browser it shows up. Studio

Re: add new attribute via LDIF file

Le 06/02/16 23:34, Timothy Keith a écrit : > How can I add a new attribute through an LDIF file ? > > For this DN I would like to add a new attribute "telephoneNumber" with a > value. > > DN: uid=tkeith,ou=users,ou=system > > > Tim Use ldapmodify (http://www.tldp.org/HOWTO/LDAP-HOWTO/utilities.ht

Re: add new attribute via LDIF file

Le 07/02/16 05:19, Timothy Keith a écrit : > I was wanting to use the Studio. Just import your ldif, if you want to use studio. Right click on the connection and select 'import-> LDIF import'

Re: FW: Apache Directory Studio v2.0.0.v20130628 (32-bit)

Sorry, but the attachement was removed by teh Apache mail system. Can you create a JIRA and attach the logs ? Le 10/02/16 12:52, Winder, Michael a écrit : > I have been asked to forward my query onto this email address. > > > > Regards > > > > Michael Winder, QA Specialist > International Fi

Re: Transactions on Apache Mavibot

Le 10/02/16 14:51, Roman Pastore a écrit : > Hello everyone, > I've been using Apache Mavibot lately to see if it would fit with a project > that I have in mind. For this project I need to be able to manage the > transactions made in the BTree. I saw that you provided beginTransaction() > and commi

Re: Transactions on Apache Mavibot

/www.asanteit.com/> Sarmiento > 1758 ǀ 4to piso ǀ Buenos Aires ǀ Argentina > Phone: +54 11 5272 1422 > Email: rpast...@asanteit.com.ar ǀ Skype: > romanpastore > Software Developer > > > 2016-02-10 11:15 GMT-03:00 Emmanuel Lécharny : > >> Le 10/02/16 14:51, Roman

Re: Client API hangs spinning in MINA code, eating 100% CPU

Le 11/02/16 17:34, Maxim Solodovnik a écrit : > Maybe MINA need to be updated to latest version? > I believe they have fixed something like this recently Indeed. I'm currently working hard on getting a new release of the LDAP API to include the latest MINA build (and I may even have to get MINA 2

Re: logging all incoming requests

Le 15/02/16 18:55, Timothy Keith a écrit : > I am attempting to do pass-through authentication from an OpenLDAP > server. I would to have debugging logs for all incoming requests. > > Tim What kind of log do you want exactly ? If you want to have some logs about every received message, you can mo

Re: connection refused on Windows 7

Le 16/02/16 17:30, Timothy Keith a écrit : > The Apache Directory Studio and the server are on the same Windows 7 computer. > The only recent changes were the log4.properties file - attempting to > use DEBUG settings Check that you are connecting on the right port with the correct DN and password.

Re: logging all incoming requests

Le 19/02/16 03:27, Timothy Keith a écrit : > On Thu, Feb 18, 2016 at 1:40 PM, Timothy Keith > wrote: >> On Mon, Feb 15, 2016 at 4:36 PM, Timothy Keith >> wrote: >>> On Mon, Feb 15, 2016 at 1:37 PM, Emmanuel Lécharny >>> wrote: >>> It would first

Re: ApacheDS and commons.io 2.5

Le 22/02/16 23:17, Accorsi, Carlo a écrit : > Hi Folks, > > Wondering if the next drop of Apache DS can include and updated dependency > for commons-io 2.5 ? > Security conscious customer is asking us.. > https://issues.apache.org/jira/browse/IO-487 > > > Let me know and I'll create a JIRA if nee

Re: Get the count of matching results for a search

Le 25/02/16 14:18, Pushpalanka Jayawardhana a écrit : > Hi All, > > ​This is regarding getting the count of matching results for a LDAP search > we execute.​ > ​I found this [1] posted in 2013, which says A > pacheDs does not support numSubordinates > ​.​ > Is this still valid or, do we have a way

Re: StartTLS enforced

Le 25/02/16 16:33, s_humbi a écrit : > Hello,does anybody know, if there is a way to force the ldap-client to use > StartTLS ? I dont wont to offer our ldap-clients an unsecure way to talk with > our LDAP-Server. > Yes I can disable the default-Port 389 and only enable the SSL-Port 636.But > the

Re: StartTLS enforced

Le 25/02/16 17:59, Ogg a écrit : > I also would be interested in the feature. It, would also be interesting to > deprecate TLS 1.0, TLS 1.1 and SSL any flavor. You can actually prohibit the use of ancient versions of SSL/TLS. We have added some parameter to do that : ads-enabledProtocols. For in

Re: StartTLS enforced

Le 25/02/16 18:25, Ogg a écrit : > sure, i was aware of this feature, however it would be nice to see a roadmap > to have those insecure versions actually removed from apacheDS, eg promote > better security choices by not offering obviously broken protocols. It would be good if they were banned

Re: StartTLS enforced

Le 25/02/16 22:53, Stefan Seelmann a écrit : > On 02/25/2016 05:56 PM, Emmanuel Lécharny wrote: >> Le 25/02/16 16:33, s_humbi a écrit : >>> Hello,does anybody know, if there is a way to force the ldap-client to use >>> StartTLS ? I dont wont to offer our ldap-clie

Re: Get the count of matching results for a search

Le 26/02/16 11:34, Jim Willeke a écrit : > numberSuborinates is not (at least what I have seen) used to show the > number of results, but rather the count of entries within a container entry. True. > > Often organizations need to know how many entries are present within a > directory or container

Re: Get the count of matching results for a search

Le 26/02/16 13:11, Lothar Haeger a écrit : > Emmanuel Lécharny wrote: > >>> Often organizations need to know how many entries are present within a >>> directory or container for audit purposes of security, legal, billing or >>> other purposes. >> Ok, wh

Re: StartTLS enforced

Le 26/02/16 17:01, s_humbi a écrit : > OK. I tested:Setting the value of attribute ads-confidentialityRequired to > TRUE and restart the server, > This attribute is present in the entry > ads-serverId=ldapServer,ou=servers,ads-directoryServiceId=default,ou=config > And yes! It is working!--> I c

Re: command line commands

Le 03/03/16 23:39, brock samson a écrit : > i am running apacheds 2-m17, and i am trying to run command line commands > such as ldapdelete, ldapadd, etc. how do i go about making those command run > properly from my command line? do i need to set something into the PATH > variable, or reference

Re: command line commands

Le 04/03/16 18:25, brock samson a écrit : > actually i am running in windows. and i obviously cannot run those commands > directly from command line without referencing their definition from some > location. do they perhaps reside within the apacheds-service-2.0.0-m17.jar? I'm sorry, we don't of

Re: Directory Studio: Backslash in DN breaks studio

Le 09/03/16 18:54, Philip Peake a écrit : Can you be a bit more explicit ?

Re: Directory Studio: Backslash in DN breaks studio

Le 10/03/16 22:58, Stefan Seelmann a écrit : > On 03/09/2016 07:59 PM, Emmanuel Lécharny wrote: >> Le 09/03/16 18:54, Philip Peake a écrit : >> Can you be a bit more explicit ? >> > Probably same cause as in > https://issues.apache.org/jira/browse/DIRSTUDIO-1087 and

Re: acl in apacheDS

Le 18/03/16 10:06, Peter Jamieson a écrit : > Hi Emmanuel, > > What I want is effectively the peername restriction in openldap acl. > Is it worth me raising an improvement JIRA for this? Definitively. > > Do you think it is something that could be done with a custom interceptor? > Is this detail

Re: acl in apacheDS

Le 18/03/16 10:41, Peter Jamieson a écrit : >>> Is there a way I can prevent modifications to the directory from all >>> servers except the local one (or a named address)? >> Not really. Protection are based on bound users, not on IP address or >> server's name. Now, if you have the DN of the ser

Re: acl in apacheDS

Le 18/03/16 11:36, Peter Jamieson a écrit : >> Le 18/03/16 10:41, Peter Jamieson a écrit : > Is there a way I can prevent modifications to the directory from all >> servers except the local one (or a named address)? Not really. Protection are based on bound users, not on IP address or >> s

Re: acl in apacheDS

Le 18/03/16 09:23, Peter Jamieson a écrit : > Hi, > > I googled for ACLs in apacheds and got this link: - > > https://directory.apache.org/api/user-guide/5.1-aci-and-acls.html > > I was very excited until I saw the content :) Sorry for that... It really need some love :/ > > Is there a way I can p

Re: ApacheDS with Mavibot anytime soon?

Le 25/03/16 17:21, Ashma Shrestha a écrit : > Carlos, > > Thanks for the help. > > @Emmanuel - I know you have a busy schedule however, is there a timeline to > when we can expect a fix? Currently we are working a system which might > make this scenario of concurrent update and search occur more. N

Re: ApacheDS exception saving configuration

Le 26/03/16 16:00, Richard Sand a écrit : > Hi - I've installed a clean w2k8 VM and installed ApacheDS and > ADStudio. I can bind to both 10389 and 10636 with uid=admin,ou=system > and was able to create my schema extensions. But when I try to do > anything with the configuration, e.g. turning off

Re: PoolableLdapConnectionFactory removed in API 1.0.0-M25?

Le 26/03/16 16:04, Richard Sand a écrit : > Hi all - I noticed that PoolableLdapConnectionFactory was removed in > Directory API 1.0.0-M25. Was this intentional? Is there a replacement? > Thanks! It has been renamed DefaultPoolableLdapConnectionFactory

Re: ADS returns password expired when wrong password provided

Le 31/03/16 20:21, Ezsra McDonald a écrit : > We have ApacheDS configured to expire passwords after a fixed amount of > time. If a user lets their password expire and that user attempts to > authenticate with an *invalid* password, ADS will respond with an error > code related to their password bei

Re: uid=admin,ou=system password expired

Le 03/05/16 18:50, Hal Deadman a écrit : > I have a replicated directory in my dev lab where the admin user has an > expired password on one of the two servers. Since I can't login as admin, > how might I go about resetting the password on that user short of > re-creating the instance? the uid=ad

Re: uid=admin,ou=system password expired

Le 07/05/16 02:00, Hal Deadman a écrit : > I was able to recreate the issue with a test instance. > > I created a fresh instance of M21 directory using M10 studio. I set > password expiration on password policy to some number, turned off grace > logins, and changed the password of the admin user. I

Re: Whare are the Nightly Builds for Apache Studio?

Le 09/05/16 18:45, Jim Willeke a écrit : > This older link does not seem to work: > https://cwiki.apache.org/confluence/display/DIRxSTUDIO/Nightly+Builds https://builds.apache.org/view/A-D/view/Directory/job/dir-studio/ Don't abuse it ;-)

Re: ldapcontext.reconnect and count of wrong passwords

Le 11/05/16 23:05, Jörg Weule a écrit : > Hallo, > > my server with M21 is locking the account if I use a wrong password > several times with ldapsearch. Unfortunately the counter seems not to be > increased when the ldapcontext is binding with reconnect(null). > > Apache James for example makes fi

Re: Apache Directory LDAP API support & documentation

Le 15/05/16 à 14:41, ywies...@bgu.ac.il a écrit : > Hey, > > We want to use your library in our project, but in your website it seems that > there are no new versions from the last half a year The latest version has been released on December, 2015, and we just talking about releasing a 1.0.0 fin

Re: ERR_250_ENTRY_ALREADY_EXISTS

Le 18/05/16 à 13:25, Joel Arula a écrit : > Hi > > I am using embeded aopache ds version 2.0.0-M21 > When setting up clean installation every startup after first one is failing > with > org.apache.directory.api.ldap.model.exception.LdapEntryAlreadyExistsException: > ERR_250_ENTRY_ALREADY_EXISTS

Re: ERR_250_ENTRY_ALREADY_EXISTS

Le 18/05/16 à 15:21, Joel Arula a écrit : > Hi Emmanuel > > Yes indeed. We have prepared customized configuration where there is. > > dn: ads-partitionId=ims,ou=partitions,ads-directoryServiceId=default,ou=config > ads-contextEntry:: > ZG46IGRjPWltcyxkYz1wbGF5dGVjaCxkYz1jb3JwCm9iamVjdGNsYXNzOiBkb

Re: Command Line tools?

Le 08/06/16 à 09:43, Peter Jamieson a écrit : >> -Original Message- >> From: Jim Willeke [mailto:j...@willeke.com] >> Sent: 07 June 2016 14:20 >> To: users@directory.apache.org >> Subject: Command Line tools? >> >> Are command line tools like ldapsearch included with the directory install >

Re: ApacheDS replication

Le 08/06/16 à 10:55, Peter Jamieson a écrit : > Hi, > > I've had the occasional issue with changes I make on one side of apacheDS not > being replicated. > > Is there a way of forcing a synchronization? Hmmm, not that I know of. Once replication is setup, it's supposed to cacth up. I it's not, it

Re: Move ADS to new location on disk

Le 09/06/16 à 15:47, Ezsra McDonald a écrit : > RE: ADS M20 > > We need to move our ADS instance to a different location on storage. Is > there a simple way to do this? I tried but the instance won't start after > moving it. I do not see any errors in the logs. What is your OS ? Have you used the

Re: Move ADS to new location on disk

Le 09/06/16 à 17:18, Ezsra McDonald a écrit : > Good question, sorry > > The OS is Enterprise Linux. > > I used the apacheds-2.0.0-M20-64bit.bin installer. The directories teh server is using are described in http://directory.apache.org/apacheds/advanced-ug/2.2-instance-layout.html Data will be s

Re: Move ADS to new location on disk

Le 10/06/16 à 00:13, Ezsra McDonald a écrit : > I found a wrapper.log in /opt/ApacheDS/opt/bin > > STATUS | wrapper | 2016/06/08 16:57:41 | --> Wrapper Started as Daemon > STATUS | wrapper | 2016/06/08 16:57:41 | Launching a JVM... > ERROR | wrapper | 2016/06/08 16:57:41 | JVM exited while load

Re: ApacheDS issues TGT kerberos ticket with address on IBM java

Le 28/06/16 à 07:45, Martin Choma a écrit : > Hi, > > ApacheDS issues TGT kerberos ticket with address on IBM java , even if > noaddresses = true is explicitelly set in krb5.conf. This is not an Kerberos flag, it's an indication for the kerberos client to not send an address to the server, AFAICT.

Re: ApacheDS issues TGT kerberos ticket with address on IBM java

Le 28/06/16 à 15:44, Martin Choma a écrit : > I have created https://issues.apache.org/jira/browse/DIRSERVER-2156 as you > suggest. There really is address send in TGS-REQ for krbtgt. Can you send the bytes that are sent to the server ? I'd liek to have alook at the content of the message. (you ca

Re: Index on mail attribute does not work

Le 01/07/16 à 04:25, Ezsra McDonald a écrit : > We had to rebuild our ADS using the plumber and the indexes did not build > right. > > We removed the mail index from the partition and restarted the instance. > Then we added a partition back and started it again. It takes a while but > finally start

Re: Installation on Ubuntu

Le 01/07/16 à 12:56, Onno van der Straaten a écrit : > Hi list, > I am new to ApacheDS and I am trying to install it on Ubuntu. I am using > Ubuntu 14.04 and I noticed that ApacheDS does not run on that Linux distro. This is a clear bug introduced by the latest version. Can you create a JIRA, in t

Re: in memory BTree performance

Le 05/07/16 à 02:16, robert geiger a écrit : > Using a simple test to evaluate BTree vs. ConcurrentSlipListMap, creating the > BTree as follows: > > BTree btree = new BTreeFactory().createInMemoryBTree( "test", > new StringSerializer(StringComparator.INSTANCE), new > ByteArraySerializer(ByteArra

Re: Installation on Ubuntu

Le 05/07/16 à 13:46, Onno van der Straaten a écrit : > Same thing btw with CentOS, same error message. Indeed. I just tested it, same error. As a workaround, remove line 38 in the /opt/apacheds-2.0.0-M22/conf/wrapper.conf file : # Java Additional Parameters wrapper.java.additional.1=-Dlog4j.conf

Re: Uneasy feeling about ApacheDS

Le 06/07/16 à 07:15, Onno van der Straaten a écrit : > I'm new to ApacheDS and have been trying to setup a working configuration. > Failing. I am abandoning attempts to use this and will recommending against > using ApacheDS on the project I am currently working on. > > There are too many issues, i

Re: Uneasy feeling about ApacheDS

Le 08/07/16 à 17:07, Accorsi, Carlo a écrit : > Dear Sir, > We have a production system using ApacheDS that's been running since 2011 > with 80,000+ users. > Emmanuel ,Kiran and the many other contributors have done an amazing job with > this software. Yes, there was a bit of a learning curve a

Re: Wildcard in the midlle of a filter string not working

Le 11/07/16 à 12:24, Claude Libois a écrit : > Hello, > I'm using ApacheDS as an embedeed server for unit testing in java. It works > great except except when I'm doing a filter with a wildcard in the middle > such as (uniqueMember=uid=%u,*,ou=Users,o=XX,dc=XX,dc=be). > With the reald LDAP it works

Re: ERR_12005_NO_CHANGE No changes within entries

Le 11/07/16 à 14:36, Claude Libois a écrit : > Hello, > I'm using ApacheDS as embedded LDAP for unit testing. > I'm trying to add some attribute definition through ldif file which > contains: > dn: cn=schema > version: 1 > changetype: modify > add: attributetypes > attributetypes: ( 1.3.6.1.4.1.180

Re: [Studio] Some characters in quick filter are misinterpreted

Le 18/07/16 à 09:46, Stefan Düring a écrit : > hello, > > in Apache Directory Studio (Version: 2.0.0.v20151221-M10) when I > execute a search and try to filter the results via quick filter, some > characters I enter in the filter field are interpreted as shortcuts. > > e.g. > f - the quick filter d

Re: org.apache.kerby artifacts are not in Google Maven Central Mirror

Le 23/07/16 à 01:41, John Zhuge a écrit : > Hi all, > > I can not find "org.apache.kerby:kerb-simplekdc:jar:1.0.0-RC2" with > the following Maven settings: > > > > google-maven-central > Google Maven Central > https://maven-central.storage.googleapis.com > central >

Re: ApacheDS 64-bit Heap Limit

Le 01/08/16 à 10:20, Hakan Çelik a écrit : > Hi team, Hi Hakan, > > We're testing ApacheDS for storing our ~500k customer base. whoa ! It should have take hours to inject all of them ! FTR, we have worked on a bulk loader, but only with the Mavibot partition, which is not yet the default partition

Re: Upgrade procedures?

Le 02/08/16 à 01:21, Ezsra McDonald a écrit : > I did some searches for upgrade procedures. Are they posted somewhere? > > Upgrade from M20 to M23 using .bin binary package. Although we haven't changed the underlaying data structure, which means you should just be able to install the new version o

Re: [Studio] Java requirements for Studio on OS X

Le 03/08/16 à 23:08, Sean Brown a écrit : > What are the directory requirements for running Directory Studio on OS > X? The download page says a Java runtime environment 7 or later, but > when trying to run the download on OS X 10.11.6 with the latest Oracle > JRE version 8, it complains It has pro

Re: Active Directory Connect Timeout

Le 04/08/16 à 18:09, Syed Mudassir Ahmed a écrit : > Hi friends, > My Java application interacts with Microsoft Active Directory server using > Java JNDI LDAP API. > My application runs successfully for about an hour connecting to AD > successfully. After about an hour my application fails. W

Re: Upgrade procedures?

Le 09/08/16 à 00:30, Hal Deadman a écrit : > I have two servers running M21 and replicating to each other. I stopped the > both and replaced the M21 jars with M23 jars and restarted the servers. > They started up but when I connected to the servers I couldn't see any > data. I also saw the followin

Re: Upgrade procedures?

Le 09/08/16 à 17:05, Hal Deadman a écrit : > I copied over the two new attribute type ldif files from a default m23 > instance to the correct location in my existing instance and replaced the > m21 jars with m23 jars in my existing install and the servers seem to have > started up in working order.

Re: Upgrade procedures?

Le 09/08/16 à 17:43, Kiran Ayyagari a écrit : > On Tue, Aug 9, 2016 at 8:50 PM, Emmanuel Lécharny > wrote: > >> Le 09/08/16 à 17:05, Hal Deadman a écrit : >>> I copied over the two new attribute type ldif files from a default m23 >>> instance to the correct loc

Re: [Studio] Apache Directory Studio can't discover base dn for old Sun DS server [SEC=UNCLASSIFIED]

Le 19/08/16 à 05:04, Joel Pearson a écrit : > I'm using Apache Directory Studio (2.0.0.v20151221-M10) as an ldap browser, > and a few years back Apache Directory Studio stopped being able to discover > the Base DN of a particular (old) Sun Directory Server we have. > > I found this question > (h

Re: RFC 2696 and total entries in the search result

Le 19/09/16 à 12:12, Doan Tin Nghia a écrit : > I could not obtain total entries in the search result. The 'size' value in > PageResults Control was always zero. Seems the API is not following RFC > 2696. It does fllow teh RFC, which says : "the size MAY be set to the server's estimate of the

Re: RFC 2696 and total entries in the search result

Le 21/09/16 à 06:40, Doan Tin Nghia a écrit : > Hi Emmanuel, > > Is there any way to configure that calculation at server side ? An option would be to write a new interceptor that would be added at the very beginning of the chain, in order to gather all the results in memory before sending them. A

Re: RFC 2696 and total entries in the search result

Le 22/09/16 à 10:42, Doan Tin Nghia a écrit : > Thanks. I need it for paging (same issue like > https://sourceforge.net/p/ldap-sdk/mailman/message/29370418/) Ok, but let me ask you aain : why do you technically need to know how many entries you will get ? This information is totally spurious, unl

Re: RFC 2696 and total entries in the search result

Le 22/09/16 à 13:44, Richard Sand a écrit : > I think it's to have the web page say "showing 20 results" and links for > "page 2, page 3" etc.? I think so, too, but this is totally wrong to do that this way.

Re: RFC 2696 and total entries in the search result

Le 22/09/16 à 14:18, Richard Sand a écrit : > Ok, what is the proper technique then? always pull at least one element than the number you can store in one page : that will tell you if you will have a next page or not. This save CPU on the server, a lot of CPU. Actually, getting the number of resu

Re: RFC 2696 and total entries in the search result

Le 22/09/16 à 14:44, Richard Sand a écrit : > Ok so basically do not pre-populate the number of pages. > > I guess applications that do this are backed by an RDBMS not an LDAP? That is the exact same problem witha RDBMS, as I said in a previous response. In order to know how much elements you wil

Re: RFC 2696 and total entries in the search result

Le 22/09/16 à 16:28, Richard Sand a écrit : > Makes sense, thanks for the explanation. But for smaller directories > where we know there aren't large volumes of entries (say, less than > 1000 objects) and we want to do this operation, it should be possible, > so long as we understand the risks and

Re: [Studio] Apache Directory Studio not able to authenticate using GSSAPI (Kerberos)

Le 30/09/16 à 00:38, Ali, Saqib a écrit : > I have a Ubuntu machine that is configured SSSD for Authentication to > Active Directory Kerberos Domain. > > The Kerberos setup works well on this machine. No issues accessing AD > protected File Shares. > > However when I try to configure Apache Directo

Re: Disabling weak ciphers

Le 04/10/16 à 18:54, Sean Kelly a écrit : > Folks: > > My network security team is threatening to block access to our > ApacheDS-2.0.0-M20 instance, citing weak ciphers like RC4 in use on > our port 636. > > Here's the list of ciphers I have enabled in the config: > > ads-enabledciphers: TLS_ECDHE_

Re: Disabling weak ciphers

Le 05/10/16 à 15:44, Sean Kelly a écrit : > Emmanuel Lécharny wrote: >> Which java version are you using ? >> >> RC4 is now disabled by default from Java 8u51, 7u85 and 6u101 >> (https://blogs.oracle.com/coffeys/entry/jdk_and_use_of_rc4). > We're using Java

Re: [ApacheDS | LDAP API] changing expired passwords

Hi ! Le 01/11/16 à 22:03, Mike Davis a écrit : > I've run into an issue with either Apache DS or the Apache LDAP API, or > both. > > > > Here's the scenario. > > > > I have a user whose password is expired. I want to force the user to > change their password. However, I can't distinguish bet

Re: [Site] Documentation Page Returns 404

Le 05/11/16 à 17:04, Andrew Grossnickle a écrit : > Hello, > > Just wanted to let you know that one of the pages on your documentation is > returning a 404. Link: > http://directory.apache.org/apacheds/2.3.2-enabling-schema.html >

Re: config ApacheDS as dns server

Le 08/11/16 à 10:02, ireflux a écrit : > hi all, > I want to config ApacheDS as dns server, but failed to find info in the > user guide, may anyone tell me where to find it or just turn to the old > versions? The ApacheDNS Server was just a demonstrator, and has been desactivated for a

<    2   3   4   5   6   7   8   9   10   >