Rich,
access log on the 389 machine? what version of 389-ds-base? what platform?
It doesn't look like the AD server has ever shown up in the access log so I
imagine this is purely a passsync issue.
We are running Windows Server 2008 R2. My hunch is that UAC is messing this
up. When I
2008
DC (that was de-commissioned) previously.
Thanks,
Aaron Hagopian
--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
If you do an ldapsearch does it show the same? My first thought is that
replication doesn't seem to be working properly.
2011/9/6 Dan H. Eicher d...@cise.ufl.edu
**
Synopsis: getent passwd {user} works on secondary and primary server,
getent passwd fails (does not return all users) on
http://directory.fedoraproject.org/wiki/Howto:ResetDirMgrPassword
2011/8/22 Brant Hohnstein brant.hohnst...@returnpath.net
Is there a procedure (however cumbersome) to reset the Management Console
(admin) password if the password is not currently known?
** **
I changed the admin
Thank you, I was able to install 1.2.9 from the testing repo.
On Mon, Aug 8, 2011 at 9:49 AM, Rich Megginson rmegg...@redhat.com wrote:
**
On 08/05/2011 12:36 PM, Aaron Hagopian wrote:
Rich,
Trying to install 389-ds-base from your repo on SL 6.1 x86_64 and
getting:
$ sudo yum install
/repos/refpolicy/
License : GPLv2+
Description : SELinux Reference policy targeted base module.
My selinux policy too new?
Thanks,
Aaron Hagopian
On Tue, Aug 2, 2011 at 9:04 AM, Rich Megginson rmegg...@redhat.com wrote:
On 08/01/2011 09:41 PM, Penedo wrote:
On 2 August 2011 12:42, Rich
Have you determined how to handle the EPEL issue for RHEL 6? Are you going
to rename the 389-ds rpms in EPEL? Setup a new repository?
Thanks,
Aaron
On Thu, Apr 21, 2011 at 8:23 AM, Rich Megginson rmegg...@redhat.com wrote:
On 04/21/2011 02:26 AM, Steven Jones wrote:
Hi,
Are these bog
Virtualbox networking can get a little goofy sometimes. You may want to try
a bridged network adapter instead of the default NAT.
On Sun, Mar 20, 2011 at 5:11 PM, Daniel Gonzalez gonzale...@gmail.comwrote:
Hi Guys,
My name is Daniel Gonzalez and I am new to this mailing list, I hope to
389-ds-base will be going into RHEL 6 at some point. We cannot put it in
EPEL6 because it would conflict. We are interested in suggestions about how
to provide binary packages on EL6.
pardon my ignorance, but what would it clash with ?
389-ds-base in RHEL6.
And I assume that's in
your hard work, 389ds is great!
Sincerely,
Aaron Hagopian
--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
Harry,
This is the pattern I use to parse the date in java: MMddHHmmss'Z'.
You can probably deduce what the values represent by looking at the
pattern. Also the times are stored in UTC so you'll probably want to
convert that to the local timezone if you're going to display the date/time
to
I think you're supposed to login to the 389-console with the admin user not
your directory manager.
On Tue, Dec 21, 2010 at 3:50 PM, Robert Viduya
robert+...@shangri-la.ts.gatech.edu
robert%2b...@shangri-la.ts.gatech.eduwrote:
I'm having problems trying to get a clean install of 1.2.7.5
Are the accounts you are trying to use setup with the objectClass:
posixAccount and the required attributes (homeDirectory, uidNumber etc..)
2010/12/19 Maurice James midnightst...@msn.com
Hi Brandon,
Here are my two config files. Am I missing something?
***ldap.conf:*
#
#
Thanks your explanation makes sense.
2010/12/14 Rich Megginson rmegg...@redhat.com
On 12/14/2010 08:59 AM, Aaron Hagopian wrote:
I did not. Basically just doing my regular updates, nothing from
updates-testing so I didn't know I would need to take any user intervention.
After running
Oddly enough it looks like it comes out as part of the LDIF comment. If you
skip the option to tell it to not output ldif comments you'll get your base:
$ ldapsearch -d1 -x (uid=example) 21 | grep base
# base dc=example,dc=com (default) with scope subtree
On Wed, Nov 24, 2010 at 3:58 AM,
This only tells you if their password has expired but you will not know if
there are grace logins and this also doesn't tell you give you password
warnings without trying to lookup the policy. You can get all of the
password information using ldap extended operations (part of LDAP v3 I
think).
I
Been using passwordless cert the whole time. This worked fine until I
upgraded to 1.2.6 final.
On Thu, Sep 16, 2010 at 1:14 PM, Rich Megginson rmegg...@redhat.com wrote:
Aaron Hagopian wrote:
grep nsslapd-localuser /etc/dirsrv/slapd-instance/dse.ldif
nsslapd-localuser: nobody
14, 2010 at 11:43 AM, Aaron Hagopian airhe...@gmail.com wrote:
Think I figured it out, a while back when I had to do the manual steps from
something like RC5-RC6, my netscapeRoot didn't load back properly leaving
with an empty o=netscapeRoot
On Tue, Sep 14, 2010 at 10:20 AM, Rich Megginson
After upgrading, although it's possible it broke on one of the RCs since I
do not usually run the admin server on my development environment, when I
try to connect using the 389-console I get an error 32, cannot connect to
the directory server
When I look through the admin-serv logs i see:
Think I figured it out, a while back when I had to do the manual steps from
something like RC5-RC6, my netscapeRoot didn't load back properly leaving
with an empty o=netscapeRoot
On Tue, Sep 14, 2010 at 10:20 AM, Rich Megginson rmegg...@redhat.comwrote:
Aaron Hagopian wrote:
After upgrading
I updated to the latest RC for 1.2.6 and now when I try to start dirsrv I
get the attached error message.
running 'restorecon -R /usr/lib64/dirsrv' did fix the problem for me, just
letting you guys know.
Thanks,
Aaron
Summary:
SELinux is preventing /usr/sbin/ns-slapd getattr access to
is preventing /usr/sbin/ns-slapd read
access on ... message no matter where I place the LDIF file.
Attached is the full SELinux error.
Thanks,
Aaron
On Fri, Jul 16, 2010 at 8:49 AM, Aaron Hagopian airhe...@gmail.com wrote:
As I was looking up the version number of admin I noticed that I had only
I filed a bug per Rich: https://bugzilla.redhat.com/show_bug.cgi?id=616206
https://bugzilla.redhat.com/post_bug.cgi
How did you create the ldif file in
/var/lib/dirsrv/slapd-instance/ldif/? Did you move the ldif file there
from elsewhere on your system? That could explain why your ldif file
...@redhat.com
On 07/15/2010 09:12 AM, Aaron Hagopian wrote:
I upgraded my fedora 13 x86_64 machine to the RC3 using the rpms in
updates-testing and now I cannot start the admin server with selinux
enabled. I am attaching the selinux message. It does start when I disable
selinux.
What
I upgraded my fedora 13 x86_64 machine to the RC3 using the rpms in
updates-testing and now I cannot start the admin server with selinux
enabled. I am attaching the selinux message. It does start when I disable
selinux.
On Tue, Jul 6, 2010 at 2:38 PM, Rich Megginson rmegg...@redhat.com wrote:
I've had very good luck running java application over the NX protocol (
http://nomachine.com/). It actually runs over SSH so it doesn't take extra
firewall ports to get going. I have used the 389 console over nx and it
works great. I actually just use the built in freenx libraries that are in
a new initialization of the
consumer and it worked.
On Fri, Apr 30, 2010 at 1:41 PM, Rich Megginson rmegg...@redhat.com wrote:
Aaron Hagopian wrote:
I had everything setup to sync to my domain controller and things were
working fine. Recently I saw this message in the logs:
[30/Apr/2010
I had everything setup to sync to my domain controller and things were
working fine. Recently I saw this message in the logs:
[30/Apr/2010:11:59:10 -0500] NSMMReplicationPlugin -
agmt=cn=toto.hra.local (10:636): windows_replay_update: Cannot replay add
operation.
So I thought maybe I would try
for now we've moved forward with just
using an SSL connection all the time but after we get to a stable point I
will move us back to the startTLS and see what else I can dig up.
- David
2010/4/15 Aaron Hagopian airhe...@gmail.com mailto:airhe...@gmail.com
I am having a hard time
.
Thanks,
Aaron Hagopian
--
389 users mailing list
389-us...@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
-0500] conn=3003 op=17 fd=67 closed - U1
[14/Apr/2010:08:28:02 -0500] conn=3007 op=12 SRCH base=dc=hranet,dc=org
scope=2 filter=(uid=peter) attrs=ALL
[14/Apr/2010:08:28:02 -0500] conn=3007 op=12 RESULT err=0 tag=101 nentries=1
etime=0
Thanks,
Aaron Hagopian
--
389 users mailing list
389-us
=hranet,dc=org scope=2 filter=(uid=peter) attrs=ALL
[14/Apr/2010:08:28:02 -0500] conn=3007 op=12 RESULT err=0 tag=101
nentries=1 etime=0
Thanks,
Aaron Hagopian
Can you provide a small test JNDI program that reproduces this problem?
I believe it is a bug in the server
It's JNDI itself. JNDI uses ABANDON requests. Are you using persistent
search at all? Another 389 user reported similar problems caused by
improper handling of JNDI persistent searches + ABANDON requests.
Although this looks different, both issues have JNDI and ABANDON in common.
We are
but hopefully my bug will get fixed
at some point.
Thanks,
Aaron Hagopian
--
389 users mailing list
389-us...@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
34 matches
Mail list logo