Hello Deany, thank you very much for your response.
> > 1) When assigning a user group to a directory or group of > > applications, I get every time logged out of the administration > > console. The reason is: "Authentication Error - You do not have > > Administrator privileges". I was logged in with the account > > "Administrator", so I'm really wondering , what this could mean. > > > > > Is there anything special about your SSGD administrator? ie, Is it an > LDAP user? Do you have multiple administrators (possibly using SSGD at > the same time)? > How are you accessing the admin console? ie Directly, using /sgdadmin or > from the Administrator's webtop? No, it's the usual administrator account in SSGD's ENS schema. I paid attention to be logged in only once. No matter how I access the admin console - via the Administrator's webtop or using directly /sgadmin - I was every time logged out (or got the java exception error) when trying to assign a user group to this object. > From the command line, could send me the output from "# tarantella > object list_attributes --name <object_name>" of the object you are > trying to assigning the LDAP group to? I want to assign a ldap group of users to the object myApplications. # tarantella object list_attributes --name ".../_ens/o=applications/ou=myApplications" Attributes for .../_ens/o=applications/ou=myApplications: Organizational Unit: myApplications clipboard: 2 editprofile: 2 inherit: 1 objectclass: organizationalunit,scottaauxorganizationalunit,top serialport: 2 webtop: .. While writing this I got the idea, that it's not possible at all to assign a ldap user profile or a ldap user group to an organizational unit, because an ou doesn't have the attribute ldapgroups. Is that right? > > 2) Sometimes - not always! - I get the message "No Connection to the > > LDAP Server - Please check the network connection and the LDAP > > server." while browsing with the administration console through the > > user profiles for example. > > > > > The admin console holds a connection to the LDAP server so if the LDAP > server closes the connection, maybe due to an inactivity timeout, then > you will see this error. Do you see this error after a long period of > browsing the LDAP Tree in the admin console? No, I get this error during browsing through the directory tree. Let's say, I was clicking through the tree to the 3rd level and right after that I want to open the 4th level - then I see this error. But just for case the LDAP server closes the connection - what would you suggest to do? I would try to set idletimeout=0 in the slapd.conf. > > Did anybody else encountered these problems when using OpenLDAP? > > > > > I've been using OpenLDAP as my LDAP backend for SSGD for a while and > have not seen these errors before, although I do prefer to use the "# > tarantella" command line interface into SSGD. I'll start using the admin > console more from now on to try and flush out any problems so they can > get fixed. Thank you very much again, it gives me hope, that there are installations of SSGD and OpenLDAP without problems :) Juergen -- Juergen Arndt _______________________________________________ SGD-Users mailing list [email protected] http://www.filibeto.org/mailman/listinfo/sgd-users
