|
| eDir->AD password sync; login issues |
 |
Wed, 14 May 2008 22:16:02 GMT |
Hello,
I am trying to implement password sync from eDir to AD. I've used the
default AD driver. When a user is created in ConsoleOne, it gets
created in AD, but then that user can't login to AD. Also, when I log
into eDir with that user, then change the password, I see nothing on
the Remote Loader.
TIA,
Mick
Here is a piece of the log, and the only error that appears:
DirXML: [05/14/08 15:39:44.63]:
DirXML Log Event -------------------
Driver = \MHESAC\MHESAC\IDM\eDir2AD Driver Set\Active Directory
Thread = Subscriber Channel
Level = error
Message = <message>Error getting next page of search
results</message>
<ldap-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">
<client-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">Invalid
DN Syntax</client-err>
<server-err>0000208F: NameErr: DSID-031001B3, problem 2006 (BAD_NAME),
data 8349, best match of:
'CN=Daisy DukeOU=IDM,CN=Users,DC=SAF,DC=local'
</server-err>
<server-err-ex win32-rc="8335"/>
</ldap-err>
--
firemanmick
------------------------------------------------------------------------
firemanmick's Profile: http://forums.novell.com/member.php?userid=1111
View this thread: http://forums.novell.com/showthread.php?t=327980
|
| Post Reply
|
| Re: eDir->AD password sync; login issues |
 |
Wed, 14 May 2008 22:25:07 GMT |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Please, no log entries as they are not useful for troubleshooting. TID#
10098620 will help you get a trace written directly from the driver. Do
you have Universal Password implemented properly in the tree for this
user? Does your workstation have an NMAS client installed and enabled
(it's the default) as well? How are you setting the password later on?
~ In iManager is a 'Set Universal Password' task under the 'Passwords'
role that is guaranteed to work so that's the best way to verify the
server side of things. In the meantime please provide the trace.
Good luck.
firemanmick wrote:
| Hello,
| I am trying to implement password sync from eDir to AD. I've used the
| default AD driver. When a user is created in ConsoleOne, it gets
| created in AD, but then that user can't login to AD. Also, when I log
| into eDir with that user, then change the password, I see nothing on
| the Remote Loader.
|
| TIA,
| Mick
|
| Here is a piece of the log, and the only error that appears:
| DirXML: [05/14/08 15:39:44.63]:
| DirXML Log Event -------------------
| Driver = \MHESAC\MHESAC\IDM\eDir2AD Driver Set\Active Directory
| Thread = Subscriber Channel
| Level = error
| Message = <message>Error getting next page of search
| results</message>
| <ldap-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">
| <client-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">Invalid
| DN Syntax</client-err>
| <server-err>0000208F: NameErr: DSID-031001B3, problem 2006 (BAD_NAME),
| data 8349, best match of:
| 'CN=Daisy DukeOU=IDM,CN=Users,DC=SAF,DC=local'
| </server-err>
| <server-err-ex win32-rc="8335"/>
| </ldap-err>
|
|
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFIK2bB3s42bA80+9kRAn0VAJ4ypb1VN/IVkXSAtXe04CL3T83wcwCdF68S
Dm/0zxZB5otld9jYMERmivQ=
=stM9
|
| Post Reply
|
| Re: eDir->AD password sync; login issues |
 |
Fri, 16 May 2008 20:46:02 GMT |
Thanks for the response! I run DSTRACE on the NetWare box, using
DSTRACE -ALL +DXML +DVRS +TAGS +TIME. I don't get any data to
SYSTEM/DSTRACE.LOG.
What am I missing?
TIA,
Mick
--
firemanmick
------------------------------------------------------------------------
firemanmick's Profile: http://forums.novell.com/member.php?userid=1111
View this thread: http://forums.novell.com/showthread.php?t=327980
|
| Post Reply
|
| Re: eDir->AD password sync; login issues |
 |
Fri, 16 May 2008 20:56:46 GMT |
DSTRACE FILE ON
See also:
HELP DSTRACE
-Father Ramon
firemanmick wrote:
> Thanks for the response! I run DSTRACE on the NetWare box, using
> DSTRACE -ALL +DXML +DVRS +TAGS +TIME. I don't get any data to
> SYSTEM/DSTRACE.LOG.
>
> What am I missing?
>
> TIA,
> Mick
>
|
| Post Reply
|
| Re: eDir->AD password sync; login issues |
 |
Fri, 16 May 2008 21:46:02 GMT |
Thank You. attached is DSTRACE.LOG for one user creation in eDir.
Thanks again,
Mick
+-------------------------------------------------------------------+
|Filename: DSTRACE.LOG |
|Download: http://forums.novell.com/attachment.php?attachmentid=1054|
+-------------------------------------------------------------------+
--
firemanmick
------------------------------------------------------------------------
firemanmick's Profile: http://forums.novell.com/member.php?userid=1111
View this thread: http://forums.novell.com/showthread.php?t=327980
|
| Post Reply
|
|
|
|
|
|
|
|
|
|