[Fedora-directory-users] Preparing to upgrade to fds 1.0.4

Bliss, Aaron ABliss at preferredcare.org
Thu Feb 22 18:23:29 UTC 2007


More progress; I've been able to find the lonely password policy that
wasn't disabled; turns out the entire policy had to be disabled, not
just the password syntax checking piece; so the setup piece finished
without a hitch, Directory server shows version 1.0.4, however my userid
is still unable to log into the console; this is so peculiar; I'm able
to login as admin only; the directory console error log shows "user
myuserid not found: /admin-serv/authenticate"; I've verified that
myuserid is listed as follows; after logging into the console with the
admin account, servername, server group, right click Administration
Server, set access permissions; I did the same for the Directory Server.
I'm just not sure what/where else to check...it's almost as if
authenticating to the console is only searching the Netscape root, not
the user directory database...Any other ideas?  Thanks again.

Aaron 

-----Original Message-----
From: fedora-directory-users-bounces at redhat.com
[mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of Richard
Megginson
Sent: Thursday, February 22, 2007 10:56 AM
To: General discussion list for the Fedora Directory server project.
Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds 1.0.4

Bliss, Aaron wrote:
> I had both in place; a few users had individual password policies that
I
> disabled, as well as a global password policy
>   
I just don't know.  The DN in question is under o=NetscapeRoot - I doubt

you would have applied any user or subtree password policy there, so it 
must be the global password policy.  Are you using the console?  Can you

verify that global password policy is disabled?
> Aaron 
>
> -----Original Message-----
> From: fedora-directory-users-bounces at redhat.com
> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of
Richard
> Megginson
> Sent: Thursday, February 22, 2007 10:49 AM
> To: General discussion list for the Fedora Directory server project.
> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds
1.0.4
>
> Bliss, Aaron wrote:
>   
>> I thought that you might say that...I'm not really sure where else
>>     
> there
>   
>> would be a password policy getting applied, is there any kind of
>>     
> custom
>   
>> ldap query that I would use to figure what dn's the policy is defined
>> at?  Thanks.
>>   
>>     
> Are you using global password policy or per-user/per-subtree?
>   
>> Aaron
>>
>> -----Original Message-----
>> From: fedora-directory-users-bounces at redhat.com
>> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of
>>     
> Richard
>   
>> Megginson
>> Sent: Thursday, February 22, 2007 10:02 AM
>> To: General discussion list for the Fedora Directory server project.
>> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds
>>     
> 1.0.4
>   
>> Bliss, Aaron wrote:
>>   
>>     
>>> Yep, err=19 was in the output log...
>>>   
>>>     
>>>       
>> <snip>
>>   
>>     
>>> [21/Feb/2007:17:08:02 -0500] conn=0 op=11 RESULT err=19 tag=103
>>> nentries=0 etime=0
>>> [21/Feb/2007:17:08:02 -0500] conn=0 op=11 MOD
>>> dn="cn=slapd-al-lnx-s11,cn=Fedora Directory Server,cn=Server
>>>
>>>     
>>>       
>
Group,cn=al-lnx-s11.preferredcare.org,ou=preferredcare.org,o=NetscapeRoo
>   
>>   
>>     
>>> t", invalid password syntax
>>>   
>>>     
>>>       
>> This means that there is still some password policy being applied.
>>     
> I'm 
>   
>> not sure what's going on, but you need to make sure all password
>>     
> policy 
>   
>> is disabled before running setup.
>>
>>
>> Confidentiality Notice:
>> The information contained in this electronic message is intended for
>>     
> the exclusive use of the individual or entity named above and may
> contain privileged or confidential information.  If the reader of this
> message is not the intended recipient or the employee or agent
> responsible to deliver it to the intended recipient, you are hereby
> notified that dissemination, distribution or copying of this
information
> is prohibited.  If you have received this communication in error,
please
> notify the sender immediately by telephone and destroy the copies you
> received.
>   
>> --
>> Fedora-directory-users mailing list
>> Fedora-directory-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>   
>>     
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>   




More information about the Fedora-directory-users mailing list