[14/Oct/2008:08:37:37 -0700] conn=4 op=176 RESULT err=0 tag=101 nentries=18 etime=0
------
thanks in Adv...
--
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-15-2008, 12:10 AM
"Vipul Ramani"
SYNC without password ...
--- passyc log ---
10/14/08 17:05:56: Failed to load entries from file
10/14/08 17:05:56: Ldap bind error in Connect
*** 48: Inappropriate authentication
10/14/08 17:05:56: Can not connect to ldap server in SyncPasswords
-----------------------------
ADC ( where passysnc installed )* #
On the Directory Server, export the server certificate using pk12util.
FDS# pk12util -d . -o servercert.pfx -n Server-Cert
then ,
Import the server certificate from the Directory Server into the new certificate databases using pk12util.exe.
pk12util.exe -d "C:Program FilesRed Hat Directory Password Synchronization" -i servercert.pfx
C:Program Files (x86)Red Hat Directory Password Synchronization>certutil.exe -
L -d . -P
CA certificate*************************************** ******* c,c,c
Server-Cert********************************************** *** Pu,Pu,Pu** <-- imported from FDS
C:Program Files (x86)Red Hat Directory Password Synchronization>
---------------------------
still same error . ...
On Tue, Oct 14, 2008 at 3:42 PM, Vipul Ramani <vipulramani@gmail.com> wrote:
Hi All ,
I am doing Active directory ----> FDS ( ssl) , all attribute is replicated from ADC ---> FDS .. But i am not able to see password attribute in FDS ?
Replication
FDS - working as master
Passync for replication
*replication is happening from Active Directory:636 ---- > FDS : 636 .
Am i am missing something ...
------Adc user profile , which is replicated in FDS -------
dn: uid=vramani, ou=People, dc=tf-lab,dc=test,dc=com
ntUniqueId: f96921fe188c4b47a243ab088512103d
givenName: vipul
sn: r
objectClass: top
objectClass: person
objectClass: organizationalperson
objectClass: inetOrgPerson
objectClass: ntUser
uid: vramani
[14/Oct/2008:08:37:37 -0700] conn=4 op=176 RESULT err=0 tag=101 nentries=18 etime=0
------
thanks in Adv...
--
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-15-2008, 12:26 AM
"Vipul Ramani"
SYNC without password ...
I feel i am so close to solve this problem ..since long time .. if any 1 have clue where what i forgot ...
I changed password of cn=replication,cn=config
and now only i am getting error
----passsync log ----
10/14/08 17:24:19: Failed to load entries from file***** ##### I dont know Failed to load entires from FILE* ( WHICH PassSync talking about ) #####
10/14/08 17:26:41: Failed to load entries from file
10/14/08 17:26:41: PassSync service stopped
10/14/08 17:26:42: PassSync service started
10/14/08 17:26:42: Failed to load entries from file
C:Program Files (x86)Red Hat Directory Password Synchronization>certutil.exe -
L -d . -P
CA certificate*************************************** ******* c,c,c
Server-Cert********************************************** *** Pu,Pu,Pu** <-- imported from FDS
C:Program Files (x86)Red Hat Directory Password Synchronization>
---------------------------
still same error . ...
On Tue, Oct 14, 2008 at 3:42 PM, Vipul Ramani <vipulramani@gmail.com> wrote:
Hi All ,
I am doing Active directory ----> FDS ( ssl) , all attribute is replicated from ADC ---> FDS .. But i am not able to see password attribute in FDS ?
Replication
FDS - working as master
Passync for replication
*replication is happening from Active Directory:636 ---- > FDS : 636 .
Am i am missing something ...
------Adc user profile , which is replicated in FDS -------
dn: uid=vramani, ou=People, dc=tf-lab,dc=test,dc=com
ntUniqueId: f96921fe188c4b47a243ab088512103d
givenName: vipul
sn: r
objectClass: top
objectClass: person
objectClass: organizationalperson
objectClass: inetOrgPerson
objectClass: ntUser
uid: vramani
[14/Oct/2008:08:37:37 -0700] conn=4 op=176 RESULT err=0 tag=101 nentries=18 etime=0
------
thanks in Adv...
--
Regards
Vipul Ramani
--
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-15-2008, 08:59 PM
"Vipul Ramani"
SYNC without password ...
Any luck ??? any 1 one who had pass through same problem ...
Clueless no errors ( FDS , ADC ) only PassSync Error ..which is mentioned below ...
On Tue, Oct 14, 2008 at 5:26 PM, Vipul Ramani <vipulramani@gmail.com> wrote:
I feel i am so close to solve this problem ..since long time .. if any 1 have clue where what i forgot ...
I changed password of cn=replication,cn=config
and now only i am getting error
----passsync log ----
10/14/08 17:24:19: Failed to load entries from file***** ##### I dont know Failed to load entires from FILE* ( PassSync talking about which file* ) #####
10/14/08 17:26:41: Failed to load entries from file
10/14/08 17:26:41: PassSync service stopped
10/14/08 17:26:42: PassSync service started
10/14/08 17:26:42: Failed to load entries from file
C:Program Files (x86)Red Hat Directory Password Synchronization>certutil.exe -
L -d . -P
CA certificate*************************************** ******* c,c,c
Server-Cert********************************************** *** Pu,Pu,Pu** <-- imported from FDS
C:Program Files (x86)Red Hat Directory Password Synchronization>
---------------------------
still same error . ...
On Tue, Oct 14, 2008 at 3:42 PM, Vipul Ramani <vipulramani@gmail.com> wrote:
Hi All ,
I am doing Active directory ----> FDS ( ssl) , all attribute is replicated from ADC ---> FDS .. But i am not able to see password attribute in FDS ?
Replication
FDS - working as master
Passync for replication
*replication is happening from Active Directory:636 ---- > FDS : 636 .
Am i am missing something ...
------Adc user profile , which is replicated in FDS -------
dn: uid=vramani, ou=People, dc=tf-lab,dc=test,dc=com
ntUniqueId: f96921fe188c4b47a243ab088512103d
givenName: vipul
sn: r
objectClass: top
objectClass: person
objectClass: organizationalperson
objectClass: inetOrgPerson
objectClass: ntUser
uid: vramani
[14/Oct/2008:08:37:37 -0700] conn=4 op=176 RESULT err=0 tag=101 nentries=18 etime=0
------
thanks in Adv...
--
Regards
Vipul Ramani
--
Regards
Vipul Ramani
--
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-15-2008, 09:05 PM
Rich Megginson
SYNC without password ...
Vipul Ramani wrote:
Any luck ??? any 1 one who had pass through same problem ...
Clueless no errors ( FDS , ADC ) only PassSync Error ..which is
mentioned below ...
On Tue, Oct 14, 2008 at 5:26 PM, Vipul Ramani <vipulramani@gmail.com
<mailto:vipulramani@gmail.com>> wrote:
I feel i am so close to solve this problem ..since long time .. if
any 1 have clue where what i forgot ...
I changed password of cn=replication,cn=config
and now only i am getting error
----passsync log ----
10/14/08 17:24:19: Failed to load entries from file ##### I
dont know Failed to load entires from FILE *( PassSync talking
about which file ) *#####
10/14/08 17:26:41: Failed to load entries from file
10/14/08 17:26:41: PassSync service stopped
10/14/08 17:26:42: PassSync service started
10/14/08 17:26:42: Failed to load entries from file
I'm not sure, but I think this means that there were no passwords to
sync from AD to Fedora DS. It keeps a queue of passwords to send in a
file (encrypted).
/var/log/dir-serv/slapd-linux2/errors NO ERRORs ..
On Tue, Oct 14, 2008 at 5:10 PM, Vipul Ramani
<vipulramani@gmail.com <mailto:vipulramani@gmail.com>> wrote:
--- passyc log ---
10/14/08 17:05:56: Failed to load entries from file
10/14/08 17:05:56: Ldap bind error in Connect
48: Inappropriate authentication
10/14/08 17:05:56: Can not connect to ldap server in SyncPasswords
-----------------------------
ADC ( where passysnc installed ) #
On the Directory Server, export the server certificate using
|pk12util|.
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-15-2008, 09:15 PM
"Vipul Ramani"
SYNC without password ...
Hi* Rich ,
But i can login and changed the password of ADC users.*
is there any other way to debug in to the deep ??? Kindly suggest i am ready* ....
I'm not sure, but I think this means that there were no passwords to
sync from AD to Fedora DS. It keeps a queue of passwords to send in a
file (encrypted).
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-15-2008, 09:20 PM
Rich Megginson
SYNC without password ...
Vipul Ramani wrote:
Hi Rich ,
But i can login and changed the password of ADC users.
is there any other way to debug in to the deep ??? Kindly suggest i am
ready ....
I don't know.
I'm not sure, but I think this means that there were no passwords to
sync from AD to Fedora DS. It keeps a queue of passwords to send in a
file (encrypted).
i see this " Linger time out has expired the connection "
16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): Beginning linger on the connection
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): State: sending_updates -> wait_for_changes
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): Linger timeout has expired on the connection
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): Disconnected from the consumer
Any any clue
On Wed, Oct 15, 2008 at 2:15 PM, Vipul Ramani <vipulramani@gmail.com> wrote:
Hi* Rich ,
But i can login and changed the password of ADC users.*
is there any other way to debug in to the deep ??? Kindly suggest i am ready* ....
I'm not sure, but I think this means that there were no passwords to
sync from AD to Fedora DS. It keeps a queue of passwords to send in a
file (encrypted).
Regards
Vipul Ramani
--
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
10-16-2008, 10:10 PM
Rich Megginson
SYNC without password ...
Vipul Ramani wrote:
I enabled logleve 8192 in error log of FDS
linux2.test2.com <http://linux2.test2.com> is FDS and LABDC01 is ADC
I created sync aggrement between LDAP:636 and ADC:636 , but in logs it
shows still *ldap://linux2.test2.com:389 <http://linux2.test2.com:389>
---
*
That's just the "name" of the agreement not the actual protocol and port
used to connect. It looks as though the code is successfully connecting
to AD.
, position set for replay
[16/Oct/2008:07:33:15 -0700] agmt="cn=Vedant" (LABDC01:636) - load=1
rec=1 csn=48f750ab0001014d0000[16/Oct/2008:07:33:15 -0700]
NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636):
windows_replay_update: Looking at modify operation
local dn="uid=vramani,ou=people,dc=tf-lab,dc=test2,dc=com"
(ours,user,not group) [16/Oct/2008:07:33:15 -0700]
NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636):
map_entry_dn_outbound: looking for AD entry for DS
dn="uid=vramani,ou=People, dc=tf-lab,dc=test2,dc=com"
guid="f96921fe188c4b47a243ab088512103d"
[16/Oct/2008:07:33:15 -0700] - Calling windows entry search request
plugin[16/Oct/2008:07:33:15 -0700] NSMMReplicationPlugin -
agmt="cn=Vedant" (LABDC01:636): Linger timeout has expired on the
connection
[16/Oct/2008:07:33:15 -0700] - windows_search_entry: recieved 2
messages, 1 entries, 0 references
[16/Oct/2008:07:33:15 -0700] NSMMReplicationPlugin - agmt="cn=Vedant"
(LABDC01:636): map_entry_dn_outbound: return code 0 from search f
or AD entry dn="<GUID=f96921fe188c4b47a243ab088512103d>" or
dn="CN=vipul r,CN=Users,DC=tf-lab,DC=test2,DC=com"
[16/Oct/2008:07:33:15 -0700] NSMMReplicationPlugin - agmt="cn=Vedant"
(LABDC01:636): windows_replay_update: Processing modify operation
local dn="uid=vramani,ou=people,dc=tf-lab,dc=test2,dc=com" remote
dn="<GUID=f96921fe188c4b47a243ab088512103d>"
[16/Oct/2008:07:33:15 -0700] agmt="cn=Vedant" (LABDC01:636) -
clcache_load_buffer: rc=-30989
-----
i see this *" Linger time out has expired the connection " *
16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant"
(LABDC01:636): Beginning linger on the connection
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant"
(LABDC01:636): State: sending_updates -> wait_for_changes
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant"
(LABDC01:636): *Linger timeout has expired on the connection*
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant"
(LABDC01:636): Disconnected from the consumer
Any any clue
That's normal. I don't see any errors here.
On Wed, Oct 15, 2008 at 2:15 PM, Vipul Ramani <vipulramani@gmail.com
<mailto:vipulramani@gmail.com>> wrote:
Hi Rich ,
But i can login and changed the password of ADC users.
is there any other way to debug in to the deep ??? Kindly suggest
i am ready ....
I'm not sure, but I think this means that there were no passwords
to sync from AD to Fedora DS. It keeps a queue of passwords to
send in a file (encrypted).
i see this " Linger time out has expired the connection "
16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): Beginning linger on the connection
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): State: sending_updates -> wait_for_changes
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): Linger timeout has expired on the connection
[16/Oct/2008:07:43:16 -0700] NSMMReplicationPlugin - agmt="cn=Vedant" (LABDC01:636): Disconnected from the consumer
Any any clue
On Wed, Oct 15, 2008 at 2:15 PM, Vipul Ramani <vipulramani@gmail.com> wrote:
Hi* Rich ,
But i can login and changed the password of ADC users.*
is there any other way to debug in to the deep ??? Kindly suggest i am ready* ....
I'm not sure, but I think this means that there were no passwords to
sync from AD to Fedora DS. It keeps a queue of passwords to send in a
file (encrypted).
Regards
Vipul Ramani
--
Regards
Vipul Ramani
--
Regards
Vipul Ramani
--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
SYNC without password ...
