[Fedora-directory-users] Preparing to upgrade to fds 1.0.4
Richard Megginson
rmeggins at redhat.com
Thu Feb 22 19:22:05 UTC 2007
Bliss, Aaron wrote:
> More progress; I've been able to find the lonely password policy that
> wasn't disabled; turns out the entire policy had to be disabled, not
> just the password syntax checking piece; so the setup piece finished
> without a hitch, Directory server shows version 1.0.4, however my userid
> is still unable to log into the console; this is so peculiar; I'm able
> to login as admin only; the directory console error log shows "user
> myuserid not found: /admin-serv/authenticate"; I've verified that
> myuserid is listed as follows; after logging into the console with the
> admin account, servername, server group, right click Administration
> Server, set access permissions; I did the same for the Directory Server.
> I'm just not sure what/where else to check...it's almost as if
> authenticating to the console is only searching the Netscape root, not
> the user directory database...Any other ideas? Thanks again.
>
So, before the upgrade, you were able to login to the console using a
regular user account, and now you are not able to? Did you login with
just your uid or did you have to specify your full DN?
> Aaron
>
> -----Original Message-----
> From: fedora-directory-users-bounces at redhat.com
> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of Richard
> Megginson
> Sent: Thursday, February 22, 2007 10:56 AM
> To: General discussion list for the Fedora Directory server project.
> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds 1.0.4
>
> Bliss, Aaron wrote:
>
>> I had both in place; a few users had individual password policies that
>>
> I
>
>> disabled, as well as a global password policy
>>
>>
> I just don't know. The DN in question is under o=NetscapeRoot - I doubt
>
> you would have applied any user or subtree password policy there, so it
> must be the global password policy. Are you using the console? Can you
>
> verify that global password policy is disabled?
>
>> Aaron
>>
>> -----Original Message-----
>> From: fedora-directory-users-bounces at redhat.com
>> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of
>>
> Richard
>
>> Megginson
>> Sent: Thursday, February 22, 2007 10:49 AM
>> To: General discussion list for the Fedora Directory server project.
>> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds
>>
> 1.0.4
>
>> Bliss, Aaron wrote:
>>
>>
>>> I thought that you might say that...I'm not really sure where else
>>>
>>>
>> there
>>
>>
>>> would be a password policy getting applied, is there any kind of
>>>
>>>
>> custom
>>
>>
>>> ldap query that I would use to figure what dn's the policy is defined
>>> at? Thanks.
>>>
>>>
>>>
>> Are you using global password policy or per-user/per-subtree?
>>
>>
>>> Aaron
>>>
>>> -----Original Message-----
>>> From: fedora-directory-users-bounces at redhat.com
>>> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of
>>>
>>>
>> Richard
>>
>>
>>> Megginson
>>> Sent: Thursday, February 22, 2007 10:02 AM
>>> To: General discussion list for the Fedora Directory server project.
>>> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds
>>>
>>>
>> 1.0.4
>>
>>
>>> Bliss, Aaron wrote:
>>>
>>>
>>>
>>>> Yep, err=19 was in the output log...
>>>>
>>>>
>>>>
>>>>
>>> <snip>
>>>
>>>
>>>
>>>> [21/Feb/2007:17:08:02 -0500] conn=0 op=11 RESULT err=19 tag=103
>>>> nentries=0 etime=0
>>>> [21/Feb/2007:17:08:02 -0500] conn=0 op=11 MOD
>>>> dn="cn=slapd-al-lnx-s11,cn=Fedora Directory Server,cn=Server
>>>>
>>>>
>>>>
>>>>
> Group,cn=al-lnx-s11.preferredcare.org,ou=preferredcare.org,o=NetscapeRoo
>
>>
>>
>>>
>>>
>>>
>>>> t", invalid password syntax
>>>>
>>>>
>>>>
>>>>
>>> This means that there is still some password policy being applied.
>>>
>>>
>> I'm
>>
>>
>>> not sure what's going on, but you need to make sure all password
>>>
>>>
>> policy
>>
>>
>>> is disabled before running setup.
>>>
>>>
>>> Confidentiality Notice:
>>> The information contained in this electronic message is intended for
>>>
>>>
>> the exclusive use of the individual or entity named above and may
>> contain privileged or confidential information. If the reader of this
>> message is not the intended recipient or the employee or agent
>> responsible to deliver it to the intended recipient, you are hereby
>> notified that dissemination, distribution or copying of this
>>
> information
>
>> is prohibited. If you have received this communication in error,
>>
> please
>
>> notify the sender immediately by telephone and destroy the copies you
>> received.
>>
>>
>>> --
>>> Fedora-directory-users mailing list
>>> Fedora-directory-users at redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>
>>>
>>>
>> --
>> Fedora-directory-users mailing list
>> Fedora-directory-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>
>>
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20070222/ecb8f08c/attachment.bin>
More information about the 389-users
mailing list