[Fedora-directory-users] Preparing to upgrade to fds 1.0.4

Richard Megginson rmeggins at redhat.com
Thu Feb 22 19:22:05 UTC 2007 

Bliss, Aaron wrote:
> More progress; I've been able to find the lonely password policy that
> wasn't disabled; turns out the entire policy had to be disabled, not
> just the password syntax checking piece; so the setup piece finished
> without a hitch, Directory server shows version 1.0.4, however my userid
> is still unable to log into the console; this is so peculiar; I'm able
> to login as admin only; the directory console error log shows "user
> myuserid not found: /admin-serv/authenticate"; I've verified that
> myuserid is listed as follows; after logging into the console with the
> admin account, servername, server group, right click Administration
> Server, set access permissions; I did the same for the Directory Server.
> I'm just not sure what/where else to check...it's almost as if
> authenticating to the console is only searching the Netscape root, not
> the user directory database...Any other ideas?  Thanks again.
>   
So, before the upgrade, you were able to login to the console using a 
regular user account, and now you are not able to?  Did you login with 
just your uid or did you have to specify your full DN?
> Aaron 
>
> -----Original Message-----
> From: fedora-directory-users-bounces at redhat.com
> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of Richard
> Megginson
> Sent: Thursday, February 22, 2007 10:56 AM
> To: General discussion list for the Fedora Directory server project.
> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds 1.0.4
>
> Bliss, Aaron wrote:
>   
>> I had both in place; a few users had individual password policies that
>>     
> I
>   
>> disabled, as well as a global password policy
>>   
>>     
> I just don't know.  The DN in question is under o=NetscapeRoot - I doubt
>
> you would have applied any user or subtree password policy there, so it 
> must be the global password policy.  Are you using the console?  Can you
>
> verify that global password policy is disabled?
>   
>> Aaron 
>>
>> -----Original Message-----
>> From: fedora-directory-users-bounces at redhat.com
>> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of
>>     
> Richard
>   
>> Megginson
>> Sent: Thursday, February 22, 2007 10:49 AM
>> To: General discussion list for the Fedora Directory server project.
>> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds
>>     
> 1.0.4
>   
>> Bliss, Aaron wrote:
>>   
>>     
>>> I thought that you might say that...I'm not really sure where else
>>>     
>>>       
>> there
>>   
>>     
>>> would be a password policy getting applied, is there any kind of
>>>     
>>>       
>> custom
>>   
>>     
>>> ldap query that I would use to figure what dn's the policy is defined
>>> at?  Thanks.
>>>   
>>>     
>>>       
>> Are you using global password policy or per-user/per-subtree?
>>   
>>     
>>> Aaron
>>>
>>> -----Original Message-----
>>> From: fedora-directory-users-bounces at redhat.com
>>> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of
>>>     
>>>       
>> Richard
>>   
>>     
>>> Megginson
>>> Sent: Thursday, February 22, 2007 10:02 AM
>>> To: General discussion list for the Fedora Directory server project.
>>> Subject: Re: [Fedora-directory-users] Preparing to upgrade to fds
>>>     
>>>       
>> 1.0.4
>>   
>>     
>>> Bliss, Aaron wrote:
>>>   
>>>     
>>>       
>>>> Yep, err=19 was in the output log...
>>>>   
>>>>     
>>>>       
>>>>         
>>> <snip>
>>>   
>>>     
>>>       
>>>> [21/Feb/2007:17:08:02 -0500] conn=0 op=11 RESULT err=19 tag=103
>>>> nentries=0 etime=0
>>>> [21/Feb/2007:17:08:02 -0500] conn=0 op=11 MOD
>>>> dn="cn=slapd-al-lnx-s11,cn=Fedora Directory Server,cn=Server
>>>>
>>>>     
>>>>       
>>>>         
> Group,cn=al-lnx-s11.preferredcare.org,ou=preferredcare.org,o=NetscapeRoo
>   
>>   
>>     
>>>   
>>>     
>>>       
>>>> t", invalid password syntax
>>>>   
>>>>     
>>>>       
>>>>         
>>> This means that there is still some password policy being applied.
>>>     
>>>       
>> I'm 
>>   
>>     
>>> not sure what's going on, but you need to make sure all password
>>>     
>>>       
>> policy 
>>   
>>     
>>> is disabled before running setup.
>>>
>>>
>>> Confidentiality Notice:
>>> The information contained in this electronic message is intended for
>>>     
>>>       
>> the exclusive use of the individual or entity named above and may
>> contain privileged or confidential information.  If the reader of this
>> message is not the intended recipient or the employee or agent
>> responsible to deliver it to the intended recipient, you are hereby
>> notified that dissemination, distribution or copying of this
>>     
> information
>   
>> is prohibited.  If you have received this communication in error,
>>     
> please
>   
>> notify the sender immediately by telephone and destroy the copies you
>> received.
>>   
>>     
>>> --
>>> Fedora-directory-users mailing list
>>> Fedora-directory-users at redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>   
>>>     
>>>       
>> --
>> Fedora-directory-users mailing list
>> Fedora-directory-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>   
>>     
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>   
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20070222/ecb8f08c/attachment.bin>

More information about the 389-users mailing list