Hi,I would like to simulate the "test configuration" feature for a AD resource(managed resource) for monitoring purposes. I have to do it from outside of IDM. So, i am planning to call the test configuration method of the adsi adapter from a java class passing the arguments that we normally ...

I'm currently in charge of maintaining an application that was written to work with AM 6.0 as part of the JES 2004Q2 stack. When the application initializes we do a directory connection as follows:SSOToken token = null;try { token = ...

Hello,I have 2 servers in MMR configuration - serverA and serverB.I had to change the IP address of serverA in preparation to a pending physical move. The hostname stays the same.Now when I login to serverA's DSCC console, I am able to see all directory instances on A and B. When I log into ...

My group is looking for a Security Architect with strong knowledge of Identity manager. we are a very distinguished group in NYC and need someone to help us put it together. Can anyone help? Thanks

I know this is a bit of a shot in the dark and am looking for feedback, possible URLs of performance benchmarks (Yes, I've seen the cn=Directory Manager blog), and any theories for the best platform DS5.2 on Solaris.Windows is not in the running, unless it can be proven to be better than DS5.2 ...

i only install am7.1 and ws7.0 in windows2003 pack 1.then, i read "Sun Java SystemAccess Manager 7.1 Postinstallation Guide" .it said that "Login to theWeb Server console.The default port is 8888." but i can't find the default port .i think my web server console's default port is ...

Hi all,I doing test project at my office..In my system there are 3 servers LDAP, IDM and ADI want to sync password by this direction AD -> IDM -> LDAPWhen users change their password in AD it'll sync to change in IDM and LDAPOther Attributes I can use form for ActiveSync to sync it..But ...

Hi,-- http://middleware.internet2.edu/dir/look/--As per the information available on the main website "look.pl" works for DS 5.2. But I noticed some performance counters are not collected by look.pl like (Entry cache hits, Entry cache tries/Entry cache hitratio....)Can anyone give their inputs ...

I see DSEE 6.1 is out, havn't had a chance to try it out yet.During some DS 6.0 benchmarking we were receiving slow search and mod performance numbers. By slow I mean slower than 5.2 sp4. I understand the reason for this was a bug of some sorts in the version of the sleepycat db being used in ...

Hi all,I want to use ldap auth on solaris login with my Windows users.I installed DS and idsync from jes5.Then I prepared DS with idsconfig for pam authentication (I read 819-4635 documentation from it).Now, I can sync userc from AD, and I can BIND at ldapsearc with this users. But I can't ...

I am having some problems configuring the DSEE 6.0 Proxy Server. It seems like it should be fairly straightforward and maybe I am missing something obvious.I create the Proxy Server instance, then created a data source to my Directory Instance, through the DSCC. After I create the Data Source ...

Hi gurus,I need to set (from create user form) "User cannot change password" on W2K accounts.I was expected that some value of userAccountControl attribute on AD could do the job, but I realized that it is not so (look also to ...

Hello,I'm having a lot of trouble implementing the shell script adapter for use with a Linux resource.I cannot use an out of the box adapter.My approach is to implement Actions for Get User, Create User, Delete User, Modify User, and List All Objects.Basically List All Objects and Get User ...

I'm trying to use DS6 built-in functionality for tracking user's last login time. I created a new password policy and enabled pwdKeepLastAuthTime attribute. Then I tried signing into Access Manager.According to the documentation, an attribute pwdLastAuthTime should be added to the user entry, ...

When trying to install either the patch on the full install of DS 6.1on Windows 2003 Enterprise Edition I receive this error:dsee_deploy install -p 11169 -i e:\data\ds1...Do you accept the license terms ? <yes/no> : yesError: Failed to list running instances.Any ...

Hello all,I need to gather some information on Data Scrubbing/Orphaned account problems in identity management.Can you suggest me some pdfs or Links where i can get info about this.RegardsSanjeev

I have protected a web application running on MS IIS6 with an URL_POLICY configured in a Sun Access Manager 72005Q4 server.On IIS6 I installed a Policy Agent 2.2.It works. When I go to the URL of my application the authentication page of Access Manager is presented and I get authenticated and ...

Hi all,I had installed the Sun Java ES into Red Hat 3.0. I installed all the parts under the same machine. And the portal and access manager install under into different web server instance. Actually, the portal and access manger are work fine. But now when i try to deploy the gateway to the ...

Iam setting up a new Environment with DS5.2 sp5 on an AIX 5.3.we have around 1 million entries and we are looking for the performance tuning..We have created all the required Indexes and now comes the time to adjust the caches..As per the Calculations given in the docs for the Cache ...

Hi,We have a chained suffix which is connected to 4 back end suffixes. Each of these 4 suffixes have their counterparts in another node, and they have a replication agreement.And the whole system is duplicated on another geographical redundancy center.4 + 4 in the main data center4 + 4 in the ...

I have noticed this problem with IDsync, does anyone know if this is a bug or feature? and if there is a workaround? Here is the bug and steps to reproduce it. -User has a SSHA hash in DS using IDSync 6.0, aka, not his first time logging in to DS-User changes password in AD, dsvalidate is set ...

We are installing IdM 7.1 with Websphere 6.0 We went through the install and everything imported correctly. We logged into WAS 6 to start iDM and WAS then abruptly terminated. We used iDM 7.1 against WAS 6 with an Oracle 10g backend. WAS from this point on refuses to start. In order to start ...

With the DSEE 6.1 zip distribution, the -c option to dsee_deploy seems to always be ignored.For example:# dsee_deploy install -c DSRK --verboseIgnoring -c DSRK option. Replaced by -c ALL.Do you want to continue [y/n]? nHas this option been discontinued?If so, is there a recommended way to just ...

I found in the release notes there is no mention of Windows XP or any Windows desktop version of OS for Sun One Directory Server. In our application we use Sun One Directory Server and till date we had no installation issues with Windows XP. Now that Windows Vista is in the market,we had issues ...

Hi,i want to create organization Units in AD through IDM dynamically....i.e, whenever the activeSync happens the organizations shoulb created in IDM as well as AD.......Please give me the suggetion......

Can the directory server be configured for access over both the unsecured port 389 and the secure SSL port 636 at the same time?regards

Hey All,Anyone get webdav working with Access Manager? My setup is SunOne WebServer 6.1SP5, Tomcat 5.28 behind Apache 1.3 which is behind the apache agent. 2.1 or 2.2.There is a tomcat webapp that does webdav and not the webserver it's self. I have attempted to add the new methods for webdav ...

I have installed the new netbeans plug-in for IdM 7.1 and 7.0. I just downloaded a rule from my repository which I know works under 7.0. I opened it in netbeans and then tried to upload it without making any changes. I am getting this error:ERROR: [Jun 21, 2007 1:27:49 PM] operation failed: ...

I am deploying DSEE 6.0 in a multimaster topology with 3 servers (call them A, B and C). The platform is Solaris 10 x86 running in the root zone. Through the DSCC running on server A I can create and instance and start it with no problem and all runs fine. Through the DSCC on server A i can ...

IDM v7.0We are creating initial users via reconciliation with an LDAP. The initial LH password is a well known constant set in the MetaView. We need to force a password reset upon the 1st logon for each user. We assumed this to be automatic, but it isn't. How do we do this?BTW - It may be a ...

I installed tomcat on my directory server and deployed the dscc.war file that comes with 6.1When I try to bring it up in the browser. I get the following errors:The Directory Service Control Center requires a one-time initialization process to be run before it can be used. This initialization ...

Hi,I've got a DS5.2 environment that currently has 2 masters (multi-master), 2 hubs and 10 consumers.I'm wondering whether the inclusion of hubs actually provides us any benefit, or if it would actually be better to remove them and replicate to the consumers directly from our suppliers?Is ...

Hi,I've got Sun Access Manager, LDAP, and Lighthouse chained together in an Login Application. If the authentication of Sun Access Manager fails it does not fall through to the other modules. Is there a trick here I'm missing. Thanks for any help on this

We are in the process of upgrading to DS 5.2. One of my tasks is to take a Post-Op plugin and install it on the new server.The issue I am encountering is that there is a deprecated api call and I am not sure how to use its' replacement. The deprecated call is slapi_modify_internal(). I am ...

Can i use an auto increment value in ldap entry?For example i can insert, for each ldap entry, an id that is different from the previous one.Thanks

Hello there,We are having Sun ONE 5.2 Patch4 on Solaris 8. The following is my issue..1. Application is adding a group name as a uniqueMember to the same group. for e.gdn: cn=Group-Test,o=domain,dc=comuniqueMember: cn=Group-Test,o=domain,dc=comcan anyone tell me how to avoid this happening in ...

We are looking into deploying DS6 with RHEL 3,4 and Solaris 8-10 client servers. I was hoping someone could confirm a few things for us. 1. When we create a new user is it possible to have the user's home directory created when the user logs into a server for the first time?2. Is it possible ...

Hi allAnybody can help on force user to change password at first login?It is very urgent .If it is possible to paste code then paste it.Awaiting for response.ThanksSaini

I am new to this access manager stuff..Can any one give me a pointer on where can i find related installables and docs to get started.

Hello,We are using Directory Server server in version 5.0 on HP UX Box.On that box we have set replication from the main LDAP server.Right we want to initialize database from the ldif file created on main LDAP.But unfortunately its failing with the following messages in errors ...

Hi!I have installed Directory Server from the ZIP distribution on a Windows 2003 Advanced Server and have the problem that I cannot connect to it through dscc console installed on a linux server.When I try to add a server I get the following error message:Could not contact the dscc agent on IP. ...

I have been getting a nasty error for weeks configuring PolicyAgent 2.2 for Apache (tried 2.2.x and 2.0.x) on a Windows Server. After the configuring apache could not even start. I get the following error :Syntax error on line 1 of ...

I am having some issues getting Policy-Based Resource Management working.I have an AM 6.3X setup here in our dev env. <2005 q1>I have a 2.2 j2ee agent installed on Sun Appserver 8.1I am trying to get a url policy scheme setup to1) force already authenticated user to auth using another ...

i installed the DSCC on a Solaris 10 server. I am able to login with a non-root ID by changing the filesystem ownership of /opt/SUNWdsee. However, when i try to change the file system ownership of /var/opt/SUNWdsee where the registry ldap instance is located, i get configuration errors logging ...

When you have a ACI with targetfilter and grants add to a user , is the targetfilter is evalualted with respect to the new entry being created ?for example (targetattr = "*") (target = "ldap:///ou=books,o=test") (targetfilter = (objectclass=classicbooks)) (version 3.0;acl "addtf";allow ...

Hey all,I am installing Directory Editor 6.0, and following the install documentation, I added some lines to the 'catalina.policy' file in the Tomcat configuration to allow DE to work properly.grant codeBase "file:${catalina.home}/webapps/de/-" { permission java.security.AllPermission;};grant ...

After full DSEE 6.0 installation, I can create and start Directory Server instances via DSCC but cannot start Proxy Server instances. It seems Proxy Server instance creation process does not create all necessary files in the proxy instance directory.Is this a known ...

I am confused about the two choices, one to use the stored password, and the other to set a password. Is the stored password only for the internal default cert that only lasts for 3 months? If I buy a cert or create my own self signed, do I have to create a password before installing it? I ...

Hi,I am getting the following error towards the end of the end agent installation.i am using .setup -nodisplay option.Exception in thread "Thread-1" java.awt.HeadlessException:No X11 DISPLAY variable was set, but this program performed an operation which requires it.at ...

Hi,I am new to Sun Java system identity manager. I have a requirement if i press a button then the data of a text field on that form should replace the existing value of an attribute in LDAP.Please provide the solution.Thanks