Can't use UWC calendar for users under new domain
./imsimta version
Sun Java(tm) System Messaging Server 6.2-3.04 (built Jul 15 2005)
libimta.so 6.2-3.04 (built 01:30:02, Jul 15 2005)
Hosted domain support , and using schema 2
I created a new domain and added the mail,cal services
The users under new domain are not able to use the calendar in UWC(mail,options,address book working)...
it shows
" The selected calendar(s) was either deleted or does not exist or you do not have permissions to view it. Select another calendar(s)."
but they able to login and use cal server without any problem..
the http.log for calendar shows..
the following error...
[03/Aug/2006:17:35:00 +051800] nile cshttpd[4508]: General Error: ac: GetCalProps: User "ashik" denied access on fetching from calendar "ashik@netedindia.com".
[03/Aug/2006:17:35:00 +051800] nile cshttpd[4508]: General Error: calstore_get_calprops(): call to ac_get_calprops() returning err = 20.
[03/Aug/2006:17:35:00 +051800] nile cshttpd[4508]: General Error: calstore_get_calprops(): db error (pError->iErr) = 28.
and users under default domain has no problem with using UWC
what needs to be done ., Help me on this..
Ashik
[1237 byte] By [
ashik_s] at [2007-11-26 9:14:14]
# 1
I make no claim to be a Calendar expert. My last training on Calendar was 6 years ago, and the version was 2.0. Not the same at all.
However, what I do see is this:
"ashik" denied access on fetching from calendar "ashik@netedindia.com".
"ashik" is not the same user as "ashik@netedindia.com"
# 2
ashik is my loginid and ashik@netedindia is my calendar..
# 3
And, I think you may need to be talking to a calendar expert....
# 4
After I performed some domain modifications ,now the logs changed as..
.[05/Aug/2006:18:43:19 +051800] nile cshttpd[3977]: General Debug: acl: call to caldb_ReadCalProps() returned -30990 for calid user1@xxxxxx.com.
[05/Aug/2006:18:43:19 +051800] nile cshttpd[3977]: General Error: ac: GetCalProps: Calendar "user1@xxxxxx.com" not found in db.
[05/Aug/2006:18:43:19 +051800] nile cshttpd[3977]: General Error: calstore_get_calprops(): call to ac_get_calprops() returning err = 20.
[05/Aug/2006:18:43:19 +051800] nile cshttpd[3977]: General Error: calstore_get_calprops(): db error (pError->iErr) = 29
and my commadmin domain search shows ...
dn: o=xxxxxx.com,dc=jlcc,dc=com
o: xxxxxx.com
preferredmailhost: xxx.xxxxx.com
icsanonymouslogin: yes
objectclass: inetdomainauthinfo
objectclass: top
objectclass: sunismanagedorganization
objectclass: sunnamespace
objectclass: sunmanagedorganization
objectclass: sundelegatedorganization
objectclass: maildomain
objectclass: icscalendardomain
objectclass: organization
sunnamespaceuniqueattrs: uid
maildomainstatus: active
sunorgtype: full
preferredlanguage: en
icsallowrights: 11287
sunpreferreddomain: xxxxxx.com
icsextendeddomainprefs: calmasterAccessOverride=yes
icsextendeddomainprefs: domainAccess=@xxxxxxx.com
icsextendeddomainprefs: allowProxyLogin=yes
icsextendeddomainprefs: calmasterCred=xxxxxxx
icsdwpbackendhosts: xxx.jxxxxx.com
icsstatus: Active
sunnumusers: 9
icsdomainnames: xxxxxxx.com
sunregisteredservicename: DomainMailService
sunregisteredservicename: GroupMailService
sunregisteredservicename: UserMailService
sunregisteredservicename: iPlanetAMAuthConfiguration
sunregisteredservicename: iPlanetAMAuthService
sunregisteredservicename: UserCalendarService
sunregisteredservicename: iPlanetAMPolicyConfigService
sunregisteredservicename: iPlanetAMAuthLDAPService
sunregisteredservicename: iPlanetAMPolicyService
sunregisteredservicename: SunPresence
sunregisteredservicename: SunIM
sunregisteredservicename: DomainCalendarService
sunenablegab: false
inetdomainstatus: Active
Whats missing...any parameters to check with properties file..
Ashik
# 5
For the third time. . .You need to be talking to a Calendar expert.That's in the Calendar forum, not here. I've had zero training or experience working through Calendar issues.
# 6
Hi,
This is a document drafted by QA for Virtual Domain , see if it helps you :
Virtual Domain setup for Schema2
Drafted by Apurba Sarkar and Ramya.Ravi
Creating Virtual Domain for Schema2 UWC
1) Install MS,CS,CE and IS (obviously you need to install webserver and directory server)
2) Go to /opt/SUNWcomm/bin
3) Use "commadmin" to create virtual domains
ex..
Suppose you want to create domain called pepsi.com, the machine you are using is nicp103.india.sun.com
and the port in which uwc is deployed is 85.
Use the following command
./commadmin domain create -D amadmin -w admin123 -X nicp103.india.sun.com -n nicp103.india.sun.com -p 85
-d pepsi.com -o pepsi.com -S cal,mail
it will prompt for
Enter domain's mailhost: Provide fully qualified host name.
The "pepsi.com" domain will be created.
3) Create User under the domain.
./commadmin user create -D amadmin -w admin123 -X nicp103.india.sun.com -n nicp103.india.sun.com -p 85 -d pepsi.com -F test -L user1 -l user1 -W user1 -S mail,cal
4) Go to /var/opt/SUNWuwc/WEB-INF/config
open uwcauth.properties file.
Search for " virtualdomain.mode " and set it to "y".
5) Go to /etc/opt/SUNWam/config
open AMConfig.properties file.
Search for "fqdnMap" parameter and set it to "nicp103.pepsi.com"(virtual domain that you created).
6) Restart the webserver and login to uwc with any user under the domain you just created(pepsi.com) and try to access calender.
You should be able to access calender.
Note:
After all these setup if you login to uwc as default domain user u will not be able to access calender.
For the default domain user to access calender open /opt/SUNWics5/cal/config/ics.conf
and set the following parameters:(Refer to CE Admin Guide for more info)
service.virtualdomain.support = "y"
local.schemaversion = "2"
service.dcroot = "o=iec" (or whatever u have given during installation)
service.schema2root = "o=iec"
service.defaultdomain = "india.sun.com"
service.loginseparator = "@+"
service.siteadmin.userid = "admin@india.sun.com"
service.virtualdomain.scope = "select"
local.domain.language = "en"
Restart Calendar server.
Issue the following command.
./commadmin domain modify -D amadmin -w admin123 -X nicp103.india.sun.com -n nicp103.india.sun.com
-p 85 -d <put your default domain here> -S cal,mail
it will prompt for
Enter domain's mailhost: Provide fully qualified host name.
Now try to login as defaultdomain user in uwc you will be able to access calender.
Thanks
Ramya
# 7
Hi ..
After reading sun documents ..actually I was in a non hosted domain setup..
I confused with (virtual and hosted)
I found we need to use "-k legacy" option for creating users in non-hosted setup..
After with -k legacy option , my users of new domain can access the calendar of UWC..
but the problem now is..
I had two domains default as xxxx.com and the one that I created as yyyy.com
When I have users with same name in two of the domains as user1..
The calid for both of them is... user1 ....so they share the same calendar
When Im in valid SSO of yyyy.com I get the mail account for user1 as user1@yyyy.com .....but the calid .. common as user1
How I can get unique calid for users under two domains..
whether I need to set Hosted domain support...Then how the mailid's differ with out using hosted domain support..
And I need to login UWC without using @domain.com...
Help me on this...
Ashik
# 8
In order to access UEC without @domain you can make an entry into your DNS and /etc/hosts for that particular domain .That will do.ThanksRamya
# 9
Hi.. for this what I do..
When Im in valid SSO of yyyy.com I get the mail account for user1 as user1@yyyy.com .....but the calid .. common as user1
How I can get unique calid for users under two domains..
whether I need to set Hosted domain support...Then how the mailid's differ with out using hosted domain support..
Ashik
# 10
Please, folks. Let's keep Calendar specific questions in the Calendar forum. We really aren't Calendar experts, here. While we do use UWC, this is truly a Calendar question.
