Environment
Novell Open Enterprise Server 2 (OES 2) Linux
SUSE Linux Enterprise Server 10
Novell eDirectory 8.8 for Linux
SUSE Linux Enterprise Server 10
Novell eDirectory 8.8 for Linux
Situation
While configuring eDirectory into existing tree through Yast2 the following error encountered: Login failed error: failed, failed authentication (-669)
ERROR: /opt/novell/eDirectory/bin/ndsconfig return value = 100
The eDirectory objects related to the server gets created in the tree but the eDirectory installation fails
Admin user is assigned to the Universal Password Policy which has allows special characters in its password
Yast2 does not recognize special characters
ERROR: /opt/novell/eDirectory/bin/ndsconfig return value = 100
The eDirectory objects related to the server gets created in the tree but the eDirectory installation fails
Admin user is assigned to the Universal Password Policy which has allows special characters in its password
Yast2 does not recognize special characters
Resolution
- Check Universal Password Policy assigned to Admin user. Open iManager | In Roles and Tasks section select Passwords | select View Policy Assignment | browse and select Admin user and verify the password policy assigned to the Admin user
- Unassign Admin user from the Universal Password Policy using the following method. Open iManager | In Roles and Tasks section select Passwords | select Password Policies | select the password policy assigned to Admin user | go to the Policy Assignment tab and remove the Admin user from the list | save the changes
- Reset Admin user password. Open iManager | In Roles and Tasks section select eDirectory Administration | select Modify Object | browse and select Admin user | select the Restrictions Tab and click on set password | save the changes
- On the Linux server terminal, type the command"ndslogin admin.context"without quotes. Example: ndslogin admin.novell Enter Admin password when prompted
- Open terminal and type " mv /var/opt/novell/eDirectory/data/dib /var/opt/novell/eDirectory/data/dibold" without quotes (To backup existing eDirectory database)
- Next type "mv /etc/opt/novell/eDirectory/conf/nds.conf /etc/opt/novell/eDirectory/conf/nds.conf.old" without quotes (To backup existing nds.conf file)
- Reconfigure eDirectory through Yast2. Launch Yast2 | select “OES Install and Configuration” | in software selection select Novell eDirectory and click on Accept | select existing tree, specify the tree name and click on the check box for "Use eDirectory Certificates for HTTPS Services" and click next | enter IP address of existing eDirectory server containing replica, proper FDN for the admin user and enter admin password and click on next | enter proper server context and keep default settings for remaining parameters and click on next | enter IP address of the NTP server and enter IP address of the SLP DA server if SLP is configured in the tree and click on next | on Novell Modular Authentication Service, select the NMAS method which are being used or keep default options and click on next and then finish the installation