Environment
SUSE Linux Enterprise Server 9 SP2 (included in OES 1.0 SP2)
SUSE Linux Enterprise Server 10 SP1 (32 bit or 64 bit)
Windows 2003 Server with SP1 (64-bit and 32-bit)
Novell Identity Manager Roles Based Provisioning Module 3.6.1
Novell 3.6.1 Role Service driver
Novell eDirectory 8.8.2
Novell eDirectory 8.8.5
Situation
Roles Server Driver will fail to start if accessing eDirectory which is installed in a non-default location. The trace log will show the following error message when the Roles Services driver, RoleService_3_6_1-IDM3_5_1-V1 fails to start.
=====
DirXML Log Event -------------------
Driver: \P-IDM-XDIR\services\Driver Set\RoleService_3_6_1-IDM3_5_1-V1
Status: Fatal
Message: Code(-9005) The driver returned a "fatal" status indicating that the driver should be shut down. Detail from driver: Unable to read role configuration from: services\Driver Set\UserApplication_3_6_1-IDM3_5_1-V1<application>DirXML</application>
<module>RoleService_3_6_1-IDM3_5_1-V1</module>
=====
Resolution
The solution depends on what operating system eDirectory is installed on, SUSE or Windows.
Listed below are the steps to follow for each OS.
SUSE
Steps to follow if eDirectory is installed in a non-default location on SUSE.
The schema needs to be extended manually and the driver has to be placed in eDirectory installed location.
1. Run Roles Driver Installer, with schema extension option unchecked in select Component window panel and click on 'Next'.
2. Choose Appropriate Install location for Driver and click on 'Next'
3. Choose Appropriate Install Location For Driver Configuration Files and click on 'Next'.Complete the installation.
Step 1 through 3 copies Driver and Driver Configuration files in non-default location of eDirectory
4. Run the below sample command to extend schema(i.e srvprv.sch,nrf-extensions.sch).
ndssch [-h hostname[:port]] [-t tree_name] admin-FDN schemafile...
For Example :
ndssch -h 172.16.1.137:524 -t TESTTREE -p 'PASSWORD' .cn=admin.o=novell.T=TESTTREE. /opt/novell/eDirectory/lib/nds-schema/srvprv.sch'
5. Repeat Step 4 to extend nrf-extensions.sch.
End of steps to follow on SUSE
Windows
Steps to follow if eDirectory is installed in a non-default location on Windows.
The schema needs to be extended manually and the driver has to be placed in eDirectory installed location.
1. After installing Identity Manager, stop eDirectory.
2. Run the following command to extend the schema's listed in sch_nt.cfg which is located in eDirectory installation location.
<eDirLocation>\schemaStart.bat <eDirLocation> yes <admin name with tree> <password> yes 6 """<schemafileName>"
"<serverName>"<dibPathLocation>
NOTE: <dibPathLocation> must contain the DIBFiles folder.
Sample Command:
C:\eDir\NDS\schemaStart.bat "C:\eDir\NDS" yes
".cn=admin.o=n.T=IDM-INSTALLISSUE.""n" yes 6 ""
"C:\eDir\NDS\ vrschema.sch"".CN=WIN2008-64-NDS.O=n.T=IDMINSTALLISSUE."
"C:\DIB\NDS\DIBFiles"
Note: In the above command as per Section 2.1.11 (Step2) of IDM3.6.1 MetaDirectory_Readme sch_nt.cfg to extend has not been used. All the schema files in sch_nt.cfg have been extended manually by using the above command.
3. Install Roles Driver, uncheck schema extension option in select Component window panel and complete the installation.
4. After installing Roles Driver, extend the Role-Based schema files srvprv.sch and nrf-extensions.sch by following the command listed in Step 2.
5. Extend NrfCaseupdate schema update-nrf-case.sch the command listed in Step 2
6. Start eDirectory.
End of steps to follow for Windows.
========================================================================