Environment
Novell eDirectory 8.8 for NetWare 6.5
Novell NetWare 6.5 Support Pack 8
Novell NetWare 6.5 Support Pack 7
Novell NetWare 6.5 Support Pack 6
Situation
LDAP fails to start after eDirectory was upgraded from 8.8 SP4 to 8.8 SP5 on a NetWare 6.5 server.
Resolution
Steps to resolve;
1. Delete the LDAP server and group objects for the problem server in Console One.
2. Make sure that there is no obituaries on the server. This can be checked by running a command "dsrepair -a"--> Go to advance option--> select "check external references".
3. Create LDAP server and group objects by doing the following steps:
Type the command "nwconfig" on the NetWare server console.
4. Select "extend schema" option.
5. Authenticate to the server using admin credential.
6. Press F3 to specify a path.
7. Point to the "sys:system\schema" directory and hit enter.
These steps re-extend the default schema that is in the database. This creates LDAP server and group object on the server if they were not there previously.
If it gives any error while extending the schema, press Ok and continue.
After LDAP objects have been recreated, associate the SSL Certificate DNS to the LDAP server object in ConsoleOne using ConsoleOne.
Go to LDAP group object, general tab and uncheck an option "Require TLS for simple binds with password.
Go to LDAP server object, SSL/TLS configuration tab and uncheck the option "Require TLS for all operations"
Go to server console, unload and reload LDAP by running commands "unload nldap" load nldap".
1. Delete the LDAP server and group objects for the problem server in Console One.
2. Make sure that there is no obituaries on the server. This can be checked by running a command "dsrepair -a"--> Go to advance option--> select "check external references".
3. Create LDAP server and group objects by doing the following steps:
Type the command "nwconfig" on the NetWare server console.
4. Select "extend schema" option.
5. Authenticate to the server using admin credential.
6. Press F3 to specify a path.
7. Point to the "sys:system\schema" directory and hit enter.
These steps re-extend the default schema that is in the database. This creates LDAP server and group object on the server if they were not there previously.
If it gives any error while extending the schema, press Ok and continue.
After LDAP objects have been recreated, associate the SSL Certificate DNS to the LDAP server object in ConsoleOne using ConsoleOne.
Go to LDAP group object, general tab and uncheck an option "Require TLS for simple binds with password.
Go to LDAP server object, SSL/TLS configuration tab and uncheck the option "Require TLS for all operations"
Go to server console, unload and reload LDAP by running commands "unload nldap" load nldap".