Hi
I got 389 running on a remote linux box,and I would like to get use of the Console without the need of exporting the X-Windows whenever I want to make a change as I also would prefer not to keep tweaking the configuration files all the time.
is there anyway of doing this through any remote client?
Any advise on this matter?
Thanks very much
Hi Guys
Apologies as I missed an important point I am trying to compile the console on my local system.(MacOSX) Hopefully that will sort the problem
Thanks very much...
On 2014-06-05 03:23, g.fer.ordas@unicyber.co.uk wrote:
Hi
I got 389 running on a remote linux box,and I would like to get use of the Console without the need of exporting the X-Windows whenever I want to make a change as I also would prefer not to keep tweaking the configuration files all the time.
is there anyway of doing this through any remote client?
Any advise on this matter?
Thanks very much
389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Console is not designed for OS X.
Below a couple of options I use with OS X.
* install Linux virtual machine on local machine, run Console there (this what I use mostly) * run Console from 389 server with X forwarding
-Vesa
On 05/06/14 14:16, g.fer.ordas@unicyber.co.uk wrote:
Hi Guys
Apologies as I missed an important point I am trying to compile the console on my local system.(MacOSX) Hopefully that will sort the problem
Thanks very much...
On 2014-06-05 03:23, g.fer.ordas@unicyber.co.uk wrote:
Hi
I got 389 running on a remote linux box,and I would like to get use of the Console without the need of exporting the X-Windows whenever I want to make a change as I also would prefer not to keep tweaking the configuration files all the time.
is there anyway of doing this through any remote client?
Any advise on this matter?
Thanks very much
389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Why not use X11 from OS X? I use it regularly from Lion to open 389-console with no configuration changes needed except a Linux host that allows X11 forwarding. I use Xquartz as my OSX X11 server, and works very well. When I need to edit numerous records I also use Apache Directory Studio. There is a native OS X and Linux version.
- Trey On Jun 5, 2014 5:23 AM, g.fer.ordas@unicyber.co.uk wrote:
Hi
I got 389 running on a remote linux box,and I would like to get use of the Console without the need of exporting the X-Windows whenever I want to make a change as I also would prefer not to keep tweaking the configuration files all the time.
is there anyway of doing this through any remote client?
Any advise on this matter?
Thanks very much
389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Hi
This is a remote centos 6.4 box with OpenLDAP-389 running on it.
port: 9030 is listening on an specific port (not 0.0.0.0) iptables off (Admin server and ldap both running -- Ldap port 389)
Console-390 installed in a remote box and I am running this with debugging on So I am connecting ALL RIGHT to the remote server BUT, the administrative server is flagged as stopped!!
Looking at the logs from the console :
------
JButtonFactory: button width = 90 JButtonFactory: button width = 72 topology.NodeDataPanel ancestorRemoved() removes Change Listener topology.NodeDataPanel ancestorAdded() adds Change Listener AbstractServerObject.unselect: Destroy status thread AbstractServerObject.StatusThread: Status thread stop because java.lang.InterruptedException: sleep interrupted ClassLoader: :loadClass():name:java.lang.StringBuilder ClassLoader: :loadClass():name:com.netscape.management.client.util.AdmTask ClassLoader: :loadClass():loading:com.netscape.management.client.util.AdmTask ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1.jar ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1_en.jar ResourceSet: found in cache loader2038935242:com.netscape.management.client.util.default ClassLoader: :loadClass():name:java.net.URL CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused ClassLoader: :loadClass():name:java.net.SocketException AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0040 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010
--------
At login time at the console I supply an IP for the remote server and it connects all right. I cannot understand why the StatusPing is addressed against "0.0.0.0" rather than the specified IP?
Any thoughts? Am I missing also something in the server side to let my local console think the server is defined at 0.0.0.0?
Thanks very much
Hi
Apologies.... but I got the issue sorted...
Thanks very much
On 2014-06-06 08:25, g.fer.ordas@unicyber.co.uk wrote:
Hi
This is a remote centos 6.4 box with OpenLDAP-389 running on it.
port: 9030 is listening on an specific port (not 0.0.0.0) iptables off (Admin server and ldap both running -- Ldap port 389)
Console-390 installed in a remote box and I am running this with debugging on So I am connecting ALL RIGHT to the remote server BUT, the administrative server is flagged as stopped!!
Looking at the logs from the console :
JButtonFactory: button width = 90 JButtonFactory: button width = 72 topology.NodeDataPanel ancestorRemoved() removes Change Listener topology.NodeDataPanel ancestorAdded() adds Change Listener AbstractServerObject.unselect: Destroy status thread AbstractServerObject.StatusThread: Status thread stop because java.lang.InterruptedException: sleep interrupted ClassLoader: :loadClass():name:java.lang.StringBuilder ClassLoader: :loadClass():name:com.netscape.management.client.util.AdmTask ClassLoader: :loadClass():loading:com.netscape.management.client.util.AdmTask ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1.jar ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1_en.jar ResourceSet: found in cache loader2038935242:com.netscape.management.client.util.default ClassLoader: :loadClass():name:java.net.URL CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused ClassLoader: :loadClass():name:java.net.SocketException AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0040 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010
At login time at the console I supply an IP for the remote server and it connects all right. I cannot understand why the StatusPing is addressed against "0.0.0.0" rather than the specified IP?
Any thoughts? Am I missing also something in the server side to let my local console think the server is defined at 0.0.0.0?
Thanks very much
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
then please share how you fixed it or what the issue was, so other people that encounter this can solve it. There is not much more frustrating then thinking you find a solution, only to read someone fixed it. thank you
On Fri, Jun 6, 2014 at 6:25 PM, g.fer.ordas@unicyber.co.uk wrote:
Hi
Apologies.... but I got the issue sorted...
Thanks very much
On 2014-06-06 08:25, g.fer.ordas@unicyber.co.uk wrote:
Hi
This is a remote centos 6.4 box with OpenLDAP-389 running on it.
port: 9030 is listening on an specific port (not 0.0.0.0) iptables off (Admin server and ldap both running -- Ldap port 389)
Console-390 installed in a remote box and I am running this with debugging on So I am connecting ALL RIGHT to the remote server BUT, the administrative server is flagged as stopped!!
Looking at the logs from the console :
JButtonFactory: button width = 90 JButtonFactory: button width = 72 topology.NodeDataPanel ancestorRemoved() removes Change Listener topology.NodeDataPanel ancestorAdded() adds Change Listener AbstractServerObject.unselect: Destroy status thread AbstractServerObject.StatusThread: Status thread stop because java.lang.InterruptedException: sleep interrupted ClassLoader: :loadClass():name:java.lang.StringBuilder ClassLoader: :loadClass():name:com.netscape.management.client. util.AdmTask ClassLoader: :loadClass():loading:com.netscape.management.client. util.AdmTask ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1.jar ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1_en.jar ResourceSet: found in cache loader2038935242:com.netscape.management.client.util.default ClassLoader: :loadClass():name:java.net.URL CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused ClassLoader: :loadClass():name:java.net.SocketException AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0040 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010
At login time at the console I supply an IP for the remote server and it connects all right. I cannot understand why the StatusPing is addressed against "0.0.0.0" rather than the specified IP?
Any thoughts? Am I missing also something in the server side to let my local console think the server is defined at 0.0.0.0?
Thanks very much
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Sorry yes.
this is related to subject "[389-users] 389 GUI/Console" and what I was doing (running the Console from MAC)
The issue is down the the version of the Jar files.. I made a couple of mistakes but updating all the Jar files from my client box (box) up to the same version as the sd-389 Server sort the problem.
Thanks very much
On 2014-06-06 10:02, Vincent Gerris wrote:
then please share how you fixed it or what the issue was, so other people that encounter this can solve it. There is not much more frustrating then thinking you find a solution, only to read someone fixed it.
thank you
On Fri, Jun 6, 2014 at 6:25 PM, g.fer.ordas@unicyber.co.uk wrote:
Hi
Apologies.... but I got the issue sorted...
Thanks very much
On 2014-06-06 08:25, g.fer.ordas@unicyber.co.uk wrote:
Hi
This is a remote centos 6.4 box with OpenLDAP-389 running on it.
port: 9030 is listening on an specific port (not 0.0.0.0) iptables off (Admin server and ldap both running -- Ldap port 389)
Console-390 installed in a remote box and I am running this with debugging on So I am connecting ALL RIGHT to the remote server BUT, the administrative server is flagged as stopped!!
Looking at the logs from the console :
JButtonFactory: button width = 90 JButtonFactory: button width = 72 topology.NodeDataPanel ancestorRemoved() removes Change Listener topology.NodeDataPanel ancestorAdded() adds Change Listener AbstractServerObject.unselect: Destroy status thread AbstractServerObject.StatusThread: Status thread stop because java.lang.InterruptedException: sleep interrupted ClassLoader: :loadClass():name:java.lang.StringBuilder ClassLoader: :loadClass():name:com.netscape.management.client.util.AdmTask ClassLoader: :loadClass():loading:com.netscape.management.client.util.AdmTask ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1.jar ClassLoader: com/netscape/management/client/util/AdmTask.class NOT in 389-admin-1.1_en.jar ResourceSet: found in cache loader2038935242:com.netscape.management.client.util.default ClassLoader: :loadClass():name:java.net.URL CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing [1]) java.net.ConnectException: Connection refused ClassLoader: :loadClass():name:java.net [2].SocketException AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0040 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing [1]) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010 AbstractServerObject.StatusThread: change listener count=1 CommManager> New CommRecord (http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing [1]) java.net.ConnectException: Connection refused AbstractServerObject.StatusThread: Check Status CGI = 2 exe time: 0.0010
At login time at the console I supply an IP for the remote server and it connects all right. I cannot understand why the StatusPing is addressed against "0.0.0.0" rather than the specified IP?
Any thoughts? Am I missing also something in the server side to let my local console think the server is defined at 0.0.0.0?
Thanks very much
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users [3]
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users [3]
Links:
[1] http://0.0.0.0:9830/admin-serv/tasks/operation/StatusPing [2] http://java.net [3] https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Hi
I was working like that but extremely slow even using all the compression I could.. Now, the good news.
I have compiled the 389 Console for Mac and it works really well. I have to make clear this is for my current server needs so the following packages were installed AT server level:
389-console-1.1.7-1.el6.noarch 389-admin-1.1.35-1.el6.x86_64 389-admin-console-doc-1.1.8-1.el6.noarch 389-adminutil-1.1.19-1.el6.x86_64 389-ds-base-libs-1.2.11.15-32.el6_5.x86_64 389-ds-base-1.2.11.15-32.el6_5.x86_64 389-admin-console-1.1.8-1.el6.noarch 389-ds-console-doc-1.2.6-1.el6.noarch 389-dsgw-1.1.11-1.el6.x86_64 389-ds-console-1.2.6-1.el6.noarch 389-ds-1.2.2-1.el6.noarch
Said that, I will publish a bundle with my installation so that can be ported into any Mac box. I have tested on another box this setup, no tweaks required and it seems to work perfectly fine...
Many thanks...
On 2014-06-05 23:12, Trey Dockendorf wrote:
Why not use X11 from OS X? I use it regularly from Lion to open 389-console with no configuration changes needed except a Linux host that allows X11 forwarding. I use Xquartz as my OSX X11 server, and works very well. When I need to edit numerous records I also use Apache Directory Studio. There is a native OS X and Linux version.
- Trey
On Jun 5, 2014 5:23 AM, g.fer.ordas@unicyber.co.uk wrote:
Hi
I got 389 running on a remote linux box,and I would like to get use of the Console without the need of exporting the X-Windows whenever I want to make a change as I also would prefer not to keep tweaking the configuration files all the time.
is there anyway of doing this through any remote client?
Any advise on this matter?
Thanks very much
389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users [1]
Links:
[1] https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-u
sers
Hi
This is the place where I have posted the MacOSX Version for the console:
http://generations.menteyarte.org/archives/182-ds-389-Console-for-MacOsX!.ht...
Many thanks
On 06/06/2014 17:33, g.fer.ordas@unicyber.co.uk wrote:
Hi
I was working like that but extremely slow even using all the compression I could.. Now, the good news.
I have compiled the 389 Console for Mac and it works really well. I have to make clear this is for my current server needs so the following packages were installed AT server level:
389-console-1.1.7-1.el6.noarch 389-admin-1.1.35-1.el6.x86_64 389-admin-console-doc-1.1.8-1.el6.noarch 389-adminutil-1.1.19-1.el6.x86_64 389-ds-base-libs-1.2.11.15-32.el6_5.x86_64 389-ds-base-1.2.11.15-32.el6_5.x86_64 389-admin-console-1.1.8-1.el6.noarch 389-ds-console-doc-1.2.6-1.el6.noarch 389-dsgw-1.1.11-1.el6.x86_64 389-ds-console-1.2.6-1.el6.noarch 389-ds-1.2.2-1.el6.noarch
Said that, I will publish a bundle with my installation so that can be ported into any Mac box. I have tested on another box this setup, no tweaks required and it seems to work perfectly fine...
Many thanks...
On 2014-06-05 23:12, Trey Dockendorf wrote:
Why not use X11 from OS X? I use it regularly from Lion to open 389-console with no configuration changes needed except a Linux host that allows X11 forwarding. I use Xquartz as my OSX X11 server, and works very well. When I need to edit numerous records I also use Apache Directory Studio. There is a native OS X and Linux version.
- Trey
On Jun 5, 2014 5:23 AM, g.fer.ordas@unicyber.co.uk wrote:
Hi
I got 389 running on a remote linux box,and I would like to get use of the Console without the need of exporting the X-Windows whenever I want to make a change as I also would prefer not to keep tweaking the configuration files all the time.
is there anyway of doing this through any remote client?
Any advise on this matter?
Thanks very much
389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users [1]
Links:
[1] https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-u
sers
389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Hi
I am having issues related to a oneWay SYNC from AD to LDAP.
I got everything running the password sync part I have kept disable for a bit as I want to JUST sync users for start. This is an Ubuntu --- Windows2012 setup (only 2 boxes) The Unidirectional setup "fromWindows" defined in the replication object.
The authentication gets through to the AD box, I can initialise the replica and that is all, it never gets any data into the DS. I have follow all the steps certificate related...etc.. which they seem all right, but I cannot understand what happens.
Error log below:
----- [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> wait_for_changes [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> start [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No linger to cancel on the connection [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Disconnected from the consumer [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: start -> ready_to_acquire_replica [01/Mar/2015:09:08:53 +0000] - acquire_replica, supplier RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - supplier: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - supplier: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] - acquire_replica, consumer RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - consumer: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - consumer: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Trying secure slapi_ldap_init_ext
[01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): binddn = cn=user Sync,cn=Users,dc=windows,dc=activedirectory,dc=com, passwd = {DES}s/tdsdsdsd [01/Mar/2015:09:08:53 +0000] - windows_conn_connect : detected Win2k3 or later peer [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No linger to cancel on the connection [01/Mar/2015:09:08:53 +0000] - _csngen_adjust_local_time: gen state before 54f2d6e10002:1425200865:0:0 [01/Mar/2015:09:08:53 +0000] - _csngen_adjust_local_time: gen state after 54f2d7250000:1425200933:0:0 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - windows_acquire_replica returned success (101) [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: ready_to_acquire_replica -> sending_updates [01/Mar/2015:09:08:53 +0000] - csngen_adjust_time: gen state before 54f2d7250001:1425200933:0:0 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - changelog program - _cl5GetDBFile: found DB object 7f462249add0 for database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:08:53 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Consumer RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Supplier RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No changes to send [01/Mar/2015:09:08:53 +0000] - Calling dirsync search request plugin [01/Mar/2015:09:08:53 +0000] - Sending dirsync search request [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Beginning linger on the connection [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: sending_updates -> wait_for_changes [01/Mar/2015:09:09:24 +0000] - _csngen_adjust_local_time: gen state before 54f2d7250001:1425200933:0:0 [01/Mar/2015:09:09:24 +0000] - _csngen_adjust_local_time: gen state after 54f2d7440000:1425200964:0:0 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - ruv_add_csn_inprogress: successfully inserted csn 54f2d744000000010000 into pending list [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - Purged state information from entry ou=People,dc=windows,dc=activedirectory,dc=com up to CSN 54e99b61000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program - _cl5GetDBFileByReplicaName: found DB object 7f462249add0 for database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program - _cl5GetDBFileByReplicaName: found DB object 7f462249add0 for database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - ruv_update_ruv: successfully committed csn 54f2d744000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> wait_for_changes [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> ready_to_acquire_replica [01/Mar/2015:09:09:24 +0000] - acquire_replica, supplier RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - supplier: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - supplier: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d744000000010000 54f2d744 [01/Mar/2015:09:09:24 +0000] - acquire_replica, consumer RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - consumer: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - consumer: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:09:24 +0000] - acquire_replica, supplier RUV is newer [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Cancelling linger on the connection [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - windows_acquire_replica returned success (101) [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: ready_to_acquire_replica -> sending_updates [01/Mar/2015:09:09:24 +0000] - csngen_adjust_time: gen state before 54f2d7440002:1425200964:0:0 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program - _cl5GetDBFile: found DB object 7f462249add0 for database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:09:24 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Consumer RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:09:24 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Supplier RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d744000000010000 54f2d744 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - clcache_get_buffer: found thread private buffer cache 7f4604021ef0 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - clcache_get_buffer: _pool is 7f462248e080 _pool->pl_busy_lists is 7f4604001010 _pool->pl_busy_lists->bl_buffers is 7f4604021ef0 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - session start: anchorcsn=54f2d5e1000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program - agmt="cn=windows.activedirectory.com" (adserver:636): CSN 54f2d5e1000000010000 found, position set for replay [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - load=1 rec=1 csn=54f2d744000000010000 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - clcache_load_buffer: rc=-30988 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No more updates to send (cl5GetNextOperationToReplay) [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - session end: state=5 load=1 sent=1 skipped=0 skipped_new_rid=0 skipped_csn_gt_cons_maxcsn=0 skipped_up_to_date=0 skipped_csn_gt_ruv=0 skipped_csn_covered=0 [01/Mar/2015:09:09:24 +0000] - Calling dirsync search request plugin [01/Mar/2015:09:09:24 +0000] - Sending dirsync search request [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Beginning linger on the connection [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: sending_updates -> wait_for_changes [01/Mar/2015:09:09:28 +0000] NSMMReplicationPlugin - changelog program - _cl5GetDBFile: found DB object 7f462249add0 for database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:09:28 +0000] NSMMReplicationPlugin - changelog program - cl5GetOperationCount: found DB object 7f462249add0 ------
I have played with this for 2 weeks setting up every single possible change in DS related to Users, Groups, but I cannot understand why 389-DS does not feel able of getting the data out of AD? I do not have a good error log showing a successful data import which I can compare with, so I do not know how to expect that. To me looks like Windows is simply dropping the connection, but from a Windows perspective it seems ok as the User validates all right . At this stage I do not know what else to look at?
Any tips please?
Many thanks!
Anybody?
On 01/03/2015 22:17, Gonzalo Fernandez Ordas wrote:
Hi
I am having issues related to a oneWay SYNC from AD to LDAP.
I got everything running the password sync part I have kept disable for a bit as I want to JUST sync users for start. This is an Ubuntu --- Windows2012 setup (only 2 boxes) The Unidirectional setup "fromWindows" defined in the replication object.
The authentication gets through to the AD box, I can initialise the replica and that is all, it never gets any data into the DS. I have follow all the steps certificate related...etc.. which they seem all right, but I cannot understand what happens.
Error log below:
[01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> wait_for_changes [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> start [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No linger to cancel on the connection [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Disconnected from the consumer [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: start -> ready_to_acquire_replica [01/Mar/2015:09:08:53 +0000] - acquire_replica, supplier RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - supplier: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - supplier: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] - acquire_replica, consumer RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - consumer: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - consumer: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Trying secure slapi_ldap_init_ext
[01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): binddn = cn=user Sync,cn=Users,dc=windows,dc=activedirectory,dc=com, passwd = {DES}s/tdsdsdsd [01/Mar/2015:09:08:53 +0000] - windows_conn_connect : detected Win2k3 or later peer [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No linger to cancel on the connection [01/Mar/2015:09:08:53 +0000] - _csngen_adjust_local_time: gen state before 54f2d6e10002:1425200865:0:0 [01/Mar/2015:09:08:53 +0000] - _csngen_adjust_local_time: gen state after 54f2d7250000:1425200933:0:0 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - windows_acquire_replica returned success (101) [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: ready_to_acquire_replica -> sending_updates [01/Mar/2015:09:08:53 +0000] - csngen_adjust_time: gen state before 54f2d7250001:1425200933:0:0 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - changelog program
- _cl5GetDBFile: found DB object 7f462249add0 for database
/var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db
[01/Mar/2015:09:08:53 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Consumer RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Supplier RUV: [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No changes to send [01/Mar/2015:09:08:53 +0000] - Calling dirsync search request plugin [01/Mar/2015:09:08:53 +0000] - Sending dirsync search request [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Beginning linger on the connection [01/Mar/2015:09:08:53 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: sending_updates -> wait_for_changes [01/Mar/2015:09:09:24 +0000] - _csngen_adjust_local_time: gen state before 54f2d7250001:1425200933:0:0 [01/Mar/2015:09:09:24 +0000] - _csngen_adjust_local_time: gen state after 54f2d7440000:1425200964:0:0 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - ruv_add_csn_inprogress: successfully inserted csn 54f2d744000000010000 into pending list [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - Purged state information from entry ou=People,dc=windows,dc=activedirectory,dc=com up to CSN 54e99b61000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program
- _cl5GetDBFileByReplicaName: found DB object 7f462249add0 for
database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program
- _cl5GetDBFileByReplicaName: found DB object 7f462249add0 for
database /var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - ruv_update_ruv: successfully committed csn 54f2d744000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> wait_for_changes [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: wait_for_changes -> ready_to_acquire_replica [01/Mar/2015:09:09:24 +0000] - acquire_replica, supplier RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - supplier: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - supplier: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d744000000010000 54f2d744 [01/Mar/2015:09:09:24 +0000] - acquire_replica, consumer RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - consumer: {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - consumer: {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:09:24 +0000] - acquire_replica, supplier RUV is newer [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Cancelling linger on the connection [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - windows_acquire_replica returned success (101) [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: ready_to_acquire_replica -> sending_updates [01/Mar/2015:09:09:24 +0000] - csngen_adjust_time: gen state before 54f2d7440002:1425200964:0:0 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program
- _cl5GetDBFile: found DB object 7f462249add0 for database
/var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db
[01/Mar/2015:09:09:24 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Consumer RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d5e1000000010000 54f2d5e1 [01/Mar/2015:09:09:24 +0000] - _cl5PositionCursorForReplay (agmt="cn=windows.activedirectory.com" (adserver:636)): Supplier RUV: [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replicageneration} 54f0c078000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - agmt="cn=windows.activedirectory.com" (adserver:636): {replica 1 ldap://ldapserver.com:389} 54f23832000000010000 54f2d744000000010000 54f2d744 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - clcache_get_buffer: found thread private buffer cache 7f4604021ef0 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - clcache_get_buffer: _pool is 7f462248e080 _pool->pl_busy_lists is 7f4604001010 _pool->pl_busy_lists->bl_buffers is 7f4604021ef0 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - session start: anchorcsn=54f2d5e1000000010000 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - changelog program
- agmt="cn=windows.activedirectory.com" (adserver:636): CSN
54f2d5e1000000010000 found, position set for replay [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - load=1 rec=1 csn=54f2d744000000010000 [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - clcache_load_buffer: rc=-30988 [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): No more updates to send (cl5GetNextOperationToReplay) [01/Mar/2015:09:09:24 +0000] agmt="cn=windows.activedirectory.com" (adserver:636) - session end: state=5 load=1 sent=1 skipped=0 skipped_new_rid=0 skipped_csn_gt_cons_maxcsn=0 skipped_up_to_date=0 skipped_csn_gt_ruv=0 skipped_csn_covered=0 [01/Mar/2015:09:09:24 +0000] - Calling dirsync search request plugin [01/Mar/2015:09:09:24 +0000] - Sending dirsync search request [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): Beginning linger on the connection [01/Mar/2015:09:09:24 +0000] NSMMReplicationPlugin - windows sync - agmt="cn=windows.activedirectory.com" (adserver:636): State: sending_updates -> wait_for_changes [01/Mar/2015:09:09:28 +0000] NSMMReplicationPlugin - changelog program
- _cl5GetDBFile: found DB object 7f462249add0 for database
/var/lib/dirsrv/slapd-instance/changelogdb/c3b80d03-beb311e4-8df9a16f-b0f06c9b_54f0c078000000010000.db
[01/Mar/2015:09:09:28 +0000] NSMMReplicationPlugin - changelog program
- cl5GetOperationCount: found DB object 7f462249add0
I have played with this for 2 weeks setting up every single possible change in DS related to Users, Groups, but I cannot understand why 389-DS does not feel able of getting the data out of AD? I do not have a good error log showing a successful data import which I can compare with, so I do not know how to expect that. To me looks like Windows is simply dropping the connection, but from a Windows perspective it seems ok as the User validates all right . At this stage I do not know what else to look at?
Any tips please?
Many thanks!
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
389-users@lists.fedoraproject.org