NOVELL FORUMS

akernsps · #1 16-Oct-2009, 03:38 PM

We are currently trying to enable universal passwords so we can sync users and passwords to AD. We have UP enabled and the policy assigned to a few test users. It appears that the UP is not being set on client login or by setting ti though iManager. There are no error popups or errors in a dstrace. Also, the distribution password is not being created. The only attributes created are sASLoginConfiguration and sASLoginConfiguration.

dstrace:

11:07:10 AD1CA600 -1 NMAS: 19: Create NMAS Session
11:07:10 AD1CA600 -1 NMAS: 19: Pregathered information NMAS_AID = 2 ignored
11:07:10 AD1CA600 -1 NMAS: 19: Pregathered information NMAS_AID = 1 value CN=TStudent.OU=2024.OU=Student.OU=Users.O=SPS
11:07:10 AD1CA600 -1 NMAS: 19: NMAS Client supplied user DN CN=TStudent.OU=2024.OU=Student.OU=Users.O=SPS
11:07:10 AD1CA600 -1 NMAS: 19: Create thread request
11:07:10 AD1CA600 -1 NMAS: 19: Using thread 0xa172e8c0
11:07:10 AD1CA600 -1 NMAS: 19: Server thread started
11:07:10 AD1CA600 -1 NMAS: 19: Started login session
11:07:10 AD1CA600 -1 NMAS: 19: NCP client address type 1
11:07:10 AD1CA600 -1 NMAS: 19: NCP client address 10 60 16 29
11:07:10 AD1CA600 -1 NMAS: 19: PxySendProxyClientInfo Bad Client MAF Handle
11:07:10 9D2AC460 -1 NMAS: 19: Pool thread 0xa172e8c0 awake with new work
11:07:10 9D2AC460 -1 NMAS: 19: OEM
11:07:10 9D2AC460 -1 NMAS: 19: OEM Verb 3
11:07:10 9D2AC460 -1 NMAS: 19: CanDo
11:07:10 9D2AC460 -1 NMAS: 19: IP client network address
11:07:10 9D2AC460 -1 NMAS: 19: Selected default login sequence == "NDS"
11:07:10 9D2AC460 -1 NMAS: 19: Login Method 0x00000007
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 Get attribute AID: 1
11:07:10 9D2AC460 -1 NMAS: 19: Begin Server Module 0x00000007
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 Get attribute AID: 39
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 Get Password
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 Write
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 XWrite
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 XRead
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 XWrite
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 Read
11:07:10 9D2AC460 -1 NMAS: 19: Server Module 0x00000007 Successful
11:07:10 9D2AC460 -1 NMAS: 19: NDS Login Method Successful
11:07:10 9D2AC460 -1 NMAS: 19: WhatNext
11:07:10 9D2AC460 -1 NMAS: 19: Successful login
11:07:10 AD1C15C0 -1 NMAS: 19: NDS Credential request
11:07:10 AD1C15C0 -1 NMAS: 19: Returning NDS Credential size 566
11:07:10 AD1C15C0 -1 NMAS: 19: Encrypted NDS Credential size 568
11:07:10 AD2B4260 879 Auth: 1 DSAFinishAuthentication.
11:07:10 AD2B4260 879 Auth: 2 DSAFinishAuthentication.
11:07:10 AD2B4260 879 Auth: 3 DSAFinishAuthentication.
11:07:10 AD2B4260 879 Auth: 1 GlobalGetSEV.
11:07:10 AD2B4260 879 Auth: 4 GlobalGetSEV succeeded.
11:07:10 AD2B4260 879 Auth: [000083a5] <.TStudent.2024.Student.Users.SPS.SPS_TREE.> Authenticated. Error success, conn: 879.
11:07:10 AD2B4260 879 Auth: 4 DSAFinishAuthentication.
11:07:10 AD1C15C0 -1 NMAS: 19: NMAS session succeeded
11:07:10 AD1C15C0 -1 NMAS: 19: Client Session Destroy Request
11:07:10 AD1C15C0 -1 NMAS: 19: Local Session Cleared (Not Destroyed)
11:07:10 9D2AC460 -1 NMAS: 19: Server get data detected that the session was cleared
11:07:10 9D2AC460 -1 NMAS: 19: Server thread exited
11:07:10 9D2AC460 -1 NMAS: 19: Pool thread 0xa172e8c0 work complete

Password Policy:

Enable Universal Password true
Enable the Advanced Password Rules true
Synchronize NDS password when setting Universal Password true
Synchronize Simple Password when setting Universal Password true
Allow user to retrieve password true
Allow admin to retrieve passwords true
Allow the following to retrieve passwords false
Synchronize Distribution Password when setting Universal Password true
Allow the following to retrieve passwords

Verify whether existing passwords comply with the password policy (verification occurs on login)