Found that the namconfig -k did the certificate download. But now I am stuck with an "nss_ldap - DSA is unavailable" problem...
Novell Remote Manager only works with local users. I saw multiple threads regarding this issue but none seems to help me for now.
My LUM setup is working perfectly for all those services...
1) Local access to console (working)
2) iManager login (working)
3) iMonitor login (working)
4) SSHd login (working)
5) Local LDAP browse from Yast (working)
The "namconfig get" show proper information..
The "namconfig -k" download the certificate successfully.
The id admin show proper user information.
The /etc/pam.d/httpstkd config includes the pam_nam.so library.
The /etc/opt/novell/httpstkd.conf has the libnrm/libnrm2ncp libraries.
The iptables firewall on the LDAP server shows ACCEPTED request on port 636.
I also tried the following...
namconfig cache_refresh.
uninstall the novell-nrm and re-install it.
If I put a bad password on an LDAP user, I can see a message in the /var/log/messages stating that the ldap_compare failed with crypted password. PAM_NAM : NDS Login failed.
Where should I look now for more info/hints ?
Is it a problem with namcd or with httpstkd ?
Originally Posted by ericp_gardeplus_ca
|
Hi,
Does Novell Remote Manager support LDAPS (self signed certificate).
My LUM/iManager setup is working fine, but I can't login to nrm using any LDAPS users. The httpstkd daemon crashes each time with an SSL error like the following.
httpstkd[2638]: pam_ldap: ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT): unknown error
httpstkd[2638]: _set_ssl_default_options failed
Is there a way to add Self_signed_certificate inside an httpstkd keystore ?
How to debut the ldap(s) portion or the httpstkd daemon ?
Thanks for your time...
Eric
|
Re: Novell remote Manager vs. LDAPS
Threaded Mode
