Home

Results 1 to 10 of 10

Thread: Remote Loader 3.6.1 & Server 2012

  1. #1
    Sebastian Cerazy NNTP User

    Remote Loader 3.6.1 & Server 2012

    Does anybody know if Remote Loader from IDM 3.6.1 will work on AD on Server
    2012?

    I have it currently running on 2003 R2, but need to replace the server

    Thanks

    Seb



  2. #2
    Alex McHugh NNTP User

    Re: Remote Loader 3.6.1 & Server 2012

    On 13.08.2013 17:19, Sebastian Cerazy wrote:
    > Does anybody know if Remote Loader from IDM 3.6.1 will work on AD on Server
    > 2012?
    >
    > I have it currently running on 2003 R2, but need to replace the server


    Firstly, IDM 3.6.1 has exited general support. In general this means
    that any new patches or support for new connected system versions are
    only available for IDM 4.0.x versions.

    Specifically, the AD driver shim which supports Active Directory on
    Windows 2012 requires a valid IDM 4.0.2 activation/license.

    It *might* work if you purchase/install the 4.0.2 activation into your
    3.6.1 ID Vault

    and

    On the AD/windows 2012 server, install the 4.0.2 IDM remote loader +
    latest AD driver shim (which supports AD 2012).

    NOTE: However this is untested and very much not supported by NetIQ/Novell

    The recommended approach from NetIQ/Novell is to upgrade your existing
    environment to IDM 4.0.2

    --
    ----------------------------------------------------------------------
    Alex McHugh
    NetIQ Knowledge Partner http://forums.netiq.com

    Please post questions in the forums. No support is provided via email.

  3. #3
    spgsitsupport NNTP User

    Re: Remote Loader 3.6.1 & Server 2012


    Thanks, I am about to go away completly from eDir (so no IDM needed), so
    it is a pity to spend time upgrading to 4.0.2 just for the sake of it

    I have 3.6.1 BE, so I also have licence for 4.x same way

    I think I will try to do the other unsupported way then

    On the other note, is Server 2008 R2 supported (or at least working)
    with 3.6.1 AD driver?

    Thanks

    Seb


    --
    spgsitsupport
    ------------------------------------------------------------------------
    spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
    View this thread: https://forums.netiq.com/showthread.php?t=48381


  4. #4
    Alex McHugh NNTP User

    Re: Remote Loader 3.6.1 & Server 2012

    On 14.08.2013 11:24, spgsitsupport wrote:
    >
    > Thanks, I am about to go away completly from eDir (so no IDM needed)


    That is unfortunate news, IDM can offer a lot even if you don't use
    eDirectory to directly authenticate users.

    > it is a pity to spend time upgrading to 4.0.2 just for the sake of it
    >
    > I have 3.6.1 BE, so I also have licence for 4.x same way


    If you are entitled to the IDM 4 BE, why not just use that?

    Or do you already have 3.6.1 BE installed and running? Even then it
    should be relatively straightforward to upgrade to IDM 4 BE

    > I think I will try to do the other unsupported way then
    >
    > On the other note, is Server 2008 R2 supported (or at least working)
    > with 3.6.1 AD driver?


    yes, that combination works fine and is fully tested by NetIQ/Novell
    (although as I said, 3.6.1 is out of general support, so in the unlikely
    instance that you encounter a problem, your support options are limited)

    If you do choose that path, I'd suggest you patch all components to the
    latest version applicable to 3.6.1 (especially the AD driver shim)


    --
    ----------------------------------------------------------------------
    Alex McHugh
    NetIQ Knowledge Partner http://forums.netiq.com

    Please post questions in the forums. No support is provided via email.

  5. #5
    spgsitsupport NNTP User

    Re: Remote Loader 3.6.1 & Server 2012


    I have 3.6.1 in place already doing password sync (BE edition is really
    only good for that). AD is on 2003 level due to 2003 existing in the mix
    (and being used for the Remote Loader currently)

    I think I will stick with 2008 R2 & latest AD shmi driver & raise domain
    level to 2008R2

    I assume latest is this:

    https://download.novell.com/Download...d=00jHe7rKPDk~

    I would have difficult to convince management to keep Novell products in
    (no matter which ones & how good they are/might be)
    Have to give in after over 15 years...


    --
    spgsitsupport
    ------------------------------------------------------------------------
    spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
    View this thread: https://forums.netiq.com/showthread.php?t=48381


  6. #6
    Alex McHugh NNTP User

    Re: Remote Loader 3.6.1 & Server 2012

    On 14.08.2013 18:04, spgsitsupport wrote:
    >
    > I have 3.6.1 in place already doing password sync (BE edition is really
    > only good for that).


    If you get clever/creative (as Lothar for example has with his Password
    Notification driver), you can do more than just password sync with BE
    (licensing wise, you are still limited to only eDir / AD and a pseudo
    loop-back driver based on the eDir driver)

    > AD is on 2003 level due to 2003 existing in the mix
    > (and being used for the Remote Loader currently)
    >
    > I think I will stick with 2008 R2 & latest AD shim driver & raise domain
    > level to 2008R2


    Just a note: You need to demote/decommission any existing 2003 DCs if
    you want to raise the domain level to 2008 R2

    > I assume latest is this:
    >
    > https://download.novell.com/Download...d=00jHe7rKPDk~
    >


    Realistically, yes. All the important 2008 R2 fixes are included in
    patch 3.5.15 or higher.



    --
    ----------------------------------------------------------------------
    Alex McHugh
    NetIQ Knowledge Partner http://forums.netiq.com

    Please post questions in the forums. No support is provided via email.

  7. #7
    Join Date
    Dec 2007
    Location
    Brooklyn, NY
    Posts
    6,213

    Re: Remote Loader 3.6.1 & Server 2012

    > If you get clever/creative (as Lothar for example has with his Password
    > Notification driver), you can do more than just password sync with BE
    > (licensing wise, you are still limited to only eDir / AD and a pseudo
    > loop-back driver based on the eDir driver)


    The Ouroboros driver approach! Gotta get him to start using that name.


  8. #8
    spgsitsupport NNTP User

    Re: Remote Loader 3.6.1 & Server 2012


    Thanks, I have Lothar's Password Expiry driver installed, but never had
    the time to configure it yet...

    Yes, of course, 2003 will get gently killed off...

    Thanks

    Seb


    --
    spgsitsupport
    ------------------------------------------------------------------------
    spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
    View this thread: https://forums.netiq.com/showthread.php?t=48381


  9. #9
    Join Date
    Dec 2007
    Location
    Brooklyn, NY
    Posts
    6,213

    Re: Remote Loader 3.6.1 & Server 2012

    On 8/14/2013 1:34 PM, spgsitsupport wrote:
    >
    > Thanks, I have Lothar's Password Expiry driver installed, but never had
    > the time to configure it yet...


    What Alex is referring too is that Lothar noticed that while the
    Loopback driver violates the BE license and incurs a full IDM license,
    you can configure an eDir to eDir driver to eat its own tail. That is
    normally you configure:

    Pub channel of DriverA to talk to Sub Channel of DriverB.
    Pub channel of DriverB to talk to Sub Channel of DriverA.

    There is no reason that:
    Pub channel of DriverA to talk to Sub Channel of DriverA.

    And what would that look like? A loopback driver. And it counts as an
    eDir driver for licensing and fits within the BE license.

    Same as if you stood up another eDir instance, that did nothing, but
    allowed you to setup a eDir driver set, and then in the SUb-Event did
    all your Loopback stuff, and then vetoed events. Oh look, its
    functionally a null driver.

    And so on...

    Thus the license is silly, but it is what it is, so live with it and
    work with its constraints.


  10. #10
    spgsitsupport NNTP User

    Re: Remote Loader 3.6.1 & Server 2012


    Thanks, I know (just) what it is (but a very nice explanation anyway!)
    Just never yet configured it...


    --
    spgsitsupport
    ------------------------------------------------------------------------
    spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
    View this thread: https://forums.netiq.com/showthread.php?t=48381


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •