Hi,

according to http://tinyurl.com/qzjr58j
document I have deployed pum in windows 2008 R2 SP1 server and created
PUM Driver in IDM via RL.Schema's are extended in IDM (4.0.2) too. I
have set a privileged authentication account in PUM and used that
account in Framework user manager for RDPRelay authentication. My users
are coming from AD, those i want to manage from pum.

I have mentioned my idmadmin (default IDM Admin) account,LDAPS (639)
and correct password in pum privileged account that I am using to login
into iManager too, but from RDPRelay users authentication is showing
invalid username or password.

There was no password policy in IDM user container where AD users are
residing.

I have collected below dstrace log with LDAP and NMAS from IDM. Please
any one can help me on this issue?

Note: AD users are comming into IDM without password and we are
resetting it from IDM.

Thanks and Regards

Deb

*** Novell eDirectory Trace Utility - BEGIN Logging *** Thu Sep 18
16:15:05 2014
LDAP : New TLS connection 0x14a71380 from 192.168.16.3:49891, monitor
= 0x604, index = 3
LDAP : Monitor 0x604 initiating TLS handshake on connection
0x14a71380
LDAP : (192.168.16.3:49891)(0x0000:0x00) DoTLSHandshake on connection
0x14a71380
LDAP : BIO ctrl called with unknown cmd 7
LDAP : (192.168.16.3:49891)(0x0000:0x00) Completed TLS handshake on
connection 0x14a71380
LDAP : (192.168.16.3:49891)(0x0049:0x60) DoBind on connection
0x14a71380
LDAP : (192.168.16.3:49891)(0x0049:0x60) Bind
name:cn=idmadmin,ou=sa,o=system, version:3, authentication:simple
NMAS : 262155: Create NMAS Session
NMAS : 262155: Trying local password login shortcut for
CN=idmadmin.OU=sa.O=system
NMAS : 262155: IP client network address
NMAS : 262155: ERROR: -669 NDS password hash does not match
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: ERROR: -669 Local password login shortcut failed
NMAS : 262155: Proxy client address 192 168 16 3
NMAS : 262155: NMAS Client supplied user DN
CN=idmadmin.OU=sa.O=system
NMAS : 262155: Create thread request
NMAS : 262155: Using thread 0x149ab0c0
NMAS : 262155: Server thread started
NMAS : 262155: Proxy client started local server session
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: Pool thread 0x149ab0c0 awake with new work
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: CanDo
NMAS : 262155: IP client network address
NMAS : 262155: Selected default login sequence == "NDS"
NMAS : 262155: Login Method 0x00000007
NMAS : 262155: Server Module 0x00000007 Get attribute AID: 1
NMAS : 262155: Server Module 0x00000007 Get attribute AID: 39
NMAS : 262155: Server Module 0x00000007 Get attribute AID: 12
NMAS : 262155: Begin Server Module 0x00000007
NMAS : 262155: Server Module 0x00000007 Get attribute AID: 39
NMAS : 262155: Server Module 0x00000007 Get NDS Password Hash
NMAS : 262155: Server Module 0x00000007 Write
NMAS : 262155: Server Module 0x00000007 XWrite
NMAS : 262155: Server Module 0x00000007 XRead
NMAS : 262155: Begin Client Module 0x00000007
NMAS : 262155: Client Module 0x00000007 Get attribute AID: 6
NMAS : 262155: Client Module 0x00000007 Get attribute AID: 40
NMAS : 262155: Client Module 0x00000007 Read
NMAS : 262155: Client Module 0x00000007 XRead
NMAS : 262155: Client Module 0x00000007 XWrite
NMAS : 262155: Client Module 0x00000007 XRead
NMAS : 262155: ERROR: -1642 verifyPacket2V2
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: Server Module 0x00000007 XWrite
NMAS : 262155: ERROR: -1642 Server Module 0x00000007 End
NMAS : 262155: ERROR: -1642 NDS Login Method Failed
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: Client Module 0x00000007 Finished
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: WhatNext
NMAS : 262155: Failed login delay 3 seconds
NMAS : 262155: Failed login
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: Acknowledge
NMAS : 262155: NMAS Audit with Audit PA not installed
NMAS : 262155: NMAS Audit with XDAS not installed
NMAS : 262155: Server thread exited
NMAS : 262155: Pool thread 0x149ab0c0 work complete
NMAS : 262155: Client Session Destroy Request
LDAP : (192.168.16.3:49891)(0x0049:0x60) Failed to authenticate local
on connection 0x14a71380, err = failed authentication (-669)
LDAP : (192.168.16.3:49891)(0x0049:0x60) Sending operation result
49:"":"NDS error: failed authentication (-669)" to connection
0x14a71380
*** Novell eDirectory Trace Utility - END Logging *** Thu Sep 18
16:15:21 2014


--
deb_sarkar
------------------------------------------------------------------------
deb_sarkar's Profile: https://forums.netiq.com/member.php?userid=7951
View this thread: https://forums.netiq.com/showthread.php?t=51777