I have this environment:
3 servers (srv1, srv2, srv3) all running SLES 12 SP1 and eDirectory
8.8.8 FTF9, Universal Password set and enabled.
srv1 has additionally Identity Manger 4.5.5 engine installed and is
syncing accounts and passwords fine to another eDir tree.
srv2 and srv3 have RW-Replicas of srv1 and are used mainly for LDAP
authentication.

To activate case sensitive passwords for LDAP authentication on srv2 and
srv3, I created the file /opt/novell/eDirectory/pre_ndsd_start as
adviced in http://tinyurl.com/hyk6ky6 :

Code:
--------------------
NDSD_TRY_NMASLOGIN_FIRST=true
export NDSD_TRY_NMASLOGIN_FIRST
--------------------

On srv1 this setting was already done by Identity Manager setup:

Code:
--------------------
if [ -f /opt/novell/eDirectory/lib/dirxml/dirxml-jni-envx ] #added by IDM
then #added by IDM
. /opt/novell/eDirectory/lib/dirxml/dirxml-jni-envx #added by IDM
fi #added by IDM
NDSD_TRY_NMASLOGIN_FIRST=true #added by IDM
export NDSD_TRY_NMASLOGIN_FIRST #added by IDM
--------------------


I restarted eDirectory on srv2 and srv3 using ndsmanage, but when
logging in there is still no password case sensitivity.

As stated in http://tinyurl.com/zubc3tx , on SLES 12 this variables are
to be set in /opt/novell/eDirectory/pre_ndsd_start_custom . So I tried
that, but still no luck.

The strange thing is, that on srv1, where the Identity Manager setup set
the variables, passwords are case sensitive in LDAP logins as expected.
It looks like the Identity Manager setup did something else, to get this
to work.

What am I missing? Any suggestions are very much appreciated.


--
absmeier
------------------------------------------------------------------------
absmeier's Profile: https://forums.netiq.com/member.php?userid=339
View this thread: https://forums.netiq.com/showthread.php?t=56988