Carl G. Riches | 30 Dec 23:57 2015

bug in windowsUser display of Samba 4 user entry?


We are migrating our 389 Directory Server/Samba 3 infrastructure to
Samba 4 and have run into a problem with LAMpro.  We can display user 
entries with LAMpro 5.1, but not LAMpro 5.2.  The attached screenshots 
show the difference: a user's attributes are listed when we use LAMpro 5.1 
but not when we use LAMpro 5.2.

In each case we use these two user modules:
   Windows (windowsUser)
   Unix (posixAccount)

If I click on the Windows icon or the Unix icon found on the 5.2 user page 
(see attached screenshots), I get these error messages:

   User name
     User name contains invalid characters. Valid characters are: a-z, A-Z,
     0-9 and .-_ !

   Common name
     Please enter a valid common name!

Clicking on those icons on the 5.1 user page flips the display between 
the user's Windows attributes and Unix attributes.

I set logging for the 5.2 installation to "Debug" but nothing was 
logged for this event (user lookup, attempted tab switching, displayed 
error messages).

The data is the same.  I basically copied the general settings and server 
profile settings from 5.1 to 5.2.
(Continue reading)

Francesco Tombolini | 19 Dec 17:32 2015
Picon
Gravatar

Re: Lam-public Digest, Vol 109, Issue 8

Thanks for your analysis but I'm using latest firefox on fedora 19 linux, with the same results.
Is there a special config that i need to set in my browser?
Regards

2015-12-19 13:00 GMT+01:00 <lam-public-request-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org>:
Send Lam-public mailing list submissions to
        lam-public-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org

To subscribe or unsubscribe via the World Wide Web, visit
        https://lists.sourceforge.net/lists/listinfo/lam-public
or, via email, send a message with subject or body 'help' to
        lam-public-request-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org

You can reach the person managing the list at
        lam-public-owner-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Lam-public digest..."


Today's Topics:

   1. Bug in GroupOfNames management via tree-view (Francesco Tombolini)
   2. Re: Bug in GroupOfNames management via tree-view (Roland Gruber)


----------------------------------------------------------------------

Message: 1
Date: Fri, 18 Dec 2015 16:22:37 +0100
From: Francesco Tombolini <tombolinux-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>
Subject: [Lam-public] Bug in GroupOfNames management via tree-view
To: lam-public-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
Message-ID:
        <CAMR1c8iVVYBQ7A6qPbG2hT3p-_hcSS8FV6TYdPWkXYQe_iKkqw-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org>
Content-Type: text/plain; charset="utf-8"

Hi Roland,
I find that the groupOfNames management via tree-view in lam could lead to
data loss.
If the groupOfNames is bigger than 1k entries and I try to change the owner
of the group, editing it from that view, when I save the changes, datas
over the fixed amount will be  removed by default.
Could you check this please?
Best regards.

If you want, i can send you some screenshots of the issue.



--

Francesco Tombolini <tombolinux-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> <tombo-KCmoKw9dCD0B085IDyDbTA@public.gmane.org>
<tombo <at> fedoraproject.org> <tombo-rxtnV0ftBwyoClj4AeEUq9i2O/JbrIOy@public.gmane.org>
Key fingerprint = A23A9A47http://www.adamantio.net
-------------- next part --------------
An HTML attachment was scrubbed...

------------------------------

Message: 2
Date: Fri, 18 Dec 2015 20:20:54 +0100
From: Roland Gruber <post-qF4ddCv+L6t7S1K2b6EZKQ@public.gmane.org>
Subject: Re: [Lam-public] Bug in GroupOfNames management via tree-view
To: lam-public-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
Message-ID: <56745C96.5070806-qF4ddCv+L6t7S1K2b6EZKQ@public.gmane.org>
Content-Type: text/plain; charset="windows-1252"

Ciao Francesco,

On 18.12.2015 16:22, Francesco Tombolini wrote:
> I find that the groupOfNames management via tree-view in lam could lead to
> data loss.
> If the groupOfNames is bigger than 1k entries and I try to change the owner
> of the group, editing it from that view, when I save the changes, datas
> over the fixed amount will be  removed by default.

this is a browser issue. E.g. Internet Explorer allows not more than
1000 input fields. Any additional ones are silently ignored.

So for such large groups please do not use the tree view.


--

Best regards

Roland


LDAP Account Manager
http://www.ldap-account-manager.org/

Want more? Get LDAP Account Manager Pro!
https://www.ldap-account-manager.org/lamcms/lamPro

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 648 bytes
Desc: OpenPGP digital signature

------------------------------

------------------------------------------------------------------------------


------------------------------

_______________________________________________
Lam-public mailing list
Lam-public-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
https://lists.sourceforge.net/lists/listinfo/lam-public


End of Lam-public Digest, Vol 109, Issue 8
******************************************



--
------------------------------------------------------------------------------
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Francesco Tombolini | 18 Dec 16:22 2015
Picon
Gravatar

Bug in GroupOfNames management via tree-view

Hi Roland,
I find that the groupOfNames management via tree-view in lam could lead to data loss.
If the groupOfNames is bigger than 1k entries and I try to change the owner of the group, editing it from that view, when I save the changes, datas over the fixed amount will be  removed by default.
Could you check this please?
Best regards.

If you want, i can send you some screenshots of the issue.



--
------------------------------------------------------------------------------
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Roland Gruber | 15 Dec 19:06 2015
Picon
Gravatar

LDAP Account Manager 5.2 with extended Windows support and more password expiration jobs

LDAP Account Manager (LAM) 5.2 - December 15th, 2015
====================================================

LAM is a web frontend for managing accounts stored in an LDAP directory.

Announcement:
-------------

The Windows module supports a lot more attributes and new IMAP mailboxes
can have a default folder structure. There are two new jobs for Shadow
and Windows password expiration notification. Self Service supports to
specify the time zone.

Full changelog:

https://www.ldap-account-manager.org/lamcms/changelog

Download:

https://www.ldap-account-manager.org/lamcms/releases

Features:
---------

* management of various account types
 * Unix
 * Samba 3/4
 * Kolab 2/3
 * Asterisk
 * Zarafa
 * DHCP
 * SSH keys
* profiles for account creation
* account creation via file upload
* automatic creation/deletion of home directories
* setting quotas
* PDF output for all accounts
* editor for organizational units
* schema browser
* tree view
* multiple configuration files
* multi-language support: Catalan, Chinese (Traditional + Simplified),
  Czech, Dutch, English, French, German, Hungarian, Italian, Japanese,
  Polish, Portuguese, Russian, Slovak, Spanish and Turkish
* support for LDAP+SSL/TLS

Demo installation:
------------------

You can try our demo installation online.

https://www.ldap-account-manager.org/lamcms/liveDemo

Support:
--------

If you find a bug please file a bug report. For questions or
implementing new features please use the mailinglist and feature request
tracker at our homepage https://www.ldap-account-manager.org.

Authors & Copyright:
--------------------

Copyright (C) 2003 - 2015:
Roland Gruber <post@...>

LAM is published under the GNU General Public License.
The complete list of licenses can be found in the copyright file.

------------------------------------------------------------------------------
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Sternberger, Sven | 8 Dec 15:05 2015
Picon

Configure zsh for unix login shell

Hello!

i"m not sure how to configure zsh (http://zsh.sourceforge.net/) as login shell for a user. 
I found in /var/lib/ldap-account-manager/config/lam.conf

modules: posixAccount_shells: /bin/bash+::+/bin/csh+::+/bin/dash+::+/bin/false+::+/bin/ksh+::+/bin/sh
which I think should be
modules: posixAccount_shells: /bin/bash+::+/bin/csh+::+/bin/dash+::+/bin/false+::+/bin/ksh+::+/bin/sh::+/bin/zsh

but the config file starts with a warning not to modify it :-) But how can I add a login shell?????

best regards!

Sven Sternberger
System Engineer
Tel.: 040/8998-4397
DESY IT

------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
jacquesfauquex | 4 Dec 16:11 2015
Picon

configure groupOfMembers from GUI

Hi:
Could you give some hints on how to configure groupOfMembers (which were added to LAM in versión 5.0)?
Once it´ll be configured, is it possible to add groupOfMembers as members of other groupOfMembers?

Thanks.

Jacques Fauquex
------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
Gomez-Rubio, J L. | 3 Dec 22:34 2015

Enable password self reset module by default in LAM Pro?

Roland,

According to https://www.ldap-account-manager.org/static/doc/manual/ch04s02.html#idp71142224, the password self reset module must be manually enabled in the LAM Pro server profile.

Is there a way to make this automatically enabled? I created a new account but forgot to manually enable this feature so the user couldn’t change their password via self service until I went back to LAM Pro and enabled this feature manually.

Jose
------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Gomez-Rubio, J L. | 1 Dec 19:04 2015

LAM Pro cron job setup?

Roland,

Running LAM 5.1 Pro.

I’ve read the following links in trying to figure out how to set up cron jobs for password policy expiration e-mail:



When I click on the Jobs tab under Server profile page, I get the following error:

Server Error 500: The website encountered an error while retrieving …/lam/templates/config/jobs.php. It may be down for maintenance or configured incorrectly.

I do have jobs.php and cron.sh on the system:

/usr/share/ldap-account-manager/templates/config/jobs.php
/usr/share/ldap-account-manager/lib/cron.sh

I also have SQLite and PHP PDO packages installed as well:

sqlite-3.6.20-1.el6_7.2.x86_64
php-pdo-5.3.3-46.el6_6.x86_64

In summary, I need help setting up cron jobs using LAM Pro.

Jose
------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Roland Gruber | 30 Nov 19:38 2015
Picon
Gravatar

LDAP Account Manager 5.2.RC1 with extended Windows support and more password expiration jobs

LDAP Account Manager (LAM) 5.2.RC1 - November 30th, 2015
========================================================

LAM is a web frontend for managing accounts stored in an LDAP directory.

Announcement:
-------------

The Windows module supports a lot more attributes and new IMAP mailboxes
can have a default folder structure. There are two new jobs for Shadow
and Windows password expiration notification. Self Service supports to
specify the time zone.

This is a test release. Please report any bugs till 13th December.

Full changelog:

https://www.ldap-account-manager.org/lamcms/changelog

Download:

https://www.ldap-account-manager.org/lamcms/releases

Features:
---------

* management of various account types
 * Unix
 * Samba 3/4
 * Kolab 2/3
 * Asterisk
 * Zarafa
 * DHCP
 * SSH keys
* profiles for account creation
* account creation via file upload
* automatic creation/deletion of home directories
* setting quotas
* PDF output for all accounts
* editor for organizational units
* schema browser
* tree view
* multiple configuration files
* multi-language support: Catalan, Chinese (Traditional + Simplified),
  Czech, Dutch, English, French, German, Hungarian, Italian, Japanese,
  Polish, Portuguese, Russian, Slovak, Spanish and Turkish
* support for LDAP+SSL/TLS

Demo installation:
------------------

You can try our demo installation online.

https://www.ldap-account-manager.org/lamcms/liveDemo

Support:
--------

If you find a bug please file a bug report. For questions or
implementing new features please use the mailinglist and feature request
tracker at our homepage https://www.ldap-account-manager.org.

Authors & Copyright:
--------------------

Copyright (C) 2003 - 2015:
Roland Gruber <post@...>

LAM is published under the GNU General Public License.
The complete list of licenses can be found in the copyright file.

------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Andy Thompson | 16 Nov 15:51 2015
Picon

389-ds password reset schema install problems

I followed the instructions in appendix F for installing the password 
self reset schema.  When I try to restart my instance it errors out 
reading the ldif.  Everything looks ok in the ldif as far as I can tell 
but below is an error snippet<br><br>[16/Nov/2015:06:21:12 -0700] - str2entry_dupcheck: entry has no
dn<br>[16/Nov/2015:06:21:12 -0700] dse_read_one_file - Parsing entry (lineno: 1) in file
/etc/dirsrv/slapd-ldapprod01/schema/70pwdreset.ldif failed.<br>[16/Nov/2015:06:21:12 -0700]
dse_read_one_file - Invalid section [# Id: passwordSelfReset.schema 1348 2014-02-15 15:51:29Z
roland<br>#<br># LDAP schema for LAM Pro password reset functionality<br>#<br># This code is part of
LDAP Account Manager (<a
href="https://mail.thompsonsplace.net/redir.hsp?url=%68%74%74%70%3A%2F%2F%77%77%77%2E%6C%64%61%70%2D%61%63%63%6F%75%6E%74%2D%6D%61%6E%61%67%65%72%2E%6F%72%67%2F"
target="_blank">http://www.ldap-account-manager.org/</a>)<br># Copyright (C) 2015  Roland
Gruber<br>#<br>#<br>#  OID ba ...]<br>[16/Nov/
 2015:06:21:12 -0700] - str2entry_dupcheck: entry has no dn<br>[16/Nov/2015:06:21:12 -0700]
dse_read_one_file - Parsing entry (lineno: 27) in file
/etc/dirsrv/slapd-ldapprod01/schema/70pwdreset.ldif failed.<br>[16/Nov/2015:06:21:12 -0700]
dse_read_one_file - Invalid section [attributeTypes: (<br>  1.3.6.1.4.1.34955.1.1<br>  NAME
'passwordSelfResetQuestion'<br>  DESC 'Password self reset question'<br>  EQUALITY
caseIgnoreMatch<br><br>What am I missing to get this installed?<br><br>thanks<br><br>-andy

------------------------------------------------------------------------------
Presto, an open source distributed SQL query engine for big data, initially
developed by Facebook, enables you to easily query your data on Hadoop in a 
more interactive manner. Teradata is also now providing full enterprise
support for Presto. Download a free open source copy now.
http://pubads.g.doubleclick.net/gampad/clk?id=250295911&iu=/4140
Elmopi, Stefano | 10 Nov 09:15 2015
Picon

Problems with the update 5.0 to 5.1


Hi,

after the update from version ldap-account-manager-5.0-0.fedora.1.noarch.rpm to version ldap-account-manager-5.1-0.fedora.1.noarch.rpm,
with the command rpm -U, if I go in the "Edit server profiles" section, within one of the profiles that I have and I click on Jobs tab,
I see an error page 500.
In the http log, I read: 

Can't use method return value in write context in /usr/share/ldap-account-manager/templates/config/jobs.php on line 428, referer: https://yyy.xxxxxxx.it/templates/config/confmain.php


Thanks.


Best Regards


Ing. Stefano Elmopi
Cooperativa Capodarco - Resp. Area ICT Gestione Esercizio
Via Ostiense 131/L Corpo B, 00154 Roma

cell. 3466147165
tel.  0657060500

email:stefano.elmopi-IenwjEANACOonA0d6jMUrA@public.gmane.org



"Ai sensi e per gli effetti della legge sulla tutela dei dati personali (D.lgs 196/2003),
le informazioni contenute nella presente <at> mail sono di natura riservata e destinate
ad un uso aziendale-lavorativo con esclusione di utilizzi ad uso personale; come tali,
pertanto, sono riservate esclusivamente ai destinatari sopra indicati. E' proibito leggere,
copiare, usare o diffondere il contenuto della presente <at> mail senza autorizzazione.
Se avete ricevuto questa <at> mail per errore, siete pregati di rispedire la stessa al mittente.
Grazie"
------------------------------------------------------------------------------
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public

Gmane