Chaitanya Akkineni | 21 Aug 13:18 2014
Picon

Make some fields required

Required fields,
I tried to follow this and make email a required field, 

but doesn't seem to work anymore. Can you please help with it?

Thank You,
Chaitanya Akkineni

------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
John Maher | 20 Aug 22:26 2014
Picon

uniqueMember instead of memberUid

I'm considering purchasing LAM Pro but I want to know if it has a  
particular capability. Is it possible to add additional objectclasses  
to groups such that I could populate groups with an attribute of  
uniqueMember in additional to the typical memberUid from the  
posixGroup objectclass?

I need to use nested groups and want to do this with LAM.

Thanks.

John

------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
Daniel | 20 Aug 05:16 2014

Multiple User Groups Not Taking Affect


Hi,  we are using LDAP Account Manager - 4.4 


We have users in multiple groups. Some belong to  Finance as their primary group and Admin as another group they belong to.

We use Freenas 9.2.1.7  which communicates with LDAP.


The problem is only the primary group is being seen / used.   I am trying to determine why only on group is being used.

Can someone please help me diagnose where the problem is.  It could be on Freenas or LAM.



Thanks for the help,

Dan



------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Dr.Peer-Joachim Koch | 14 Aug 14:40 2014
Picon

Adding a custom field

Hi,

I' currently trying to add a custom field according to the docu:

https://www.ldap-account-manager.org/static/doc/manual/ch03s22.html

I can see already the attribute, the problem is - it can occur multiple 
times (mail alias).

So how can I change the setup that *ALL* aliases are shown, not only the 
first one.
Any idea ?

Bye the way- LAM PRO is a great tool!

The definition from the schema file:

attributetype ( 1.3.6.1.4.1.7057.10.2.2.9 NAME ( 'alias' )
         DESC 'An email alias'
         EQUALITY caseIgnoreMatch
         SUBSTR caseIgnoreSubstringsMatch
         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )

dn: uid=pkoch,dc=bgc-jena,dc=mpg,dc=de
alias: PJK
alias: Peer-Joachim.Koch
alias: Peer.Koch
alias: XXYYZZ
...

-- 
Bye,
     Peer
_________________________________________________________
Max-Planck-Institut für Biogeochemie
Dr. Peer-Joachim Koch
Hans-Knöll Str.10            Telefon: ++49 3641 57-6705
D-07745 Jena                 Telefax: ++49 3641 57-7705

Attachment (pkoch.vcf): text/x-vcard, 454 bytes
Attachment (smime.p7s): application/pkcs7-signature, 6273 bytes
------------------------------------------------------------------------------
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Elizabeth Jones | 5 Aug 20:57 2014
Picon

How is LAM accessing my ldap?

I'm having a problem using LAM now that I have configured password policy
constraints in my 389DS LDAP. I have a servicedesk user account that I
created that basically has all possible rights to add/delete/modify our
user accounts.  However, with password policy constraints in place, this
account can no longer modify user passwords.

The error that I see in my ldap when I try to modify a user password is
access:[05/Aug/2014:13:39:00 -0500] conn=5387623 op=6 MOD
dn="cn=ejtest66,ou=People,dc=mycompany,dc=com", invalid password syntax

I did some checking and found this page that seems to describe the same
situation I am seeing -
http://www.redhat.com/archives/fedora-directory-users/2009-September/msg00051.html

The difference is the user on this page is trying to change his password
from the command line and I'm trying to change through LAM. If the answer
on this web page really is what is happening (the password is being hashed
before getting to my LDAP), where in LAM would I change the setting to
clear?  We are using TLS so the password should be ok between my server
and the LDAP.

thanks,

EJ

------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls. 
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
Carl G. Riches | 5 Aug 19:38 2014

How to filter user list?


We are in the process of setting up a read-only server profile where our 
users can view the user OU.  We would like to filter out all entries with 
expired passwords (or with expired Samba accounts).  We can exclude those 
entries from a command-line search.  For example:

   ldapsearch -LLL -x -w secret -h ldap1 \
     -D "cn=Directory Manager" -b 'ou=People,dc=my,dc=domain,dc=com' \
     '(|(!(shadowExpire=*))(shadowExpire>16287))'

   ldapsearch -LLL -x -w secret -h ldap1 \
     -D "cn=Directory Manager" -b 'ou=People,dc=my,dc=domain,dc=com' \
     '(|(!(sambaKickoffTime=*))(sambaKickofftime>=2014-08-05))'

We are using LAMpro 4.6.  I've looked through the on-line documentation 
and skimmed through the code but can't figure this out.  Is there a way to 
do this?

Thanks,
Carl

Carl G. Riches
IT Director
Department of Biostatistics
Box 357232                      voice:     206-616-2725
University of Washington        fax:       206-543-3286
Seattle, WA  98195-7232         internet:  cgr <at> u.washington.edu

------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls. 
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
Elizabeth Jones | 25 Jul 21:45 2014
Picon

LDAP password policy

I set up an account for our servicedesk to use to add/delete/modify all
our corporate users and it has been working great....until I enforced
password policy within our LDAP.  Now the servicedesk account can no
longer do anything with user passwords - can't save passwords for new
accounts, can't modify existing, and can't use the lock function in LAM to
lock accounts.

Does anyone have any idea what attributes I might need to set for the
servicedesk account to allow it to work again?  The directory manager
account can do everything but I can't give that to servicedesk.  Is there
anything I can do within LAM to allow the servicedesk account to get past
this impasse?

We are running 389DS 389-ds-base-1.2.11.25-1.el6.x86_64 and
LAM 3.9.

thanks,
EJ

------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
Stef | 17 Jul 21:39 2014
Picon

CAS authentication

Hi all :)

A couple of days ago, I started to CASify LAM with the help of Jasig phpCAS.
To CASify it, I needed to implement auhtzid management : LAM uses
cn=reader to read LDAP directory, and "auth as" the CAS user when
modifying something.

It's not very difficult to develop this, but it needs some improvements
in mainconfig management, in login.php, in the LDap class ... a little
bit everywhere in fact ; this is the more difficult : understand the
existing mechanism without breaking everything ... and making it
reusable for somebody else ! ^^

If somebody is interested in the result, when available maybe next week,
I'll be glad to share it.
If somebody has already CASified, I'll be glad to compare our
implementations ;)

Bye !

--
Steph

------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
Stef | 11 Jul 11:51 2014
Picon

hide tool SchemaBrowser / config file check forgotten ?

Hi there :)

Is it me, or the schema browser is always shown ?

line 175 in ldap-account-manager-4.6/templates/main_header.php, would'nt be something like this first line ?

if (!$_SESSION['config']->getToolSettings()['tool_hide_toolSchemaBrowser'] === true) {

// existing code

if ($_SESSION['config']->get_Suffix('tree') != "") {

?>
            <li>
                <a href="<?php echo $headerPrefix; ?>tree/treeViewContainer.php"><img class="align-middle" height="16" width="16" alt="tree" src="<?php echo $headerPrefix; ?>../graphics/process.png">&nbsp;<?php echo _("Tree view") ?></a>
            </li>
            <?php
            }

}

 

--
Stéphane
------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Vasiliy P. Melnik | 9 Jul 12:58 2014
Picon

sample config's names

Hi Rolland.

please rename sample config's files,  If it's possible
config.cfg.sample
lam.conf.sample

In freebsd porters hanbook I have new directive for sample files, 

<at> sample , but file names should be ended with .sample

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Paolo Giustiniani | 4 Jul 09:43 2014
Picon

About binder user

Hello,
i would add a new user for bind.

It's possibile?
------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public

Gmane