Dr.Peer-Joachim Koch | 16 Sep 08:16 2014
Picon

user and primary group

Hi,

we have the following problem:
We create a new user. The user gets his primary group according to 
his/her work group.
But if we want to add the user also as a normal member to the same work 
group,
LAM PRO prohibits this. Why ?

For samba shares the primary group does not work (here), so we have to 
add the users
to the group. How can we do this ?

Also what's the reason to prohibit this ?

--

-- 
Bye,
     Peer
_________________________________________________________
Max-Planck-Institut für Biogeochemie
Dr. Peer-Joachim Koch
Hans-Knöll Str.10            Telefon: ++49 3641 57-6705
D-07745 Jena                 Telefax: ++49 3641 57-7705

Attachment (pkoch.vcf): text/x-vcard, 454 bytes
Attachment (smime.p7s): application/pkcs7-signature, 6273 bytes
------------------------------------------------------------------------------
Want excitement?
(Continue reading)

John Maher | 12 Sep 15:02 2014
Picon

LAM performance problem

I have LAM set up on our LDAP server, which is a dual, 4-core processor
Xeon machine with 16 GB of memory. The LDAP server has about 14,500 user
entries and about 800 groups. When I click on the edit icon to modify a
user entry it takes a long time (I'm guessing the 30 seconds time out is
eventually reached) and then presents the screen for editing a user
entry, but no fields are displayed.

Looking at the logs it appears that LAM is doing some kind of search
that involves every user entry in LDAP. I adjusted
/etc/php5/apache2/php.ini so that memory_limit = 512M. That seemed to
help but not enough.

I have to say that I did get this to work properly at some point when I
was first playing around with LAM to see if we wanted to use it, but I
can't remember what changes I had made, and this is a new install.

I don't understand what search LAM is performing that should involve so
many records. If anyone can help with this I would be very appreciative.

Thank you.

John

--

-- 
* - - - - * - - - - * - - - - * - - - - * - - - - * - - - - * - - - - *
John Maher
Senior Systems and Network Administrator
Department of Biochemistry & Molecular Biology and
Department of Chemistry
University of Massachusetts - Amherst
(Continue reading)

Jens Bretschneider | 10 Sep 20:33 2014
Picon

Logging of GUI authentication failures?

Hi,

is there a chance to log authentication failures of LAM GUI?

I'd like to integrate LAM with fail2ban.

Best regards,
Jens

------------------------------------------------------------------------------
Want excitement?
Manually upgrade your production database.
When you want reliability, choose Perforce
Perforce version control. Predictably reliable.
http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
PASCAL CASSAGNES | 8 Sep 15:39 2014
Picon

hash password

openSUSE 12.3
Lam Pro 4.6
OpenLDAP 2.4.33
Setting hash Lam Pro and openLDAP = SSHA

Hello,

We import the user accounts in the bd openLDAP with Lam Pro from a CSV file (created with LibreOffice).
For some of these accounts, the hash of the password does not seem to do it properly though the syntax of the ldif file generated by Pro Lam from the CSV file looks just fine.
Import command line (ldapmodify) of ldif file generated by Lam goes smoothly.

For example, for two alam1 alam4 accounts created during the import:

ldapwhoami -vvv -h 127.0.0.1-D uid = alam1, ou = users, dc = organization.fr, dc = local-x w nsh67yAB
ldap_initialize (ldap: //127.0.0.1)
dn: uid = alam1, ou = users, dc = organisation.fr, dc = local
Result: Success (0)

ldapwhoami -vvv -h 127.0.0.1-D uid = alam4, ou = users, dc = organization.fr, dc = local-x w NBHU_tGH
ldap_initialize (ldap: //127.0.0.1)
ldap_bind: Invalid credentials (49)

For alam4 account, then it is sufficient to correct this problem, reenter via Lam password "Unix" for get everything in order.

This issue is completely random : when reimport the same CSV file (prior removal of these accounts in Lam) it may be that this is the password (userPassword) of alam1 problem account or another account or more.

In these circumstances, using the import function is not satisfactory.

Thank you for your help.
Best regards.
Pascal
------------------------------------------------------------------------------
Want excitement?
Manually upgrade your production database.
When you want reliability, choose Perforce
Perforce version control. Predictably reliable.
http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Taylor | 3 Sep 06:56 2014

Problem with installation

Hello,

I am new to ldap and LAM. I installed the package yesterday with apache and 389 directory server. When I try to log in the user is set as manager. I'm not sure where this user came from. The default password of "lam" does not work.

How can I trouble shoot this issue?

------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
santosh pai | 2 Sep 18:23 2014
Picon

password upload failed for multiple account upload

Hello Team,

I'm trying to upload multiple accounts to LDAP using the file uploader all the fields are being taken except for the password field ,i have used the instructions as per the thread (http://sourceforge.net/p/lam/mailman/message/29161177/) to add an additional field by name posixAccount_password to the file but it still didnt work ,need your help in fixing the issue .
--
Cheers,
Santhosh Pai
------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
h b | 2 Sep 13:40 2014
Picon

Change Password Issue

Hi,

I'm new to LDAP and I'm having some issue related to LDAP account manager.

 "Manager" account unable to change the password for user. I'm having the following acl in my configuration.
olcAccess: {0}to attrs=userPassword by self write by anonymous auth by dn="cn=Manager,dc=.." write by * none

Thru web interface after save, modified successfully but user cannot able to login with the new password.

Nothing in logs.. Hashtype is SSHA


------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Cledat, Romain E | 27 Aug 23:08 2014
Picon

Using OpenLDAP check_password

Hello,

On my setup, I use a password policy that invokes check_password when changing passwords. This works fine when changing the password from the command line via ldappasswd but if I want to change the password from the self-service login for example, it only works if I set the self-login configuration to use PLAIN passwords (and fails if I use SSHA). I was wondering if it would be possible to have LAM use PLAN password to verify the password but store it encrypted in the LDAP data-base. This would allow me to make my password checking policies consistent across ldappasswd and the web interface.

Thanks,
Romain

Attachment (smime.p7s): application/pkcs7-signature, 816 bytes
------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Chaitanya Akkineni | 21 Aug 13:18 2014
Picon

Make some fields required

Required fields,
I tried to follow this and make email a required field, 

but doesn't seem to work anymore. Can you please help with it?

Thank You,
Chaitanya Akkineni

------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
John Maher | 20 Aug 22:26 2014
Picon

uniqueMember instead of memberUid

I'm considering purchasing LAM Pro but I want to know if it has a  
particular capability. Is it possible to add additional objectclasses  
to groups such that I could populate groups with an attribute of  
uniqueMember in additional to the typical memberUid from the  
posixGroup objectclass?

I need to use nested groups and want to do this with LAM.

Thanks.

John

------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
Daniel | 20 Aug 05:16 2014

Multiple User Groups Not Taking Affect


Hi,  we are using LDAP Account Manager - 4.4 


We have users in multiple groups. Some belong to  Finance as their primary group and Admin as another group they belong to.

We use Freenas 9.2.1.7  which communicates with LDAP.


The problem is only the primary group is being seen / used.   I am trying to determine why only on group is being used.

Can someone please help me diagnose where the problem is.  It could be on Freenas or LAM.



Thanks for the help,

Dan



------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public

Gmane