Roland Gruber | 21 Jun 20:55 2016
Picon
Gravatar

LDAP Account Manager 5.4 with Samba 3 password history and enhanced 389ds support

LDAP Account Manager (LAM) 5.4 - June 21st, 2016
================================================

LAM is a web frontend for managing accounts stored in an LDAP directory.

Announcement:
-------------

This release adds support for Samba 3 password history and 389 server
DNA plugin. LAM Pro supports 389 server unlocking and can display
captchas during user self registration.

Full changelog:

https://www.ldap-account-manager.org/lamcms/changelog

Download:

https://www.ldap-account-manager.org/lamcms/releases

Features:
---------

* management of various account types
 * Unix
 * Samba 3/4
 * Kolab 2/3
 * Asterisk
 * Zarafa
 * DHCP
(Continue reading)

Oljas Kuzembaev | 21 Jun 12:44 2016
Picon

Re: Uncaught Error: Call to a member function, decrypt

Hi Roland! I have reconfigured nginx,  tested with "phpinfo". PHP is working fine now, however i get the same error.

Yes my nginx is a single server and I don't use any in-memory session saving.

If I just copy 141_jquery-validationEngine-lang.php in my browser i get:

(function($){ $.fn.validationEngineLanguage = function(){ }; $.validationEngineLanguage = { newLang: function(){ $.validationEngineLanguage.allRules = { "required": { "regex": "none", "alertText": "This field is required." }, "numeric": { "regex": /^[0-9]+$/, "alertText": "Please enter a number." }, "numericWithNegative": { "regex": /^[-]?[0-9]+$/, "alertText": "Please enter a number." } }; } }; $.validationEngineLanguage.newLang(); })(jQuery);

Is it supposed to be that way?

Here is my phpinfo

session.save_handler files files
session.save_path no value no value

do i have to set session.save_path somehow?

looks like the session data is somehow corrupted. Do you use any special settings for session handling, e.g. in-memory session saving? Is your nginx a single server or some clustered environment? Best regards Roland

------------------------------------------------------------------------------
Attend Shape: An AT&T Tech Expo July 15-16. Meet us at AT&T Park in San
Francisco, CA to explore cutting-edge tech and listen to tech luminaries
present their vision of the future. This family event has something for
everyone, including kids. Get more information and register today.
http://sdm.link/attshape
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Oljas Kuzembaev | 20 Jun 20:41 2016
Picon

Re: Lam-public Digest, Vol 115, Issue 5

Hi Roland!

Thank you for for your support. I figured that my nginx is misconfigured 
and does not execute php in some locations. My bad.

On 2016-06-19 15:04, lam-public-request@... wrote:
> looks like the session data is somehow corrupted. Do you use any special
> settings for session handling, e.g. in-memory session saving?
> Is your nginx a single server or some clustered environment?
>
>
> Best regards
>
> Roland
>

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports. http://sdm.link/zohomanageengine
Oljas Kuzembaev | 16 Jun 20:36 2016
Picon

Uncaught Error: Call to a member function decrypt

Hi! My LAM installation is not working properly. I can’t edit users. Here is output from my nginx-error.log: 2016/06/16 01:41:42 [error] 46095#0: *15294 FastCGI sent in stderr: "PHP message: PHP Fatal error: Uncaught Error: Call to a member function decrypt() on unknown in /usr/local/www/lam/lib/modules.inc:2162 Stack trace: #0 [internal function]: accountContainer->__wakeup() #1 /usr/local/www/lam/templates/lib/141_jquery-validationEngine-lang.php(37): session_start() #2 {main} thrown in /usr/local/www/lam/lib/modules.inc on line 2162" while reading response header from upstream, client: 91.77.27.46, server: totan.su, request: "GET /lam/templates/lib/141_jquery-validationEngine-lang.php HTTP/2.0", upstream: "fastcgi://unix:/var/run/php-fpm.sock:", host: "totan.su", referrer: "https://totan.su/lam/templates/account/edit.php?type=user&DN=%27CN%3Dvictor%2CCN%3DUsers%2CDC%3Dtotan%2CDC%3Dsu%27” I run LAM on my FreeBSD with nginx, php-fpm (php 7) and php-MCrypt. Am i missing something? Best regards Oljas
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports. http://sdm.link/zohomanageengine
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Martin LEUSCH | 14 Jun 12:11 2016
Picon

Writing a simple module

Hi,

I'm trying to write a simple module to edit a simple attribute.
I want to edit the "mDBStorageQuota" attributes from the 
"msExchMailStorage" object class.

I can add manually this object class to an user and set the 
"mDBStorageQuota" attribute.

I wrote a simple module, you can find it in attachment, to manage 
msExchMailStorage object class and mDBStorageQuota attribute from LAM. 
The object class is correctly added when I edit an user, I can read 
mDBStorageQuota attribute when it was set manually but when I try to 
edit it or add it, the attribute is removed or not added.

What is wrong in my module?

-- 
Martin Leusch
sce.tech@...

"high"); // LDAP filter $return["ldap_filter"] = array('or' => "(objectClass=msExchMailStorage)"); // alias name $return["alias"] = _("OpenChange"); // module dependencies $return['dependencies'] = array('depends' => array('windowsUser'), 'conflicts' => array()); // managed object classes $return['objectClasses'] = array('msExchMailStorage'); // managed attributes $return['attributes'] = array('mDBStorageQuota'); // help $return['help'] = array( 'mDBStorageQuota' => array( "Headline" => _('Mailbox quota'), 'attr' => 'mDBStorageQuota', "Text" => _("Quota of the user's mailboxe in bytes") ) ); return $return; } public function load_Messages() { $this->messages['mDBStorageQuota'][0] = array('ERROR', _('Mailbox quota'), _('Mailbox quota must contain an integer number.')); } public function display_html_attributes() { $return = new htmlTable(); $this->addSimpleInputTextField($return, 'mDBStorageQuota', 'Mailbox quota'); return $return; } public function process_attributes() { $return = array(); $this->attributes['mDBStorageQuota'] = intval($_POST['mDBStorageQuota']); return $return; } } ?>

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
F. Rust | 18 May 10:44 2016
Picon
Picon

Set field to empty string?

Hi all,

I want to set an entry to an empty string. How could I do this in LAM?
When entering nothing, the entry is totally ignored. 
When using Multiedit it mocks about empty cells. 

Why I want to do it:
I have an LDAP server with a translucent configuration here. 
I get LDAP information from a central LDAP server and overlay it with local settings.
My config requires to overwrite some values of the central LDAP server with empty strings on the local
server. 

Thanx in advance,
Frank

------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
glenn | 5 May 03:38 2016

Install Help

Trying to install latest ldap account manager, supposed to support php 7, anyone know a workaround?

Preparing to unpack ldap-account-manager_5.3-1_all.deb ...
Unpacking ldap-account-manager (5.3-1) ...
dpkg: dependency problems prevent configuration of ldap-account-manager:
 ldap-account-manager depends on php5 (>= 5.4.26) | php (>= 21); however:
  Package php5 is not installed.
  Package php is not installed.

dpkg: error processing package ldap-account-manager (--install):
 dependency problems - leaving unconfigured
Errors were encountered while processing:
 ldap-account-manager
glenn <at> lnx-srv00:~$ dpkg --get-selections | grep php
cakephp                                         install
cakephp-scripts                                 install
libapache2-mod-php7.0                           install
libphp-serialization-perl                       install
owncloud-deps-php7.0                            install
php-common                                      install
php-fpdf                                        install
php-imagick                                     install
php-mysql                                       install
php-pear                                        install
php7.0-cli                                      install
php7.0-common                                   install
php7.0-curl                                     install
php7.0-gd                                       install
php7.0-imap                                     install
php7.0-intl                                     install
php7.0-json                                     install
php7.0-ldap                                     install
php7.0-mbstring                                 install
php7.0-mcrypt                                   install
php7.0-mysql                                    install
php7.0-opcache                                  install
php7.0-pgsql                                    install
php7.0-readline                                 install
php7.0-sqlite3                                  install
php7.0-xml                                      install
php7.0-zip                                      install

Glenn Vitale


Man is the lowest-cost, 150-pound, nonlinear, all-purpose computer system which can be mass-produced by unskilled labor.
-NASA in 1965
------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
oukhina | 21 Apr 16:11 2016

Automatically change samba password

Hello!

 

I have set up LAM and I am looking for some way automatically to change samba password after changing shadow password on my ldap client. Is it possible in LAM? Or may be in LAM Pro?

 

Thanks!

 

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Björn Müller | 13 Apr 13:35 2016
Picon

Lamdaemon strange behavior

Hello Roland

we are running LAM PRO 5.3 and on a remote server lamdaemon 5.3.

The problem is that some people logging in into the same administrative 
account
from different machines encounter:

ssh connection failed

if they make the lamdaemon test
For other people it works without a problem.
 From the auth.log of the remote server I can see that it fails because 
of wrong password,
but this is impossible because it´s the same credentials to login in the 
webinterface just from
two different computers within the same network. It even works for 
machines in other subnets.
As far as I see the failure is  independent from browser( FireFox, 
Chrome, Safari, IE) and os (Windows 7,8,10 , MAC, Debian 8,)
Below is a short section from the auth.log of the remote server showing 
the error.

Apr 13 12:38:02 hih-kn-2116-02 sshd[38265]: pam_unix(sshd:auth): 
authentication failure; logname= uid=0 euid=0 tty=ssh ruser= 
rhost=134.2.114.84  user=admin
Apr 13 12:38:05 hih-kn-2116-02 sshd[38265]: Failed password for admin 
from 134.2.114.84 port 48158 ssh2
Apr 13 12:38:05 hih-kn-2116-02 sshd[38265]: Received disconnect from 
134.2.114.84: 11:  [preauth]
Apr 13 12:38:58 hih-kn-2116-02 sshd[38272]: pam_unix(sshd:auth): 
authentication failure; logname= uid=0 euid=0 tty=ssh ruser= 
rhost=134.2.114.84  user=admin
Apr 13 12:39:01 hih-kn-2116-02 sshd[38272]: Failed password for admin 
from 134.2.114.84 port 48168 ssh2
Apr 13 12:39:01 hih-kn-2116-02 sshd[38272]: Received disconnect from 
134.2.114.84: 11:  [preauth]
Apr 13 12:39:30 hih-kn-2116-02 sshd[38278]: Accepted password for admin 
from 134.2.114.84 port 48174 ssh2
Apr 13 12:39:30 hih-kn-2116-02 sshd[38278]: pam_unix(sshd:session): 
session opened for user admin by (uid=0)
Apr 13 12:39:30 hih-kn-2116-02 sudo:    admin : TTY=unknown ; 
PWD=/home/admin ; USER=root ; 
COMMAND=/usr/share/ldap-account-manager/lib/lamdaemon.pl 
+###x##y##x###test###x##y##x###basic
Apr 13 12:39:30 hih-kn-2116-02 sudo: pam_unix(sudo:session): session 
opened for user root by (uid=0)
Apr 13 12:39:30 hih-kn-2116-02 sudo: pam_unix(sudo:session): session 
closed for user root
Apr 13 12:39:30 hih-kn-2116-02 sudo:    admin : TTY=unknown ; 
PWD=/home/admin ; USER=root ; 
COMMAND=/usr/share/ldap-account-manager/lib/lamdaemon.pl 
+###x##y##x###test###x##y##x###version###x##y##x###5
Apr 13 12:39:30 hih-kn-2116-02 sudo: pam_unix(sudo:session): session 
opened for user root by (uid=0)
Apr 13 12:39:30 hih-kn-2116-02 sudo: pam_unix(sudo:session): session 
closed for user root
Apr 13 12:39:30 hih-kn-2116-02 sshd[38280]: Received disconnect from 
134.2.114.84: 11:
Apr 13 12:39:30 hih-kn-2116-02 sshd[38278]: pam_unix(sshd:session): 
session closed for user admin
Apr 13 12:39:30 hih-kn-2116-02 sshd[38287]: Accepted password for admin 
from 134.2.114.84 port 48176 ssh2
Apr 13 12:39:30 hih-kn-2116-02 sshd[38287]: pam_unix(sshd:session): 
session opened for user admin by (uid=0)
Apr 13 12:39:30 hih-kn-2116-02 sudo:    admin : TTY=unknown ; 
PWD=/home/admin ; USER=root ; 
COMMAND=/usr/share/ldap-account-manager/lib/lamdaemon.pl 
+###x##y##x###test###x##y##x###nss###x##y##x###admin
Apr 13 12:39:30 hih-kn-2116-02 sudo: pam_unix(sudo:session): session 
opened for user root by (uid=0)
Apr 13 12:39:30 hih-kn-2116-02 sudo: pam_unix(sudo:session): session 
closed for user root
Apr 13 12:39:30 hih-kn-2116-02 sshd[38289]: Received disconnect from 
134.2.114.84: 11:
Apr 13 12:39:30 hih-kn-2116-02 sshd[38287]: pam_unix(sshd:session): 
session closed for user admin

Do you have any suggestions what the problem might be?

Thanks in advance.

Best Regards,
Björn

-- 
Björn Müller

Cognitive Neurology
Section Computational Sensomotorics,
IT/EDV Systemadminstrator
Hertie Institute for Clinical Brain Research and
Centre for Integrative Neuroscience

Otfried-Müller-Strasse 25
D-72076 Tuebingen
GERMANY

Tel.: +49 7071 29-89131
Tel.: +49 7071 29-81999

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
Lam-public mailing list
Lam-public <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
John Gilmartin | 11 Apr 15:54 2016
Picon
Gravatar

LAM/Pro license enquiry

Hi folks

I am looking at an existing LAM installation for a client. This is LAM on top of OpenLDAP and RHEL5. The OS shows ldap-account-manager-4.4-0.fedora.1 rpm package installed but the LAM GUI shows: LDAP Account Manager Pro - 4.4
(Note the 'Pro'.)

Is there anywhere I can verify the license status? I am wondering whether this is actually just LAM and not the paid-for Pro version.

Or does RHEL somehow include LAM Pro? (Perhaps only this older 4.4 version?)

All help appreciated.

John Gilmartin

(DEV) [user <at> hostname ~]$ rpm -q ldap-account-manager

ldap-account-manager-4.4-0.fedora.1

(DEV) [user <at> hostname ~]$

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial! http://pubads.g.doubleclick.net/
gampad/clk?id=1444514301&iu=/ca-pub-7940484522588532
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public
Gomez-Rubio, J L. | 29 Mar 21:56 2016

/usr/share/ldap-account-manager/lib/cron.sh lam 180334964969 error

Roland,

I am having this Integrity constraint violation issue with /usr/share/ldap-account-manager/lib/cron.sh lam 180334964969. I did upgrade to LAM Pro 5.3 but it still exists just like it did with 5.2. Here is the error message sent to root’s e-mail:

Error in job PPolicyPasswordNotifyJob: SQLSTATE[23000]: Integrity constraint violation: 19 columns name, time are not unique
PHP Fatal error:  Uncaught exception 'PDOException' with message 'SQLSTATE[23000]: Integrity constraint violation: 19 columns name, time are not unique' in /usr/share/ldap-account-manager/lib/database.inc:471
Stack trace:
#0 /usr/share/ldap-account-manager/lib/database.inc(471): PDOStatement->execute(Array)
#1 /usr/share/ldap-account-manager/lib/cron.inc(128): LAM\DB\saveJobRun(Object(PDO), 'PPolicyPassword...', '1007522302852', 1, 'SQLSTATE[23000]...')
#2 {main}
  thrown in /usr/share/ldap-account-manager/lib/database.inc on line 471

LAM Pro is configured to use sqlite for Database type and the Test Settings button says:

Database connection ok.
LDAP connection ok.

Thanks for the help in this matter.

Jose
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785471&iu=/4140
_______________________________________________
Lam-public mailing list
Lam-public@...
https://lists.sourceforge.net/lists/listinfo/lam-public

Gmane