Novell eDirectory 8.8 Troubleshooting Guide - NetIQ
Novell eDirectory 8.8 Troubleshooting Guide - NetIQ
Novell eDirectory 8.8 Troubleshooting Guide - NetIQ
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
SASL-GSSAPI: Not enough memory<br />
Cause: Not enough memory to perform the specific operation.<br />
SASL-GSSAPI: Invalid Input Token<br />
Cause: Token from client is defective or invalid<br />
novdocx (en) 22 June 2009<br />
SASL-GSSAPI: NMAS error NMAS error code<br />
Cause: This error is generated in NMAS and is an internal error.<br />
SASL-GSS: Invalid LDAP service principal name LDAP_service_principal_name<br />
Cause: The LDAP service principal name is invalid.<br />
SASL-GSS: Reading LDAP service principal key from <strong>eDirectory</strong> failed<br />
Cause: The LDAP service principal object is not created.<br />
Cause: The realm object’s master key is changed.<br />
Cause: The LDAP service principal object was not found in the subtree of the realm to which it<br />
belongs.<br />
SASL-GSS: Creating GSS context failed<br />
Cause: The time is not in sync between the client, KDC and the <strong>eDirectory</strong> servers.<br />
Cause: The key of the LDAP service principal was changed in the Kerberos database, but not<br />
updated in <strong>eDirectory</strong>.<br />
Cause: The encryption type is not supported.<br />
SASL GSSAPI: Invalid user FDN = user_FDN<br />
Cause: The user FDN provided by the client is not valid.<br />
SASL GSSAPI: No user DN is associated with principal client_principal_name<br />
Cause: A user object under the subtree is not attached with the Kerberos principal name.<br />
SASL GSSAPI: More than one user DN is associated with principal<br />
client_principal_name<br />
Cause: More than one user object under the subtree is associated with the same principal.<br />
ldap_simple_bind_s: Invalid credentials major = 1, minor =0<br />
Cause: The cause might be the version mismatch between the ldap service principal on the KDC<br />
server and the ldap service principal on the <strong>eDirectory</strong> server. This is because every time you extract<br />
the ldap service principal key to the keytab file, the key version number gets incremented.<br />
106 <strong>Novell</strong> <strong>eDirectory</strong> <strong>8.8</strong> <strong>Troubleshooting</strong> <strong>Guide</strong>