Novell eDirectory 8.8 Troubleshooting Guide - NetIQ
Novell eDirectory 8.8 Troubleshooting Guide - NetIQ
Novell eDirectory 8.8 Troubleshooting Guide - NetIQ
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
To make the setting permanent (even after a reboot), do the following:<br />
Add the following entries in /etc/sysctl.conf.<br />
• net.ipv4.tcp_keepalive_time=120<br />
• net.ipv4.tcp_keepalive_probes=3<br />
• net.ipv4.tcp_keepalive_intvl=20<br />
novdocx (en) 11 July 2008<br />
We recommend these settings only if all the clients and servers are connected through LAN.<br />
19.6 NDS Error, System Failure (-632) Occurs<br />
When Doing ldapsearch for the User Objects<br />
Import the user objects with simple password and then enable universal password for the container<br />
where the user objects are imported. Stop the DS server and set the environment as<br />
NDSD_TRY_NMASLOGIN_FIRST=true and then start DS Server. Then when you do and<br />
ldapsearch for the user objects, which were imported with simple password, you get the following<br />
error:<br />
ldap_bind: Unknown error, additional info: NDS error: system failure (-632)<br />
To resolve this issue, set the default login sequence as simple password for the container where user<br />
objects are imported before doing ldapsearch for those user objects.<br />
When LDAP requests NMAS to log in a user, NMAS uses the default login sequence. If you do not<br />
specify a default login sequence for these users, then it will use the NDS sequence. If these users are<br />
not given an NDS password when you imported them, then the NDS sequence will not work. If you<br />
enable universal password, then the simple password will be synchronized with the NDS password<br />
and universal password when the user logs in with the simple password.<br />
19.7 Disabling SecretStore<br />
An <strong>eDirectory</strong> administrator can disable SecretStore using the following processes:<br />
19.7.1 On Linix and UNIX<br />
1 Go to the nds-modules directory and rename or move the following SecretStore modules:<br />
libsss.so*<br />
libssncp.so.*<br />
libssldp.so.*<br />
2 Restart the server.<br />
Alternatively, you can also comment out the line in the /etc/opt/novell/<strong>eDirectory</strong>/conf/<br />
ndsmodules.conf file that loads ssncp.<br />
19.7.2 On NetWare<br />
1 Go to the system directory and rename or move the following SecretStore modules:<br />
lsss.nlm<br />
Miscellaneous 95