@ardentkurt
active 2 years, 10 months ago-
ardentkurt replied to the topic CTS without site configuration in the forum Access Management 2 years, 10 months ago
6.5 starts out talking about how to configure CTS before they go into the tuning info. But those tuning global attributes seem to apply only to a predefined site. So, I would like to know whether I need to configure a site in order to take advantage of session failover. Or, would/could I configure a site with one server (server A) and then if it…[Read more]
-
ardentkurt replied to the topic CTS without site configuration in the forum Access Management 2 years, 10 months ago
I am working on Procedure 6.5 To Configure CTS in OpenAM for OpenAM 13.
-
ardentkurt started the topic CTS without site configuration in the forum Access Management 2 years, 10 months ago
Wondering whether I need to configure a site in order to set up CTS with session failover. If I have two separate AM servers (AM1 and AM2) configured with CTS, do these need to both live in the same “site” in order for me to set the global attributes
Session persistenece and High Availability Failover EnabledandSession Logout/Destroy Broadcast?Thanks!
-
ardentkurt replied to the topic Error creating directory server backend in the forum Directory Services 2 years, 10 months ago
Okay, listing the indexes for that dn seems to show all the indexes:
./dbtest list-index-status --backendID cfgStore --baseDN dc=cfgStore,dc=example,dc=com -
ardentkurt replied to the topic Error creating directory server backend in the forum Directory Services 2 years, 10 months ago
Thanks, Rob and Michelle. I ended up moving to a deployment that separates the user and config data stores and running the remaining commands with a baseDN of dc=cfgStore,dc=example,dc=com. In order to verify that this is setup correctly, I am trying to verify the indexes that were created by running:
./verify-index --baseDN…[Read more] -
ardentkurt replied to the topic Error creating directory server backend in the forum Directory Services 2 years, 10 months ago
Hi Rob,
Yes, this is a little confusing. The guide mentions that
he following example procedure shows how to prepare a single OpenDJ directory server instance as an external configuration data store. The OpenDJ instance implements a single backend for the OpenAM configuration data. The procedure assumes that you have also prepared an external…[Read more] -
ardentkurt replied to the topic Error creating directory server backend in the forum Directory Services 2 years, 10 months ago
Hi Gentjan,
I am at Procedure 1.4 — you are correct. I am not executing both commands though. Since I am using OpenDJ 2.6.4, I am running just the following command:
./dsconfig create-backend –backend-name cfgStore –set base-dn:dc=example,dc=com –set enabled:true –type local-db –port 4444 –bindDN “cn=Directory Manager” –bindPassword p…[Read more] -
ardentkurt replied to the topic Error creating directory server backend in the forum Directory Services 2 years, 11 months ago
Hmm…ok, given that I’m following the installation manual, would it make sense to do something like this:
dc=openam,dc=example,dc=comOr is there another baseDN that makes sense here?
Thanks!
-
ardentkurt started the topic Error creating directory server backend in the forum Directory Services 2 years, 11 months ago
Following along from the install manual for OpenAM 13, I am trying to create a directory server backend by running the following command:
./dsconfig create-backend –backend-name cfgStore –set base-dn:dc=example,dc=com –set enabled:true –type local-db –port 4444 –bindDN “cn=Directory Manager” –bindPassword password –no-prompt
This…[Read more]
-
ardentkurt replied to the topic Connecting to an external data store in the forum Directory Services 2 years, 11 months ago
And
<service name>:<port on container>is the right way to access the opendj instance. -
ardentkurt replied to the topic Connecting to an external data store in the forum Directory Services 2 years, 11 months ago
Following up on this thread, the cn=Directory Manager user was able to connect to the opendj instance. However, it required checking the “Load schema when finished” checkbox on the Data Stores tab.
The cn=OpenAM Administrator user still cannot connect.
-
ardentkurt replied to the topic Error creating equality indexes in the forum Directory Services 2 years, 11 months ago
Thanks, Rob. Just to be clear in order to load the schema when the data store is saved, I have to use the cn=Directory Manager account and not the cn=OpenAM Administrator account. And even after I load the schema, I am not able to connect to the external data store with the cn=OpenAM Administrator account. For some weird reason, I keep getting an…[Read more]
-
ardentkurt replied to the topic Error creating equality indexes in the forum Directory Services 2 years, 11 months ago
Restarting the directory server is not an option since its running in a Docker container; if
stop-dsis run, then that causes the container to exit. That seems to have a permanent effect on the container so that it does not start up again afterwards. -
ardentkurt replied to the topic Error creating equality indexes in the forum Directory Services 2 years, 11 months ago
Hmmm…I am configuring for dynamic schema updates and the manual says, “Continue by configuring your external identity repository as an OpenAM data store as described in Section 1.4.3, “Configuring OpenAM Data Stores That Access External Identity Repositories”.” That said, I foiund the step 11 that you’re referring to — it’s in section 1.5.
-
ardentkurt replied to the topic Error creating equality indexes in the forum Directory Services 2 years, 11 months ago
Not sure which step is step 11. I have run the openam-ds-admin-account.ldif:
dn: ou=admins,dc=example,dc=com
objectClass: top
objectClass: organizationalunit
ou: OpenAM Administratordn: uid=openam,ou=admins,dc=example,dc=com
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
cn: OpenAM… -
ardentkurt started the topic Error creating equality indexes in the forum Directory Services 2 years, 11 months ago
I am following along in the OpenAM 13 install manual and trying to create the equality indexes to configure an external data store. However, I am getting the error message below. Any ideas why?
./dsconfig create-local-db-index –port 4444 –hostname opendj.example.com –bindDN “cn=Directory Manager” –bindPassword password –backend-name…
-
ardentkurt replied to the topic Connecting to an external data store in the forum Directory Services 2 years, 11 months ago
I have tried both with cn=”Directory Manager” and cn=”OpenAM Administrator” and neither works.
-
ardentkurt replied to the topic Connecting to an external data store in the forum Directory Services 2 years, 11 months ago
Good idea. That unfortunately results in an authentication failed. This is the user created in opendj prior to connecting openam to this external data store:
dn: ou=admins,dc=example,dc=com
objectClass: top
objectClass: organizationalunit
ou: OpenAM Administratordn: uid=openam,ou=admins,dc=example,dc=com
objectClass: top
objectClass:… -
ardentkurt replied to the topic Connecting to an external data store in the forum Directory Services 2 years, 11 months ago
Have not tried the IP address yet. I just tried to ping
opendj(which is the service name) from the openam container and that does work so maybe this is already working and I just don’t know… -
ardentkurt replied to the topic Use docker-compose to run a local development environment in the forum DevOps 2 years, 11 months ago
Was this ever resolved? How? I am running into the same issue. I am attempting to add the user data store after openam starts up.
Thanks!
- Load More
