-
bikumar replied to the topic OpenDj server debug mode is not working in the forum Directory Services 5 years ago
Hi,
I am also facing the same issue, unable to start OpenDJ in debug mode.
As Ludo suggested: “This said, you may need to connect twice”
How do I connect twice?
I am stuck at
++ export PATH LD_LIBRARY_PATH LD_LIBRARY_PATH_32 LD_LIBRARY_PATH_64 LD_PRELOAD LD_PRELOAD_32 LD_PRELOAD_64
++…[Read more] -
bikumar replied to the topic Override subentry object class in password policy in the forum Directory Services 5 years, 3 months ago
Hello Ludo,
Thanks for taking out your time to reply. I have already created a support ticket in Backstage.forgerock.com.
Here is the link:
https://backstage.forgerock.com/support/tickets?id=19786If you can go through the above link, you will know the scenario we are dealing with. As we couldn’t get a feasible solution which fits our case I am…[Read more]
-
bikumar replied to the topic Override subentry object class in password policy in the forum Directory Services 5 years, 3 months ago
Hello Ludo,
Thanks for taking out your time to reply. I have already created a support ticket in Backstage.forgerock.com.
Here is the link:
https://backstage.forgerock.com/support/tickets?id=19786If you can go through the above link, you will know the scenario we are dealing with. As we couldn’t get a feasible solution which fits our case I am…[Read more]
-
bikumar started the topic Maven build failing with 401 Unauthorized in the forum Directory Services 5 years, 3 months ago
Hi,
I am trying to build OpenDJ source code using mvn clean install, but I am getting the following error.
# mvn clean install
Scanning for projects…
Downloading: http://maven.forgerock.org/repo/releases/org/forgerock/opendj/opendj-sdk-parent/3.0.0/opendj-sdk-parent-3.0.0.pom
Downloading:…[Read more] -
bikumar replied to the topic Override subentry object class in password policy in the forum Directory Services 5 years, 3 months ago
This is an immediate requirement for us, any help on this is highly appreciated.
Thanks,
Sai -
bikumar started the topic I need to add & honor a new attribute named 'Organization' in OpenAM Login page in the forum Access Management 5 years, 3 months ago
Hi,
– As part of the Login process, the OpenAM Login Page by default captures the username, password.
– My requirement is to add another field named ‘Organization’ to the Login Page and honor it in the custom authentication processor. The combination of username, password and Organization should be available in the backend to say the user is…[Read more] -
bikumar started the topic Override subentry object class in password policy in the forum Directory Services 5 years, 3 months ago
Hello,
I have gone through the password policy documentation and found this
https://backstage.forgerock.com/docs/opendj/2.6/admin-guide#pwp-replicatedThe Subentry Based Password Policies are inherited by default. My question here is that when we create password policy at organization level (one password policy per organization) the following…[Read more]
-
bikumar started the topic Override subentry object class in password policy in the forum Directory Services 5 years, 3 months ago
Hello,
I have gone through the password policy documentation and found this
https://backstage.forgerock.com/docs/opendj/2.6/admin-guide#pwp-replicatedThe Subentry Based Password Policies are inherited by default. My question here is that when we create password policy at organization level (one password policy per organization) the following…[Read more]
-
bikumar started the topic Lock all users who haven't logged in for more than 30 days (config by OrgAdmin) in the forum Directory Services 5 years, 3 months ago
Hi,
We have a custom attribute isAccountLocked in openDJ, if set to true it prevents a user from logging in. In addition to that we wanted to track the number of consecutive days each unique user has not logged into Portal and if it exceeds the stipulated time (30 days, configurable by organization Admin) set the custom attribute…[Read more]
-
bikumar started the topic Sync user account locked status to database (mongoDB) in the forum Directory Services 5 years, 4 months ago
Hi,
We maintain the account locked status of the users in mongoDB too. so for consistency we need to sync the account locked status of the user in openDJ with the corresponding attribute in mongoDB. So is there a way to write a custom module (similar to password validator which checks for every update of passwords) in openDJ such that whenever…[Read more]
-
bikumar started the topic Sync user account locked status to database (mongoDB) in the forum Directory Services 5 years, 4 months ago
Hi,
We maintain the account locked status of the users in mongoDB too. so for consistency we need to sync the account locked status of the user with the corresponding attribute in mongoDB. So is there a way to write a custom module (similar to password validator which checks for every update of passwords) such that whenever there is a change in…[Read more]
-
bikumar started the topic Identify invalid password and locked user call backs (PAP) in the forum Access Management 5 years, 4 months ago
Hi,
I wrote a PAP and I observed that the control comes to onLoginFailure function in the following cases :
– User has entered an invalid password
– User account has been locked (due to invalid password attempts or by admin)Knowing this how do I differentiate between the followuing two events
Event 1: Invalid password attempt invokes…[Read more]
-
bikumar started the topic REST Api call from call back function onLoginFailure. in the forum Access Management 5 years, 4 months ago
Hi,
As per the openAM developer guide
OpenAM calls the onLoginSuccess() and onLoginFailure() methods immediately before informing the user of login success or failure, respectively. OpenAM calls the onLogout() method only when the user actively logs out, not when a user’s session times out.
I need to know if it is possible to make a REST Api…[Read more]
-
bikumar started the topic REST Api call from call back function onLoginFailure. in the forum Access Management 5 years, 4 months ago
Hi,
As per the openAM developer guide
OpenAM calls the onLoginSuccess() and onLoginFailure() methods immediately before informing the user of login success or failure, respectively. OpenAM calls the onLogout() method only when the user actively logs out, not when a user’s session times out.
I need to know if is it possible to make a REST Api…[Read more]
-
bikumar replied to the topic Changing default attribute inetUserStatus in the forum Access Management 5 years, 4 months ago
I have used the following command to update my existing data store
/apps/openam/ssoadmin/fsso/bin/ssoadm update-datastore –adminid amadmin -f /apps/openam/ssoadmin/.pass -e callidus -m OpenDJ -D /apps/openam/ssoconfigtool/um_datastore.dat
And when I try to view the data store via the openam admin console (UI) I do get the following error
An…[Read more]
-
bikumar replied to the topic Changing default attribute inetUserStatus in the forum Access Management 5 years, 4 months ago
I have used the following command to update my existing data store
/apps/openam/ssoadmin/fsso/bin/ssoadm update-datastore –adminid amadmin -f /apps/openam/ssoadmin/.pass -e callidus -m OpenDJ -D /apps/openam/ssoconfigtool/um_datastore.dat
And when I try to view the data store via the openam admin console (UI) I do get the following error
An…[Read more]
-
bikumar replied to the topic Changing default attribute inetUserStatus in the forum Access Management 5 years, 4 months ago
My mistake
I found this in openAM guide
Attribute Name of User Status
Attribute to check/set user status.ssoadm attribute: sun-idrepo-ldapv3-config-isactive
Default: inetuserstatus
User Status Active Value
Active users have the user status attribute set to this value.ssoadm attribute: sun-idrepo-ldapv3-config-active
Default: Active
User…[Read more]
-
bikumar replied to the topic Changing default attribute inetUserStatus in the forum Access Management 5 years, 4 months ago
My mistake
I found this in openAM guide
Attribute Name of User Status
Attribute to check/set user status.ssoadm attribute: sun-idrepo-ldapv3-config-isactive
Default: inetuserstatus
User Status Active Value
Active users have the user status attribute set to this value.ssoadm attribute: sun-idrepo-ldapv3-config-active
Default: Active
User…[Read more]
-
bikumar replied to the topic Changing default attribute inetUserStatus in the forum Access Management 5 years, 4 months ago
I have tried both the ways
replacing the huge list of ldapv3 attributes with the following block
sun-idrepo-ldapv3-config-isactive=enabled
sun-idrepo-ldapv3-config-inactive=false
sun-idrepo-ldapv3-config-active=true
sun-idrepo-ldapv3-config-user-attributes=enabledand adding the above block to the huge list of ldapv3 attributes
But neither of…[Read more]
-
bikumar started the topic Changing default attribute inetUserStatus in the forum Access Management 5 years, 4 months ago
Hi,
As part of maintaining user status we have an attribute called “enabled” in OpenDJ which holds one of two possible values “true” and “false”. I am using ansible to automate all the configurations to openAM. Now I want openAM to check for enabled flag instead of inetUserStatus. How can I do that?
This is what I found in openAM Admin…[Read more]
- Load More