eDirectory

With the introduction of TLSv1.2 support for MS SQL servers (MS Tech Doc) one may notice that the Identity Manager JDBC connector may stall trying to make SSL connection to the MS SQL database using the jTDS third party drivers. The driver trace may show something like below…

By: vivekbm
Nov 3, 2016
8:00 am
Reads:
212
Score:
5

From time to time, questions arise as to how to secure eDirectory, often based on somebody’s idea of a “security scan” throwing out nasty sounding messages. A while back, I looked in to what could be done, and what the benefits and costs are of modifying some of the default permissions…

dgersic
By: dgersic
Oct 20, 2016
8:16 am
Reads:
213
Score:
5

During the upgrade from IDM 4.0.2 to 4.5 IDM needs JDK 1.8, but if you run your iManager with JDK 1.8 and try to make use of the SecretStore plugin, you will see this error: Error: Monitor SecretStore failed. -1 Decoding Error: sun/io/ByteToCharConverter…

By: nsanson
May 11, 2016
4:19 pm
Reads:
960
Score:
Unrated

eDirectory comes with PKI (Public Key Infrastructure) components built in. The most obvious manifestation of this is the Certificate Authority that is created on the first server in each tree. This is used to make X.509 Certificates that are used by eDirectory for a number of services. (LDAP with SSL/TLS, iMonitor’s HTTP stack for SSL/TLS…

+ read more

geoffc
By: geoffc
Apr 14, 2016
10:54 am
Reads:
971
Score:
5

If you’re attending this year’s Gartner IAM Summit, things might be a bit different than what you’re used to. I’ve attended other Gartner events this year, as well as other industry IAM-related events, and the thing I’ve noticed is that IAM is no longer on an island. Where IAM was seen as black magic by…

+ read more

Travis Greene
Nov 20, 2015
4:38 pm
Reads:
885
Score:
Unrated

I was going through the list of applications which can be monitored by AppManager. Though the list is huge, I was disappointed to see that there is no monitoring available for IDM server, so I decided to do something on my own. As AppManager is highly customizable I created a few KSs to monitor my…

+ read more

Anmol Rastogi
Nov 19, 2015
4:51 pm
Reads:
1,252
Score:
Unrated

The eDirectory 8.8 LDAP Server component supports a number of different trace levels that can be used to troubleshoot LDAP connections and queries. One can check the LDAP trace output using the ndstrace utility by enabling the +LDAP flag or by using DSTrace in iMonitor. The normal way to change the trace level is to…

+ read more

Oct 26, 2015
12:49 pm
Reads:
936
Score:
5

A customer has configured Novell Audit Platform Agent (PA) to Force Caching mode. And along with the Force Caching mode, the “Roll Cache” option is also configured. The PA’s configuration (/etc/logevent.conf) file looks like…

Mahantesh Hongal
Aug 31, 2015
5:19 pm
Reads:
2,366
Score:
3.67
Active Directory Automation Cloud Computing Cloud Security Configuration Customizing Data Breach DirXML Drivers End User Management Identity Manager Importing-Exporting / ICE/ LDIF Intelligent Workload Management IT Security Knowledge Depot LDAP Monitoring Open Enterprise Server Passwords Reporting Secure Access Sentinel Supported Troubleshooting Workflow