Replacing the LDAP Client DLL in SecureLogin



By: tnagareshwar

December 6, 2006 12:00 am

Reads: 192

Comments:0

Rating:0

This tip explains how to quickly replace the LDAP client DLL (Nldapaut.dll ) for patch testing or field testing.

Problem

When Novell Secure Login is installed in GINA mode, replacing the LDAP client .DLL for testing becomes complicated. It requires the user to uninstall NSL and then reinstall, replacing with the new DLL. Another way is to restart the machine, then boot with floppy disk and then replace with the new copy of the .DLL.

There is a better and (trickier) way to do this task easily; read on to find out how.

Solution

In GINA mode, the Nldapaut.dll is used by the Winlogon.exe process. Hence, you cannot replace or delete this .DLL as long as winlogon.exe is running, and you cannot terminate this program. To circumvent this problem,

1. Use the RemoteDLL tool (http://www.novell.com/coolsolutions/tools/17354.html) to free the Nldapaut.dll from the winlogon process.

2. Once you have unloaded the DLL, replace the existing DLL (c:\windows\system32\nldapaut.dll ) with the new copy.

3. Restart the machine and you will see LDAP client dialog with new functionality.

Note: Try this first on a test machine. Once you have replaced the file, immediately restart the machine, as winlogon may get unstable over time.

Environment

This solution was tested with Novell SecureLogin on Windows.

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Tags: ,
Categories: SecureLogin, Technical Solutions

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Comment