Perl 6 - the future is here, just unevenly distributed

IRC log for #openam, 2014-02-12

| Channels | #openam index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
02:47 pdurbin GLHMarmot: I'm still on glassfish 4 ;)
04:19 tsmalmbe joined #openam
06:13 Wusel_ joined #openam
08:20 Wusel_ it's me again, the never ending question story
08:22 Wusel_ what do I have to do, to tell openam to use a second base-dn (on the same opendj) to authentication? additionally to the existing one. the suffix is there and has users inside
08:34 kala you need to get users from two locations in LDAP?
08:35 Wusel_ yes
08:36 Wusel_ i tried to add it under data stores
08:37 Wusel_ the new users are listed then in the topics
08:37 Wusel_ but when I click at a new user
08:38 Wusel_ the fields are empty and I get the exception Plugin com.sun.identity.idm.plugins.internal.SpecialRepo does not support read for type {2}
08:38 kala well, data store is one thing. Another thing is LDAP auth module conf
08:38 kala you would need to add another DN to that as well
08:40 kala but I don't know, why you are getting that exception
08:40 Wusel_ the working users are under: ou=People, dc=openam, dc=company, dc=net
08:41 Wusel_ now I added a new suffix (with the OpenDJ control panel)
08:41 Wusel_ ou=People, dc=sso, dc=company, dc=net
08:41 kala OpenDJ control panel?
08:41 Wusel_ or a second base-dn
08:41 Wusel_ yea under /OpenDJ/bin/control-panel
08:41 kala hmm ...
08:41 Wusel_ it's a gui for the command line tools
08:42 kala yes, but I don't understand why you needed to configure LDAP server
08:44 Wusel_ what do u mean? it's the same like when I want to add a second ldap-server for authentication, isn't it?
08:45 kala yes, but why did you needed to touch the ldap server, instead just the OpenAM console?
08:46 kala the ldap server should be fine ... it is still serving just queries and requests and all is good. OpenAM must know, where to look for additional users?
08:46 Wusel_ it's just a test-system
08:47 Wusel_ the base-dn has to exist
08:47 Wusel_ so i created it
08:48 kala ah, ok ... the actual tree with the objects and stuff?
08:48 Wusel_ yes
08:49 kala right
08:49 kala sorry about the confusion
08:49 Wusel_ no problem ;)
08:49 kala anyway ... I suppose you could read the OpenAM debug log about that exception and also the OpenDJ log ... to see what exactly they are trying to do and where they are failing
09:02 Wusel_ well
09:02 Wusel_ i guess I'm a step forward
09:02 Wusel_ now i can login
09:02 Wusel_ but it's complaining that there is  no profile
09:02 Wusel_ in this organization
09:03 Wusel_ kala: ? :D
09:04 fatbloke joined #openam
09:15 ludovicp joined #openam
09:21 Wusel_ ludovicp: ?
09:22 ludovicp Good morning
09:22 kala uh. no profile?
09:22 Wusel_ good morning :)
09:22 Wusel_ yea
09:23 Wusel_ no profile when logging in
09:23 Wusel_ and when clicking as amadmin under topic at the user
09:23 Wusel_ i get that read for type {2} is not supported by plugin com.sun .... SpecialRepo
09:26 Wusel_ these two messages seem to describe the same problem?
09:26 Wusel_ if openam can't read, it's not possible to read out the organisation
09:26 Wusel_ right?
09:27 Wusel_ but why does it display the new users in the topic-tab when reading is not possible?
09:28 Wusel_ i mean subject-tab
09:29 Wusel_ left #openam
09:29 Wusel_ joined #openam
09:39 Wusel_ when I google for this errormsg, I get a few threads, but no solution?
09:50 Wusel_ complete log: http://pastebin.com/J8BR43t8
09:50 Wusel_ i guess i configured it not correctly
09:51 Wusel_ the user Repro_User exists in dc=sso
10:02 Wusel_ i dont get the problem >_<
10:16 Wusel_ it's half working now
10:16 Wusel_ i got it working by using the uid of the user as loginname
10:17 Wusel_ it's also the relative distinguished name
10:17 Wusel_ how do i set openam to use the mail-attribute for authentication?
10:21 asyd you change in the ldap authentication module, for example
10:22 Wusel_ i tried
10:22 Wusel_ but when I change this to "mail"
10:23 Wusel_ it says that there is no organisation for this profile?
10:30 aldaris joined #openam
10:52 asyd when using /identity/authenticate, I'm supposed to use the return token to set iPlanetDirectoryPro token, or there are differents things?
10:53 aldaris you should use the tokenId as the cookie value, yes
10:55 asyd ok, so why it's not working.. define iPlanetDirectoryPro should be enough right?
10:56 aldaris normally, yes
11:02 asyd so, I miss something
11:05 asyd ah!
11:06 asyd sounds like the new name is securedsession :)
11:06 aldaris see :)
11:49 MegaMatt joined #openam
13:50 fatbloke joined #openam
14:09 balo aldaris: do you know anything about this webinar? http://go.forgerock.com/EMEA-100000-Reasons-to-Mo​ve-from-OpenSSO-to-OpenAM-forgerock-webinar.html i'd like to recommend it to somebody
14:10 asyd just do it? :)
14:10 aldaris I don't know much about that webinar
14:10 aldaris feel free to recommend it to anyone :)
14:11 MegaMatt The speaker is awesome ;)
14:11 ludovicp1 joined #openam
14:11 aldaris agreed
14:11 aldaris actually that is a pretty decent picture of Steve :)
14:12 MegaMatt I would say send it to your friend, it's probably going to be a great webinar... since Steve is presenting
15:14 balo thanks, and is it free?:)
15:15 MegaMatt Probably?
15:15 MegaMatt Looks like it might be ;)
15:16 fatbloke joined #openam
15:38 ludovicp joined #openam
15:45 fatbloke joined #openam
15:57 asyd joined #openam
17:12 ibenox joined #openam
17:16 fatbloke joined #openam
18:06 ibenox joined #openam
20:26 aldaris joined #openam
20:38 aldaris joined #openam
21:41 ludovicp joined #openam
22:03 balo happy birthday FR! https://twitter.com/apforres​t/status/433665472970915841 :)
22:03 MegaMatt 4 years old ;D
22:03 balo nice
22:07 ibenox joined #openam
22:33 aldaris joined #openam
22:38 MegaMatt joined #openam
23:26 ibenox joined #openam

| Channels | #openam index | Today | | Search | Google Search | Plain-Text | summary