Perl 6 - the future is here, just unevenly distributed

IRC log for #openam, 2015-04-14

| Channels | #openam index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
00:52 pcypher joined #openam
00:55 MegaMatt joined #openam
01:19 pcypher joined #openam
02:06 pcypher joined #openam
02:57 pcypher joined #openam
03:13 balo joined #openam
03:41 pcypher joined #openam
06:38 KermitTheFragger joined #openam
06:48 aldaris joined #openam
06:54 AravindR joined #openam
06:57 AravindR while installing openam in cookie domain we have given server IP address... because we were having login issue on openam console. Right we have configured openam to liferay and we are feeling the session/cookie is not setting for liferay.. Could you please let me know how to fix this. here we are accessing the application using the server IP.
06:59 asyd using the server IP?
06:59 asyd you're in agent mode or SAML?
07:00 aldaris you should probably set up an fqdn, cookies may not be stored against ip addresses
07:01 AravindR @asyd yes we are accessing the application in server ip for example openam we are accessing using 192.168.117.135:8080/OpenAM-12.0.0/ and liferay we are accessing 192.168.117.129:8080/
07:02 AravindR i have tried to add the cookiedomain  in Configuration => System => platform
07:02 AravindR after adding i was not able to login the openam console
07:02 aldaris because your cookies weren't created
07:03 aldaris you should access AM using a "matching" domain as what you had configured
07:03 AravindR ok here our servers are in cloud and we are not able to access using the FQDN in browser
07:04 AravindR that is the reason i have given the server ip
07:06 aldaris why wouldn't DNS work in the "cloud"?
07:22 AravindR i have not tried so far.. all the clouds details are managed by different.. if i know this is the reason i can talk to them
07:23 aldaris you could also just set up your fqdn in both your browser and at the machine to think it owns the FQDN
07:24 AravindR you mean updating the FQDN in /etc/hosts file ?
07:24 AravindR i tried that still it dint work
07:25 aldaris and then did you access AM using that FQDN?
07:25 aldaris btw this is all documented in the install guide..
07:27 AravindR yes i have checked the install guide before i started this... faced the issues so updated the ipaddress in cookie domain..  Right now i have asked my DNS team to updated the FQDN.. Let you know once they have updated.. Once it is updated in DNS i have reinstall with FQDN or is there any other way to do this
07:39 AravindR any suggestion here.. i can reinstall because i dont have much configuration in my AM
07:39 AravindR Please suggest which is better
07:39 aldaris reinstallation will be simpler I'd say
07:40 AravindR ok thanks will try and let you know.. Thanks for your help
08:01 aldaris joined #openam
08:14 hos001 joined #openam
08:24 aldaris joined #openam
08:59 aldaris joined #openam
10:05 dean joined #openam
10:13 aldaris joined #openam
10:20 aldaris joined #openam
11:03 MegaMatt joined #openam
11:20 hos001 joined #openam
11:34 AravindR @aldaris Thanks for your help it worked for me
12:11 AravindR joined #openam
14:22 pcypher joined #openam
15:07 pcypher joined #openam
15:21 aldaris joined #openam
16:02 pcypher joined #openam
16:23 pcypher_ joined #openam
18:04 mckeanbs joined #openam
19:25 pcypher joined #openam
19:25 sfire||work joined #openam
19:27 sfire||work anyone familiar with http://openam.27691.n7.nabble.com/Reset-amadmin-password-td563.html and http://ludopoitou.com/2011/06/30/newbie-help-how-to-reset-the-directory-managers-password/
19:28 MegaMatt I’ve read both of those before...
19:28 sfire||work whats weird/worrying to me is that the bootstrap file that we have at /usr/share/tomcat6/rlsso/bootstrap doesn’t have the passwords encoded at the same length as output by sudo -u tomcat6 /usr/share/tomcat6/rlsso/opends/bin/encode-password -s SSHA512 -c AS3cur3PassW0rd
19:29 MegaMatt I’m not sure that bootstrap is encoded,..
19:30 sfire||work its encoded/hashed somehow I think
19:30 sfire||work otherwise somebody gave QA a much stronger password then production
19:30 MegaMatt yes, but I think you’re mixing two different things .. the SSHA512 is inside the directory server
19:30 MegaMatt for dir manager
19:31 MegaMatt I’d have to check if bootstrap uses the same...
19:32 MegaMatt https://lists.forgerock.org/pipermail/openam/2012-April/005864.html
19:32 MegaMatt use ampassword tool for bootstrap
19:34 sfire||work need to find where that zip is :)
19:34 MegaMatt you don’t have the tools installed?
19:34 MegaMatt it’s next to the war download usually
19:38 sfire||work yeah, this was setup 2 years ago, not documented well
19:38 pcypher or at all
19:38 sfire||work puppet installs tomcat, and copies the war in
19:39 MegaMatt fun :)
19:40 sfire||work thank god for NFS snapshots of the VM I deleted, because I thought I could just boot a new node
20:17 MegaMatt joined #openam
20:28 sfire||work meh, trying to figure out how to run that tool
20:31 sfire||work Lets see if the production hash works :)
20:48 sfire||work bleh
20:48 sfire||work nope
20:48 sfire||work so back to the tool, or setting up from scratch
20:52 pcypher_ joined #openam
21:04 pcypher joined #openam
21:31 pcypher joined #openam
21:53 MegaMatt joined #openam
21:57 pcypher joined #openam
22:26 pcypher_ joined #openam
22:36 pcypher joined #openam

| Channels | #openam index | Today | | Search | Google Search | Plain-Text | summary