jwhitson Absent Member.
Absent Member.
1558 views

Groupwise authentication troubles

I have a fresh install, and first ever attempt, at this product that I am having issues with.

SLES 11 SP1 64-bit (fully updated)
Novell Data Synchronizer Version: 1.2 Build: 730
GroupWise 8 running on Netware 6.5

My first attempt partially worked on a Droid Razr and an iPad 2. I was able to sync calendars, see tasks, contacts, and even my inbox. However, I could not send e-mail. I was able to compose and press the send button but they never went anywhere on either device. So I reinstalled and decided to go with GroupWise authentication since our network and GW usernames are different. Now, I can't get either device to authenticate to DataSync. iPad2 says, "The connection to the server failed". The Razr says that it cannot authenticate.

Things to note:

- Internal and external access to port 443 and 8120 work fine. Mail flow works fine with the GW client, and WebAccess.
- Setting the application username in the GW connector does not stick. I can change it but if I refresh the page it's gone.
- I tried every combination of network username, GroupWise username and both passwords

Are thee any gotchas I am missing? I've read the docs and can't figure out why it's not working.

Thanks,
Jason

Jason
Labels (1)
0 Likes
5 Replies
jmarton2 Absent Member.
Absent Member.

Re: Groupwise authentication troubles

jwhitson wrote:

> SLES 11 SP1 64-bit (fully updated)
> Novell Data Synchronizer Version: 1.2 Build: 730
> GroupWise 8 running on Netware 6.5


Which version of GW8?

> My first attempt partially worked on a Droid Razr and an iPad 2. I was
> able to sync calendars, see tasks, contacts, and even my inbox.
> However, I could not send e-mail. I was able to compose and press the
> send button but they never went anywhere on either device. So I
> reinstalled and decided to go with GroupWise authentication since our
> network and GW usernames are different. Now, I can't get either
> device to authenticate to DataSync. iPad2 says, "The connection to
> the server failed". The Razr says that it cannot authenticate.
>
> Things to note:
>
> - Internal and external access to port 443 and 8120 work fine. Mail
> flow works fine with the GW client, and WebAccess.
> - Setting the application username in the GW connector does not stick.
> I can change it but if I refresh the page it's gone.
> - I tried every combination of network username, GroupWise username
> and both passwords


Hmm... I haven't seen where changing the application name doesn't
remain in effect. Perhaps try a different browser? If you're using
IE, try Firefox or vice versa. Also, either LDAP or GW authentication
should work.

--
We're your Novell--again. http://www.novell.com/promo/backtobasics.html
Enhancement Requests: http://www.novell.com/rms

Joe Marton Emeritus Knowledge Partner
0 Likes
jwhitson Absent Member.
Absent Member.

Re: Groupwise authentication troubles

Groupwise 8.0.2

I tried Chrome 16.0.912, IE 9.0.8 and FF 6.0.2.

It's also not very clear in the docs on what addresses/ports to use. I setup a DNS name and punched a whole in the firewall for port 443. I setup NAT so that that DNS request goes straight to the SLES 11 box, and I can see the traffic coming in. So my test user is using sync.mydomain.com on both the iPad2 and the Razr. I am baffled that it worked partially for a while and then a fresh install using the same setup fails.

Jason
0 Likes
jwhitson Absent Member.
Absent Member.

Re: Groupwise authentication troubles

So I've tried a few different things...

- delete all users (1) and reboot. Add user to groupwise connector and set application user name to their groupwise username. Then, add user to mobility connector and do the same thing. When I view users under groupwise connector the application name is not set. User cannot setup an e-mail account on an iPad2 or Razr- failed to connect on both

- Repeat above but try and set application username after a user has been added. Same result.

Is anyone successfully using datasync with users who have 1 username for network access and another for groupwise? I would rather have them match but this is what I inherited- should I start changing network user names to match groupwise?

Jason
0 Likes
jmarton2 Absent Member.
Absent Member.

Re: Groupwise authentication troubles

jwhitson wrote:

> - delete all users (1) and reboot. Add user to groupwise connector and
> set application user name to their groupwise username. Then, add user
> to mobility connector and do the same thing. When I view users under
> groupwise connector the application name is not set. User cannot setup
> an e-mail account on an iPad2 or Razr- failed to connect on both


If the eDir username doesn't match the GW name and you aren't able to
specify the correct application user name, then it makes sense the
devices can't connect. What doesn't make sense is why you can't make
the change.

> Is anyone successfully using datasync with users who have 1 username
> for network access and another for groupwise? I would rather have them
> match but this is what I inherited- should I start changing network
> user names to match groupwise?


I know people here in the forum have done this and it works. I don't
know if anyone is doing it with build 730, but I just tried changing
the application name for a user on my test 730 system and that change
took hold so it *should* work.

--
We're your Novell--again. http://www.novell.com/promo/backtobasics.html
Enhancement Requests: http://www.novell.com/rms

Joe Marton Emeritus Knowledge Partner
0 Likes
jmarton2 Absent Member.
Absent Member.

Re: Groupwise authentication troubles

jwhitson wrote:

>
> Groupwise 8.0.2


Any 802 should be fine but in particular you should be on hp2 or hp3.

> I tried Chrome 16.0.912, IE 9.0.8 and FF 6.0.2.


I could see IE9 maybe being a problem, but I know Chrome works. I just
tried with Chrome 16 and it worked.

> It's also not very clear in the docs on what addresses/ports to use. I
> setup a DNS name and punched a whole in the firewall for port 443. I
> setup NAT so that that DNS request goes straight to the SLES 11 box,
> and I can see the traffic coming in. So my test user is using
> sync.mydomain.com on both the iPad2 and the Razr. I am baffled that it
> worked partially for a while and then a fresh install using the same
> setup fails.


All you need coming in through the firewall is either 80 or 443,
depending on how you configure the Mobility connector. You can allow
8120 from the outside if you plan to administer from the outside but
it's definitely not required just for syncing to work. From Mobility
coming into the POA you'll need 7191 (or whatever SOAP port you use)
open, and from the POA to Mobility you'll need 4500 unless you change
that port from the default.

I think the first time you set it up and it worked you were using LDAP
auth. You can give that a shot--just make sure you open either 389 or
636 in to your LDAP server from Mobility, depending on whether you use
LDAP or LDAPS. See if that allows things to maybe work. In the end,
though, I think the inability to change the application name is the
problem here.

--
We're your Novell--again. http://www.novell.com/promo/backtobasics.html
Enhancement Requests: http://www.novell.com/rms

Joe Marton Emeritus Knowledge Partner
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.