Our vBulletin migration is complete.
Welcome vBulletin users! All content and user information from the Micro Focus Forums (vBulletin) site has been migrated to this site. READ MORE.
Anonymous_User Absent Member.
Absent Member.
289 views

Remote Loader 3.6.1 & Server 2012

Does anybody know if Remote Loader from IDM 3.6.1 will work on AD on Server
2012?

I have it currently running on 2003 R2, but need to replace the server

Thanks

Seb


Labels (1)
0 Likes
9 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012

On 13.08.2013 17:19, Sebastian Cerazy wrote:
> Does anybody know if Remote Loader from IDM 3.6.1 will work on AD on Server
> 2012?
>
> I have it currently running on 2003 R2, but need to replace the server


Firstly, IDM 3.6.1 has exited general support. In general this means
that any new patches or support for new connected system versions are
only available for IDM 4.0.x versions.

Specifically, the AD driver shim which supports Active Directory on
Windows 2012 requires a valid IDM 4.0.2 activation/license.

It *might* work if you purchase/install the 4.0.2 activation into your
3.6.1 ID Vault

and

On the AD/windows 2012 server, install the 4.0.2 IDM remote loader +
latest AD driver shim (which supports AD 2012).

NOTE: However this is untested and very much not supported by NetIQ/Novell

The recommended approach from NetIQ/Novell is to upgrade your existing
environment to IDM 4.0.2

--
----------------------------------------------------------------------
Alex McHugh
NetIQ Knowledge Partner http://forums.netiq.com

Please post questions in the forums. No support is provided via email.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012


Thanks, I am about to go away completly from eDir (so no IDM needed), so
it is a pity to spend time upgrading to 4.0.2 just for the sake of it

I have 3.6.1 BE, so I also have licence for 4.x same way

I think I will try to do the other unsupported way then

On the other note, is Server 2008 R2 supported (or at least working)
with 3.6.1 AD driver?

Thanks

Seb


--
spgsitsupport
------------------------------------------------------------------------
spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
View this thread: https://forums.netiq.com/showthread.php?t=48381

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012

On 14.08.2013 11:24, spgsitsupport wrote:
>
> Thanks, I am about to go away completly from eDir (so no IDM needed)


That is unfortunate news, IDM can offer a lot even if you don't use
eDirectory to directly authenticate users.

> it is a pity to spend time upgrading to 4.0.2 just for the sake of it
>
> I have 3.6.1 BE, so I also have licence for 4.x same way


If you are entitled to the IDM 4 BE, why not just use that?

Or do you already have 3.6.1 BE installed and running? Even then it
should be relatively straightforward to upgrade to IDM 4 BE

> I think I will try to do the other unsupported way then
>
> On the other note, is Server 2008 R2 supported (or at least working)
> with 3.6.1 AD driver?


yes, that combination works fine and is fully tested by NetIQ/Novell
(although as I said, 3.6.1 is out of general support, so in the unlikely
instance that you encounter a problem, your support options are limited)

If you do choose that path, I'd suggest you patch all components to the
latest version applicable to 3.6.1 (especially the AD driver shim)


--
----------------------------------------------------------------------
Alex McHugh
NetIQ Knowledge Partner http://forums.netiq.com

Please post questions in the forums. No support is provided via email.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012


I have 3.6.1 in place already doing password sync (BE edition is really
only good for that). AD is on 2003 level due to 2003 existing in the mix
(and being used for the Remote Loader currently)

I think I will stick with 2008 R2 & latest AD shmi driver & raise domain
level to 2008R2

I assume latest is this:

https://download.novell.com/Download?buildid=00jHe7rKPDk~

I would have difficult to convince management to keep Novell products in
(no matter which ones & how good they are/might be)
Have to give in after over 15 years...


--
spgsitsupport
------------------------------------------------------------------------
spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
View this thread: https://forums.netiq.com/showthread.php?t=48381

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012

On 14.08.2013 18:04, spgsitsupport wrote:
>
> I have 3.6.1 in place already doing password sync (BE edition is really
> only good for that).


If you get clever/creative (as Lothar for example has with his Password
Notification driver), you can do more than just password sync with BE
(licensing wise, you are still limited to only eDir / AD and a pseudo
loop-back driver based on the eDir driver)

> AD is on 2003 level due to 2003 existing in the mix
> (and being used for the Remote Loader currently)
>
> I think I will stick with 2008 R2 & latest AD shim driver & raise domain
> level to 2008R2


Just a note: You need to demote/decommission any existing 2003 DCs if
you want to raise the domain level to 2008 R2

> I assume latest is this:
>
> https://download.novell.com/Download?buildid=00jHe7rKPDk~
>


Realistically, yes. All the important 2008 R2 fixes are included in
patch 3.5.15 or higher.



--
----------------------------------------------------------------------
Alex McHugh
NetIQ Knowledge Partner http://forums.netiq.com

Please post questions in the forums. No support is provided via email.
0 Likes
Knowledge Partner
Knowledge Partner

Re: Remote Loader 3.6.1 & Server 2012

> If you get clever/creative (as Lothar for example has with his Password
> Notification driver), you can do more than just password sync with BE
> (licensing wise, you are still limited to only eDir / AD and a pseudo
> loop-back driver based on the eDir driver)


The Ouroboros driver approach! Gotta get him to start using that name.

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012


Thanks, I have Lothar's Password Expiry driver installed, but never had
the time to configure it yet...

Yes, of course, 2003 will get gently killed off...

Thanks

Seb


--
spgsitsupport
------------------------------------------------------------------------
spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
View this thread: https://forums.netiq.com/showthread.php?t=48381

0 Likes
Knowledge Partner
Knowledge Partner

Re: Remote Loader 3.6.1 & Server 2012

On 8/14/2013 1:34 PM, spgsitsupport wrote:
>
> Thanks, I have Lothar's Password Expiry driver installed, but never had
> the time to configure it yet...


What Alex is referring too is that Lothar noticed that while the
Loopback driver violates the BE license and incurs a full IDM license,
you can configure an eDir to eDir driver to eat its own tail. That is
normally you configure:

Pub channel of DriverA to talk to Sub Channel of DriverB.
Pub channel of DriverB to talk to Sub Channel of DriverA.

There is no reason that:
Pub channel of DriverA to talk to Sub Channel of DriverA.

And what would that look like? A loopback driver. And it counts as an
eDir driver for licensing and fits within the BE license.

Same as if you stood up another eDir instance, that did nothing, but
allowed you to setup a eDir driver set, and then in the SUb-Event did
all your Loopback stuff, and then vetoed events. Oh look, its
functionally a null driver.

And so on...

Thus the license is silly, but it is what it is, so live with it and
work with its constraints.

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Remote Loader 3.6.1 & Server 2012


Thanks, I know (just) what it is (but a very nice explanation anyway!)
Just never yet configured it...


--
spgsitsupport
------------------------------------------------------------------------
spgsitsupport's Profile: https://forums.netiq.com/member.php?userid=1171
View this thread: https://forums.netiq.com/showthread.php?t=48381

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.