Anonymous_User

Absent Member.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2014-11-26
14:04
251 views
how to unlock the admin user in Edirectory
Hi,
We installed the folowing components in the below order in windows
server 2008, 64 bit:
1. Edirectory
2. IManager
3.Metadirectory
When we tried to login to IManager after this, we recieved the below
error in the application server(Tomcat) Stdout logs
What we could understand is Admin account got locked.
We have only one user in this environment and that is the Admin user.
Can anyone share pointers on
How to unlock the admin user(one and only user in this case)?
Any other way to create a new admin user?
"Novell JClient 1.5.1256-1.5.1279. Copyright 1999 Novell Inc. All
Rights Reserved.
DirAuthenticator...1099 (Error -634) The target server does not have a
copy of what the source server is requesting. Or, the source server has
no objects that match the request and has no referrals on which to
search for the object.
DirAuthenticator...1121 Login failed: admin.organization: TREE
DirAuthenticator...1099 (Error -634) The target server does not have a
copy of what the source server is requesting. Or, the source server has
no objects that match the request and has no referrals on which to
search for the object.
DirAuthenticator...1121 Login failed: admin.organization: TREE
DirAuthenticator...1099 (Error -634) The target server does not have a
copy of what the source server is requesting. Or, the source server has
no objects that match the request and has no referrals on which to
search for the object.
DirAuthenticator...1121 Login failed: admin.organization: TREE
Timed out trying to download module descriptor file.
DirAuthenticator...1099 (Error -669) An invalid password was used,
authentication failed, one server tried to synchronize with another one
but the target server's database was locked, or a problem exists with
the remote ID or public key.
DirAuthenticator...1121 Login failed: admin.vale: <IP>
Timed out trying to download module descriptor file."
Many thanks in advance
--
Devika_Nandakumar
------------------------------------------------------------------------
Devika_Nandakumar's Profile: https://forums.netiq.com/member.php?userid=8444
View this thread: https://forums.netiq.com/showthread.php?t=52302
2 Replies
Anonymous_User

Absent Member.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2014-11-26
15:05
Devika Nandakumar wrote:
>
> Hi,
>
> We installed the folowing components in the below order in windows
> server 2008, 64 bit:
> 1. Edirectory
> 2. IManager
> 3.Metadirectory
>
> When we tried to login to IManager after this, we recieved the below
> error in the application server(Tomcat) Stdout logs
>
> What we could understand is Admin account got locked.
> We have only one user in this environment and that is the Admin user.
> Can anyone share pointers on
> How to unlock the admin user(one and only user in this case)?
> Any other way to create a new admin user?
This sounds like an eDirectory or iManager issue, not IDM/UserApp specific issue.
Can you re-post this in either the eDirectory windows or iManager forums.
Are you able to login via another mechanism (LDAP browser for example), if that is successful then this is likely an iManager issue (maybe the tree name or admin DN is wrong)
>
> Hi,
>
> We installed the folowing components in the below order in windows
> server 2008, 64 bit:
> 1. Edirectory
> 2. IManager
> 3.Metadirectory
>
> When we tried to login to IManager after this, we recieved the below
> error in the application server(Tomcat) Stdout logs
>
> What we could understand is Admin account got locked.
> We have only one user in this environment and that is the Admin user.
> Can anyone share pointers on
> How to unlock the admin user(one and only user in this case)?
> Any other way to create a new admin user?
This sounds like an eDirectory or iManager issue, not IDM/UserApp specific issue.
Can you re-post this in either the eDirectory windows or iManager forums.
Are you able to login via another mechanism (LDAP browser for example), if that is successful then this is likely an iManager issue (maybe the tree name or admin DN is wrong)
Anonymous_User

Absent Member.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2014-11-26
17:00
On Wed, 26 Nov 2014 14:04:01 +0000, Devika Nandakumar wrote:
> Hi,
>
> We installed the folowing components in the below order in windows
> server 2008, 64 bit:
> 1. Edirectory
> 2. IManager
> 3.Metadirectory
>
> When we tried to login to IManager after this, we recieved the below
> error in the application server(Tomcat) Stdout logs
>
> What we could understand is Admin account got locked. We have only one
> user in this environment and that is the Admin user. Can anyone share
> pointers on
> How to unlock the admin user(one and only user in this case)? Any other
> way to create a new admin user?
I don't see anything here indicating intruder detection / account
lockout. I do see the 'invalid password' attempt, but a single one of
those shouldn't have hurt anything. If your admin account is locked, you
must have configured intruder detection, and it will unlock when your
(configured) timeout expires. If you didn't configure a timeout, you'll
probably need to open an SR with NetIQ, or wipe the environment and start
over.
--
--------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Knowledge Partner http://forums.netiq.com
Please post questions in the forums. No support provided via email.
If you find this post helpful, please click on the star below.
> Hi,
>
> We installed the folowing components in the below order in windows
> server 2008, 64 bit:
> 1. Edirectory
> 2. IManager
> 3.Metadirectory
>
> When we tried to login to IManager after this, we recieved the below
> error in the application server(Tomcat) Stdout logs
>
> What we could understand is Admin account got locked. We have only one
> user in this environment and that is the Admin user. Can anyone share
> pointers on
> How to unlock the admin user(one and only user in this case)? Any other
> way to create a new admin user?
I don't see anything here indicating intruder detection / account
lockout. I do see the 'invalid password' attempt, but a single one of
those shouldn't have hurt anything. If your admin account is locked, you
must have configured intruder detection, and it will unlock when your
(configured) timeout expires. If you didn't configure a timeout, you'll
probably need to open an SR with NetIQ, or wipe the environment and start
over.
--
--------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Knowledge Partner http://forums.netiq.com
Please post questions in the forums. No support provided via email.
If you find this post helpful, please click on the star below.