This website uses cookies. By continuing to browse or login to this website, you consent to the use of cookies. Learn more.
OK
Anonymous_User
Absent Member.
Absent Member.
‎2014-11-26 14:04
251 views

how to unlock the admin user in Edirectory


Hi,

We installed the folowing components in the below order in windows
server 2008, 64 bit:
1. Edirectory
2. IManager
3.Metadirectory

When we tried to login to IManager after this, we recieved the below
error in the application server(Tomcat) Stdout logs

What we could understand is Admin account got locked.
We have only one user in this environment and that is the Admin user.
Can anyone share pointers on
How to unlock the admin user(one and only user in this case)?
Any other way to create a new admin user?


"Novell JClient 1.5.1256-1.5.1279. Copyright 1999 Novell Inc. All
Rights Reserved.
DirAuthenticator...1099 (Error -634) The target server does not have a
copy of what the source server is requesting. Or, the source server has
no objects that match the request and has no referrals on which to
search for the object.
DirAuthenticator...1121 Login failed: admin.organization: TREE
DirAuthenticator...1099 (Error -634) The target server does not have a
copy of what the source server is requesting. Or, the source server has
no objects that match the request and has no referrals on which to
search for the object.
DirAuthenticator...1121 Login failed: admin.organization: TREE
DirAuthenticator...1099 (Error -634) The target server does not have a
copy of what the source server is requesting. Or, the source server has
no objects that match the request and has no referrals on which to
search for the object.
DirAuthenticator...1121 Login failed: admin.organization: TREE
Timed out trying to download module descriptor file.
DirAuthenticator...1099 (Error -669) An invalid password was used,
authentication failed, one server tried to synchronize with another one
but the target server's database was locked, or a problem exists with
the remote ID or public key.
DirAuthenticator...1121 Login failed: admin.vale: <IP>
Timed out trying to download module descriptor file."

Many thanks in advance


--
Devika_Nandakumar
------------------------------------------------------------------------
Devika_Nandakumar's Profile: https://forums.netiq.com/member.php?userid=8444
View this thread: https://forums.netiq.com/showthread.php?t=52302

Labels (1)
Labels
0 Likes
Reply
Report Inappropriate Content
2 Replies
Anonymous_User
Absent Member.
Absent Member.
‎2014-11-26 15:05

Devika Nandakumar wrote:

>
> Hi,
>
> We installed the folowing components in the below order in windows
> server 2008, 64 bit:
> 1. Edirectory
> 2. IManager
> 3.Metadirectory
>
> When we tried to login to IManager after this, we recieved the below
> error in the application server(Tomcat) Stdout logs
>
> What we could understand is Admin account got locked.
> We have only one user in this environment and that is the Admin user.
> Can anyone share pointers on
> How to unlock the admin user(one and only user in this case)?
> Any other way to create a new admin user?

This sounds like an eDirectory or iManager issue, not IDM/UserApp specific issue.

Can you re-post this in either the eDirectory windows or iManager forums.
Are you able to login via another mechanism (LDAP browser for example), if that is successful then this is likely an iManager issue (maybe the tree name or admin DN is wrong)
0 Likes
Reply
Report Inappropriate Content
Anonymous_User
Absent Member.
Absent Member.
‎2014-11-26 17:00

On Wed, 26 Nov 2014 14:04:01 +0000, Devika Nandakumar wrote:

> Hi,
>
> We installed the folowing components in the below order in windows
> server 2008, 64 bit:
> 1. Edirectory
> 2. IManager
> 3.Metadirectory
>
> When we tried to login to IManager after this, we recieved the below
> error in the application server(Tomcat) Stdout logs
>
> What we could understand is Admin account got locked. We have only one
> user in this environment and that is the Admin user. Can anyone share
> pointers on
> How to unlock the admin user(one and only user in this case)? Any other
> way to create a new admin user?

I don't see anything here indicating intruder detection / account
lockout. I do see the 'invalid password' attempt, but a single one of
those shouldn't have hurt anything. If your admin account is locked, you
must have configured intruder detection, and it will unlock when your
(configured) timeout expires. If you didn't configure a timeout, you'll
probably need to open an SR with NetIQ, or wipe the environment and start
over.


--
--------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Knowledge Partner http://forums.netiq.com

Please post questions in the forums. No support provided via email.
If you find this post helpful, please click on the star below.
0 Likes
Reply
Report Inappropriate Content
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.