Anonymous_User Absent Member.
Absent Member.
1839 views

I can see the tree, but sometimes can't login.

We have Netware 6.5sp4 EDir 8.7.3.7. I have (so far) one PC that has a
problem
logging in. It can see the Tree, context and server, but from time to
time it will not accept known good passwords. I can shutdown and come
back and soemtimes it works sometimes not. I can shut it down and plug a
different PC in it's place and login with the password that just failed.
I have tried multiple accounts on this PC and when it doesn't want t log
in, it won;t let anyone in. What could cause this? I thought that if you
could see the tree,context,server and had a good password, you were home
free. I've tried it with an SLPDA address in the client properties and
without(most don't use SLP because IPX is still out there). I'm not sure
where to look next. Any help would be appreciated. Thanks.
Labels (1)
0 Likes
5 Replies
Anonymous_User Absent Member.
Absent Member.

Re: I can see the tree, but sometimes can't login.

dogfrndnew,

Lets gather some more details about your environment...

Assuming IP is bound to the Novell Client and SLP in use, masking any info.
you might consider a security hazard please post the results of SLPINFO /A
run from the command-prompt on Windows.

Is a default server set in either the client properties or the eDirectory
user object(s)?

Windows Event logs showing anything unusual?
Was Windows installed from scratch, a custom image, or an OEM image?

Security or any other driver-based software like firewall, VPN, remote
management or antivirus installed and running?

Can you reproduce with a clean install of client 4.91 SP2 and the latest
post-update?...

Production patches for 4.91
http://support.novell.com/filefinder/20609/index.html

Beta patches for 4.91 (beta in most cases has the most fixes but hasn't been
baked as thoroughly)
http://support.novell.com/filefinder/20609/beta.html

--
Tony Pedretti
TransUnion Corporation


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: I can see the tree, but sometimes can't login.

Hi All

I have the same problem and can add this extra detail. If I go into the login page ans insert an IP ad for tree and a IP on the server name I can logon on. If I lock the workstation and then try to log on it will give the error saying that the password is invalid. Log on to windows locally nad then go to NW client and all the network maps are good.

I installed a vmware (OES SP2) and XP sp2 with NW client 4.91sp2 and when I try to browse for NW trees there are none.

Here is the SLPINFO dump

C

Antonio@Grenhas.com
:\>slpinfo /A


*****************************************************
*** Novell Client for Windows NT ***
*** Service Location Diagnostics ***
*****************************************************

SLP Version: 4.91.0.1
SLP Start Time: 11:08:41pm 6/21/2006
Last I/O: 11:26:02pm 6/21/2006
Total Packets: Out: 171 In: 12
Total Bytes: Out: 9944 In: 240


SLP Operational Parameters Values
------------------------------- ------------
Static Scopes NO
Static Directory Agents NO
Active Discovery YES
Use Broadcast for SLP Multicast NO
Use DHCP for SLP YES
SLP Maximum Transmission Unit 1400 bytes
SLP Multicast Radius 32 hops


SLP Timers Values
------------------------------------- ------------
Give Up on Requests to SAs 15 seconds
Close Idle TCP Connections 5 minutes
Cache SLP Replies 1 minutes
SLP Default Registration Lifetime 10800 seconds
Wait Before Giving Up on DA 5 seconds
Wait Before Registering on Passive DA 1-2 seconds


Scope List Source(s)
---------------------------------------- ------------
<unscoped>


DA IP Address Source(s) State Version Local Interface Scope(s)
--------------- --------- ----- ------- --------------- ---------------

<No Directory Agents>



Local Interface 192.168.88.131
---------------------------------
Operational State: UP
Operating Mode(s): MCAST
SA/UA Scopes: <unscoped>
Last I/O: 11:26:02pm 6/21/2006
Total Packets: Out: 171 In: 12
Total Bytes: Out: 9944 In: 240
Last Addr Out: 224.0.1.22
Last Addr In: 192.168.88.22

Thanks

>>> On 19-06-2006 at 22:35, in message <WMElg.4805$tN4.2850@prv-forum2.provo.novell.com>, Tony Pedretti<ynotpe@NoSpaMhotmail.com> wrote:


dogfrndnew,

Lets gather some more details about your environment...

Assuming IP is bound to the Novell Client and SLP in use, masking any info.
you might consider a security hazard please post the results of SLPINFO /A
run from the command-prompt on Windows.

Is a default server set in either the client properties or the eDirectory
user object(s)?

Windows Event logs showing anything unusual?
Was Windows installed from scratch, a custom image, or an OEM image?

Security or any other driver-based software like firewall, VPN, remote
management or antivirus installed and running?

Can you reproduce with a clean install of client 4.91 SP2 and the latest
post-update?...

Production patches for 4.91
http://support.novell.com/filefinder/20609/index.html

Beta patches for 4.91 (beta in most cases has the most fixes but hasn't been
baked as thoroughly)
http://support.novell.com/filefinder/20609/beta.html

--
Tony Pedretti
TransUnion Corporation
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: I can see the tree, but sometimes can't login.

Antonio,

The client is multicasting for SLP. If said traffic doesn't route you'll be
unable to browse the tree or otherwise receive failed errors.

SLP is the default and preferred name/service resolver for NetWare 5.0 and
above over IP. If your servers and workstations are on separate
VLANs or subnets, you'll want to have SLPDA setup and configured for your
clients. Consider having one setup or 2 for redundancy. Unless
your environment is huge and distributed over slow WAN links, a single scope
works best.

These TIDs will give you some additional SLP background, the steps to
configure a DA, and links to others for more detail...

SLP Terms and Configuration Reference
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10014396.htm

Configuring SLP with a SCOPED directory agent (DA)
http://support.novell.com/cgi-bin/search/searchtid.cgi?10059981.htm

--
Tony Pedretti
TransUnion Corporation


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: I can see the tree, but sometimes can't login.

To facilitate things, server and clients are on the same subnet.

I have followed all the TID's you suggested as well as 10100796 for the 2 servers. The servers see each other and display slp info obout each other. The clients continue to show no da even when I enter it manually on the client tab (sometimes they see the tree, but other times I have to reboot the client and enter ip's for both tree and server.

Antonio@Grenhas.com
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: I can see the tree, but sometimes can't login.

Did you configure the client to use said SLP DAs? Check them static if
possible.
Aside from setting them via client properties, you can configure them with
DHCP options, Group Policy or merge a registry file...

CLIENT 4.9x ADM
Administrative Template for Novell Client 4.9x
http://www.novell.com/coolsolutions/tools/1903.html

AppNote: Novell Client 4.9 SP2 : Initialization, Login and Settings
http://www.novell.com/coolsolutions/appnote/620.html

Use SLPINFO from the Windows command-prompt to verify.

--
Tony Pedretti
TransUnion Corporation


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.