MCCFL_MLA Absent Member.
Absent Member.
1127 views

SLP ? Novell Client ? Unlocking takes 2 times?

I have ran into issues with Unlocking workstations or setting a computer to power on at 7:00 AM at sites B & C , staff go to log in at 8:00 or 8:30 it fails, and again on the second attempt it works. The same with a workstation locking for lunch, after an hour and have the first attempt Fail, the second work fine. On the first attempt it can take minutes to timeout. The workstation can be pinged, it can be remote managed. From any site…does not seem to make a difference. This seems to happen on both (Some) windows 7 & XP. So I believe it to be network/server/configuration related. This does not happen all of the time, just sometimes...

I have been down the road of Locking the NIC’s down on the switch and on the workstation, making sure all power related settings are set to full / disabled. Workstations do not sleep, hibernate, or even spin down the hard drives. I have even put a Hosts file on the workstations to see if this would help as it may a resolve issue of some sort…this did not help. As the issue is somewhat intermittent, I have not got a packet trace. I will be attempting to do so soon. We are not using LDAP Contextless logins, we Create Alias Objects in a container that point to the user object…

Workstations / clients:
Login Screen:
TREE: XXX_TREE
Context: ALIAS.XXX (Root O)
Server: XXX.XXX.XXX.XXX (Ip Address of local Auth Server for Each site)
SLP Tab
Scope List:
MY-SCOPE
DA List:
XXX.XXX.XXX.XXX (Ip address of Site A DA)

One of my question is in regards of SLP. As all sites are 100Mbps Fiber VPN’s should I have DA’s on each of the site’s subnets? Or is that overkill? What would be the benefits, what would be the downside?
Currently all sites are on 100Mb Fiber L2’s With Point to Point VPN’s over Sonicwall devices allowing traffic into Site – A, The traffic is Split tunnel and internet goes out a DMZ / separate route in the same building as Site A.

All servers are OES 11 SP1
Site A – Subnet A, Primary server (Master Replica, SLP DA), Zenworks Server, DSFW Server , DNS
Site B –Subnet B, Local Authentication Server (Full Replica), also have secondary DNS on this server
Site C – Subnet C, Local Authentication Server (Full Replica)

Also note*** I have multicasting disabled across the SonicWALL Routers
Any direction would be helpful…

Thanks!
Patrick
Labels (2)
0 Likes
2 Replies
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: SLP ? Novell Client ? Unlocking takes 2 times?

Ignoring the SLP question since I'm more interested in the login problem...

Get the LAN trace taken showing what is happening on the client. The best
way to get this may be to mirror a port on the switch and then capture all
of the traffic there, though you could also potentially setup a LAN trace
on the offending workstation(s) as well. Without this we can still have
an interesting discussion on SLP, but is there any evidence pointing to
SLP at this point? If the issue is intermittent is there any correlation
with times when the users of the computers are doing password changes
(login, password prompt shows up, user changes password, time passes, user
locks computer, user tries to unlock but gets a failure, tries again and
it works)?

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
0 Likes
dhrthms1 Absent Member.
Absent Member.

Re: SLP ? Novell Client ? Unlocking takes 2 times?

We have overcome this issue by going into the Novell Client properties on each workstation. We create a new "system login profile".

The login profile properties in the edirectory tab are Tree = ip address of the tree, context = name of the server, server = same ip address as the tree.

We name and save the profile, delete the default profile. After the first login when you select the newly created profile, subsequent logins don't have this issue.


MCCFL_MLA;2310118 wrote:
I have ran into issues with Unlocking workstations or setting a computer to power on at 7:00 AM at sites B & C , staff go to log in at 8:00 or 8:30 it fails, and again on the second attempt it works. The same with a workstation locking for lunch, after an hour and have the first attempt Fail, the second work fine. On the first attempt it can take minutes to timeout. The workstation can be pinged, it can be remote managed. From any site…does not seem to make a difference. This seems to happen on both (Some) windows 7 & XP. So I believe it to be network/server/configuration related. This does not happen all of the time, just sometimes...

I have been down the road of Locking the NIC’s down on the switch and on the workstation, making sure all power related settings are set to full / disabled. Workstations do not sleep, hibernate, or even spin down the hard drives. I have even put a Hosts file on the workstations to see if this would help as it may a resolve issue of some sort…this did not help. As the issue is somewhat intermittent, I have not got a packet trace. I will be attempting to do so soon. We are not using LDAP Contextless logins, we Create Alias Objects in a container that point to the user object…

Workstations / clients:
Login Screen:
TREE: XXX_TREE
Context: ALIAS.XXX (Root O)
Server: XXX.XXX.XXX.XXX (Ip Address of local Auth Server for Each site)
SLP Tab
Scope List:
MY-SCOPE
DA List:
XXX.XXX.XXX.XXX (Ip address of Site A DA)

One of my question is in regards of SLP. As all sites are 100Mbps Fiber VPN’s should I have DA’s on each of the site’s subnets? Or is that overkill? What would be the benefits, what would be the downside?
Currently all sites are on 100Mb Fiber L2’s With Point to Point VPN’s over Sonicwall devices allowing traffic into Site – A, The traffic is Split tunnel and internet goes out a DMZ / separate route in the same building as Site A.

All servers are OES 11 SP1
Site A – Subnet A, Primary server (Master Replica, SLP DA), Zenworks Server, DSFW Server , DNS
Site B –Subnet B, Local Authentication Server (Full Replica), also have secondary DNS on this server
Site C – Subnet C, Local Authentication Server (Full Replica)

Also note*** I have multicasting disabled across the SonicWALL Routers
Any direction would be helpful…

Thanks!
Patrick
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.