PatPer Absent Member.
Absent Member.
243 views

User is not recognized in Organizational unit.


Hi!

We have a rather confusing problem where a few users seemed to lack
permission for their folders for no reason and not related to eachother
in any way.
After some troubleshooting I noticed that if I went into iManager ->
Files and Folders -> Properties -> Inherit rights, the users did not
have any permission at all to the target folder despite being part of
the OU that is added to the folder with full access.
Other people in the same OU with no explicit rights on either folder
works just fine.

We also tried running a verify on the NSS but found no issues at all.
Also tried moving a user to another OU and back again but it's like the
eDirectory simply doesn't recognize that the user is part of the OU even
though I'm browsing it and his full "LDAP" name is correct.

Any idea what could cause this behavior? Is there a way to "repair" a
single object in a live environment?

Regards
Patrik


--
PatPer
------------------------------------------------------------------------
PatPer's Profile: https://forums.netiq.com/member.php?userid=10832
View this thread: https://forums.netiq.com/showthread.php?t=54788

Labels (1)
0 Likes
4 Replies
Anonymous_User Absent Member.
Absent Member.

Re: User is not recognized in Organizational unit.

Hello,

do the fileservers where the users should have access to have a replica
of the eDir-partition where the users' OU resides? If not TID 7015477
may help because the external references (ndsrepair -C -Ad -A see also
TID 7002659) of the users may have gone bad and need to be repaired.
We had an issue of this kind on fileservers that did not have a replica
of the eDir-partition where the users's OU resides when we were at eDir
version 8.8.8 for the login servers and eDir version 8.8.7 on the file
servers. We have put RO-replica on the fileservers since then. This
behaviour could be triggered when users were moved from to OU to another
OU and did not get access to folders like the other users that have
already been in this OU for a long time.


Regards

Burkhard Wiegand
0 Likes
PatPer Absent Member.
Absent Member.

Re: User is not recognized in Organizational unit.


Thank you so much for this Burkhard!

We added a replica to the fileserver and everything started to work
without having to run any repairs or manual sync!
I owe you one!

BR
Patrik


--
PatPer
------------------------------------------------------------------------
PatPer's Profile: https://forums.netiq.com/member.php?userid=10832
View this thread: https://forums.netiq.com/showthread.php?t=54788

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: User is not recognized in Organizational unit.

Hello,

fine to hear that you got it working even without a repair.

Regards

Burkhard
0 Likes
Knowledge Partner
Knowledge Partner

Re: User is not recognized in Organizational unit.

On Fri, 04 Dec 2015 14:04:01 +0000, PatPer wrote:

> Thank you so much for this Burkhard!
>
> We added a replica to the fileserver and everything started to work
> without having to run any repairs or manual sync! I owe you one!


That's interesting. It shouldn't be necessary, however. If possible, you
may want to open a service request with Micro Focus / Novell on OES,
because it shouldn't need a replica for this to work correctly.

(Note: It may perform better with a replica, and there are good reasons
to place one where it will be most used, but it's not strictly required.)



--
--------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Knowledge Partner http://forums.microfocus.com

Please post questions in the forums. No support provided via email.
If you find this post helpful, please click on the star below.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.