Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
Anonymous_User Absent Member.
Absent Member.
991 views

iManager 2.7.6


Good day,

I'm using iManager 2.7.6 on my Windows 7 machine, the remote (mobile)
version of iManager. With that said i'm experiencing some strange issues
and hopefully someone can point me in the right direction.

I have the link for "Smart Card Login" when I expand the tab, and try to
select "Global Settings" I receive error, "Complete : System Error
Creating secure SSL LDAP context failed: simple bind failed: <ip address
of the server> I found TID 7007533 Error "Creating secure SSL LDAP
context failed: Simple bind failed ip address:636" while doing a Simple
Selection object search in Mobile iManager 2.7 SP 4"

However; when I go to the Resolution section of the document and attempt
the steps (Step 3) Select Configure iManager I have nothing to
configure. Basically I have the tabs for "save" and for "close" when I
looked on the server (using the server <ip address>) I do see
configurable data. Is there something missing on my mobile version of
iManager, and has anyone been able to fix the above error?

Thank you,

-D


--
dschaldenovell
------------------------------------------------------------------------
dschaldenovell's Profile: https://forums.netiq.com/member.php?userid=205
View this thread: https://forums.netiq.com/showthread.php?t=48216

Labels (1)
0 Likes
12 Replies
Knowledge Partner
Knowledge Partner

Re: iManager 2.7.6

dschaldenovell wrote:

> I'm using iManager 2.7.6 on my Windows 7 machine, the remote (mobile)
> version of iManager. With that said i'm experiencing some strange issues
> and hopefully someone can point me in the right direction.


The only right direction is to not use iManager Mobile at all, imho. The
build-in browser sucks and also does not support xmarks/lastpass. I simply use
the Windows server version on my Win7 machine, running a Linux version in a VM
would be another alternative.
______________________________________________
https://www.is4it.de/identity-access-management
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6

While the built-in browser is not your primary one, you can always access
iManager Workstation's Apache Tomcat server directly from your real
browser by pointing your real browser to the following URL while iManager
Workstation is running and minimized off somewhere else:

http://127.0.0.1:48080/nps

Good luck.
0 Likes
Knowledge Partner
Knowledge Partner

Re: iManager 2.7.6

ab wrote:

> While the built-in browser is not your primary one, you can always access
> iManager Workstation's Apache Tomcat server directly from your real
> browser


Sure, but why would I want to run a buggy app as backend when I can have a
better implementation without any drawbacks? Starting iManager Workstation and
starting iManager Server (if you do not want to run it as an autostart service,
which I do because I'm lazy and have plenty of RAM) both comes down to a single
double-click. There's just no benefit in using iMan Wks at all, imho.
______________________________________________
https://www.is4it.de/identity-access-management
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6

On 07/18/2013 08:27 AM, Lothar Haeger wrote:
> ab wrote:
>
>> While the built-in browser is not your primary one, you can always access
>> iManager Workstation's Apache Tomcat server directly from your real
>> browser

>
> Sure, but why would I want to run a buggy app as backend when I can have a
> better implementation without any drawbacks? Starting iManager Workstation and
> starting iManager Server (if you do not want to run it as an autostart service,
> which I do because I'm lazy and have plenty of RAM) both comes down to a single
> double-click. There's just no benefit in using iMan Wks at all, imho.


Sure there is... much easier to backup/restore the workstation version.
Much faster to upgrade in my case as my hard drive is much faster in my
laptop than elsewhere. Also, when I (as a consultant) go to a customer I
do not need to depend on their system. Duplicating problems is also
easier since having N installations of iManager Workstation is trivial,
where the server version requires doing things the "right way" with an
installer.

Good luck.
0 Likes
Knowledge Partner
Knowledge Partner

Re: iManager 2.7.6

ab wrote:

> Sure there is... much easier to backup/restore the workstation version.
> Much faster to upgrade in my case as my hard drive is much faster in my
> laptop than elsewhere. Also, when I (as a consultant) go to a customer I
> do not need to depend on their system. Duplicating problems is also
> easier since having N installations of iManager Workstation is trivial,
> where the server version requires doing things the "right way" with an
> installer.


Should've made that more clear, I guess: I am talking about an iManager Server
install on my laptop, NOT on an IDM Server or somewhere else on a customer
machine. The installer does have a few more options than the iMan Wks
installer, agreed, but if you stick with the defaults, it's just as simple.
______________________________________________
https://www.is4it.de/identity-access-management
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6


Good day,

Okay I have installed the Windows server version of iManager but I'm
still not seeing some of the plug-ins for example (and the main topic
point of this posting) Smart Card Login. Any thoughts on that? Also any
ideas as to what might have been causing the original issue? I will keep
trying the Windows Server version of iManager (seems to be pretty
straight forward). I was wondering if perhaps my activation date was
reached and it stopped working because of that.

Thank you,

-D


--
dschaldenovell
------------------------------------------------------------------------
dschaldenovell's Profile: https://forums.netiq.com/member.php?userid=205
View this thread: https://forums.netiq.com/showthread.php?t=48216

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6


Okay, the next thing of interest.

I'm using the Server installed version on Windows 7 of iManager, that is
working correctly so I will be using it from now on, that said when I
was authenticating against my Master Server (172.17.100.43) I was
receiving the error Error "Creating secure SSL LDAP context failed:
Simple bind failed < ip address>:636" even after following the steps
outlined in the resolution section of TID 7007533.

Next I tried to Authenticate against my second server in the tree (a
Read Write Server also a SLES10 SP4 / OES 2 SP3 172.17.100.37) and this
time I was able to view the Global Settings correctly.

Does this mean that there is something wrong with either the
certificates on my Master server, or is there something wrong with the
CA itself? I'm a little confused that this is working on a read write
and not the Master.

Again any thoughts always appreciated.

-D


--
dschaldenovell
------------------------------------------------------------------------
dschaldenovell's Profile: https://forums.netiq.com/member.php?userid=205
View this thread: https://forums.netiq.com/showthread.php?t=48216

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6

I'd test LDAPS on the servers using something like Apache Directory
Studio, or maybe openssl. Apache Directory Studio is a GUI tool that's
easy to use; openssl is a faster way to try things out as shown below:

Code:
----------
openssl s_client -connect ldap.ip.goes.here:636 -showcerts
----------

Post your output from both servers for review.

Good luck.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6


Good afternoon here is the output from the server that fails:

openssl s_client -connect 172.17.100.43:636 -showcerts
CONNECTED(00000003)
depth=1 /O=xxxxTESTLAB/OU=Organizational CA
verify error:num=19:self signed certificate in certificate chain
verify return:0
---
Certificate chain
0 s:/O=xxxxTESTLAB/CN=xxxxSRV.exxx.loxxx
i:/O=xxxxTESTLAB/OU=Organizational CA
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:/O=xxxxTESTLAB/OU=Organizational CA
i:/O=xxxxTESTLAB/OU=Organizational CA
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=/O=xxxxTESTLAB/CN=xxxxSRV.exxx.loxxx
issuer=/O=xxxxTESTLAB/OU=Organizational CA
---
No client certificate CA names sent
---
SSL handshake has read 2841 bytes and written 465 bytes
---
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID:
ED590DE73548D49375DED84A0EECE8E561C18B0ECFF5ECBBEBE1D86BD13908BC
Session-ID-ctx:
Master-Key:
EBA1C7C504508947497F89755B96E1F628F1870395060994C0A52D5E3E16EFC90

0394F3D763ACE09D4F6B7E4A25919BB
Key-Arg : None
Start Time: 1374597086
Timeout : 300 (sec)
Verify return code: 19 (self signed certificate in certificate
chain)


--
dschaldenovell
------------------------------------------------------------------------
dschaldenovell's Profile: https://forums.netiq.com/member.php?userid=205
View this thread: https://forums.netiq.com/showthread.php?t=48216

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6


Here is the output of the server that works when I try to access the
"Smart Card Login"

openssl s_client -connect 172.17.100.37:636 -showcerts
CONNECTED(00000003)
depth=1 /O=xxxxTESTLAB/OU=Organizational CA
verify error:num=19:self signed certificate in certificate chain
verify return:0
---
Certificate chain
0 s:/O=xxxxTESTLAB/CN=xxxxxise12.exxx.loxxx
i:/O=xxxTESTLAB/OU=Organizational CA
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
1 s:/O=xxxxTESTLAB/OU=Organizational CA
i:/O=xxxxTESTLAB/OU=Organizational CA
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=/O=xxxxTESTLAB/CN=xxxxxise12.exxx.loxxx
issuer=/O=xxxxTESTLAB/OU=Organizational CA
---
No client certificate CA names sent
---
SSL handshake has read 2843 bytes and written 471 bytes
---
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID:
3BFBCFE15F6D61A78275DA4886046A90599CFF128AF61A5CC2AD6136E6B59F43
Session-ID-ctx:
Master-Key:
052E6B521FA476649081331250848771DFE685D38F9A97BFFA68E835DCDF7ED15

5678E9DA5D7169D1A148FE2CC16F4AF
Key-Arg : None
Start Time: 1374597164
Timeout : 300 (sec)
Verify return code: 19 (self signed certificate in certificate
chain)

"X's" have been used to hide the server name, etc,.


--
dschaldenovell
------------------------------------------------------------------------
dschaldenovell's Profile: https://forums.netiq.com/member.php?userid=205
View this thread: https://forums.netiq.com/showthread.php?t=48216

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: iManager 2.7.6

Well the good news is that as far as I can tell everything about your
certificates checks out nicely. That openssl was able to get the data it
did implies as much, so we're probably on to figuring out what is up with
iManager and/or its plugins. One small note: the broken server's SSL
certificate is very new, minted the same day that you started this thread.
I presume you've tested since then just in case a weird time fluke had
caused the certificate to appear invalid due to use too soon, but if not
maybe try one more time. As you may know, certificates have NotBefore and
NotAfter fields; the latter we see all the time as causing issues because
after a year or two a certificate is expired. NotBefore can also be an
issue in some cases, like if time is not synchronized properly everywhere,
causing the cert to appear to be invalid because of use too soon.

Anyway, SSL is okay. Can you try another iManager instance, or maybe copy
the 'nps' directory from a working iManager instance to a broken one?

Good luck.
0 Likes
Knowledge Partner
Knowledge Partner

Re: iManager 2.7.6

On 7/18/2013 8:21 AM, Lothar Haeger wrote:
> dschaldenovell wrote:
>
>> I'm using iManager 2.7.6 on my Windows 7 machine, the remote (mobile)
>> version of iManager. With that said i'm experiencing some strange issues
>> and hopefully someone can point me in the right direction.

>
> The only right direction is to not use iManager Mobile at all, imho. The
> build-in browser sucks and also does not support xmarks/lastpass. I simply use
> the Windows server version on my Win7 machine, running a Linux version in a VM
> would be another alternative.


Or use iMamanger Mobile, and then hit http://localhost:48080/nps to use
whatever browser you prefer. 🙂

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.