Hello,
I am testing a Scalix message server with Active Directory the back end. I have serveral questions:
First, how can you determine the base dn on the Active Directory Domain?
Second, I have tested the omldapsync (type 11) with what I think is the correct base domain and I am reciveing the following error, there is one error message per failed check.:
006-04-13 12:41:46 STATUS: LDAP dir sync import AD_SX1 started ###############
2006-04-13 12:41:46 STATUS: load all records from 18.157.110.12 ...
2006-04-13 12:41:46 INFO: work dir is /var/opt/scalix/ldapsync/AD_SX1/import
2006-04-13 12:41:46 STATUS: search source directory on 18.157.110.12 ...
2006-04-13 12:41:46 INFO: search base is dc=scalix,dc=wi,dc=mit,dc=edu
2006-04-13 12:41:46 INFO: ... 4 entries to check
2006-04-13 12:41:46 STATUS: find delta and perform mapping ...
2006-04-13 12:41:46 INFO: ... 0 entries to delete
2006-04-13 12:41:46 INFO: ... 4 entries to add
2006-04-13 12:41:46 INFO: ... 0 entries to modify
2006-04-13 12:41:46 STATUS: apply membdelete data against Scalix ...
2006-04-13 12:41:47 INFO: ... 0 entries passed for member.curr
2006-04-13 12:41:47 INFO: ... 0 entries failed for member.curr
2006-04-13 12:41:47 INFO: ... 0 entries warned for member.curr
2006-04-13 12:41:47 STATUS: apply delete data against Scalix ...
2006-04-13 12:41:47 INFO: ... 0 entries passed for delete.curr
2006-04-13 12:41:47 INFO: ... 0 entries failed for delete.curr
2006-04-13 12:41:47 INFO: ... 0 entries warned for delete.curr
2006-04-13 12:41:47 STATUS: apply add data against Scalix ...
error 1005: Entry must have a valid global unique id
>>>>>>>>SOAP Request
SOAP part:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<scalix-caa:CAARequestMessage xmlns:scalix-caa="http://www.scalix.com/caa">
<ServiceType>scalix.res</ServiceType>
<Credentials id="12345">
<Identity name="sxadmin@makin.wi.mit.edu" passwd="xxxxxxxx"/>
</Credentials>
<FunctionName>AddUser</FunctionName>
<ScalixServers>
<Host>makin.wi.mit.edu</Host>
</ScalixServers>
<AddUserParameters>
<user type="INTERNET"/>
<mailNode name="internet,tnef"/>
<userAttributes>
<entity name="ADMINISTERED-BY" value="ldapsync-AD_SX1"/>
</userAttributes>
</AddUserParameters>
</scalix-caa:CAARequestMessage>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
0 entries passed
1 entries failed
0 entries warned
2006-04-13 12:41:47 ERROR: failed to run omldapagent
error 1005: Entry must have a valid global unique id
On the AD side, I have run the forestprep.exe as a shema administrator and the Scalix attributes do appear in AD. I have also installed the AD_GUI.msi, I can see the Scalix attributes on the accounts from ADU&C. I have setup the mailnodes.txt file, but was unable to see if the ScalixADPages.dll is running correctly. I have run the command, regsvr32.exe -i ScalixADPages.dll from the command line and received an error:
LoadLibrary("ScalixADPages.dll") failed - The specified module could not be found.
Thank you in advance for your time.
omldapsyc active directory problems
Moderators: ScalixSupport, admin
-
AussieOwner
- Scalix
- Posts: 61
- Joined: Fri Dec 17, 2004 9:54 am
- Location: San Diego, CA
>> First, how can you determine the base dn on the Active Directory Domain?
Install ADSI Edit on the Active Directory DC. This tool will give you all the information you need on the directory structure on AD. However, your base DN looks correct from the output.
>> error 1005: Entry must have a valid global unique id
This error message is odd. This may be an overall problem with your install. Could you please try and add a user from the command line (on the Scalix box). syntax would be "omaddu -n "John Smith/<your mailnode>". Let me know if this works successfully.
Install ADSI Edit on the Active Directory DC. This tool will give you all the information you need on the directory structure on AD. However, your base DN looks correct from the output.
>> error 1005: Entry must have a valid global unique id
This error message is odd. This may be an overall problem with your install. Could you please try and add a user from the command line (on the Scalix box). syntax would be "omaddu -n "John Smith/<your mailnode>". Let me know if this works successfully.
-
cbandrew
- Posts: 14
- Joined: Fri Feb 17, 2006 4:07 pm
omldapsyc active directory problems
I ran the command for omaddu -n "John Smith/mailnode" and the user was added successfully. I have confirmed the addition in the SAC. I created a password and have logged in as the user. The account works.
-
cbandrew
- Posts: 14
- Joined: Fri Feb 17, 2006 4:07 pm
omldapsyc active directory problems
The problem has been resolved. The base search was not correct. The final result was having to use cn=users, dc=scalix,dc=wi,dc=mit,dc=edu. You sent me the command that allowed me to figure this out:
ldapsearch -xh <DC for AD> -D
"cn=foobar,cn=users,dc=scalix,dc=wi,dc=mit,dc=edu" -W -b "
dc=scalix,dc=wi,dc=mit,dc=edu" ("objectClass=*")
once I ran this command from the scalix mail server, it responded with all the ldap entries in AD.
You also mentioned that there might be a permissions problem. This was not the case, the user had the correct schema privileges to get the information from the AD server.
thanks for your help and your prompt responses.
ldapsearch -xh <DC for AD> -D
"cn=foobar,cn=users,dc=scalix,dc=wi,dc=mit,dc=edu" -W -b "
dc=scalix,dc=wi,dc=mit,dc=edu" ("objectClass=*")
once I ran this command from the scalix mail server, it responded with all the ldap entries in AD.
You also mentioned that there might be a permissions problem. This was not the case, the user had the correct schema privileges to get the information from the AD server.
thanks for your help and your prompt responses.
Who is online
Users browsing this forum: No registered users and 5 guests