Nds Error Failed Authentication -669
authentication to SLES9 via eDir following the steps outlined in the "AppNote: Basic Linux/Samba authentication with eDirector on Novell Linus Small Business Server". The document indicates ldap inappropriate authentication that the procedure should work on "any SLES9 base systm". I've tested ldap error code 48 this in a lab environment and everything worked fine. I have now tried to duplicate this is a live ldap error code 16 - no such attribute environment and I fail on getting the LDAP authentication to eDirectory. I have the following environment: SLES9 sp2 As per the document, I also have the prerequisites installed Edir 873. (the server is installed into an existing tree with 2 Netware servers.) samba samba-doc nss_ldap I get as far as step 6 "Test Linux authentication" and get the following error when I try to assign ownership of the newly created home directory to the edir user: chown: "dummy.SambaGroup": invalid user DS trace on the server yield the following error message: Failed to authenticate local on connection 0x85da8c0, err = failed authentication (-699) suspecting a problem with SSL, I altered the configuration to not use SSL (unchecked the TLS box on the LDAP Group Object, unchecked the TLS box on the LDAP Client cfg in YAST2). I get the following error message in DSTRACE: NDS attribute "staticMember" does not exist, mapping ignored Failed to authenticate local on connection 0x85da8c0, err = failed authentication (-699) Just to make sure that LDAP is functioning with SSL/TSL I was able to use the ICE tool both in iManager and in ConsoleOne to export data as well as make the schema changes the the AppNote calls for. I also could use a LDAP brower on port 636 to browse the tree, both with anonymous access (I've defined an LDAP proxy user for the LDAP Group Object) and with the admin user. DSrepair on all servers yields no errors at all so I must assume that eDir is correctly installed. the edir installation also gave no errors on the CA und NMAS parts of the installation. the SAS, and serve
Favorite Rating: NMAS error codesThis document (3987489) is provided subject to the disclaimer at the end of this document. Situation NMAS error codes Resolution Decimal ValueHexadecimal ValueNameDescription-0NMAS_SUCCESSThe requested function completed successfully.-16310xFFFFF9A1NMAS_E_FRAG_FAILUREIndicates that the NMASTM NCPTM handler failed.-16320xFFFFF9A0NMAS_E_BAD_REQUEST_SYNTAXIndicates that the NMAS NCP handler failed.-16330xFFFFF99FNMAS_E_BUFFER_OVERFLOWBuffer passed to MAF_GetAttribute is not large enough to store the requested https://forums.netiq.com/archive/index.php/t-20290.html data.-16340xFFFFF99ENMAS_E_SYSTEM_RESOURCESMessage returned when NMAS server fails to obtain information from NICI about encryption keys.-16350xFFFFF99DNMAS_E_INSUFFICIENT_MEMORYThe NMAS server failed to allocate memory for some system use.-16360xFFFFF99CNMAS_E_NOT_SUPPORTEDIndicates that the login request operation is not supported by the current configuration of NMAS. The error might be returned if the NMAS Client https://www.novell.com/support/kb/doc.php?id=3987489 and the NMAS Server versions are not the same. It also might be returned if a login method that does not support the disconnected login is invoked when in the disconnected mode.-16370xFFFFF99BNMAS_E_BUFFER_UNDERFLOWThe packet size specified in the NMAS packet is larger than the actual size of the packet.-16380xFFFFF99ANMAS_E_NOT_FOUNDThis error might be returned if an object does not exist for the requested username and context.-16390xFFFFF999NMAS_E_INVALID_OPERATIONIndicates that an NMAS internal error has occurred, caused by the NMAS protocol getting out of order.-16400xFFFFF998NMAS_E_ASN1_DECODEFailed to decode NMAS internal structures in a signed module.-16410xFFFFF997NMAS_E_ASN1_ENCODEFailed to encode NMAS internal structures.-16420xFFFFF996NMAS_E_LOGIN_FAILEDIndicates that the secret (for example password) presented by the user is invalid.-16430xFFFFF995NMAS_E_INVALID_PARAMETERAn invalid parameter was passed to the NMAS function.-16440xFFFFF994NMAS_E_TIMED_OUT_RECOVERABLEThe Client or the server failed to respond in a timely manner. The calling software has the option to retry the request if this error occurs.-16450xFFFFF993NMAS_E_TIMED_OUT_N
and is also unable to properly respond to a request. It does not indicate that the client has sent an erroneous message. In NDS 8.3x through NDS 7.xx, this was the default error for NDS errors that https://customer.stone-ware.com/support/techdocs/kb/s2150/LDAP%20Error%20Codes.htm did not map to an LDAP error code. To conform to the new LDAP drafts, NDS 8.5 uses 80 (0x50) for such errors. 0x02 2 LDAP_PROTOCOL_ERROR: Indicates that the server has received an invalid or malformed request from the client. 0x03 3 LDAP_TIMELIMIT_EXCEEDED: Indicates that the operation's time limit specified by either the client or the server has been exceeded. On search operations, incomplete results are returned. 0x04 ldap error 4 LDAP_SIZELIMIT_EXCEEDED: Indicates that in a search operation, the size limit specified by the client or the server has been exceeded. Incomplete results are returned. 0x05 5 LDAP_COMPARE_FALSE: Does not indicate an error condition. Indicates that the results of a compare operation are false. 0x06 6 LDAP_COMPARE_TRUE: Does not indicate an error condition. Indicates that the results of a compare operation are true. 0x07 7 LDAP_AUTH_METHOD_NOT_SUPPORTED: Indicates that ldap error code during a bind operation the client requested an authentication method not supported by the LDAP server. 0x08 8 LDAP_STRONG_AUTH_REQUIRED: Indicates one of the following: In bind requests, the LDAP server accepts only strong authentication. In a client request, the client requested an operation such as delete that requires strong authentication. In an unsolicited notice of disconnection, the LDAP server discovers the security protecting the communication between the client and server has unexpectedly failed or been compromised. 0x09 9 Reserved. 0x0A 10 LDAP_REFERRAL: Does not indicate an error condition. In LDAPv3, indicates that the server does not hold the target entry of the request, but that the servers in the referral field may. 0x0B 11 LDAP_ADMINLIMIT_EXCEEDED: Indicates that an LDAP server limit set by an administrative authority has been exceeded. 0x0C 12 LDAP_UNAVAILABLE_CRITICAL_EXTENSION: Indicates that the LDAP server was unable to satisfy a request because one or more critical extensions were not available. Either the server does not support the control or the control is not appropriate for the operation type. 0x0D 13 LDAP_CONFIDENTIALITY_REQUIRED: Indicates that the session is not protected by a protocol such as Transport Layer Security (TLS), which provides session confidentiality. 0x0E 14 LDAP_SASL_BIND_IN_PROGRESS: Does not indicate an error con