Novell eDirectory Passwords

Can we read Novell edirectory userPassword attribute through browser. Not Really. But we can write to it.

 

I am looking for options on how to read userPassword attribute. One way is to synchronize and map userPassword attribute to some other attribute.

 

Couple of eDirectory Passwords:

1. NDS Password
2. Simple Password
3. Enhanced Passwords
4. Universal Password
5. Distribution Password

 More Info

 

 

 

 

novell audit ACK Failure for Attribute

Came across the above error when working with Novell Audit.

Problem: All audit events where getting cached but not getting inserted into database.

Solution: Restarted Novell Audit and all instrumentation objects got connected to SLS and cached events got updated into database.

Below if the Novell Audit Log

Tue Jun 30 02:10:56 2009 [Novell Audit Platform Agent]: Attempting to re-establish connection to secure log server for application eDirInst.

Tue Jun 30 02:10:56 2009 [Novell Audit Platform Agent]: Server reports logging protocol version: 4

Tue Jun 30 02:10:56 2009 [Novell Audit Platform Agent]: All log channels have failed. Stopping logging of events for application eDirInst.

Tue Jun 30 02:10:56 2009 [Novell Audit Platform Agent]: ACK Failure for Attribute

Tue Jun 30 02:11:26 2009 [Novell Audit Platform Agent]: Failing primary connection for application eDirInst.

Tue Jun 30 02:11:26 2009 [Novell Audit Platform Agent]: All log channels have failed. Stopping logging of events for application eDirInst.

Tue Jun 30 02:11:26 2009 [Novell Audit Platform Agent]: All log channels have failed. Stopping logging of events for application eDirInst.

Tue Jun 30 02:11:26 2009 [Novell Audit Platform Agent]: ACK Failure for Attribute

Tue Jun 30 02:11:26 2009 [Novell Audit Platform Agent]: All log channels have failed. Stopping logging 
of events for application eDirInst.

Tue Jun 30 02:11:26 2009 [Novell Audit Platform Agent]: All log channels have failed. Stopping logging of events for application eDirInst.

IDM interview recommended questions / experience

Experience:

-          eDirectory 8.7.3.x and 8.8:

o        3 years of hands on experience on eDirectory design.

o        3 years of hands on experience in troubleshooting.

o        Backup and restore procedures

o        Health checks

o        Partitioning

o        NDSTRACE

o        Integration with Novell Audit and Novell Identity Audit

-          IDM 3.5.x (3.6):

o        Understanding on the design process.

o        3 years of hands on experience in developing IDM drivers.

o        Knowledge on the following drivers: eDirectory, Exchange 5.5, NT, AD, TopSecret (Bi-directional), RACF (Bi-directional), UserApp, JDBC, Loopback, LDAP.

o        Understanding and experience with entitlements

o        Knowledge on Designer

o        Password synchronization

o        IDM Trace reading

o        UserApp troubleshooting

o        Remote Loader troubleshooting

o        Integration with Novell Audit and Novell Identity Audit

-          Identity Audit (1.x) and Novell Audit (2.0.2 SPx):

o        Installation experience

o        Configuration experience

o        Troubleshooting experience

o        Administration

Desirable Certifications Training:

-          Attended eDirectory ATT Training

-          Attended IDM ATT Training

-          Certified Linux Professional / Certified Linux Engineer.

Questions:

• -          What drivers have you designed, developed and deployed?
• -          How would you troubleshoot a driver that is not working as it should? (please provide the step by step process mentioning tools and options on those tools).

• -          Password synchronization works for some users but not for all. What could be the issue?
• -          Users are not able to log into the UserApp. UserApp is up and running. eDir is up and running. What could be the problem? What are the steps taken to troubleshoot the issue?

• -          A deployment of new PRD’s has been done over the weekend and on Monday when people log into the system they do not see the new PRD’s. What is the issue and how can it be resolved?
• -          What health checks would you recommend running before a change in the schema?

• -          You have a server with eDir and IDM on it. You start eDir but the IDM drivers won’t start. You verify that the drivers are set to AutoStart and when you try to start them manually you get the following error:

o        Unique SPI exception (Error -783) The DirXML Interface Module (VRDIM) is not currently loaded into Netware or into DHost.

• What is the problem? How would you troubleshoot this issue?
• -          What components do you have in Novell Audit? Where do you configure those components?
• -          How would you load or unload the Novell Audit PA?
• -          Walk us through the process of configuring eDirectory to audit creation and deletion events into a MySQL table called eDirEvents.
• -          Referring to the previous procedure, how would you configure an SMTP alert to be sent out when an eDir deletion takes place?

How Novell Audit works