Activity for Tihomir Karlovic
-
Tihomir Karlovic posted a comment on discussion Open Discussion
Hi Francois, I remember you, it's been years :-) Yes, definitely. But, as you have probably noticed, the last decade or so I didn't have much (any) time for LdapAdmin. Nowdays ( ast I'm aging close to retirement ) things may change. If you can help me I fullhartedly agree, otherwise, It will take some time for me to find free time for it and get to know new tools. Anyway, It was nice hearing from you again :-) Best regards, Tihomir
-
Hi Vlado, you m,ay be seeing the system attributes. Those can only be shown if you search for them explicitely. LdapAdmin has a lists of such attributes and, depending on the server recognized, it will query those. You can switch this on/off in preferences of the conmnection. B est regards, Tihomir
-
it is, see here http://ldapadmin.org/docs/introduction.html
-
Could be a bug, I would need to do more research, can't promise at the moment. I've been tied in other projects for a few years now and my "of the top of my head" knowledge is slowly evaporating ;-)
-
Yes, as far as know there have bin no complaints so far. AND, since LdapAdmin is using Windows API, there is no reason not to work wit new versions. but, I only myself tested pn Windows 2012
-
How does your config looks like as compared to others? Particularly BaseDN
-
HI, It seems that I may have encounterd this before, I just forgot about it :-) Plase see this thread https://sourceforge.net/p/ldapadmin/discussion/305548/thread/7cf32bec/?limit=25 Let me know it this is the same problem. Best regards, Tihomir
-
Hi Xanti, did you chack the documentation page: http://ldapadmin.org/docs/scripts.html ? You can use Session.Search to get the list of entries that you want to modify. The loop through the list and access attributes with attributesByName['attributeName'] to access attribute and its values. Best regards, Tihomir
-
Ok, this is a problem that v1.7 used copy/delete methos to move objects and the v1.8 detects if the server is V3 and then uses server control. I will have to add some additional checks or a manual override possibility.
-
Sorry Bill, this is question for the OpenLdap community, I don't know this. Tihomir
-
This is very strange, did you resolve this?
-
Hi, please send me the file and I will upload it. Thank you! Bet regards, tihomir
-
Hello, it'you cannot use TSLover SSL port, it doesn't make sense either as they are both doing essentialy the same. Proper way to do it: With TLS on the standard LDAP port, with SSL on the ssl port (usually 636). So everything works as it should, don't worry. Bet regards, Tihomir
-
No, you have to do this on your server. So it cannot be a seeting of LdapAdmin :-)
-
Hello Kenneth, the syntax is standard LDAP query syntax. There's plenty of sources around, for instance: https://technet.microsoft.com/en-us/library/aa996205(v=exchg.65).aspx Best regards, Tihomir
-
Hello Tom, It seems so as your user has a restrected access and hence cannot open certificate store to read from it.
-
Hm, not sure you can, sorry. I can recheck this but I think not. Cheers, Tihomir
-
Hello Tjomme, did you try using @ prefix for literal paths and then escape the backslesh? Cheers, Tihomir
-
Hi, you have to have the schema file for the group included in your server shema configuration (depending on the group type you are trying to create (rfc2307bis for thr default group type). Cheers, Tihomir
-
Hi, Yes, as long as CA is declared as trusted. Yiu have to import the CA certificate in the Trusted Authorities store. Cheers, Tihomir
-
Hi, Yes, as long as CA is declared as trusted. Yiu have to import the CA certificate in the Trusted Authorities store. Cheers, Tihomir
-
Hi, LdapAdmin will let you add NTLM password only to Samba accounts. Cheers, Tihomir
-
Hm, I don't understand why.. you should be able to find the groups with the simple query by querying for the member attribute. What's the group object class?
-
HelloTim I did, thank you :-) OK, I have to install ppolicy first.. as for the menu entry, yes, that can be done. I would appreciate if you could place the feature request, it's the only guarantee that I won't forget to implement it! Best regards, Tihomir
-
I'll pass this to Pawel, thanks!
-
Hello Michael, Of course! P.S. There are several unsolved issues yes, but there are lot's of more recent and solved :-) you need to change the filter to see those, however Tihomir
-
Hello Xanti, very sorry for a delay but I somehow missed your request (I was on a vacation at that time). Yes, there is a possibility using javascript engine in templates, please let me know if you still need this solution. Best ergards, Tihomir
-
Missing some important attributes in version 1.8.3
-
shadowLastChange interpretation
-
Fixed in 1.8.4
-
Hello, as I never encountered this error before, even with multiple contexts I need some more information in order to reproduce it. What server are you connectiong to? Do you have acces to the config?
-
Where does it cause the caracter corruption, in the template tab? Can you post a template file so that I can test it? Best regards, Tihomir
-
It does not! I should really update this but it never came up so far! Best regards,
-
Hi, you should use the search windows to filter the groups user is member of and then export those search results. Cheers, Tihomir
-
Hello Tim, aplogize for a delay but I was on (arather long :-)) vacations, I don't have this attribute with my OpenLdap server, that's why I thought that there is a package. I have to install the CentSO7 and test this unless you do have a finctioning VM for me, which would be great? Cheers, Tihomir
-
Hello, You may not have the neccessary permissions to access the root of this server or there may be missing root entry (some servers do not configure this one although they should. I may have to tweak the LDAPAdmin to "misbehave" here in order to cope with this sloppiness!). Cheers, Tihomir
-
HI, sorry but this is really a question for the LDSAPserver forum, please post this to the forums related to your LDAP server. Best rergards, Tihomir
-
Hello, sorry for a delay but I was on vacations :-) It's probably so that the server is not accepting the plain text passwords for the security reasons. A common thing with AD for instance. The message is a bit misleeding. Cheers, Tihomir
-
Hello, aplogize for a delay but I was on vacations :-) I did some testing and no matter what I tried, I could not reproduce the problem. A friendly users tested this for me with other windows versions and could also not reproduce. It seems a very specific environment would cause this. I had this problem years ago with one user and was not able to solve it then either :-( We also find a reference on the web of somebody having the same problem and being able to solve it only by switching the compiler...
-
Could be, but you really need to give me more details. What directory server are you operationg on and what extensions of schema do you have installed? Can you provide an anonymised LDIF of your user object?
-
Ok, and what's the name of the package that is using the pwdAccountLockedTime attribute? I'd have to recreate your environment to debug it. Cheers, Tihomir
-
Hm, sorry about this. I will have to find the way to test it and don't yet know how exactly (I have it tested with the regular attributes where it behaved as expected). What server do you have there?
-
Sorry for a delay. FetchBase button makes a call to retrieve the 'namingContexts' attribute. This obviously causes the LDAP_CONSTRAINT_VIOLATION error to be retutned. namingContexts is an operational attribute which provides a list of all of the DNs that act as naming contexts for the DITs that may be held in the server and is maintained by the server itself. I can only imagine that there is a configuration error or a data corruption that can lead to this error. Of course, a bug in LDAP Admin could...
-
The atrributes memberOf and member are AD attributes, memberUid is a Posix attribute. You are micin something up. Are you creating Posix or AD user?
-
Hi, what does you base dn look like? Cheers, Tihomir
-
Hi, The C# code is using .Net libraries to access the server. LdapAdmin is using native Windows API for this task. It sends ldap_search_init_page request and if granted it will continue to request the pages with ldap_get_next_page_s as long as it does not receive LDAP_NO_RESULTS_RETURNED or LDAP_SIZELIMIT_EXCEEDED. If LDAP_SIZELIMIT_EXCEEDED happens in the first call to the ldap_get_next_page_s the error you see is triggered. I have tested today with Windows2003 AD and OpenLdap and the paged search...
-
Well, yes. I'm afraid there's no way to do that with LdapAdmin. I would have to implement a regexp for a modify operation, which is possible... Cheers, Tihomir
-
Ok, fixed this for the next release.
-
Hello Tim, The main editor does not include opertionals as those are generally read only and adding this to editor is a bit more complicated. So I settled for the compromise: you should be able to do this by entering the empty string value from the main window (right click on the attribute then choose edit). Please let me know if this works for you. Cheers, Tihomir
-
You shouldbe able to do this withbatch modify: http://www.ldapadmin.org/docs/batch.html Cheers, Tihomir
-
Hm, I'm pretty sure I had this on my ToDo list but... DXML and LDIF export will export all values but CSV not... This is inconsistent an needs to be fixed. Do me a favor and post a feature request or even better a bug report, so it doesn't get lost again. Cheers, Tihomir
-
you're welcome :-)
-
Hello Tim, Yes, so you should be able to. You have to delete it from the editor however (right click, Edit entry).
-
Yes, you can use '+' special attribute with directories which support this (most do). Go to connection properties and choose attribute tab. Activate operational attributes and remove all listed then add '+' attribute. You will be able to see all operational attributes (provided special attribute '+' is supported by your directory). Cheers, Tihomir
-
I can't see how this could be caused by Windows 10. What LDAP server are you connecting to?
-
I can't see how this cpuld be caused by Windows 10. What LDAP server are you connecting to?
-
I just posted 1.8.3, didn't see this one :-( I will fix it for the next release
-
Chinese language bug
-
I've fixed this bug in new 1.8.3 release. You can download it now.
-
1.8.3 released
-
Because this library wasn't even existant at the time LdapAdmin was started and the port would be a major task. Also, beeing basicaly a Windows tool (unfortunately, due to compiler restrictions) the Windows LDAP API is a logical choice. Besides, the Windows LDAP API is there for almos 20 years now and a VITAL part of Windows OS. It is very mature, stable and reliable. If you take a look at the LDAPAdmin forums, you will see that the problems which can be traced to the Windows API are a really rare...
-
It seems to me that the you miss the schema for one of the objecclasses. However, this is really a topic for Openldap forum, not LdapAdmin. Cheers, Tihomir
-
Password encryption method list broken when using language file
-
Hello Tim, I've addid the functionality for 1.8.3, which will be out in short. P.S....
-
Templates - checkbox on multivalued attributes
-
Th template components can be stacked by assigning the same attribute to several...
-
The problem was that I regarded all operational attributes as read only (which they...
-
password button for AD
-
Added in 1.8.3
-
You're welcome :-)
-
For this, use OnExit event. Also, it would be good if you could place a feature request...
-
Yes, LDAPAdmin uses Windows LDAP API which supports TLS 1.2: https://technet.microsoft.com/en-us/library/dn786419(v=ws.11).aspx...
-
1.8.2 Released
-
Just occured to me that the pwdAccountLockedTime is not an operational attribute...
-
Hello Tim, No it's lockoutTime attribute you need to set to 0: https://msdn.microsoft.com/en-us/library/ms676843(v=vs.85).aspx...
-
Hello Tim, Operational attributes are maintained by the server. They are read only...
-
It just occured to me that you could use password button control for this. At the...
-
You're welcome! :-) Cheers,
-
Hi! Something is definitely wrong. OpenLdap client and JExplorer use different LDAP...
-
Hello, Unfortunately, the unicodePwd attribute is unlike other "normal" attributes....
-
Hello Subramanyam, if you can not see the pwdPolicySubEntry attribute then you may...
-
Customize menu...
-
Fixed for 1.8.2
-
Customize menu...
-
It seems that it never did work with wine wldap32.dll. See here: https://appdb.winehq.org/objectManager.php?bShowAll=true&bIsQueue=false&bIsRejected=false&sClass=version&sTitle=&sReturnTo=&iId=19365...
-
Hello Thomas, There are two places to put the script code to: the separate script...
-
1.8.1 Release
-
I just discovered a bug causing an ugly exception to appear when starting dialog...
-
Yes, just create a template with <extends>aduser </extends> directive. Cheers, T...
-
You're welcome :-)
-
Interesting. Can you give an example of LDIF records created by JExplorer or/and...
-
Now I have even more questions ;-) Ldap Admin Tool is a different application, a...
-
1.8 release
-
Yes,can you please post a feature request. Cheers, Tihomir
-
1.8 release
-
How to disable the user
-
Fixed in 1.8
-
Thanks, but that I finally got some time for this last year and the new release 1.8...
-
Hi, This option is for loading binary data as a value. If you want to import those...
-
Hi Robert, Well, IDE and compiler use different parsing engines. I had a case where...
1 >
