Hi,
i am trying to configuring LDAP with my Teamsite 7.4.1 in linux box. in that i need to set the IWCLT_PASSWORD. I am not sure how we can set the vailable to run the CLT command to generate password.
Please advice how to do that.
I have set the IWCLT_PASSWORD as environment variable and run the iwuseradm clt but it is givig error.
The process which I have followed is:-
[root@BVASNDD03 /]# export IWCLT_PASSWORD=Ntrvl12#[root@BVASNDD03 /]# echo $IWCLT_PASSWORDNtrvl12#
When I am checking the [root@BVASNDD03 /]# env
I am able to see as environment variable
After that I am running the iwuseradm CLT as mentioned in the Admin document but giving error:-
[root@BVASNDD03 bin]# ./iwuseradm encrypt-userdatabase-pwd -v
ERROR: IWCLT_PASSWORD is not defined.
options for encrypt-userdatabase-pwd
-v <encrypted-password> Generate the encrypted version of a password for LDAP server login. Use -v option to verify an encrypted password. For security reasons, the password is passed to this program via the environment variable IWCLT_PASSWORD.
Please advice what is the wrong I am doing is there any other steos I need to follow here.
Hi Karthik,
Somrthing with the enviroment variable. Try to delete and set it again. Check if there are any white spaces etc.
The steps are very straight forward.
To encrypt a LDAP login password:1. Define IWCLT_PASSWORD environment variable as the actual password.2. Run the following CLT to generate the encrypted password:iwuseradm encrypt-userdatabase-pwdThe CLT outputs a 64-bit password like the one shown below:52616e646f6d4956c82bafa0f0070585907d439c34792e66c55ade1fd1e21fc43. Copy the 64-bit encrypted password to the corresponding LDAP server configurationin user_databases.xml file.To verify whether an encryption is correct:1. Define IWCLT_PASSWORD environment variable as the actual password.2. Run the following CLT to verify an encryption:iwuseradm encrypt-userdatabase-pwd -v52616e646f6d4956c82bafa0f0070585907d439c34792e66c55ade1fd1e21fc4The CLT outputs YES if the encrypted password matches the original password.
Thanks
Kalam
I am able to get the encrypted password and I have set that password in user_database.xml. After that I run the TeamSite but I am not able to see the LDAP server in the dropdown where we add the users in Administration.
Please find attached the user_database.xml which I have used for LDAP configuration.
I also add the 3 values in iw.cfg in authentication section.
[authentication]
ldapcache_thread_delay=1440
log_ldap_sync=yes
ldap_sync_retry=12
Please advice is there anything I am missing here and check the xml file.
Please let me know any pointers for LDAP configuration with TS 7.4.1 on Linux Machine.
Try making the following change to your user_databases.xml file:
<iwuser_databases> ... <search_key value="samAccountName"></search_key> ...</iwldap>
I only dealt with this one time before, and that was one of the things I needed to fix in order to get it to work. Make the change and then run iwreset and see if it works.
I got mislead because the documentation had this information under a section entitled "On a Windows system", and thus I completely overlooked it.
