Form Login Failure doesn't work , please help
Hi everybody,
Quite new to Novell Access Manager, I'm trying to get Forms Policies to
work.
And I'm having very hard time.
What I intend to have is :
Access Gat | | 10 | 54 | 10/24/2008 9:26:01 AM |
NAM 3 and Outlook fat client using RPC over HTTPS
Hi!
We would like to use NAM to protect an Exchange server from the Outlook
fat clients on the outside of the firewall.
The Outlook clients are installed on Win XP computers added to | | 3 | 16 | 10/23/2008 2:56:02 PM |
Trust on 2 different contract
Hi guys, need help on trusting 2 different contracts as i have 2
different contracts for my applications under AM. Now when i had login
to contract A but when i hit those apps that under | | 1 | 11 | 10/23/2008 12:01:39 PM |
Is stunnel.conf correct for forward-proxy-config?
We have a remote site where we tried to access NAM-SSLVPN (version 3
SP3; Linux) through a forward-proxy (ISA-server).
We configured proxy.conf with the IP-address of forward proxy
(p | | 2 | 8 | 10/22/2008 2:16:02 PM |
SSL: multiples sites and one IP domain based
Hi
I have one IP and multiple accelerator domain based on SSL.
I want to use a third party certificate for those accelerator.
The domain configuration are:
www | | 1 | 8 | 10/21/2008 10:02:26 PM |
Managing Shared Secrets?
In iChain, there was a formfill crib attribute on the user object in
eDir
In NAM, this doesn't quite exist.
I take it from reading the docs, that the CLOSEST I can come to this | | 7 | 2 | 10/21/2008 9:03:38 PM |
Protected resource question about multiple paths
in iChain, you would specify the URL's in the formfill section.
In NAM, you don't do this. Instead, you assign the specific formfill to
the protected resource (which is where you create | | 14 | 9 | 10/21/2008 5:46:02 PM |
X509 Attribute mapping
Hi,
We have web resources protect with X509 contract and it works fine
mapping the email certificate attribute with mail user attribute.
Now, I need to authenticate the user with | | 2 | 12 | 10/21/2008 11:46:01 AM |
302 redirects
Hey all,
I'm doing a rewrite proxy in front of a web app. I'm having an issue
where, post login, the app is issuing a 302 Object Moved which bounces
the user out of the proxy ses | | 4 | 44 | 10/21/2008 4:28:06 AM |
Access Manager Eval issue
Hi guys,
I am trying to get the SSLVPN server in the eval version to work, but
am unable to get the login web page ("https://myserver/sslvpn/logon")...
Nmap shows that | | 1 | 15 | 10/21/2008 4:13:18 AM |
Access Manager Custom Login Page
Hi,
I have created a new login page custom-login.jsp
How to use it without rename to login.jsp
The documentation isn't clear:
'Novell Documentation' (http://tinyur | | 5 | 11 | 10/20/2008 9:56:01 PM |
Getting a blank login page from the idp.....
I have one access gateway (linux) and one IDP setup. I have both a
custom contract and a custom login page setup. Before I had a netware
access gateway setup and everything was working | | 6 | 11 | 10/20/2008 9:07:07 PM |
iManager-Admin Console timeout settings
Is there a spot to control the timeout for the Admin Console?
I know in regular iManager where it's at, but I don't see it NAM.
It seems to be like 20 minutes maybe?
Very an | | 2 | 12 | 10/20/2008 6:25:42 PM |
The Identity Server halted after configuration
I install the Administration console and Identity server on the same
server. The server's configurations are as following:
OS: SUSE 10
hostname: IDSDEV
Domain: ab.sgcc.com.cn
| | 8 | 13 | 10/20/2008 5:16:02 PM |
The Identity Server can not start after configuration
Hi,all
After I install the Access manager, I configure the Identity server. But
when I "update all", the Identity Server can not start. It display "Start
unsuccessf | | 3 | 6 | 10/20/2008 5:06:01 PM |
Custom login page on a different server
Hi!
I have made a custom loginpage (which is a pure html file) with the
following code on a different webserver then the IdP:
<form name="IDPLogin" method=" | | 2 | 6 | 10/19/2008 11:47:09 AM |
eDir LDAP user store "user" account?
The docs state to use a userid/password of an Administrator of the LDAP
data store (when setting up the IDP).
The question I have, is:
Is the Admin account (or equivalent) actua | | 4 | 10 | 10/17/2008 7:33:31 PM |
IE and SSLVPN
--____RWWMPTNRCEQFCDOIVDSL____
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
When using IE to authenticate to SSLVPN IE requests foreve | | 6 | 9 | 10/17/2008 3:25:53 PM |
Role policy - which one is correct?
On page 402 of the Admin guide, it states:
"If the Admin Console and the IDP are on separate machines, you need to
specify Data Entry Field for the VALUE and enter the fully disting | | 4 | 9 | 10/17/2008 3:02:01 PM |
Kerberos ticket not recognized
Hi,
I'm facing a kerberos auth problem :
I try to connect to /nidp to verify that kerberos is working well...
and it doesn't.
details :
installed Identity | | 2 | 5 | 10/17/2008 2:26:01 PM |
Token authentication
How to get token authentication working like we're used to with iChain.
Can't get any further than the username/token setup. We want to have
username/password/token authentication.
< | | 4 | 13 | 10/17/2008 5:56:02 AM |
J2EE Agents on other platforms
Does anyone in the know know if there is anything on the roadmap for NAM
regarding supporting the J2EE agents on platforms other than Linux and
Windows? We (unfortunately) run WebSphere | | 2 | 6 | 10/17/2008 3:56:02 AM |
SSLVPN getting 404 message
I am getting this error when I connect to the sslvpn site. checked the
sslvpn service and restart it but no luck.
HTTP Status 404 - /sslvpn/
-------------------------- | | 5 | 9 | 10/16/2008 3:26:01 PM |
LAG cluster stops responding
We have not deployed AM yet as we saw a problem under load where the LAG
clustered servers (2) stopped responding and had to be restarted. We
just upgraded to SP4 and still the problem p | | 8 | 11 | 10/15/2008 8:43:13 PM |
Linux Access Gateway Hard Hang
Guys, i have 2 LAG under clustered getting server hard hang. These
servers are configured with LB in Active Passive mode. Both LAG had been
patched with SP4.
--
kkyen | | 4 | 12 | 10/15/2008 8:38:58 PM |
NAM iManager UI suggestions
Everyone,
I am trying to collect any suggestions related to the Administration
Interface for NAM3 in iManager.
Example:
The cancel and ok buttons should always be visible. | | 12 | 10 | 10/15/2008 4:32:17 PM |
Federation Question
Guys, i'm trying to setup federation between 2 separate AM. After
successfully configured Site A as IDP and Site B as SP,a user from Site
A get federate with account in Side B. When the u | | 3 | 10 | 10/15/2008 8:21:11 AM |
403 Forbidden errors
I'm familiar with the above error in iChain (usually happens when you
forget to put stuff into your ISO object)
However, following the instructions in the Quick Start Guide (page
| | 3 | 11 | 10/14/2008 9:18:21 PM |
Authorization policy question - how would you handle this?
I'm wondering if there's an easier way to do this, but maybe not.
Our eDir tree structure is not flat (due to lots of WAN links and the
need for partitions/replicas).
There are | | 3 | 2 | 10/14/2008 7:28:53 PM |
Can I have a dedicated ESP Reverse Proxy?
barragae (that's the posting name) indicated this could be done, but my
testing seems to indicate it cannot.
I created a new reverse proxy called lag
Its pointed to my IDP cluster. | | 2 | 11 | 10/14/2008 2:10:35 PM |
SMS gateway: recommendations?
Hello,
I understand that the SMS method can connect to almost any SMS gateway
that uses HTTP/POST but does anyone have any recommendation which
gateway to use? The customer is a | | 3 | 8 | 10/14/2008 11:18:20 AM |
AG Domain Redirecting/Rewriting
Greetings.
We are in the process of transitioning from iChain to NAM 303 SP3. Upon
migrating our first site, we noticed a problem as described below.
The site is SSL secure | | 2 | 8 | 10/13/2008 5:26:01 PM |
SSLVPN - new server to replace old
I'm replacing our existing prod sslvpn server with another one (hardware
eol). I've built the new sles box, have the routing all in, nat
configured...
Can I install sslvpn on it | | 2 | 8 | 10/13/2008 2:26:01 PM |
LAG and ESP and Proxy services?
Could someone enlighten me as to what the ESP is on the LAG?
I know it's the embedded service provider.
What I'm meaning is:
Is there just ONE ESP per LAG?
And does | | 23 | 7 | 10/10/2008 1:55:50 PM |
Upgrade to SP4 - first tests
Hello everybody.
I've just upgraded a virtual test environment of NAM 3.0 to SP4 (with LAG);
the upgrade went fine and by checking under "Auditing -> Troubleshooting ->
Ver | | 5 | 12 | 10/9/2008 12:05:59 PM |
SSLVPN on AG or IDP with different IP
Hi,
is it possible to have the SSLVPN gateway running on the Identity
Provider or on the Access Gateway and assign a different IP to it ?
This would provide the option to have t | | 2 | 6 | 10/8/2008 10:56:01 PM |
We keep seeing "X" on the IDP health indicator.
We keep seeing "X" on the IDP health indicator.
The error shows similar to:
SSL Communication is not operating correctly! URL
https://10.1.5.147:8443/nidp/app/ping Error: | | 6 | 7 | 10/8/2008 10:49:52 PM |
Third party SSL certs - which ones and where do they go?
iChain was obviously more simple than NAM.
I only had to get one wildcard cert for each iChain server.
That was it.
However, with NAM it seems I've got a ton of diff. certs | | 2 | 8 | 10/8/2008 8:33:57 PM |
Diffent Timezones.
Hi All
Our government has decided to change the date for start of daylight
savings time.
Normally it is the last Sunday in October but this year it's the first
Sunday. (TZ Austral | | 3 | 10 | 10/8/2008 4:45:02 AM |
SSLVPN Initial Configuration
I'm running AM3SP3
I'm interested in checking out the SSL VPN servers. I installed a test
box. Upon running through the install process I noticed the SSL VPN
imported and shows up | | 1 | 8 | 10/7/2008 9:55:29 PM |
2 letter top level domain and 2 letter first level = no login in access man ager possible
Hello NG
I configured Access Manager with two letter top level domain and two letter
first level. Ex. (zg.ch) When I try to login with IE into access manager,
the login is not worki | | 9 | 8 | 10/7/2008 9:37:58 PM |
NRM for nam?
Hi I wonder if it is possible to add remote manager to AG or NAM console in
order to have any other option for management.
regards
| | 1 | 13 | 10/7/2008 9:27:24 PM |
Restrictions fields not available in NAM Admin Console
Hello everybody.
NAM 3.0.3-56 with Linux Access Gateway.
When I access the NAM admin console as "admin" user and select "Users ->
Modify Users -> [insert_an_ | | 5 | 7 | 10/7/2008 9:25:57 PM |
Auth. Rules - am I doing this right?
Coming from iChain, I'm a bit of a dumb-dumb when it comes to NAM.
In iChain, we had an LDAP auth profile setup to allow certain OU's to
have access (ie, if you were in certain OU's you | | 2 | 10 | 10/7/2008 1:54:28 PM |
Activate the Eval Version
Dear all
How can I upgrade the evaluation version to the standard version?
Is there any documentation to that topic?
Thank you for your help & best regards
Raphael | | 1 | 13 | 10/7/2008 12:32:19 PM |
Multiple User Store SSO
Hi all,
I need to know if it is possible to define Authorization policy for
users in a User Store different from the authentication one.
I mean:
I have to Authenticate users | | 7 | 9 | 10/6/2008 2:36:02 PM |
edir not autostarting when rebooting Admin Console?
NAM 3.0.4
When I reboot the admin console, I have to manually start edir
(/etc/init.d/ndsd start)
and then manually restart tomcat4
I saw a post from June 2008 that | | 4 | 8 | 10/6/2008 6:13:10 AM |
Capture backend webserver error codes. and load balancing
Is there any way of capturing a backend webservers error and replacing
it with access managers default error.
i.e.
apache 404 and iis 404 not founds replaced with access managers 404< | | 1 | 13 | 10/5/2008 4:20:38 AM |
Update configuration does not work
Hello NG
When I try to update the access gateway configuration I receive the
following errror. Somebody can help me to solve this problem?
Name: 10.11.102.37 Configur | | 1 | 7 | 10/5/2008 3:59:11 AM |
Host name received is not for this web site
Currently my AM running in HA with LB under SP3 IR2. All my applications
configured as multi-homed with domain based. Problem is when user
request application B, it return application A a | | 11 | 8 | 10/5/2008 3:21:02 AM |