Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 1 subscriber
  • Views 1945 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

New errors with EDIR-SSO and 7.4

dspender
2009:03:19-10:24:56 thetube aua[5483]: id="3006" severity="info" sys="System" sub="auth" name="could not set object for cn=CCeHas: EMAIL_ADDR_UNIQUE"
2009:03:19-10:24:56 thetube aua[5483]: id="3006" severity="info" sys="System" sub="auth" name="a different object exists with this email address"
2009:03:19-10:24:56 thetube aua[5483]: id="3006" severity="info" sys="System" sub="auth" name="no user object created" 

And where before, single sign-on would work wonderfully, now users are getting prompted to authenticate every time they open the web browser or a new tab.

Is there a different setting now to get this to work? I couldn't find anything in the Astaro that looked different and testing the server and user under Edirectory tab in Astaro User Auth section, works fine.


This thread was automatically locked due to age.
Parents
  • 0
    Dspender, did you go straight from V6 to 7.4?  I seem to recall other complaints that V7 insisted on a unique CN as opposed to the earlier Novell-branded versions of Astaro.

    Since the prefetch creates a User Cert bound to the email address, I would hope that it would reject a different user with an identical email address.

    I'll be interested to learn what you figure out here.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    It was working fine at 7.305.... after further discussion with my team...

    We migrated from 7.305 >> 7.4 at 2am yesterday morning.

    From what I can tell eDir sync happened twice after the upgrade and the subsequent reboot but has not happened since then. That plus the above error are what's causing issues I think?
  • 0 in reply to dspender
    You are certain that you don't have two users with an identical email address in your eDir?  In any case, this is worth opening a support case with Astaro Support.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    No, this is happening with almost all users. I will open a case immediately.

    Thank you.
  • 0 in reply to dspender
    Here is Astaro's response:

    "Most likely this is prompting additional logins due to a change in Edirectory
    which was added for polling of user object changes in 7.400.  We found this
    would sometimes prompt more logins then earlier and have since changed this
    behavior for 7.401 up2date released today."
Reply
  • 0 in reply to dspender
    Here is Astaro's response:

    "Most likely this is prompting additional logins due to a change in Edirectory
    which was added for polling of user object changes in 7.400.  We found this
    would sometimes prompt more logins then earlier and have since changed this
    behavior for 7.401 up2date released today."
Children