Article

ScorpionSting's picture
article
Reads:

9942

Score:
3.6
3.6
5
 
Comments:

9

Remove

Author Info

11 April 2011 - 9:20am
Submitted by: ScorpionSting

Tags





User Comments

TellierS's picture

Good article

Submitted by TellierS on 2 May 2011 - 2:00am.

Hi, I have the same setup, but I'm not able to use a policy with a condition check for a container, a group or a role with a validation in eDir to authorize user access.

ScorpionSting's picture

To have policies that check

Submitted by ScorpionSting on 2 May 2011 - 1:28pm.

To have policies that check eDir values, you *MUST* enable "Overwrite Temporary User" and "Overwrite Real User" in the PFC Method, *AND* disable "Retain Previous Principal" in the PFC Class.

cervel0's picture

kerberos authentication

Submitted by cervel0 on 2 June 2011 - 9:10am.

Great article. Is it possible to do kerberos constrained delegation with NAM?

kkyen's picture

great article!

Submitted by kkyen on 27 July 2011 - 6:24am.

Is this applicable to NAM304? As i don't see the PasswordFetch class in there... Thx

TellierS's picture

A class developped by Bart

Submitted by TellierS on 27 July 2011 - 7:08am.

A class developped by Bart Andries exist for 3.0.4, I think.

ScorpionSting's picture

Bart's one operates

Submitted by ScorpionSting on 27 July 2011 - 12:00pm.

Bart's one operates differently to the Novell one and doesn't contain some of its features such as Principal Replacement.

You do realise that, if you have any issues with your Access Manager environment, the first thing Novell will ask is what release you're running? They only offer decent support if you're running the current release, otherwise they'll just say "upgrade to current release and see if issue continues".

mus75's picture

Authenticating internal users on the cloud using Kerberos/NAM

Submitted by mus75 on 3 August 2011 - 5:03am.

Hi there,
I'm using NAM to authenticate external users to access to some applications hosted on the cloud (sales force), for the internal users, when they want to access those apps, an additional authentication (besides windows (AD) authentication) is required.
How can I authorize internal users to access to those applications once they are logged in to the local domain without entering additional login/password using Kerberos (SSO) ?
thanks

kkyen's picture

Password Type

Submitted by kkyen on 27 September 2011 - 2:46am.

What if I'm going to setup the password fetch now and my existing eDirectory is without "Simple Password" or "Universal Password", can these users be fetch? Thanks.

ScorpionSting's picture

Definitely not. Your

Submitted by ScorpionSting on 27 September 2011 - 10:54am.

Definitely not.

Your passwords are only held in RSA encryption which is irreversible.

© 2013 Novell