Environment
Novell iPrint for Linux
Situation
When attempting to create or manage an iPrint object in iManager, the following error is returned:
There was an internal error while communicating to target iPrint server. Check /var/log/apache2/error_log
Resolution
Remove the BaseDN definition within the iprint_ssl.conf file and restart Apache. The steps are:
- Open the /etc/opt/novell/iprint/httpd/conf/iprint_ssl.conf file
-
Find the AuthLDAPURL line.
-
Remove the O=<WhateverOrganization> as follows:
- Original Syntax:
AuthLDAPURL"ldaps://[IPorDNSofPrintServer]/[LDAPSearchBase]???(objectClass=user)" - Solution Syntax:
AuthLDAPURL "ldaps://[IPorDNSofPrintServer]/???(objectClass=user)" - Original Example:
AuthLDAPURL"ldaps://iprintserver.company.com/O=ABC-CORP???(objectClass=user)" - Solution Example:
AuthLDAPURL "ldaps://iprintserver.company.com/???(objectClass=user)"
- Original Syntax:
-
Restart Apache to make that take effect.
-
rcapache2 restart
-
Cause
When attempting create or manage iPrint objects, the user which authenticated to iManager is passed to LDAP in the background for an additional authentication. The iprint_ssl.conf defines that additional, background authentication. The default configuration limits the search for the authenticating user to the organization which the server object resides. If the admin user (or the user which authenticated to iManager) resides in a different organization, the above error will be returned. This TID instructs LDAP to search the entire tree for the user.