LDAP/iManager Issues

[tbrubaker]

I'm having some issues with an OES2 SP2 box that we use for LUM.  We attempted to install iPrint and after restarting it caused apache2 not to run (cups/iPrint issue).  I disabled cups, got apache2 back up and running.  iManager still doesn't work. 

In digging, I discovered namcd to be dead.  I figured out that the SSL cert on our master LDAP/eDIr server was expired.  I updated that certificate successfully via "PKIDIAG", pulled it to the OES2 box via "namconfig -k", and attempted to restart namcd via "rcnamcd restart".

namcd is still dead.  I'm still getting this in /var/log/messages:

Mar 11 10:26:29 RCOES2 namldapprobe: pam_ldap_init(): retrieval of trusted root cert failed. Make sure you have LDAP server certificate in /var/lib/novell-lum directory.
Mar 11 10:26:29 RCOES2 namldapprobe: namGetLDAPHandle failed to get LDAP handle, error 3.
Mar 11 10:26:30 RCOES2 /usr/sbin/namcd[1958]: Starting namcd..
Mar 11 10:26:30 RCOES2 /usr/sbin/namcd[1958]: namcd populating the user hash tables
Mar 11 10:26:30 RCOES2 /usr/sbin/namcd[1958]: User profile file cannot be opened/does not exist
Mar 11 10:26:30 RCOES2 /usr/sbin/namcd[1958]: Failed to populate user hash tables from file, namcd populating the hash tables from eDir
Mar 11 10:26:31 RCOES2 /usr/sbin/namcd[1958]: ldap_initconn: LDAP bind failed (error = [81]), trying to connect to alternative LDAP server
Mar 11 10:26:31 RCOES2 /usr/sbin/namcd[1958]: nam_ldap_init(): retrieval of trusted root cert failed. Make sure you have LDAP server certificate in /var/lib/novell-lum directory.
Mar 11 10:26:31 RCOES2 /usr/sbin/namcd[1958]: nss_ldap_init: Unable to get LDAP handle.
Mar 11 10:26:31 RCOES2 /usr/sbin/namcd[1958]: ldap_initconn: Unable to bind to alternative LDAP servers either, error [226].
Mar 11 10:26:31 RCOES2 /usr/sbin/namcd[1958]: _nds_nss_struct_init: Error [226] in _nds_ldap_private_struct_init.
Mar 11 10:26:31 RCOES2 /usr/sbin/namcd[1958]: Problem in namcd initialization, exiting...
Mar 11 10:26:33 RCOES2 /usr/sbin/namcd[1958]: Deleted hash tables and flushed data into local files
Mar 11 10:26:33 RCOES2 /usr/sbin/namcd[1958]: Deinitialized threads
Mar 11 10:30:01 RCOES2 cron[3621]: nds_nss_GetGroupsbyMember: failed to init socket, status = 0

Any help is greatly appreciate. 
I'm new to Novell and our boss is going to be out for an unknown amount of time.  I need to get this thing back up and running ASAP!

[tbrubaker]

OK, we have it partially fixed.

We ran a DSREPAIR on our Netware 6.5 servers.  I then re-pulled the SSL certs via "#namconfig -k" and namcd is now running effectively, even after a restart.

We were able to get iManager running as well, but we are receiving a 609 error when attempting to Linux enable users.  Apparently the uniqueID attribute wasn't included in the user template we used to mass import users. 

Is there a way to mass-add the uniqueID attribute for users?

[msullivan]

You could:
Use a directory bulk modification tool like Omni's EMU http://www.omni-ts.com/forum/post--2189--page-1.html

or LDIF like http://www.novell.com/coolsolutions/feature/17528.html

Or possibly go into the the LDAP group object and map the LDAP UID attribut to eDir CN

or something