LDAP: error code 1 - Operations Error
(Last modified: 07Feb2003)
This document (10080019) is provided subject to the disclaimer at the end of this document.
fact
LDAP
NLDAP
symptom
Unable to authenticate to NDS using LDAP
HH:MM:SS AM: Failed to connect to ldap://ip_address:389
Root error: [LDAP: error code 1 - Operations Error
NDS login via LDAP succeeds from one workstation but fails from any other workstation.
cause
The user object contains an attribute (property) called "Network Address". It holds a value of the IP address of the workstation where the user first authenticated. If the login restriction is set to one concurrent connection and the user logs out but then attempts to login from another workstation with a different IP address, the user can no longer authenticate. The problem is that the Network Address attribute holding the old IP address doesn't automatically get deleted when a connection is terminated. The Network Address doesn't get populated by a new IP address until the user authenticates again but with a limit of one concurrent connection the new authentication fails.
fix
Check for the problem by looking at the properties of the user object. It will have a check mark on "Limit concurrent connections" and "Maximum connections" will be set to 1.
There are two work arounds.
1) Right click on the user object that cannot authenticate and go to properties. Click on Restrictions Tab | click on Login Restrictions | Change the Maximum connections from 1 to 2. Login with the user. Change the concurrent connections from 2 back to 1. Log in and out and it should start to work normally again and will until the user tries to login from a different IP Address.
2) Run DSREPAIR -Nx (where x is the number of days since the old IP address has not been used) and do a repair local DS database. For more information on advanced DSREPAIR switches see TID: 10017477
document
Document Title: | LDAP: error code 1 - Operations Error |
Document ID: | 10080019 |
Solution ID: | NOVL86979 |
Creation Date: | 07Feb2003 |
Modified Date: | 07Feb2003 |
Novell Product Class: | NetWare Novell eDirectory |
disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.