CheckPoint Firewall-1 NG upgrade fails to authenticate to eDirectory
(Last modified: 14Apr2003)
This document (10081415) is provided subject to the disclaimer at the end of this document.
fact
Novell eDirectory 8.6 All Platforms
CheckPoint Firewall-1 NG
symptom
CheckPoint Firewall-1 NG upgrade fails to authenticate to eDirectory
Error: "object class violation (-628)"
Error: "Unknown LDAP attribute type: "userc:mdm" Sending operation result 17:"":"" to connection 0xc0ad2740"
Modify of user with the Checkpoint management GUI fails
NDS error: Object class violation (-628)" and Unknown ldap atrribute: "userc:mdm"
change
Upgraded CheckPoint Firewall-1 NG to NG fp3 the LDAP authentication does not work any more.
cause
The schema extensions for CheckPoint Firewall were missing in the eDirectory tree.
All the users need to have the auxiliary class "fw1person" to be able to authenticate to the firewall
fix
Import the Schema LDIF file included with the Checkpoint firewall upgrade.
In order to do this use ICE (Import Convert Export Utility) from ConsoleOne or from the command line in a NetWare server. You can also use ldapmodify from the command line of a client.
document
| Document Title: | CheckPoint Firewall-1 NG upgrade fails to authenticate to eDirectory |
| Document ID: | 10081415 |
| Solution ID: | NOVL88030 |
| Creation Date: | 24Mar2003 |
| Modified Date: | 14Apr2003 |
| Novell Product Class: | Novell Directory Services |
disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.