Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

NT Driver randomly stops

0 views

Skip to first unread message

l...@epiuse.com

unread,

Feb 24, 2005, 9:28:06 AM2/24/05

Hi,

I'm running Nsure Identity Manager 2.0.1 IR 3 on linux, and my remoteloader
on my NT 4 SP 6 box has the IDM201IR3 patches applied.

I get the following errors on my NT driver:
Remoteloader log:
The Subscriber has had an unexpected exception. Shutting down.
Subscriber error on Driver log:
Fatal
No description provided.
Code(-9010) An exception occurred: java.lang.NullPointerException
at
com.novell.nds.dirxml.engine.Transformer.checkUpgradeRule(Transformer.java:512)
at
com.novell.nds.dirxml.engine.Transformer.newRuleProcessor(Transformer.java:420)
at
com.novell.nds.dirxml.engine.Transformer.loadChannelRules(Transformer.java:279)
at com.novell.nds.dirxml.engine.Publisher.init(Publisher.java:101)
at com.novell.nds.dirxml.engine.Publisher.<init>(Publisher.java:86)
at com.novell.nds.dirxml.engine.Driver.startShim(Driver.java:1168)
at com.novell.nds.dirxml.engine.Driver.initialize(Driver.java:279)
at com.novell.nds.dirxml.engine.Driver.<init>(Driver.java:252)

I've tried
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10091494.htm but
with that, my driver won't even start.
And I've tried
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10092460.htm but I
can't even save the stylesheet with the proposed fix.

The driver runs fine for quite a while, and things get synchronized, but
then at random intervals it just stops.

My driver:
<?xml version="1.0" encoding="UTF-8" ?>
- <driver-configuration dn="EPI-USE_domain.EPI-USE_Driver_Set.services"
driver-set-dn="EPI-USE_Driver_Set.services" name="EPI-USE_domain">
- <attributes>
- <application-schema>
- <schema-def hierarchical="true">
- <class-def class-name="User" container="true">
<attr-def attr-name="Name" multi-valued="false" required="true" />
<attr-def attr-name="PriviledgeLevel" multi-valued="false"
read-only="true" type="int" />
<attr-def attr-name="PasswordAge" multi-valued="false" read-only="true"
type="int" />
<attr-def attr-name="HomeDirectory" multi-valued="false" />
<attr-def attr-name="Comment" multi-valued="false" />
<attr-def attr-name="LogonDisable" multi-valued="false" type="int" />
<attr-def attr-name="PasswordChange" multi-valued="false" type="int" />
<attr-def attr-name="PasswordRequired" multi-valued="false" type="int" />
<attr-def attr-name="ScriptPath" multi-valued="false" />
<attr-def attr-name="AuthorizationFlags" multi-valued="false"
read-only="true" type="int" />
<attr-def attr-name="FullName" multi-valued="false" />
<attr-def attr-name="UserComment" multi-valued="false" />
<attr-def attr-name="Flags" multi-valued="false" type="int" />
<attr-def attr-name="AppParams" multi-valued="false" />
<attr-def attr-name="Workstations" multi-valued="false" />
<attr-def attr-name="LastLogon" multi-valued="false" read-only="true"
type="int" />
<attr-def attr-name="LastLogoff" multi-valued="false" type="int" />
<attr-def attr-name="AcctExpires" multi-valued="false" type="int" />
<attr-def attr-name="MaxStorage" multi-valued="false" type="int" />
<attr-def attr-name="UnitsPerWeek" multi-valued="false" read-only="true"
type="int" />
<attr-def attr-name="LogonHours" multi-valued="false" type="octet" />
<attr-def attr-name="BadPasswordCnt" multi-valued="false"
read-only="true" type="int" />
<attr-def attr-name="NumLogons" multi-valued="false" read-only="true"
type="int" />
<attr-def attr-name="LogonServer" multi-valued="false" read-only="true" />
<attr-def attr-name="CountryCode" multi-valued="false" type="int" />
<attr-def attr-name="CodePage" multi-valued="false" type="int" />
<attr-def attr-name="UserID" multi-valued="false" read-only="true"
type="int" />
<attr-def attr-name="PrimaryGroupID" multi-valued="false" type="int" />
<attr-def attr-name="Profile" multi-valued="false" />
<attr-def attr-name="HomeDirDrive" multi-valued="false" />
<attr-def attr-name="PasswordExpired" multi-valued="false" type="int" />
<attr-def attr-name="GroupMembership" multi-valued="true"
read-only="true" />
<attr-def attr-name="Nt4AccountName" multi-valued="false"
read-only="true" />
</class-def>
</schema-def>
</application-schema>
- <configuration-manifest>
- <manifest name="ntDomain-drv1">
<capability name="password-subscribe" />
<capability name="password-publish" />
</manifest>
</configuration-manifest>
- <global-config-values>
- <configuration-values>
- <definitions>
- <definition display-name="Application accepts passwords from DirXML data
store" name="enable-password-subscribe" type="boolean">
<description>If true, allows passwords to flow from the DirXML data store
to the connected system.</description>
<value>false</value>
</definition>
- <definition display-name="DirXML accepts passwords from application"
name="enable-password-publish" type="boolean">
<description>If true, allows passwords to flow from the connected system
to DirXML.</description>
<value>true</value>
</definition>
- <definition display-name="Publish passwords to NDS password"
name="publish-password-to-nds" type="boolean">
<description>Use the password from the connected system to set the
non-reversible NDS password in eDirectory.</description>
<value>false</value>
</definition>
- <definition display-name="Publish passwords to Distribution Password"
name="publish-password-to-dp" type="boolean">
<description>Use the password from the connected system to set the NMAS
Distribution Password used for DirXML password synchronization.</description>
<value>true</value>
</definition>
- <definition display-name="Require password policy validation before
publishing passwords" name="enforce-password-policy" type="boolean">
<description>If true, applies NMAS password policies during publish
password operations. Password is not written to the data store if it does
not comply.</description>
<value>true</value>
</definition>
- <definition display-name="Reset user's external system password to the
DirXML password on failure" name="reset-external-password-on-failure"
type="boolean">
<description>If true, on a publish Distribution Password failure, attempt
to reset the password in the connected system using the Distribution
Password from the DirXML data store.</description>
<value>false</value>
</definition>
- <definition display-name="Notify the user of password synchronization
failure via e-mail" name="notify-user-on-password-dist-failure" type="boolean">
<description>If true, notify the user by e-mail of any password
synchronization failures.</description>
<value>false</value>
</definition>
- <definition display-name="Connected System or Driver Name"
name="ConnectedSystemName" type="string">
<description>The name of the connected system, application or DirXML
driver. This value is used by the e-mail notification templates</description>
<value xml:space="preserve">NT</value>
</definition>
</definitions>
</configuration-values>
</global-config-values>
- <driver-filter-xml>
- <filter>
- <filter-class class-name="User" publisher="sync"
publisher-create-homedir="true" publisher-track-template-member="false"
subscriber="sync">
<filter-attr attr-name="CN" merge-authority="default" publisher="sync"
subscriber="sync" />
<filter-attr attr-name="Description" merge-authority="default"
publisher="sync" subscriber="sync" />
<filter-attr attr-name="Full Name" merge-authority="default"
publisher="sync" subscriber="sync" />
<filter-attr attr-name="Surname" merge-authority="default"
publisher="sync" subscriber="sync" />
<filter-attr attr-name="Login Expiration Time" merge-authority="default"
publisher="ignore" subscriber="sync" />
<filter-attr attr-name="Login Allowed Time Map" merge-authority="default"
publisher="ignore" subscriber="sync" />
<filter-attr attr-name="Login Disabled" merge-authority="default"
publisher="sync" subscriber="sync" />
<filter-attr attr-name="DirXML-NTAccountName" merge-authority="default"
publisher="sync" subscriber="ignore" />
<filter-attr attr-name="Password Allow Change" merge-authority="default"
publisher="ignore" subscriber="sync" />
<filter-attr attr-name="Password Required" merge-authority="default"
publisher="ignore" subscriber="sync" />
<filter-attr attr-name="nspmDistributionPassword" merge-authority="none"
publisher="sync" publisher-optimize-modify="false" subscriber="sync" />
<filter-attr attr-name="Password Expiration Time"
merge-authority="default" publisher="sync" publisher-optimize-modify="true"
subscriber="ignore" />
<filter-attr attr-name="mobile" merge-authority="default"
publisher="sync" publisher-optimize-modify="true" subscriber="sync" />
<filter-attr attr-name="Telephone Number" merge-authority="default"
publisher="sync" publisher-optimize-modify="true" subscriber="sync" />
<filter-attr attr-name="Title" merge-authority="default" publisher="sync"
publisher-optimize-modify="true" subscriber="sync" />
</filter-class>
</filter>
</driver-filter-xml>
- <driver-image>
- <![CDATA[
R0lGODlhYgBPANU/AHFuZE9PTv///5STifjZpeS7kAAAAOXl5c/Kth0dHdjZzfbpyLm1pMXKwdjY2Pjz23xoSa6nk7e6tJKNe/fGmz8/Pffhtq6TbrvDuCwrKfjVjqapofLu1Km2rfT09FhMOvbCju3o0Yx8YrqgcOnLmufizD43J6m+ts+xg+TexdzIm/jXlw4ODZyemWpcRpyZiWFhXS4oHujLh5yEXvT17DQuI66trfn5+e3ToXt5b9bVwYWGhc7Nzb+/vu3t6v///yH5BAEAAD8ALAAAAABiAE8AAAb/wJ9wSCwaj8ikcpk89HawQCZTCeQ2Dg9zy+16t45cxmBIUCuZBMvAgkm+8Ljc6MslDBnAhnfw3A4OEjsVZAE8c4iJSzwmZQMHApGSkz49hCwtipqbPHcwPpOhoTcDa5mbqHEOGSwDoq+hDXc2qbVcAgEGO6GVLTs5OTsbDaCTPSwsh7bLSAMGATfGA8A7OwMD1S0NoS3PN8zgQx4JCTySHjYA1i0bNu42Gy0DEh6SN4Rv4eA7BjCTNsFa2JDQg4dBHj0k2GjRw5g3JA2gBKhAsaLFixgzaty4MQCLDA4k9QgooYEDBwdSAnLQQEILc5E8VGDhwIgDGHfKkNvJs6fP/59AgwpNUGFbJB/YWkjggdKHh6cefADiIYGeJGcbiti4k+GRU6hgw4odS7asWaiTIirl4zSavagHqIaMdAwAEQnIdriFxbev379+NwywYdLH3lE+WMIU4CBGhSEO1EgATLmy5VcDlKKsx9cDIKMCfKARcgOArr8OFKhezbq169ewY6uGNElYDweG+95IDPpeBi0HPhaDpSACDAAAgClfvhy58+fOmUvPAR05jBycIw3mk71z3HNofPywcZovA+rBJlxbz579BPXt48uff23CjrmR2nH/6xm/DxMZHPBDDixMBgsDyU3wQgQRMODggxA+yGCEFFZooYQt4CeAQvv55f8ZbYwlYIKAOGk4iQLADNAgBgi06OKLL1YF44w01vgiAw1J4oANHfbl2XDkBSBeAAmAGEoEOajIAAI6pFDCk1BG+aQOLUpp5ZVYPpkClT1k5wFBuB0mym4H7MXPDkMW+QoN7zWIQAohcCDnnHTOmYJqdeap555zlqCDSZMEspmPBwznAys2fEOkkZL4IMIAS8LJwQOUVlqpnAs8sIBqlnbq6aefcpACAg0cxkNhYtrjw3ACBNmAEIu+4mgLDOhQwqSgarrArhZwmuuvuXLgZ0GT3OAAW34UG1VuMbGyg4A/xCqKDxNE8GYIwFqgrbYKlADst5+GMCqxk6xUKFirdif/AAzP9DCEtLxU+yaulu66gLYEEIADARY8Ce6/l/qJwQAmkqlSumLyE8MG0Ear5rQTREqvrrxqiwMF+/aLLcD/ciAuAtiAVtkOyAzw6rsPxytxpfbeuy0FGGsbJ8cAe5yCPDvYwChfPLCbwA49fIPyzqFFPC/L9m5rAcz8WjAzzR2XsNB6ErAqygEAcMWQeETAS4nRKUzastIWN72AnFCDOykHCk1dzQA9iCyABwCs0YYNXRrhdaPVqkCCBisELrgGhBOerwW7op02sBtjgIEEDAimHACH5VBGABssJXQRex81wQc1mKCCBfnme4EJJqDgggn88qr44p++UAWlDUR0/51g1eTAwSQwYLIU10d0XnQMd4hQ+goEEG/ACKtr6/rEsFf6ggEAZJDDAzoA0ALIFbzg/QC7S4KTDfUoITy1MdRQQwLHF2AABMuvoAHiz0fvqeUPUPSAMAEAUIEEmItH+CKBk3yYL2VfS58IDICC0kEgASNYngtcgLgUwMAEAEiB7BBwnAeUIAdVYID0KgADBIywe5SqwB1mwgKK6AAGLSgKDBhggwgMcF0JMGASzjeB9LnvA4VLgAsiOALUWSAFQozAFCyXhxeUIAMBYMALWPCCBxDIOCzwFgwywKAMwOABDGAXA6YQxhfGsAEzjNwNC8gEHqaPBB9gAeFQYIACEP/RiCJgwb0YQEIDiPABEzCAtx5Qt/xVAHs5oJIBIkCpCBjAhPjTX2YAoIAKbCCKauRdDtuIQL698QIGuIAGPhADDdzRBBb4gAnuFSf8UWoilWLAIy3XPR0A0gCWMsAErIhL/aFIeznAnIM2sMZNLsGNNSABDhIARBbMwJTLQ90CpOm0ELjSkLH04wNe4BHqXfMBBrheJA+pgz+1oAMN6MAwi6lDJCCTBBRwgQFmYAAZQLOIqHRBBu6FgBywq1JZk54gW0Qpy1nOlthbJC+xWc5yNgAD6syk+Ix5QKKhL5k4cB8LgHhPIwaSARYg0DVl+Uf94cRbgUQAC65nxSwuVH//Df2TBDqwAcGwk5MW7WEyKbCCGISScKdEXO9M0IpvTlGFFfAWAshBiF0udQoJMOFCabkDhz6OpvK46TE76TkRXKAAOFgBCkZQOBmMQAYoQMG2VBCBbungj5UqwZI6hQC4UspBlnorpeoqgT89tANYBZ8m2xk8rhZtBCiAp/wKx9jAkS0Eg7Rfrvx6VZradLA4ldUEEKvMxTKWcI5Vmr8km6uHOm6mgdVqRTX7ARdA4AIU0AAKIEDb2tIWOaOLTg4iEFnS6sCfGzgtYGsq2IkSVm+GpRYZ2GDPCC73uWSIgAWgS4ZdkhaMZBiAcLHaAtXuMLmBXO4znTuC8pLhAwwi/8F0nyHFnNg1enIdQAceh9qadhezW83pecsATQMUjgwQ2BYByAAASpVgDQHwIJImIFVgtGi3HnwPQnUgYUTCQDAwgGGGr+Fdd4KXDDNYg3n9SzgAC5jAlWJXBlT63C+SgQqFWAMbdDA9ZPhRlgYYALt0woYddLiw+g3lBwzwAef+932lowCKC0qGOyQYAWSYHvUISYYWkYE63TNNFLO745oW4sfIDfIF6DhPMhwZAvmC2ZIfsOPoUmoMuQgnL3EJTjkjYAKEqACOdUwGwH4Zv6uFGBkugINGNILEGgDwxdSMZAvgYA05eQHixjBk6lnANAbQFhlc4FPUGcAEjszxjv/9/Awwc+7DocQBPZd7ZpiBAATnHcEEchKBO3zAAjgOLwAuTYZ8keHQIxiyCZz7glF34M/GzaygU70CGSMawBR4NaypazwUOJvI64UADuBnAEa7QMZ3GDYZRmBsZBOQot/NaWtRENYL1LZwtB1BtF9tWwjMAKwWuwAARKBWC8QbBO6GAL1fWwB7o+ACiKXtwTNclQzrDtDpfsUBNpvYsDIWBBqQtsY3/mqYkeDjIAc5x0dOcmk/znE0NXXXwMtZnpb81QWIucxVUAAV2PzmOM/5O2zQgar4/OdA97njHkdMiHs4py2fd8llznQVUODjOIi61B0ddUejtudDz7rWtV7/O6KrfGiaRWwBMAazsptd6Rz3OAlKR7ZtSeAEb8dA7eZO97rX3etGB7Jmxzz2s/sd7dKGWdTZ3nZtvb0qcre74u8ugaInO797R0Hf/172jqcdYxkrvOGFvvjOz73xX4dVcl/Ad8pXHgSAR73gD7cte2nqASeIvQQwENPa2z6mPMCADULvMKLRIAIIj7npT69xs1fdeZnqVFVi3wDZxEYHGGAA74lktUjcAAHW0sHGrvup2DPf+bCR6fQNKwC51upW3O++95sPftdAXweHYeMScLKYUNAgBZGKE/S47/0TbP3/W3cC6HRDAqBC7rIEdmAgryAqLWIrJRACEBiBEjiB9RRYgRIIWBiYgRrYAf0XexiIAAQoAOSgDEpAHrvAF5qyJU2SAizYgi74gjAYgy4YdDQ4e7OndbYSgnhRATWxBAdADtVXLHwyhERYhEZIJzTwCuwCAMCTBAJgOSd4GVI4hVS4ISyQQ5ujBKtgADZQhV74hTwzBjnQg1sgAXeQA0QDhmpYGR6wAZ6wDV7QA2OQATuwFCpxh3iYh3q4h3zYh36YEg7QAzHEBjCQN19wACTTZEOxiIzYiI5IDmRQATvQAFogBw6wAcHEEZq4iZzYiRjRP/NQJpvwBydRiqZ4iqiYiqq4iqzYioUiAPoQi7I4i7SYCkEAADsNCg==
]]>
</driver-image>
<input-transform dn="Password(Pub)-Sub Email
Notifications.EPI-USE_domain.EPI-USE_Driver_Set.services" />
<java-module value="com.novell.nds.dirxml.remote.driver.DriverShimImpl" />
<mapping-rule
dn="MappingPolicy.EPI-USE_domain.EPI-USE_Driver_Set.services" />
<output-transform dn="Password(Sub)-Pub Email
Notifications.EPI-USE_domain.EPI-USE_Driver_Set.services" />
<driver-start-option value="1" />
<driver-cache-limit value="0" />
<shim-auth-id value="admin" />
<shim-auth-server value="REMOTE(hostname=lara.epiuse.co.za port=8090
kmo=remotecert)EPI-USE" />
- <shim-config-info-xml>
- <driver-config name="NT Domains">
- <driver-options>
<serverName display-name="Server Name of NT Domain">\\LARA</serverName>
</driver-options>
- <publisher-options>
<pollRate display-name="Poll Interval (milliseconds)">30000</pollRate>
<pub-password-expire-time display-name="Password Sync Timeout
(minutes):">60</pub-password-expire-time>
</publisher-options>
<subscriber-options />
</driver-config>
</shim-config-info-xml>
<driver-password-query />
<shim-auth-password-query />
</attributes>
- <children>
- <publisher name="Publisher">
- <attributes>
<command-transformation-rule dn="Password(Pub)-Default Password
Policy.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services" />
<create-rule dn="Pub Create
Policies.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services" />
<matching-rule dn="Pub Matching
Policies.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services" />
<placement-rule dn="Pub Placement
Policies.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services" />
</attributes>
- <children>
- <rule name="Fix Nt Randomly stops">
<policy />
</rule>
- <rule name="Password Expiration Time">
- <policy>
- <rule>
<description>Capture password operation and set directly in the
destination tree</description>
- <conditions>
- <and>
<if-operation op="equal">modify</if-operation>
<if-attr name="nspmDistributionPassword" op="available" />
</and>
</conditions>
- <actions>
- <do-set-local-variable name="password-value">
- <arg-string>
<token-src-attr class-name="User" name="nspmDistributionPassword" />
</arg-string>
</do-set-local-variable>
- <do-set-dest-attr-value class-name="User" direct="true"
name="nspmDistributionPassword">
- <arg-value type="string">
<token-local-variable name="password-value" />
</arg-value>
</do-set-dest-attr-value>
</actions>
</rule>
</policy>
</rule>
- <rule name="Password(Pub)-Add Password Payload" next-transform="Password
Expiration Time.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services">
- <policy>
<description>Publish password payloads</description>
- <rule>
<description>Add operation-data element to password operations</description>
- <conditions>
- <and>
<if-operation op="equal">add</if-operation>
<if-password op="available" />
<if-xpath op="not-true">operation-data</if-xpath>
</and>
- <and>
<if-operation op="equal">add</if-operation>
<if-xpath
op="true">add-attr[@attr-name='nspmDistributionPassword']</if-xpath>
<if-xpath op="not-true">operation-data</if-xpath>
</and>
- <and>
<if-operation op="equal">modify-password</if-operation>
<if-xpath op="not-true">operation-data</if-xpath>
</and>
- <and>
<if-operation op="equal">modify</if-operation>
<if-xpath
op="true">modify-attr[@attr-name='nspmDistributionPassword']</if-xpath>
<if-xpath op="not-true">operation-data</if-xpath>
</and>
</conditions>
- <actions>
- 
<do-append-xml-element expression="." name="operation-data" />
</actions>
</rule>
- <rule>
<description>Add payload data to password operations</description>
- <conditions>
- <and>
<if-operation op="equal">add</if-operation>
<if-password op="available" />
</and>
- <and>
<if-operation op="equal">add</if-operation>
<if-xpath
op="true">add-attr[@attr-name='nspmDistributionPassword']</if-xpath>
</and>
- <and>
<if-operation op="equal">modify-password</if-operation>
</and>
- <and>
<if-operation op="equal">modify</if-operation>
<if-xpath
op="true">modify-attr[@attr-name='nspmDistributionPassword']</if-xpath>
</and>
</conditions>
- <actions>
- 
<do-append-xml-element expression="operation-data"
name="password-publish-status" />
<do-append-xml-element
expression="operation-data/password-publish-status" name="association" />
- <do-append-xml-text
expression="operation-data/password-publish-status/association">
- <arg-string>
<token-association />
</arg-string>
</do-append-xml-text>
</actions>
</rule>
</policy>
</rule>
- <rule name="Password(Pub)-Check Password GCV"
next-transform="Password(Pub)-Publish Distribution
Password.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services">
- <policy>
<description>Publish Passwords</description>
- <rule>
<description>Block publishing passwords to DirXML data store when adding
a object</description>
- <conditions>
- <and>
<if-global-variable mode="nocase" name="enable-password-publish"
op="equal">false</if-global-variable>
<if-operation op="equal">add</if-operation>
</and>
</conditions>
- <actions>
- 
<do-strip-xpath expression="password" />
</actions>
</rule>
- <rule>
<description>Block sending modify-password changes to the DirXML data
store</description>
- <conditions>
- <and>
<if-global-variable mode="nocase" name="enable-password-publish"
op="equal">false</if-global-variable>
<if-operation op="equal">modify-password</if-operation>
</and>
</conditions>
- <actions>
- 
<do-veto />
</actions>
</rule>
</policy>
</rule>
- <rule name="Password(Pub)-Default Password Policy"
next-transform="Password(Pub)-Check Password
GCV.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services">
- <policy>
- <rule>
<description>On User add, provide default password of Surname if no
password exists</description>
- <conditions>
- <and>
<if-operation op="equal">add</if-operation>
<if-class-name op="equal">User</if-class-name>
<if-password op="not-available" />
</and>
</conditions>
- <actions>
- <do-set-dest-password>
- <arg-string>
<token-op-attr name="Surname" />
</arg-string>
</do-set-dest-password>
</actions>
</rule>
</policy>
</rule>
- <rule name="Password(Pub)-Publish Distribution Password"
next-transform="Password(Pub)-Publish NDS
Password.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services">
- <policy>
<description>Publish passwords to NMAS distribution password</description>
- <rule>
<description>Add nspmDistributionAttribute attribute to add
operation</description>
- <conditions>
- <and>
<if-global-variable mode="nocase" name="publish-password-to-dp"
op="equal">true</if-global-variable>
<if-operation op="equal">add</if-operation>
<if-password op="available" />
</and>
</conditions>
- <actions>
- 
- <do-add-dest-attr-value name="nspmDistributionPassword">
- <arg-value>
<token-password />
</arg-value>
</do-add-dest-attr-value>
- 
- <do-set-xml-attr expression="add-attr[@attr-name =
'nspmDistributionPassword'][last()]" name="enforce-password-policy">
- <arg-string>
<token-global-variable name="enforce-password-policy" />
</arg-string>
</do-set-xml-attr>
</actions>
</rule>
- <rule>
<description>Change modify-password operations to a modify</description>
- <conditions>
- <and>
<if-global-variable mode="nocase" name="publish-password-to-dp"
op="equal">true</if-global-variable>
<if-operation op="equal">modify-password</if-operation>
</and>
</conditions>
- <actions>
- 
- <do-add-dest-attr-value name="nspmDistributionPassword">
- <arg-value>
<token-password />
</arg-value>
</do-add-dest-attr-value>
- 
- <do-set-xml-attr expression="../modify" name="event-id">
- <arg-string>
<token-text>pwd-publish</token-text>
</arg-string>
</do-set-xml-attr>
- 
- <do-set-xml-attr
expression="../modify/modify-attr[@attr-name='nspmDistributionPassword']"
name="enforce-password-policy">
- <arg-string>
<token-global-variable name="enforce-password-policy" />
</arg-string>
</do-set-xml-attr>
</actions>
</rule>
</policy>
</rule>
- <rule name="Password(Pub)-Publish NDS Password"
next-transform="Password(Pub)-Add Password
Payload.Publisher.EPI-USE_domain.EPI-USE_Driver_Set.services">
- <policy>
<description>Publish passwords to NDS password.</description>
- <rule>
<description>Block publishing passwords to NDS password</description>
- <conditions>
- <and>
<if-global-variable mode="nocase" name="publish-password-to-nds"
op="equal">false</if-global-variable>
<if-operation op="equal">add</if-operation>
</and>
</conditions>
- <actions>
- 
<do-strip-xpath expression="password" />
</actions>
</rule>
- <rule>
<description>Block sending modify-password changes to the NDS
password</description>

Thanx in advance for any help.

Liezel

Father Ramon

unread,

Feb 24, 2005, 10:15:42 AM2/24/05

The message from your remote loader log sounds like a bug of some sort
in the NT driver, possibly some data that it doesn't know how to handle.
A level 3 trace showing what happened just prior to shutting down might
be useful.

The message from the driver log looks like something from after one of
the things that you tried that caused the driver to not start because it
certainly would not have started at all when you get that message.

It is possible that on of the TID's you tried really is the fix for the
problem you are having, but it looks like you are probably not applying
them correctly.

The template proposed by
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10091494.htm is
just a fragment that you would put into a stylesheet and can't stand on
it's own without the rest of the stylesheet.

http://support.novell.com/cgi-bin/search/searchtid.cgi?/10092460.htm
appears to be an attempt to spell out the pieces that were missing from
the other TID, but the complete stylesheet it proposes is in fact not
complete. It is missing the last line, which should be:

</xsl:stylesheet>

Father Ramon
The Patron(izing) Saint of DirXML

l...@epiuse.com

unread,

Feb 25, 2005, 7:23:58 AM2/25/05

Hi,

Thanx for the reply :) For those that are wondering what the end tag is
(because it is interpreted by browsers) it is:
< /xsl:stylesheet >

I added the stylesheet mentioned in the second TID, with your end tag and
now the driver accepts the stylesheet. However, the driver still stops
after a while.

I've now seen that the driver stops each time after a certain user, thus
not randomly. Log output follows:

DirXML: [02/25/05 13:03:04.31]: ##Nt4 Subscriber----- : U-- \EPI-USE\USERS
DirXML: [02/25/05 13:03:04.31]: ##Nt4 Subscriber----- : Get Attribute =
UserGlobalGroups
DirXML: [02/25/05 13:03:04.31]: ##Nt4 Subscriber----- : U--
\EPI-USE\DOMAIN USERS
DirXML: [02/25/05 13:03:04.31]: ##Nt4 Subscriber----- : User = jakotze
DirXML: [02/25/05 13:03:04.31]: ##Nt4 Subscriber----- : CNtUser::GetUserInfo
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute = Name
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
Name,jakotze
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
PasswordAge
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
PasswordAge,3991319
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
Nt4AccountName
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
Nt4AccountName,EPI-USE\jakotze
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
PriviledgeLevel
DirXML: [02/25/05 13:03:04.34]: ##Nt4 Subscriber----- : Get Attribute =
PriviledgeLevel,1
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
HomeDirectory
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
HomeDirectory,
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute = Comment
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
Comment,OPS
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
LogonDisable
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
LogonDisable,false
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
PasswordRequired
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
PasswordRequired,true
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute = Flags
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
Flags,513
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
ScriptPath
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
ScriptPath,logonscr.bat
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
AuthorizationFlags
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
AuthorizationFlags,0
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
FullName
DirXML: [02/25/05 13:03:04.35]: ##Nt4 Subscriber----- : Get Attribute =
FullName,Jana Kotze
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
UserComment
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
UserComment,
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
AppParams
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
AppParams,
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
Workstations
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
Workstations,
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
LastLogon
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
LastLogon,1109224444
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
LastLogoff
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
LastLogoff,0
DirXML: [02/25/05 13:03:04.37]: ##Nt4 Subscriber----- : Get Attribute =
AcctExpires
DirXML: [02/25/05 13:03:04.39]: ##Nt4 Subscriber----- : Get Attribute =
AcctExpires,
DirXML: [02/25/05 13:03:04.39]: ##Nt4 Subscriber----- : Get Attribute =
MaxStorage
DirXML: [02/25/05 13:03:04.39]: ##Nt4 Subscriber----- : Get Attribute =
MaxStorage,-1
DirXML: [02/25/05 13:03:04.39]: ##Nt4 Subscriber----- : Get Attribute =
UnitsPerWeek
DirXML: [02/25/05 13:03:04.39]: ##Nt4 Subscriber----- : Get Attribute =
UnitsPerWeek,168
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
LogonHours
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
LogonHours,////////////////////////////////////////////////////////
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
BadPasswordCnt
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
BadPasswordCnt,0
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
LogonServer
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
LogonServer,\\*
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
NumLogons
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
NumLogons,158
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
CountryCode
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
CountryCode,0
DirXML: [02/25/05 13:03:04.43]: ##Nt4 Subscriber----- : Get Attribute =
CodePage
DirXML: [02/25/05 13:03:04.45]: ##Nt4 Subscriber----- : Get Attribute =
CodePage,0
DirXML: [02/25/05 13:03:04.45]: ##Nt4 Subscriber----- : Get Attribute = UserID
DirXML: [02/25/05 13:03:04.45]: ##Nt4 Subscriber----- : Get Attribute =
UserID,3303
DirXML: [02/25/05 13:03:04.45]: ##Nt4 Subscriber----- : Get Attribute =
PrimaryGroupID
DirXML: [02/25/05 13:03:04.45]: ##Nt4 Subscriber----- : Get Attribute =
PrimaryGroupID,513
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute = Profile
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
Profile,
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
HomeDirDrive
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
HomeDirDrive,
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
PasswordExpired
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
PasswordExpired,0
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
UserLocalGroups
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : U-- \EPI-USE\USERS
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : Get Attribute =
UserGlobalGroups
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : U--
\EPI-USE\DOMAIN USERS
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : User = janjvr
DirXML: [02/25/05 13:03:04.46]: ##Nt4 Subscriber----- : CNtUser::GetUserInfo
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute = Name
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
Name,janjvr
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
PasswordAge
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
PasswordAge,1110306
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
Nt4AccountName
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
Nt4AccountName,EPI-USE\janjvr
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
PriviledgeLevel
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
PriviledgeLevel,2
DirXML: [02/25/05 13:03:04.50]: ##Nt4 Subscriber----- : Get Attribute =
HomeDirectory
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
HomeDirectory,
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute = Comment
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
Comment,iTech
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
LogonDisable
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
LogonDisable,false
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
PasswordRequired
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
PasswordRequired,true
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute = Flags
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
Flags,513
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
ScriptPath
DirXML: [02/25/05 13:03:04.51]: ##Nt4 Subscriber----- : Get Attribute =
ScriptPath,
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
AuthorizationFlags
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
AuthorizationFlags,13
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
FullName
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
FullName,Jan van Rensburg
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
UserComment
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
UserComment,
DirXML: [02/25/05 13:03:04.53]: ##Nt4 Subscriber----- : Get Attribute =
AppParams
DirXML: [02/25/05 13:03:04.54]: ##Nt4 Subscriber----- : Get Attribute =
AppParams,m: d P CtxCfgPresent
DirXML: [02/25/05 13:03:04.62]: ##Nt4 Subscriber----- : Unexpected exception.
DirXML: [02/25/05 13:03:04.62]: ##Nt4 Subscriber----- : Subscriber:
execute() returned =============>
DirXML: [02/25/05 13:03:04.62]: Loader: subscriptionShim->execute() returned:
DirXML: [02/25/05 13:03:04.62]: Loader: XML Document:
DirXML: [02/25/05 13:03:04.62]: <nds ndsversion="8.x" dtdversion="2.0"
NTdriver="1.4.1">
<output>
<status level="fatal" type="driver-general">
<description>The Subscriber has had an unexpected exception. Shutting
down.</description>
</status>
</output>
</nds>
DirXML: [02/25/05 13:03:04.62]:
DirXML Log Event -------------------
Driver = \EPI-USE\services\EPI-USE_Driver_Set\EPI-USE_domain
Thread = Subscriber Channel
Level = fatal
Message = <description>The Subscriber has had an unexpected exception.
Shutting down.</description>
DirXML: [02/25/05 13:03:04.64]: Loader: Received 'driver stop' document
DirXML: [02/25/05 13:03:04.64]: Loader: XML Document:
DirXML: [02/25/05 13:03:04.64]: <nds dtdversion="2.0" ndsversion="8.x">
<input/>
</nds>
DirXML: [02/25/05 13:03:04.65]:
DirXML Log Event -------------------
Driver = \EPI-USE\services\EPI-USE_Driver_Set\EPI-USE_domain
Thread = Subscriber Channel
Level = error
Message = Fatal error returned from shim
DirXML: [02/25/05 13:03:04.65]: Loader: Calling driverShim->shutdown()
because of error
DirXML: [02/25/05 13:03:04.67]: ##Nt4 Driver----- : Shutting down driver
=============>
DirXML: [02/25/05 13:03:04.67]: ##Nt4 Publisher----- : Stopping Publisher
=============>
DirXML: [02/25/05 13:03:04.67]: ##Nt4 Publisher----- : Publisher wait for
StopFlg
DirXML: [02/25/05 13:03:04.67]: ##Nt4 Publisher----- : #######Shutdown
Event Occured.
DirXML: [02/25/05 13:03:04.67]: Loader: Received document from publicationShim
DirXML: [02/25/05 13:03:04.67]: Loader: XML Document:
DirXML: [02/25/05 13:03:04.67]: <nds ndsversion="8.x" dtdversion="2.0"
NTdriver="1.4.1">
<input>
<init-params event-id="DriverState">
<publisher-state>
<driver-state>29694761,1774182494,Good</driver-state>
</publisher-state>
</init-params>
</input>
</nds>
DirXML: [02/25/05 13:03:04.67]: Loader: Writing driver state to file
DirXML: [02/25/05 13:03:04.67]: Loader: Document consists only of state;
not sending to remote side
DirXML: [02/25/05 13:03:04.67]: Loader: Returning to publisher:
DirXML: [02/25/05 13:03:04.68]: Loader: XML Document:
DirXML: [02/25/05 13:03:04.68]: <nds ndsversion="8.6" dtdversion="1.0">
<output>
<status level="success"/>
</output>
</nds>
DirXML: [02/25/05 13:03:04.68]: ##Nt4 Publisher----- : Now Shutting down
PassSync.
DirXML: [02/25/05 13:03:04.68]:
DirXML Log Event -------------------
Driver = \EPI-USE\services\EPI-USE_Driver_Set\EPI-USE_domain
Thread = Connection Receiver
Level = warning
Message = SSL protocol-violating EOF found or I/O error:
DirXML: [02/25/05 13:03:04.70]: ##Nt4 Publisher----- : PassSync shut down.
DirXML: [02/25/05 13:03:04.70]: ##Nt4 Publisher----- : Now Shutting down
Publisher Export.
DirXML: [02/25/05 13:03:04.70]: ##Nt4 Publisher----- : Publisher execute
set StopFlg
DirXML: [02/25/05 13:03:04.70]: Loader: publicationShim->start() returned:
DirXML: [02/25/05 13:03:04.70]: Loader: XML Document:
DirXML: [02/25/05 13:03:04.70]: <nds ndsversion="8.x" dtdversion="2.0"
NTdriver="1.4.1">
<output>
<status level="success"/>
</output>
</nds>
DirXML: [02/25/05 13:03:05.67]: ##Nt4 Publisher----- : Publisher got StopFlg
DirXML: [02/25/05 13:03:05.67]: ##Nt4 Driver----- : Publisher shutdown
=============>
DirXML: [02/25/05 13:03:05.78]: Loader: Stopping driver
DirXML: [02/25/05 13:03:06.18]: Loader: Waiting for DirXML to connect on
'TCP server socket, port 8090, address localhost, using SSL'...

What would be the AppParams paramater? That's the only thing I can see
that could be weird? Or do you think it is something else?

Thanx again for your help

Liezel

Father Ramon

unread,

Feb 25, 2005, 9:35:36 AM2/25/05

I don't know enough about the NT driver or NT domain accounts to know
what that might be but it looks like it does look like it is choking on
AppParams. It would appear that you have run into a bug that you should
report to Novell Technical Support.

l...@epiuse.com

unread,

Mar 2, 2005, 9:05:19 AM3/2/05

Hi,

I *think* the problem was that I manually added attributes to the filter.
Those attributes being stuff like telephone number and mobile number.
Obviously with NT there aren't attributes like those - you need the
Exchange driver to sync that kind of information.

Thus I'm now trying to understand how the NT driver works together with the
Exchange driver. I'll play around a bit.

Thanx again for all your help.
Liezel

0 new messages