> I try to log into UserApp with some eDir accounts and get Invalid user
> ID or password. I know that users and passwords are ok. Some other
> accounts works.
All the UserApp does is an LDAP bind, so I don't think the UA itself is
relevant here. How do you know that the user/password is ok, though? That
could be a useful clue.
> I try to check credential using an ldap browser and the connection was
> refused too.
If you turn on an LDAP trace, what error do you get on the attempt to
bind?
> Then I try to log into iManager with these accounts and get the
> following message :
>
> (Error -254) An attempt was made to use a locked directory
Interesting. Not many useful hits in the knowledgebase for -254. It
sounds like this can mean "login disabled" on the server, or a timeout of
some sort.
> Users are dispatched in different branches, ordered by countries. All
> accounts from the FR branch I've used to test fail to login. With
> iManager, I create a new acount in this branch with very few attributes
> : SN, GN, password and mail.
> This account is able to log in...
Interesting. So how long have the broken accounts existed? If newly
created ones work, and old ones don't, that could also be a useful clue.
> I've compared the user which works with few others and I can't see any
> difference.
I'm leaning toward an NMAS problem at this point. It might also be useful
to see what NMAS says (ndstrace +NMAS) during their attempts to log in.
--
---------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Novell Knowledge Partner http://forums.novell.com
Please post questions in the newsgroups. No support provided via email.