How do you do....it? Thread, OpenFire Help in Technical; Hey again,
Just set openfire up - it's authenticating spot on with LDAP. Thing is we have some staff in ...
17th April 2008, 02:11 PM #1
Just set openfire up - it's authenticating spot on with LDAP. Thing is we have some staff in one area and some staff in another. We don't want to merge these so is there anyways of telling openfire to look in two places for authenticating logons?
I've tried the simple method of separating the two DSN's with a ; but it seems openfire will only allow so many characters for this, so the last DSN was cut short.
IDG Tech News
17th April 2008, 02:13 PM #2
Are the two OU's under a parent OU? If so, you can just tell it to look at the parent OU and it'll search the child OU's as well (That's what we do here).
17th April 2008, 02:23 PM #3
It's like this:
Teacher OU 1 = OU=Teaching Staff,OU=Users,.....
Teacher OU 2 = OU=Non-teaching Staff,OU=Users,....
But also in the user OU we have pupil accounts
If we set the OU to the parent of 'Users' we can give everyone access, but by that we are also giving kids access. I know we could lock that down in other ways but I want this to be as simple as possible.
17th April 2008, 02:48 PM #4
Simple way is to use the Users OU. Just don't tell the kids. Anyway, even if they did get on and started messaging people they have to login with their account details. Which is kinda incriminating, don't you think?
17th April 2008, 02:49 PM #5
Why not try adding another OU under users, say Staff, then place the staff OUs within that OU?
17th April 2008, 02:58 PM #6
I know the structure is not the best by far, but I don't want to change something over something so little and then watch as things start to go wrong.
I think I'll just give access to the 'users' OU and look into ways of blocking access to the actual Spark software for pupils.
17th April 2008, 03:05 PM #7
A file restriction policy should do that for you (you've got one setup already, right?).
17th April 2008, 03:12 PM #8
Originally Posted by Geoff
I think that looks like the safest bet
22nd April 2008, 11:44 AM #9
Hi all you fine openfire (and spark) gurus. I am a newbie to the openfire game so I may doing something schoolboy error(ish) here but i have installed openfire ok, problem with ldap (but thats a different story)...
I installed spark on a few pcs and work fine under mine and my colleagues account (domain admins) but when I try it under a member of staffs account it wont even open up spark?
I am assuming its a rights thing but Im struggling to pinpoint it. I have given full permission to the spark folder but still no joy. O and we are on windows 2003 enterprise and workstations are xp sp2.
Any help would be much appreciated..
Thanks guys (and dolls)
22nd April 2008, 11:47 AM #10
What error are you getting when you try to run Spark? It may be that there's a file restriction policy in place?
22nd April 2008, 11:49 AM #11
Sounds about right to me - Have you tried adding a hash rule rather than a path rule?
Originally Posted by richard.thomas
22nd April 2008, 12:03 PM #12
Hey, thanks for the quick responses... much appreciated.
There is no error message, it just doesnt work!
Erm, I will check the file restriction policy (GPO i assume) and im not sure on the hash rule
Thanks again, ill let you know how i get on!
22nd April 2008, 12:40 PM #13
I have had a quick look in GPO and there is no software restriction policy in place (it does sounds like it should be tho). I will have another look but I guess yet another annoying quirk I have down here!!!
23rd April 2008, 10:07 AM #14
Is this a vanilla or CC3 network (or other?)
23rd April 2008, 10:11 AM #15
Is there any entries in the event log?
I assume you have the latest version of java installed on the client?
By cookie_monster in forum Windows
Last Post: 11th December 2007, 03:54 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)