LDAP to the Rescue.....

We've been running LDAP for Groupwise authentication, our ERP solution , and our VPN for sometime now. Our LDAP is generated out of eDir and contains all the user info you could ask for.We have a vendor who supports our helpdesk and ticketing app. This app is part of a LARGER vendors IT solutions database. Management decided they wanted it to authenticate via said LDAP.  

Hilarity ensues........

For two months the vendors asks for various server certs, different configs, and tries to blame eDir for their lack of authentication. The major vendor claims "we have no experience with doing this on eDir." Management finally has enough and gets our team involved. We install the eDir CA cert into their server and viola everything works. They were working with an assumption of AD all the time as well, trying to search o=domain,o=com instead of T=TREE. 

I know eDir is not exactly the #1 directory service, buy you would think that there would be more of a commonality with LDAP....

apparently not....

I've petitioned for IDM training, so I can start building more connectors than the one that Novell built in June (edir to AD via the IDVAULT) .  All I need now is the time to accomplish said training.

And the beat goes on......

Cluster Phase 1, Part 3 went off fairly pain free. Gearing up for moving the final box onto the NWCS stack. Still have about 600gb of SAN space left after that, but I don't want to migrate anything else in until I have more hardware than 2 blades. 

On the windows side of things (yeah I finally caught a project in the unused part of my skill set) we finished revamping some recycled hardware into a new backup solution. A HBA attached MSA1000 that had a troubled past is the heart of the system, we upgraded the firmware to current and active/active settings. We'll see how it performs tonight. It's going to be a monster running Backup Exec 12.d with 13.2TB of diskspace running on the the aforementioned MSA 1000. We' ve been geting about 2GB/s of throughput out of it, now we should be getting close to 4GB/s. We need to figure out how to attach a MS6030 library via Fiber next. After that we'll be adding a MSL2024 and another MS6030 (all SCSI) to the mix of tape drives. It'll be 4 LTO2 ad one LTO3 drive. We've dubbed this 8u Server, 13U's of disk and 14U of tape drives "Frankenstein".......

A major portion of my time is spent fixing the damage a group of consultants and employees did the to the Novell environment. It wasn't intentional I'm sure, but the end result was a hodgepodge of assort methodologies that isn't working. We've been having problems with iPrint/NDPS lately. That needs to be dug into more, and I need more data from the techs than "it doesn't print". Zen needs an overhaul, the app server is overbooked and underpowered. Not a good combination with 4000 users a day mapping drives and running Zen Imaging , WS import and removeal AND being a slpda server is a bit much.