NETSTAT OPTION(*CNN)
F15=Subset
Local port range:
Lower value . . . . . . . . 389
8=Display jobs
Does it show there?
Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1
Group Dekko
Dept 1600
Mail to: 7310 Innovation Blvd, Suite 104
Ft. Wayne, IN 46818
Ship to: 7310 Innovation Blvd, Dock 9C
Ft. Wayne, IN 46818
http://www.dekko.com
From: DEnglander@xxxxxxxxxxxxxxx <DEnglander@xxxxxxxxxxxxxxx>
Sent: Thursday, February 4, 2021 9:56 AM
To: Rob Berendt <rob@xxxxxxxxx>
Cc: domino400@xxxxxxxxxxxxxxxxxx
Subject: Re: [TAKE CAUTION] RE: Email address verification
CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.
Still don't see it. The only things Listening are: Database server, HTTP server, and SMTP server.
Also did the F6 print. All that is LDAP is the Control Task.
From: "Rob Berendt" <rob@xxxxxxxxx<mailto:rob@xxxxxxxxx>>
To: "DEnglander@xxxxxxxxxxxxxxx<mailto:DEnglander@xxxxxxxxxxxxxxx>" <DEnglander@xxxxxxxxxxxxxxx<mailto:DEnglander@xxxxxxxxxxxxxxx>>, "domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>" <domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>>
Date: 02/04/2021 08:47 AM
Subject: [TAKE CAUTION] RE: Email address verification
________________________________
SHOW TASKS should show two lines. Look harder. If it's too hard to find you can do F6=Print and browse the spool file for LDAP.
LDAP Server Listen for connect requests on TCP Port:389
LDAP Server Utility task
Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1
Group Dekko
Dept 1600
Mail to: 7310 Innovation Blvd, Suite 104
Ft. Wayne, IN 46818
Ship to: 7310 Innovation Blvd, Dock 9C
Ft. Wayne, IN 46818
http://www.dekko.com<
http://www.dekko.com/>
From: DEnglander@xxxxxxxxxxxxxxx<mailto:DEnglander@xxxxxxxxxxxxxxx> <DEnglander@xxxxxxxxxxxxxxx<mailto:DEnglander@xxxxxxxxxxxxxxx>>
Sent: Thursday, February 4, 2021 9:39 AM
To: domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>
Cc: Rob Berendt <rob@xxxxxxxxx<mailto:rob@xxxxxxxxx>>
Subject: RE: Email address verification
CAUTION:This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.
Rob,
When I enter the WRKDOMSVR command and take a 9 next to the server name, I do see that LDAP job running in the Domino subsystem.
When I enter the 8 option and then SHOW TASKS, I do see LDAP SERVER, but it says CONTROL TASK, not Listen for....
If this means LDAP is being served, is there a way to verify email addresses?
Thank you again,
Doug
From: "Rob Berendt" <rob@xxxxxxxxx<mailto:rob@xxxxxxxxx>>
To: "Lotus Domino on the IBM i (AS/400 and iSeries)" <domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>>
Date: 02/04/2021 08:27 AM
Subject: RE: Email address verification
Sent by: "Domino400" <domino400-bounces@xxxxxxxxxxxxxxxxxx<mailto:domino400-bounces@xxxxxxxxxxxxxxxxxx>>
________________________________
Yes. The file in the IFS is names.nsf. However, that may be a bit hard for you to analyze. Your Domino server is not currently set up to export the names.nsf on a periodic basis so, since your Domino team is opposed to any change, I don't see that happening any time soon. Now, if you want to manually go into File, Export Contacts and mess around with that you can.
Funny thing is, your Domino server is probably already set up to serve ldap and they don't even know it. It's a default on your primary NAB server.
WRKDOMSVR
9=Work server jobs
LDAP QNOTES BCI .0 PGM-LDAP
8=Work console
SHOW TASKS
LDAP Server Listen for connect requests on TCP Port:389
Is it using ldap over SSL or not? If the above says Port:389 it is not using ssl. 636 is the port for SSL.
Or WRKJOB LDAP
NETSTAT OPTION(*CNN)
F15=Subset
Local port range:
Lower value . . . . . . . . 389
8=Display jobs
QSH
Ldapsearch -h notes01.corp.dekko.com -s base "cn=*guebard*"
ldap_simple_bind: Inappropriate authentication --- Failed, anonymous bind not allowed
$
Ldapsearch -h notes01.corp.dekko.com -s base -D "cn=Rob Berendt,O=DEKKO" -w PlacePasswordHere "cn=*guebard*"
The -D is used to say the next parameter is the user to bind to the DNS with. The -w is the password.
https://help.hcltechsw.com/domino/11.0.0/admin/conf_customizingtheldapserviceconfiguration_c.html
Here, we serve up ldap from Domino for use by our printer/scanners to send scanned documents to. And a bunch of other stuff. How does your printer scanners do their ldap search? Can you use ldapsearch on that? You may have to add parameters for a binding name and password. Any google search for ldapsearch will show you how to do that. I showed an example above. Windows Active Directory often has email addresses stored in that also. You could ldapsearch that. Then next year when you migrate to Azure for active directory you can rewrite it.
Boy am I looking forward to my day off on Monday...
Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1
Group Dekko
Dept 1600
Mail to: 7310 Innovation Blvd, Suite 104
Ft. Wayne, IN 46818
Ship to: 7310 Innovation Blvd, Dock 9C
Ft. Wayne, IN 46818
http://www.dekko.com<
http://www.dekko.com/>
-----Original Message-----
From: Domino400 <domino400-bounces@xxxxxxxxxxxxxxxxxx<mailto:domino400-bounces@xxxxxxxxxxxxxxxxxx>> On Behalf Of Doug via Domino400
Sent: Wednesday, February 3, 2021 9:09 AM
To: Lotus Domino on the IBM i(AS/400 and iSeries) <domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>>
Cc: DEnglander@xxxxxxxxxxxxxxx<mailto:DEnglander@xxxxxxxxxxxxxxx>
Subject: RE: Email address verification
CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.
Rob,
I have been told our Domino version is not set up to serve up ldap.
Do you know any other way? Is there a file on the IFS that holds the email
addresses configured in Domino.
Thank you,
Doug
From: "Rob Berendt" <rob@xxxxxxxxx<mailto:rob@xxxxxxxxx>>
To: "Lotus Domino on the IBM i (AS/400 and iSeries)"
<domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>>
Date: 02/03/2021 07:30 AM
Subject: RE: Email address verification
Sent by: "Domino400" <domino400-bounces@xxxxxxxxxxxxxxxxxx<mailto:domino400-bounces@xxxxxxxxxxxxxxxxxx>>
Do you know how to do a ldapsearch?
Do you know how to configure Domino to serve up ldap?
For example:
QSH
ldapsearch -h ldap01.corp.dekko.com -s one "mail=rob@xxxxxxxxx<mailto:mail=rob@xxxxxxxxx>"
returns:
ldapsearch -h ldap01.corp.dekko.com -s one "mail=rob@xxxxxxxxx<mailto:mail=rob@xxxxxxxxx>"
CN=Rob Berendt,O=DEKKO
cn=Rob Berendt
cn=rberendt
...
mail=rob@xxxxxxxxx<mailto:mail=rob@xxxxxxxxx>
...
You could try this:
QSH CMD('ldapsearch -h ldap01.corp.dekko.com -s one "mail=rob@xxxxxxxxx<mailto:mail=rob@xxxxxxxxx>" >
/home/ROB/ldapout.txt')
DSPF '/home/ROB/ldapout.txt'
Don't try the following in STRSQL, try it in iACS Run SQL Scripts instead.
SELECT * FROM TABLE(QSYS2.IFS_READ(
PATH_NAME => '/home/ROB/ldapout.txt'
))
where upper (line) like ('CN=%')
or line like('mail=%')
;
Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1
Group Dekko
Dept 1600
Mail to: 7310 Innovation Blvd, Suite 104
Ft. Wayne, IN 46818
Ship to: 7310 Innovation Blvd, Dock 9C
Ft. Wayne, IN 46818
http://www.dekko.com<
http://www.dekko.com/>
-----Original Message-----
From: Domino400 <domino400-bounces@xxxxxxxxxxxxxxxxxx<mailto:domino400-bounces@xxxxxxxxxxxxxxxxxx>> On Behalf Of Doug
via Domino400
Sent: Tuesday, February 2, 2021 9:16 AM
To: domino400@xxxxxxxxxxxxxxxxxx<mailto:domino400@xxxxxxxxxxxxxxxxxx>
Cc: DEnglander@xxxxxxxxxxxxxxx<mailto:DEnglander@xxxxxxxxxxxxxxx>
Subject: Email address verification
CAUTION: This email originated from outside of the organization. Do not
click links or open attachments unless you recognize the sender and know
the content is safe.
Does anyone know of a way to validate an email address for a Domino
server? I am looking for an API or other interface that an RPG program can
interact with to have the API say, Yes, that email is in the directory, or
No, that email does not exist.
Does that capability exist anywhere? We are on V7R3, pretty current on
PTFs and pretty current on our Domino installation.
Thank you,
Doug
"CONFIDENTIALITY NOTICE: This e-mail transmission (and/or the attachments
accompanying it) contain confidential information belonging to the sender.
The information is intended only for the use of the intended recipient.
If you are not the intended recipient, you are hereby notified that any
disclosure, copying, distribution or the taking of any action in reliance
on the contents of the information is strictly prohibited. Any
unauthorized interception of this transmission is illegal under the law.
If you have received this transmission in error, please promptly notify
the sender by reply e-mail, and then destroy all copies of the
transmission."
--
This is the Lotus Domino on the IBM i (AS/400 and iSeries) (Domino400)
mailing list
To post a message email: Domino400@xxxxxxxxxxxxxxxxxx<mailto:Domino400@xxxxxxxxxxxxxxxxxx>
To subscribe, unsubscribe, or change list options,
visit:
https://lists.midrange.com/mailman/listinfo/domino400
or email: Domino400-request@xxxxxxxxxxxxxxxxxx<mailto:Domino400-request@xxxxxxxxxxxxxxxxxx>
Before posting, please take a moment to review the archives
at
https://archive.midrange.com/domino400.
--
This is the Lotus Domino on the IBM i (AS/400 and iSeries) (Domino400)
mailing list
To post a message email: Domino400@xxxxxxxxxxxxxxxxxx<mailto:Domino400@xxxxxxxxxxxxxxxxxx>
To subscribe, unsubscribe, or change list options,
visit:
https://lists.midrange.com/mailman/listinfo/domino400
or email: Domino400-request@xxxxxxxxxxxxxxxxxx<mailto:Domino400-request@xxxxxxxxxxxxxxxxxx>
Before posting, please take a moment to review the archives
at
https://archive.midrange.com/domino400.
"CONFIDENTIALITY NOTICE: This e-mail transmission (and/or the attachments accompanying it) contain confidential information belonging to the sender. The information is intended only for the use of the intended recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution or the taking of any action in reliance on the contents of the information is strictly prohibited. Any unauthorized interception of this transmission is illegal under the law. If you have received this transmission in error, please promptly notify the sender by reply e-mail, and then destroy all copies of the transmission."
--
This is the Lotus Domino on the IBM i (AS/400 and iSeries) (Domino400) mailing list
To post a message email: Domino400@xxxxxxxxxxxxxxxxxx<mailto:Domino400@xxxxxxxxxxxxxxxxxx>
To subscribe, unsubscribe, or change list options,
visit:
https://lists.midrange.com/mailman/listinfo/domino400
or email: Domino400-request@xxxxxxxxxxxxxxxxxx<mailto:Domino400-request@xxxxxxxxxxxxxxxxxx>
Before posting, please take a moment to review the archives
at
https://archive.midrange.com/domino400.
--
This is the Lotus Domino on the IBM i (AS/400 and iSeries) (Domino400) mailing list
To post a message email: Domino400@xxxxxxxxxxxxxxxxxx<mailto:Domino400@xxxxxxxxxxxxxxxxxx>
To subscribe, unsubscribe, or change list options,
visit:
https://lists.midrange.com/mailman/listinfo/domino400
or email: Domino400-request@xxxxxxxxxxxxxxxxxx<mailto:Domino400-request@xxxxxxxxxxxxxxxxxx>
Before posting, please take a moment to review the archives
at
https://archive.midrange.com/domino400.
"CONFIDENTIALITY NOTICE: This e-mail transmission (and/or the attachments accompanying it) contain confidential information belonging to the sender. The information is intended only for the use of the intended recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution or the taking of any action in reliance on the contents of the information is strictly prohibited. Any unauthorized interception of this transmission is illegal under the law. If you have received this transmission in error, please promptly notify the sender by reply e-mail, and then destroy all copies of the transmission."
"CONFIDENTIALITY NOTICE: This e-mail transmission (and/or the attachments accompanying it) contain confidential information belonging to the sender. The information is intended only for the use of the intended recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution or the taking of any action in reliance on the contents of the information is strictly prohibited. Any unauthorized interception of this transmission is illegal under the law. If you have received this transmission in error, please promptly notify the sender by reply e-mail, and then destroy all copies of the transmission."
As an Amazon Associate we earn from qualifying purchases.