【已结贴】Cognos和AD集成,报“未提供名称空间”错误,求助
使用的是Cognos 8 的configuration,在安全-》身份认证 内建立新名称空间。参照另一台配置好的机器填入各项参数。测试该名称空间时报
[错误] CAM-AAA-0146 未提供名称空间“CHINALIFE”。
CAM-AAA-0064 函数“CAM_AAA_Configure2”失败。
CAM-AAA-0089 未初始化提供程序。
CAM-AAA-0036 无法进行身份验证,因为凭证无效。
请高手不吝赐教,多谢了。
[错误] CAM-AAA-0146 未提供名称空间“CHINALIFE”。
CAM-AAA-0064 函数“CAM_AAA_Configure2”失败。
CAM-AAA-0089 未初始化提供程序。
CAM-AAA-0036 无法进行身份验证,因为凭证无效。
请高手不吝赐教,多谢了。
5同行回答
使用的是Cognos 8 的configuration,在安全-》身份认证 内建立新名称空间。参照另一台配置好的机器填入各项参数。测试该名称空间时报[错误] CAM-AAA-0146 未提供名称空间“CHINALIFE”。CAM-AAA-0064 函数“CAM_A ...joshuaduan 发表于 2010-9-30 09:49
是否加入了域,就...使用的是Cognos 8 的configuration,在安全-》身份认证 内建立新名称空间。参照另一台配置好的机器填入各项参数。测试该名称空间时报
[错误] CAM-AAA-0146 未提供名称空间“CHINALIFE”。
CAM-AAA-0064 函数“CAM_A ...
joshuaduan 发表于 2010-9-30 09:49
浏览846
浏览793
问题解决:原因是这台机器未加到AD域中。收起
浏览811
Problem(Abstract)
When testing an AD Authentication Provider configured on a Workgroup Server that points to an Active Directory(AD) Domain Controller fails with the following error:
Symptom
['Active Directory']
1. [ ERROR ] CAM-AAA-0146 The namespace 'AD' is not available.
CAM-AAA-0064 The function 'CAM_AAA_Configure2' failed.
CAM-AAA-0089 The provider is not initialized.
ADSI Error HRESULT Returns:
ERROR_DS_SERVER_DOWN
ADSI Error:
System Error:
The server is not operational.
CAM-AAA-0124 The Active Directory function call to 'getDomainTreesTopology' failed.
Environment
Cognos 8.3 running in a Windows 2003 R2 SP2 WORKGROUP with the AD Authentication set to a Windows 2003 R2 SP2 Domain
Resolving the problem
On the Workgroup Server:
Enable the following Security Options using the Group Policy Editor:
Network security: LAN Manager authentication level: Send LM & NTLM responses,
Network security: LDAP client signing requirements - Negotiate signing.
Use the ipconfig to Flush DNS and delete all ARP cache.
On the Domain Controller:
Enable the following Security Options using the Group Policy Editor:
Network security: LAN Manager authentication level: Send LM & NTLM responses,
Network security: LDAP client signing requirements - Negotiate signing.
User rights Assignment: Create a token object - Administrators, Local service, network service
Steps on the Workgroup:
1. Start - Run - GPEDIT.MSC
2. Navigate to: / Computer Configuration/ Windows Settings / Security Settings / Local Policies / Security Options
3. Make the following changes: Network security: LAN Manager authentication level: Send LM & NTLM responses, Network security: LDAP client signing requirements - Negotiate signing.
4. Add the DNS Suffix to the Workgroup Server Name: Rightclick My Computer - Properties - Computer Name - Change - More - add any Domain Suffix.
5. Open a DOS window and type: ipconfig /FLUSHDNS, ipconfig /REGISTERDNS, arp -d
Steps On the Domain Controller:
1. Start - Run - GPEDIT.MSC
2. Navigate to: / Computer Configuration/ Windows Settings / Security Settings / Local Policies / Security Options
3. Make the following changes: Network security: LAN Manager authentication level: Send LM & NTLM responses, Network security: LDAP client signing requirements - Negotiate signing.
4. Make the following changes: User rights Assignment: Create a token object - Administrators, Local service, network service收起
When testing an AD Authentication Provider configured on a Workgroup Server that points to an Active Directory(AD) Domain Controller fails with the following error:
Symptom
['Active Directory']
1. [ ERROR ] CAM-AAA-0146 The namespace 'AD' is not available.
CAM-AAA-0064 The function 'CAM_AAA_Configure2' failed.
CAM-AAA-0089 The provider is not initialized.
ADSI Error HRESULT Returns:
ERROR_DS_SERVER_DOWN
ADSI Error:
System Error:
The server is not operational.
CAM-AAA-0124 The Active Directory function call to 'getDomainTreesTopology' failed.
Environment
Cognos 8.3 running in a Windows 2003 R2 SP2 WORKGROUP with the AD Authentication set to a Windows 2003 R2 SP2 Domain
Resolving the problem
On the Workgroup Server:
Enable the following Security Options using the Group Policy Editor:
Network security: LAN Manager authentication level: Send LM & NTLM responses,
Network security: LDAP client signing requirements - Negotiate signing.
Use the ipconfig to Flush DNS and delete all ARP cache.
On the Domain Controller:
Enable the following Security Options using the Group Policy Editor:
Network security: LAN Manager authentication level: Send LM & NTLM responses,
Network security: LDAP client signing requirements - Negotiate signing.
User rights Assignment: Create a token object - Administrators, Local service, network service
Steps on the Workgroup:
1. Start - Run - GPEDIT.MSC
2. Navigate to: / Computer Configuration/ Windows Settings / Security Settings / Local Policies / Security Options
3. Make the following changes: Network security: LAN Manager authentication level: Send LM & NTLM responses, Network security: LDAP client signing requirements - Negotiate signing.
4. Add the DNS Suffix to the Workgroup Server Name: Rightclick My Computer - Properties - Computer Name - Change - More - add any Domain Suffix.
5. Open a DOS window and type: ipconfig /FLUSHDNS, ipconfig /REGISTERDNS, arp -d
Steps On the Domain Controller:
1. Start - Run - GPEDIT.MSC
2. Navigate to: / Computer Configuration/ Windows Settings / Security Settings / Local Policies / Security Options
3. Make the following changes: Network security: LAN Manager authentication level: Send LM & NTLM responses, Network security: LDAP client signing requirements - Negotiate signing.
4. Make the following changes: User rights Assignment: Create a token object - Administrators, Local service, network service收起
浏览927