Add notes for 2017-02-27

This commit is contained in:
Alan Orth 2017-02-27 11:33:25 +02:00
parent 7bae9fb09e
commit 6244e5f08e
Signed by: alanorth
GPG Key ID: 0FB860CC9C45B1B9
5 changed files with 123 additions and 1 deletions

View File

@ -229,3 +229,25 @@ UPDATE 58633
- This works but I'm thinking I'll wait on the replacement as there are perhaps some other places that rely on `http://hdl.handle.net` (grep the code, it's scary how many things are hard coded)
- Send message to dspace-tech mailing list with concerns about this
## 2017-02-27
- LDAP users cannot log in today, looks to be an issue with CGIAR's LDAP server:
```
$ openssl s_client -connect svcgroot2.cgiarad.org:3269
CONNECTED(00000003)
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/CN=SVCGROOT2.CGIARAD.ORG
i:/CN=CGIARAD-RDWA-CA
---
```
- For some reason it is now signed by a private certificate authority

View File

@ -92,7 +92,7 @@ Looks like we’ll be using cg.identifier.ccafsprojectpii as the field name
"headline": "February, 2017",
"url": "https://alanorth.github.io/cgspace-notes/2017-02/",
"wordCount": "1595",
"wordCount": "1662",
"datePublished": "2017-02-07T07:04:52-08:00",
@ -437,6 +437,31 @@ UPDATE 58633
<li>Send message to dspace-tech mailing list with concerns about this</li>
</ul>
<h2 id="2017-02-27">2017-02-27</h2>
<ul>
<li>LDAP users cannot log in today, looks to be an issue with CGIAR&rsquo;s LDAP server:</li>
</ul>
<pre><code>$ openssl s_client -connect svcgroot2.cgiarad.org:3269
CONNECTED(00000003)
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/CN=SVCGROOT2.CGIARAD.ORG
i:/CN=CGIARAD-RDWA-CA
---
</code></pre>
<ul>
<li>For some reason it is now signed by a private certificate authority</li>
</ul>

View File

@ -283,6 +283,31 @@ UPDATE 58633
&lt;ul&gt;
&lt;li&gt;This works but I&amp;rsquo;m thinking I&amp;rsquo;ll wait on the replacement as there are perhaps some other places that rely on &lt;code&gt;http://hdl.handle.net&lt;/code&gt; (grep the code, it&amp;rsquo;s scary how many things are hard coded)&lt;/li&gt;
&lt;li&gt;Send message to dspace-tech mailing list with concerns about this&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id=&#34;2017-02-27&#34;&gt;2017-02-27&lt;/h2&gt;
&lt;ul&gt;
&lt;li&gt;LDAP users cannot log in today, looks to be an issue with CGIAR&amp;rsquo;s LDAP server:&lt;/li&gt;
&lt;/ul&gt;
&lt;pre&gt;&lt;code&gt;$ openssl s_client -connect svcgroot2.cgiarad.org:3269
CONNECTED(00000003)
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/CN=SVCGROOT2.CGIARAD.ORG
i:/CN=CGIARAD-RDWA-CA
---
&lt;/code&gt;&lt;/pre&gt;
&lt;ul&gt;
&lt;li&gt;For some reason it is now signed by a private certificate authority&lt;/li&gt;
&lt;/ul&gt;</description>
</item>

View File

@ -283,6 +283,31 @@ UPDATE 58633
&lt;ul&gt;
&lt;li&gt;This works but I&amp;rsquo;m thinking I&amp;rsquo;ll wait on the replacement as there are perhaps some other places that rely on &lt;code&gt;http://hdl.handle.net&lt;/code&gt; (grep the code, it&amp;rsquo;s scary how many things are hard coded)&lt;/li&gt;
&lt;li&gt;Send message to dspace-tech mailing list with concerns about this&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id=&#34;2017-02-27&#34;&gt;2017-02-27&lt;/h2&gt;
&lt;ul&gt;
&lt;li&gt;LDAP users cannot log in today, looks to be an issue with CGIAR&amp;rsquo;s LDAP server:&lt;/li&gt;
&lt;/ul&gt;
&lt;pre&gt;&lt;code&gt;$ openssl s_client -connect svcgroot2.cgiarad.org:3269
CONNECTED(00000003)
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/CN=SVCGROOT2.CGIARAD.ORG
i:/CN=CGIARAD-RDWA-CA
---
&lt;/code&gt;&lt;/pre&gt;
&lt;ul&gt;
&lt;li&gt;For some reason it is now signed by a private certificate authority&lt;/li&gt;
&lt;/ul&gt;</description>
</item>

View File

@ -282,6 +282,31 @@ UPDATE 58633
&lt;ul&gt;
&lt;li&gt;This works but I&amp;rsquo;m thinking I&amp;rsquo;ll wait on the replacement as there are perhaps some other places that rely on &lt;code&gt;http://hdl.handle.net&lt;/code&gt; (grep the code, it&amp;rsquo;s scary how many things are hard coded)&lt;/li&gt;
&lt;li&gt;Send message to dspace-tech mailing list with concerns about this&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id=&#34;2017-02-27&#34;&gt;2017-02-27&lt;/h2&gt;
&lt;ul&gt;
&lt;li&gt;LDAP users cannot log in today, looks to be an issue with CGIAR&amp;rsquo;s LDAP server:&lt;/li&gt;
&lt;/ul&gt;
&lt;pre&gt;&lt;code&gt;$ openssl s_client -connect svcgroot2.cgiarad.org:3269
CONNECTED(00000003)
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = SVCGROOT2.CGIARAD.ORG
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/CN=SVCGROOT2.CGIARAD.ORG
i:/CN=CGIARAD-RDWA-CA
---
&lt;/code&gt;&lt;/pre&gt;
&lt;ul&gt;
&lt;li&gt;For some reason it is now signed by a private certificate authority&lt;/li&gt;
&lt;/ul&gt;</description>
</item>