I cannot log in use cn=rob even though I have all sorts of authority. I have to use the cn=administrator that I configured on the General tab.
I just set the password too. IDK if a recent password set flips some bits or what not.
As far as I know I don't have anything out there currently relying upon whatever the old password for administrator was. :-)
Original Message:
Sent: Fri April 05, 2024 09:41 AM
From: Erik Aasland
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Thank you for that Robert.
Then I know.
I can use another tool to log into the ldap for sso with the same password so I know that password works.
But I have tried a lot of times to log in her just to se "what is in there.." with another id's.
Then I have to locate the "WAS.."...
Original Message:
Sent: 4/5/2024 9:33:00 AM
From: Robert Berendt
Subject: RE: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
I do not know where that directory is located. There are some ifs search methods to find files.
Yes it is the same as that entered on the General tab. You have to enter the user as cn=Administrator. The password you simply enter in the password. No yadayada=password syntax.
I logged in successfully for the first time just to figure this out for you.
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Fri April 05, 2024 09:17 AM
From: Erik Aasland
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Do you know this.
Qustion: When I got this kind of message
Where is the <WAS_Home> located?
And is the user ID the same as in General, Administrator Name and Password?
Original Message:
Sent: 4/5/2024 8:57:00 AM
From: Robert Berendt
Subject: RE: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Thank you! I have a case opened for DAYS and they haven't yet figured that out. TS015775487
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Fri April 05, 2024 08:47 AM
From: Lora R Powell
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Aah, sorry I missed the original issue.
The value used for the "Server Administration" button on the LDAP Properties panel (under More tab) is pulled from a setting that can be changed on the General tab of the same panel.
- The field to update is: "Server administration URL".
- Press OK to save changes.
- Reopen the properties panel, go to More tab, and launch to the Server Admin URL.
That should fix your issue.
Original Message:
Sent: 4/4/2024 10:09:00 AM
From: Robert Berendt
Subject: RE: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
@Lora R Powell,
I snipped my current bookmarks and pasted that into a Word document.
I performed Restore Shipped Bookmarks, snipped that and added to the document.
I modified "IBM Web Administration for i" and "IBM Digital Certificate Manager for i" to use the right port, and to use https. Snipped that and added it to the document.
I ran ENDTCPSVR SERVER(*HTTP) HTTPSVR(*ADMIN) , verified it was down with WRKSBSJOB SBS(QHTTPSVR) and started it back up.
The new bookmark works. However, that did nothing to fix that button in my previous post.
I do appreciate this information but I'd like to get that button fixed too.
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Thu April 04, 2024 09:15 AM
From: Lora R Powell
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
"Restore Shipped Bookmarks" is what I was referring to. We have updated the bookmarks through PTFs. But you need to request the updates since it will write over any changes you have made. It is referred to in our PTF update details: https://www.ibm.com/support/pages/node/6520030 .
Original Message:
Sent: 4/3/2024 12:16:00 PM
From: Robert Berendt
Subject: RE: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Fascinating. I have a total of 5 bookmarks and none of them are that. Across 11 LPARs of IBM i, all at 7.5, cume 23306, HTTP group 13.
Some of these have been around since OS/400, some started out at 7.5.
How did you get that bookmark?
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Wed April 03, 2024 12:03 PM
From: Lora R Powell
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
You can try "Restore Shipped Bookmarks" and should get port 2001:
Or you can edit the bookmarks to your liking:
------------------------------
Lora R Powell
IBM i – Systems
IBM Navigator for i & Performance on the web (PDI)
IBM i 7.5 Memo to Users
IBM Power Systems Development
Office: 30-2/ C204
Do the next right thing
Let's GO
Original Message:
Sent: Tue April 02, 2024 10:45 AM
From: Robert Berendt
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
I can get the following to work from the browser URL line (one, after beating hsts into submission):
http://gdi.dekko-1:2004/IDSWebApp/IDSjsp/Login.jsp?ldapserver=gdi.dekko.com
https://gdi.dekko.com:2005/IDSWebApp/IDSjsp/Login.jsp?ldapserver=gdi.dekko.com
but the link in Navigator tries to go to the wrong port(2002):
http://gdi.dekko-1:2002/IDSWebApp/IDSjsp/Login.jsp?ldapserver=gdi.dekko.com
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Tue April 02, 2024 10:13 AM
From: Robert Berendt
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
I have opened a case dealing with Navigator using the wrong link. TS015775487
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Wed March 27, 2024 02:53 PM
From: Robert Berendt
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Tim,
1 - How do we tell Navigator to use https instead of http when we click on "Server Administration" to manage ldap? You know, like we do with the other stuff under Managing Bookmarks?
2 - How do we tell it to use systemname.mycompany.com instead of whatever the domain is wherever it discovered this dekko-1 url http://gdi.dekko-1:2002/IDSWebApp/IDSjsp/Login.jsp?ldapserver=gdi.dekko.com Again, something I can sometimes change with Managing Bookmarks.
These two issues resolved from clicking on Server Administration at:
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Wed March 27, 2024 11:45 AM
From: Tim Rowe
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
Greetings! Time to jump in.
With the Heritage Nav riding off into he sunset, the ADMIN2 server is only for the LDAP directory management interface. Not the LDAP server, that runs in a totally different job. Here is what that interface looks like.
You can get to it by - http://systemname:2004/IDSWebApp
Within Navigator, you can use Network ->Connections You see all the ports that are active, right click on the entry, and you can then see the actual Job that is running and connected to that port.
------------------------------
Tim Rowe
Original Message:
Sent: Tue March 26, 2024 03:44 PM
From: Erik Aasland
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
I'm not so sure about that Robert but I may be wrong.
We have configured SSO/Kerberos and that services uses the LDAP service.
Even if ADMIN2 is down it's still possible to use the EIM in LDAP.
I don't think ADMIN2 is used any more after the Heritage Navigator was removed.
But I'm agree with you that the "Server Administration" is not working after shutting down ADMIN2.
I have never been able to log into that site.
So I don't know what the Server admin does att all although the description tells you what.
------------------------------
Erik Aasland
IBMi administrator
Fremtind Insurance
Original Message:
Sent: Tue March 26, 2024 02:40 PM
From: Robert Berendt
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
I think I'm getting this now.
ADMIN2 does not "serve" or "provide" ldap. That is done by the QUSRDIR job.
ADMIN2 "manages" ldap. If you go into Navigator, Servers, TCP/IP Servers, Directory Server (LDAP), Properties, More, and click Server Administration it will abort when the ADMIN2 job is down.
------------------------------
Robert Berendt IBMChampion
Original Message:
Sent: Fri March 22, 2024 08:55 AM
From: Robert Berendt
Subject: What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
What is the purpose of the ADMIN2 job on an IBM i 7.5 system with current PTFs?
What ports does it use? Unsecured: and SSL: ?
Should it be disabled or not? Again, this is on an IBM i 7.5 system with current PTFs.
Does it have something to do with LDAP or whatever the long drawn out Tivoli name for ldap is?
When looking at the following three figures are the following correct?
Bookmarks -> Web Administration -> IBM i job
IBM Navigator for i (Old Web Interface) -> Application Servers, Admin2 -> ADMIN2
IBM Web Administration for i -> HTTP Servers, ADMIN -> ADMIN
IBM Digital Certificate Manager for i -> Application Servers, Admin3 -> ADMIN3
IPP Server for IBMi -> HTTP Servers, ADMIN -> ADMIN
Cryptographic Coprocessor Configuration -> HTTP Servers, ADMIN -> ADMIN
Others
Navigator for i -> ADMIN1
? -> ADMIN4
? -> ADMIN5
See also NETSTAT OPTION(*CNN)
F15=Subset
Local port range:
Lower value . . . . . . . . 2000
Upper value . . . . . . . . 2020
F14=Display port numbers
8=Display jobs
You'll see some of these jobs using ports not shown on the screens
------------------------------
Robert Berendt IBMChampion
------------------------------