forgotten password link, challenge response not allowing reset. Client
has set the answers to all their challenge questions to the same short
response.

trace follows:

Wednesday, Oct 10, 2007
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0028:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0028:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0028:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0028:0x60) Operation
0x28:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0029:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0029:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0029:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0029:0x60) Operation
0x29:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002a:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002a:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002a:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002a:0x60) Operation
0x2a:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002b:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002b:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002b:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002b:0x60) Operation
0x2b:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002c:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002c:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002c:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002c:0x60) Operation
0x2c:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002d:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002d:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002d:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002d:0x60) Operation
0x2d:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002e:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002e:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002e:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002e:0x60) Operation
0x2e:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002f:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002f:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002f:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x002f:0x60) Operation
0x2f:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0030:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0030:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0030:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0030:0x60) Operation
0x30:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0031:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0031:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0031:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0031:0x60) Operation
0x31:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0032:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0032:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0032:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0032:0x60) Operation
0x32:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0033:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0033:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0033:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0033:0x60) Operation
0x33:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0034:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0034:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0034:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0034:0x60) Operation
0x34:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0035:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0035:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0035:0x60) Sending
operation result 14:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0035:0x60) Operation
0x35:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0036:0x60) DoBind on
connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0036:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0036:0x60) Failed to
authenticate full context on connection 0x8d39b2a0, err = success
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0036:0x60) Sending
operation result 49:"":"" to connection 0x8d39b2a0
12:52:09 8C67C160 LDAP: (10.1.245.61:3385)(0x0036:0x60) Operation
0x36:0x60 on connection 0x8d39b2a0 completed in 0 seconds
12:52:09 8B02B3E0 LDAP: New TLS connection 0x8d39b460 from
10.1.245.61:3387, monitor = 0x214, index = 34
12:52:09 8B171580 LDAP: Monitor 0x214 initiating TLS handshake on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0000:0x00) DoTLSHandshake
on connection 0x8d39b460
12:52:09 8B5DA3A0 Drvrs: TFI Triggered Actions ST:
DirXML Log Event -------------------
Driver: \TACAUX\TACONIC\APPLICATIONS\DriverSet35\TFI Triggered Actions
Channel: Subscriber
Object: \TACAUX\com\TACONIC\PEOPLE\PUBLIC\karen.anderson@t aconic.com
Status: Success
12:52:09 8C67C160 LDAP: BIO ctrl called with unknown cmd 7
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0000:0x00) Completed TLS
handshake on connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0037:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0037:0x60) Bind name:NULL,
version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: Create NMAS Session
12:52:09 8C67C160 NMAS: 5: Pregathered information NMAS_AID = 1 value
karen\.anderson@taconic\.com.PUBLIC.PEOPLE.TACONIC .com
12:52:09 8C67C160 NMAS: 5: Pregathered information NMAS_AID = 11 value
Challenge Response
12:52:09 8C67C160 NMAS: 5: CheckIfLocalUser: client supplied user DN
karen\.anderson@taconic\.com.PUBLIC.PEOPLE.TACONIC .com
12:52:09 8C67C160 NMAS: 5: CheckIfLocalUser: checking actual user DN
CN=karen\.anderson@taconic\.com.OU=PUBLIC.OU=PEOPL E.O=TACONIC.dc=com
12:52:09 8C67C160 NMAS: 5: Create thread request
12:52:09 8C67C160 NMAS: 5: Using thread 0x8802d680
12:52:09 8C67C160 NMAS: 5: Server thread started
12:52:09 8C67C160 NMAS: 5: SASL NMAS_LOGIN started
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0037:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0037:0x60) Operation
0x37:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8D419440 NMAS: 5: Pool thread 0x8802d680 awake with new work
12:52:09 8D419440 NMAS: 5: ServerGet: message size=8 queue size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0038:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0038:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientPut: message size=169 queue Size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0038:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0038:0x60) Operation
0x38:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8D419440 NMAS: 5: ServerGet: message size=161 queue size 161
12:52:09 8D419440 NMAS: 5: OEM
12:52:09 8D419440 NMAS: 5: OEM Verb 7
12:52:09 8D419440 NMAS: 5: ServerPut: message size=8 queue size 0
12:52:09 8D419440 NMAS: 5: ServerPut: message size=144 queue size 8
12:52:09 8D419440 NMAS: 5: HandleExchangeDFMKeys Domestic Grade (3DES)
Wrapping Key

12:52:09 8D419440 NMAS: 5: ServerGet: message size=8 queue size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0039:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0039:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientGet: message size=8 queue Size 152
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0039:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0039:0x60) Operation
0x39:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003a:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003a:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientGet: message size=144 queue Size 144
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003a:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003a:0x60) Operation
0x3a:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003b:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003b:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientPut: message size=8 queue Size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003b:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003b:0x60) Operation
0x3b:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8D419440 NMAS: 5: ServerGet: message size=7 queue size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003c:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003c:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientPut: message size=7 queue Size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003c:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003c:0x60) Operation
0x3c:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8D419440 NMAS: 5: CanDo
12:52:09 8D419440 NMAS: 5: No client network address
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003d:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003d:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientGet: message size=8 queue Size 0
12:52:09 8D419440 NMAS: 5: Selected requested login sequence ==
"Challenge Response"
12:52:09 8D419440 NMAS: 5: Login Method 0x0000001F
12:52:09 8D419440 NMAS: 5: MAF_Begin LSM 0x0000001F
12:52:09 8D419440 NMAS: 5: ServerPut: message size=8 queue size 0
12:52:09 8D419440 NMAS: 5: ServerPut: message size=5 queue size 8
12:52:09 8D419440 NMAS: 5: MAF_Read LSM 0x0000001F
12:52:09 8D419440 NMAS: 5: ServerGet: message size=8 queue size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003d:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003d:0x60) Operation
0x3d:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003e:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003e:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientGet: message size=5 queue Size 5
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003e:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003e:0x60) Operation
0x3e:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003f:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003f:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientPut: message size=8 queue Size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003f:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x003f:0x60) Operation
0x3f:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8D419440 NMAS: 5: ServerGet: message size=16 queue size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0040:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0040:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientPut: message size=16 queue Size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0040:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0040:0x60) Operation
0x40:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8D419440 NMAS: readLTSValue: GetXKey key value count: 1
12:52:09 8D419440 NMAS: 5: MAF_GetAttribute LSM 0x0000001F AID: 22
12:52:09 8D419440 NMAS: 5: Total number of challenge questions: 3
12:52:09 8D419440 NMAS: 5: MAF_Write LSM 0x0000001F
12:52:09 8D419440 NMAS: 5: ServerPut: message size=8 queue size 0
12:52:09 8D419440 NMAS: 5: ServerPut: message size=148 queue size 8
12:52:09 8D419440 NMAS: 5: MAF_Read LSM 0x0000001F
12:52:09 8D419440 NMAS: 5: ServerGet: message size=8 queue size 0
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0041:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0041:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientGet: message size=8 queue Size 156
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0041:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0041:0x60) Operation
0x41:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0042:0x60) DoBind on
connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0042:0x60) Bind (cont)
name:NULL, version:3, authentication:NMAS_LOGIN
12:52:09 8C67C160 NMAS: 5: ClientGet: message size=148 queue Size 148
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0042:0x60) Sending
operation result 14:"":"" to connection 0x8d39b460
12:52:09 8C67C160 LDAP: (10.1.245.61:3387)(0x0042:0x60) Operation
0x42:0x60 on connection 0x8d39b460 completed in 0 seconds
12:52:12 8E0BF4C0 NMAS: 4: Failed login
12:52:12 8E0BF4C0 NMAS: 4: ServerPut: session cleared
12:52:12 8E0BF4C0 NMAS: 4: ERROR: -1654 NMAS Manager
12:52:12 8E0BF4C0 NMAS: 4: ServerGet: session cleared
12:52:12 8E0BF4C0 NMAS: 4: Server thread exited
12:52:12 8E0BF4C0 NMAS: 4: Pool thread 0x8802d600 work complete





Rob Rawson
Director: Identity Management Consulting Practice
Computer Integrated Services Company of New York
561 7th Avenue
13th Floor
New York, NY 10018
(212) 577-6033
(818) 377-6033 (FAX)
(914) 325-3674 (Mobile)
DirectorIDM4CIS (AIM)
Robert.Rawson (Skype)
rrawson@ciscony.com