Domino 7.0.3 upgrade and LDAP

If you're like me and are using LDAP for address verification, or for any other nefarious reasons for using LDAP, then you'll want to read this technote from IBM:
Doc #:1256436 Domino LDAP server returns 'Invalid DN Syntax' message for previously working searches
Seems that in Domino 7.0.2 FP1 there were some changes to how Domino uses LDAP. Of course, I found out about this the hard way and mail flow into my one anti-spam server stopped because it couldn't verify the email address off of the updated 7.0.3 server.
Oh the fun we administrators have!

LDAP lunacy and other stuff

LDAP is a fantastic tool to use, especially when you are using it with an anti-spam solution to validate email addresses on inbound mail. It is a great solution until something goes wrong. In my case, my Domino Directory had gotten corrupted and that made for a fun afternoon.

It all started when my application server began to become unresponsive during the late morning hours. That also happens to be the server that I do the LDAP lookups against. So, I rebooted the server and didn't think much more about it until shortly after the restart and I checked to make sure that LDAP lookups were being completed properly. All of a sudden, any time an address was being requested, it would find the entry in the Domino Directory but return to the spam server that it was not a valid address which then caused all messages coming in at the time to be rejected. Not a good thing. So I killed LDAP lookups against Domino and started the process of trying to figure out what went wrong. I started by calling the spam vendor and they couldn't find anything wrong, which led me to call Domino support. After doing a bunch of different debugging, the tech found the problem. Something had gone missing from my anonymous LDAP lookup entry in the all servers configuration document.
So for giggles, I did a design refresh on my Domino Directory and noticed that several items were being added. I even saw LDAP flash by a couple of times on the lower bar. That led me to think that somehow my Domino Directory had gotten corrupt and I somehow lost my configuration for LDAP. After re-adding the objectClass attribute type, LDAP started working again. I always seem to get the weird ones.

Outside of that and complaining about paying $3.50 for a gallon of gas, not too much else happening in my world. This past Sunday we had a great time helping Shannon celebrate her 17th anniversary of her 21st birthday. The NEOLUG meeting takes place tomorrow at IBM in Cleveland. Denise and I are all set to fly off to Boston a week from Saturday so I can attend the jumpstart training at Admin2007. Which leads me to one complaint I have with this conference. A few days after finalizing all our plans for the trip, Clippings sends this email. It would have been nice to have gotten that a few days earlier then I could have gotten away with having another day in Boston. Harrumph!

Well, that's it for now. I'll only be attending the Sunday jumpstarts in Boston, so if you see a big guy wearing this tshirt that looks like this:
Say hi!