I know and I understood this.
I just went to check in “real life”, not on VM, fake FQDN, …, because I saw that on Virtual environment, issues may occur.
I know and I understood this.
I just went to check in “real life”, not on VM, fake FQDN, …, because I saw that on Virtual environment, issues may occur.
trying to use nethserver-sogo with the nethserver-dc I couldn’t authenticate.
/var/log/sogo/sogo.log shows the following lines:
ERROR ... NAME:LDAPException REASON:operation bind failed: Strong(er) authentication required (0x8) INFO ...
Issue is apparently a security patch for Samba4 which now needs the line:
ldap server require strong auth = no
added to the smb.conf to be able to do plain text binds. See https://www.samba.org/samba/latest_news.html#4.4.2.
As per http://comments.gmane.org/gmane.comp.groupware.sogo.user/24783, I fixed this by modifying the file in the nsdc container:
`# systemd-run -M nsdc -t /bin/bash
tls priority = SECURE192:+SECURE128:-VERS-SSL3.0\
tls enabled = yes\
ldap server require strong auth = no
’ smb.conf -i`
Maybe this new line can be included in next release.
This problem should be fixed. Could you please verify that’s really fixed? Thanks.
Yes, updating from the nethserver-testing to v1.0.1-1.4 works for me. You guys are ahead of me (did check the git for nethserver-dc but not the dev which I now learned contain the issues )!
Thanks to the great feedback from our testers it’s time for a new RPM release round
Since the ISO was built we released a lot of bug fixes! Again, check them out from the Software Center (mirrors are synchronizing)!
http://mirror.nethserver.org/nethserver/7.2.1511/updates/x86_64/Packages/
We’re moving towards an RC release!
There were many things to fix: if you feel something was left behind or you think you found something new do not hesitate to point it out
Tried to install webtop. Got an error with epel repo, when I tried to install nethserver-web on gui. On command line “yum install @nethserver-web” worked. Now I need to install php-imap. Changing nethserver-web fails. epel repo fails also. Installation of webtop fails, because it needs php-imap.
So what to do?? Can anybody help me?
TIA. Ralf
Please copy/paste some logs and terminal error
of course, sorry:
from messages log:
Jul 22 13:02:03 ns7b1 pkgaction[16796]: [YumRPMCheckError] [u’FEHLER bei Transaktionspr\xfcfung gegen\xfcber Depsolve:’, ‘php-imap is needed by nethserver-webtop4-1.3.0-1.ns7.noarch’]
when I try to install php-imap from gui
when I try to install php-imap from command line:
with enablerepo=epel
Epel repo should be installed corrctly:
Which repo to use?
php-imap
comes from EPEL, which is enabled by default. Please check your repositories and turn EPEL enabled:
yum repolist -v
[root@ns7b1 /]# yum repolist -v
Loading “changelog” plugin
Loading “fastestmirror” plugin
Loading “nethserver_events” plugin
Config time: 0.015
Yum version: 3.4.3
base | 3.6 kB 00:00:00
One of the configured repositories failed (Unknown),
and yum doesn’t have enough cached data to continue. At this point the only
safe thing yum can do is fail. There are a few ways to work “fix” this:
1. Contact the upstream for the repository and get them to fix the problem.
2. Reconfigure the baseurl/etc. for the repository, to point to a working
upstream. This is most often useful if you are using a newer
distribution release than is supported by the repository (and the
packages for the previous distribution release still work).
3. Disable the repository, so yum won't use it by default. Yum will then
just ignore the repository until you permanently enable it again or use
--enablerepo for temporary usage:
yum-config-manager --disable <repoid>
4. Configure the failing repository to be skipped, if it is unavailable.
Note that yum will try to contact the repo. when it runs most commands,
so will have to try and fail each time (and thus. yum will be be much
slower). If it is a very temporary problem though, this is often a nice
compromise:
yum-config-manager --save --setopt=<repoid>.skip_if_unavailable=true
Cannot retrieve metalink for repository: epel/x86_64. Please verify its path and try again
epel is enabled:
[epel]
name=Extra Packages for Enterprise Linux 7 - $basearch
enablegroups=0
#baseurl=http://download.fedoraproject.org/pub/epel/7/$basearch
mirrorlist=https://mirrors.fedoraproject.org/metalink?repo=epel-7&arch=$basearch
failovermethod=priority
enabled=1
gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-7
if I enable baseurl and disable mirrorlist it works!!
seems to be a problem of epel-mirrors. maybe a temporary failure?
sorry for being that blind!
thanks @davidep
successfully installed and entered webtop gui!
Hello to everybody.
This is my first experience with NS7b1.
The installation on KVM was Ok.
i try to add a new user test but something went wrong…
Jul 25 14:39:14 pdc esmith::event[20846]: [INFO] memcached restart
Jul 25 14:39:14 pdc esmith::event[20846]: Action:
/etc/e-smith/events/actions/adjust-services SUCCESS [0.463643]
Jul 25 14:39:14 pdc esmith::event[20846]: Action:
/etc/e-smith/events/user-create/S90nethserver-sssd-clear-cache SUCCESS
[0.087755]
Jul 25 14:39:14 pdc esmith::event[20846]: Event: user-create SUCCESS
Jul 25 14:39:15 pdc esmith::event[20895]: Event: password-policy-update
test yes
Jul 25 14:39:15 pdc esmith::event[20895]: Action:
/etc/e-smith/events/password-policy-update/S10nethserver-sssd-clear-cache
SUCCESS [0.08973]
Jul 25 14:39:15 pdc esmith::event[20895]: Failed to get machine PTY: No
such file or directory
Jul 25 14:39:15 pdc esmith::event[20895]: Action:
/etc/e-smith/events/password-policy-update/S30nethserver-dc-password-policy
SUCCESS [0.35345]
Jul 25 14:39:15 pdc esmith::event[20895]: Event: password-policy-update
SUCCESS
Jul 25 14:39:15 pdc esmith::event[20905]: Event: password-modify
test@itraco.de /tmp/ng-sPsteS
Jul 25 14:39:15 pdc esmith::event[20905]: Action:
/etc/e-smith/events/password-modify/S25password-set SUCCESS [0.004986]
Jul 25 14:39:15 pdc esmith::event[20905]: spawn /usr/bin/systemd-run -M
nsdc -q -t /usr/bin/samba-tool user setpassword test
Jul 25 14:39:16 pdc esmith::event[20905]: New Password:
Jul 25 14:39:16 pdc esmith::event[20905]: ERROR: Failed to set password
for user ‘test’: Unable to find user "test"
Jul 25 14:39:16 pdc esmith::event[20905]: Action:
/etc/e-smith/events/password-modify/S30nethserver-dc-password-set
FAILED: 2 [1.009179]
Jul 25 14:39:17 pdc esmith::event[20905]: ERROR: Failed to enable user
’test’: Unable to find account where
’(&(objectClass=user)(sAMAccountName=test))'
Jul 25 14:39:17 pdc esmith::event[20905]: Action:
/etc/e-smith/events/password-modify/S40nethserver-dc-user-unlock FAILED:
2 [0.773608]
Jul 25 14:39:17 pdc esmith::event[20905]: Action:
/etc/e-smith/events/password-modify/S90password-cleanup SUCCESS
[0.020898]
Jul 25 14:39:17 pdc esmith::event[20905]: Event: password-modify FAILED
I have tired several times,
It seems systemd can’t open the PTY to the dc container.
Please try this command:
systemctl restart nsdc
And then
/usr/bin/systemd-run -M nsdc -q -t echo "nsdc is running"
The output of the last command should be:
nsdc is running
If the output is correct try again the change password operation from the web interface.
Hi, giacomo,
thank you very much.
It works!
Now I’m working on … getmail!
Hi Guys,
Great job on the beta so far. I’m new to Nethserver (though I did run an e-smith server back in the day) and am considering updating my aging ClearOS server to Nethserver 7. So, I’ve been doing some experimenting and testing for a bit and hit a wall. I don’t know if it’s a bug or something I’m doing wrong, but for the life of me I can’t get nethserver-dc to work properly. Here is some background information on the setup and what I’ve done so far:
As the install is finishing up, I get a red error box at the top of the web page and this in the log:
Jul 27 11:38:16 amiga systemd-nspawn: Failed to create directory /var/lib/machines/nsdc//sys/fs/selinux: No such file or directory
Jul 27 11:38:16 amiga systemd-nspawn: Failed to create directory /var/lib/machines/nsdc//sys/fs/selinux: No such file or directory
Jul 27 11:38:40 amiga systemd: Started Authorization Manager.
Jul 27 11:38:40 amiga realmd: * Resolving: _ldap._tcp.kuntzilla.com
Jul 27 11:38:40 amiga realmd: * Performing LDAP DSE lookup on: 192.168.67.23
Jul 27 11:38:40 amiga realmd: ! Can’t contact LDAP server
Jul 27 11:38:40 amiga esmith::event[2805]: realm: Cannot join this realm
Jul 27 11:38:40 amiga esmith::event[2805]: [ERROR] DC join failed
Jul 27 11:38:40 amiga esmith::event[2805]: Action: /etc/e-smith/events/nethserver-dc-save/S96nethserver-dc-join FAILED: 1 [2.949292]
Jul 27 11:38:51 amiga esmith::event[2805]: Event: nethserver-dc-save FAILED
Not wanting to just give up, I found Davide’s nethserver-dc docs and followed the steps to join the AD domain manually. That worked and I got the expected output he shows in the doc right up to the “net ads info” command. That fails with the following:
ads_connect: No logon servers
ads_connect: No logon servers
Didn’t find the ldap server!
I don’t see anything about it in /var/log/messages. Clicking the “Domain Accounts” option in server manager gives similar output:
ads_connect: No logon servers
ads_connect: No logon servers
Didn’t find the ldap server!
ads_connect: No logon servers
Join to domain is not valid: No logon servers
Trying to create a new user with the server manager results in a red error box at the top of the page with the message “User name The user already exists”. I wasn’t ever prompted for a user name
Any ideas or hints? Seems like it shouldn’t be this hard… If I need to fill our a bug report or provide more information please let me know. I’m happy to help out if I can.
Thanks!
Hi @chuckk, welcome here.
I had a similar problem with virtualbox. I had to set the interface to promiscuos mode “allow all”. This is mandatory in a virtualbox setup. Found that yesterday . Maybe this helps in your case also.
Strange behavior of SOGo3 on NS7.
When I login Sogo with a user created on GUI I was not able to create an imap-account. If I did so, login stucked in mailbox0. I created a local user on the machine. After that I was able to use an imap-account on my ISP’S server. If I create a user with GUI the command cat /etc/pwasswd does’t show this user. Is this meant to this way, because of ldap-server in the container?