Problem with SME 9.2 migration

NethServer Version: your_version
Module: your_module

This may be obvious but what does the ssh error mean? I should say if I put the password in it seems to continue successfully.


Using username “root”.
Keyboard-interactive authentication prompts from server:
End of keyboard-interactive prompts from server

************ Welcome to NethServer ************

This is a NethServer installation.

Before editing configuration files, be aware
of the automatic events and templates system.

      http://docs.nethserver.org

[root@server ~]# screen rsync-migrate 192.168.200.10 22
|*== =.+.o |
|@= * B + . |
|==+ . * = . |
|o… o * o |
| o + o S |
|… E + = = |
| o . . . o |
| . o |
| … |
±—[SHA256]-----+
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: “/root/.ssh/id_rsa.pub”
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed

/usr/bin/ssh-copy-id: ERROR: ssh: Could not resolve hostname 192.168.200.10 -p 22: Name or service not known

Creating migration dir: /var/lib/migration

Sync-only mode enabled: no action will be perfomed on the remote machine

Warning: Permanently added ‘192.168.200.10’ (RSA) to the list of known hosts.
root@192.168.200.10’s password:


Hi All,

My woes continue. frowning:

I completed the migration but have had a number of problems.

  1. following a failed AD install I tried to copy the command in to Terminal without success. I chaecked the paste buffer but pasting into Terminal doesn’t work. Copying it to a Putty session does work. ???
  2. The AD set said it had failed but appeared to work?
  3. I installed minimal extra applications: email, backup, file server, and Sogo. Of these Sogo failed to install.
    The paste to Terminal failed (again) but the the following Putty output was obtained.
    Using username “root”.
    Keyboard-interactive authentication prompts from server:
    End of keyboard-interactive prompts from server
    Last login: Fri Feb 12 17:55:36 2021 from 192.168.200.106

************ Welcome to NethServer ************

This is a NethServer installation.

Before editing configuration files, be aware
of the automatic events and templates system.

      http://docs.nethserver.org

[root@main ~]# echo ‘{“action”:“configuration”,“status”:“enabled”,“ActiveSync”:“disabled”,“Dav”:“enabled”,“AdminUsers”:“admin”,“VirtualHost”:"",“WOWorkersCount”:“10”,“SOGoInternalSyncInterval”:“30”,“Notifications”:“Appointment,EMail,ACLs”,“MailAuxiliaryUserAccountsEnabled”:“YES”}’ | /usr/bin/setsid /usr/bin/sudo /usr/libexec/nethserver/api/nethserver-sogo/update | jq
{
“steps”: 9,
“pid”: 26046,
“args”: “”,
“event”: “nethserver-sogo-update”
}
{
“step”: 1,
“pid”: 26046,
“action”: “S00initialize-default-databases”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.11”,
“time”: “2.409902”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 1,
“pid”: 26046,
“action”: “S00initialize-default-databases”
}
{
“step”: 2,
“pid”: 26046,
“action”: “S05generic_template_expand”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.22”,
“time”: “0.392989”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 2,
“pid”: 26046,
“action”: “S05generic_template_expand”
}
{
“step”: 3,
“pid”: 26046,
“action”: “S10nethserver-sogo-mysqlsetup”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.33”,
“time”: “0.032322”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 3,
“pid”: 26046,
“action”: “S10nethserver-sogo-mysqlsetup”
}
{
“step”: 4,
“pid”: 26046,
“action”: “S20nethserver-sogo-gnustepsetup”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.44”,
“time”: “0.004498”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 4,
“pid”: 26046,
“action”: “S20nethserver-sogo-gnustepsetup”
}
{
“step”: 5,
“pid”: 26046,
“action”: “S30nethserver-sogo-MigrationV3.2.10ToV4.0.0”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.56”,
“time”: “0.507224”,
“exit”: 256,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 5,
“pid”: 26046,
“action”: “S30nethserver-sogo-MigrationV3.2.10ToV4.0.0”
}
{
“step”: 6,
“pid”: 26046,
“action”: “S40nethserver-sogo-create-selfHost”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.67”,
“time”: “3.840247”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 6,
“pid”: 26046,
“action”: “S40nethserver-sogo-create-selfHost”
}
{
“step”: 7,
“pid”: 26046,
“action”: “S50nethserver-sogo-disable-webtop-activesync”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.78”,
“time”: “0.084511”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 7,
“pid”: 26046,
“action”: “S50nethserver-sogo-disable-webtop-activesync”
}
{
“step”: 8,
“pid”: 26046,
“action”: “S60nethserver-sogo-remove-slice-messages”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “0.89”,
“time”: “0.004134”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 8,
“pid”: 26046,
“action”: “S60nethserver-sogo-remove-slice-messages”
}
{
“step”: 9,
“pid”: 26046,
“action”: “S90adjust-services”,
“event”: “nethserver-sogo-update”,
“state”: “running”
}
{
“progress”: “1.00”,
“time”: “1.840729”,
“exit”: 0,
“event”: “nethserver-sogo-update”,
“state”: “done”,
“step”: 9,
“pid”: 26046,
“action”: “S90adjust-services”
}
{
“pid”: 26046,
“status”: “failed”,
“event”: “nethserver-sogo-update”
}
{
“type”: “EventError”,
“id”: 1613156485,
“message”: “update_action_failed”
}
[root@main ~]#

I am installing this on a spare HP Microserver N54L with 2 X Dual-Core Processors, 6Gbyte memory and a single 2 Tbyte HD. The SME server is a later G8 Microserver (8G/4Tbyte) which I will move the system to once I have working system. I don’t want trash the working SME system until I have a reliable option.

Any help most welcome (even to point out if I’m being an idiot.)

Thanks,

Tony (Paperguides)

Further to the AD failure I found the following in the messages log:

Feb 12 17:22:03 main esmith::event[18533]: Action: /etc/e-smith/events/actions/generic_template_expand SUCCESS [0.39436]
Feb 12 17:22:04 main esmith::event[18533]: Action: /etc/e-smith/events/nethserver-sssd-save/S20nethserver-sssd-conf SUCCESS [0.322113]
Feb 12 17:22:06 main esmith::event[18533]: ads_print_error: AD LDAP ERROR: 19 (Constraint violation): acl: spn validation failed for spn[smtp/main.office-itplus.co.uk] uac[0x1000] account[MAIN$] hostname[main.ad.office-itplus.co.uk] nbname[OFFICE-ITPLUS] ntds[(null)] forest[ad.office-itplus.co.uk] domain[ad.office-itplus.co.uk]
Feb 12 17:22:06 main esmith::event[18533]:
Feb 12 17:22:08 main esmith::event[18533]: ads_print_error: AD LDAP ERROR: 19 (Constraint violation): acl: spn validation failed for spn[pop/main.office-itplus.co.uk] uac[0x1000] account[MAIN$] hostname[main.ad.office-itplus.co.uk] nbname[OFFICE-ITPLUS] ntds[(null)] forest[ad.office-itplus.co.uk] domain[ad.office-itplus.co.uk]
Feb 12 17:22:08 main esmith::event[18533]:
Feb 12 17:22:10 main esmith::event[18533]: ads_print_error: AD LDAP ERROR: 19 (Constraint violation): acl: spn validation failed for spn[imap/main.office-itplus.co.uk] uac[0x1000] account[MAIN$] hostname[main.ad.office-itplus.co.uk] nbname[OFFICE-ITPLUS] ntds[(null)] forest[ad.office-itplus.co.uk] domain[ad.office-itplus.co.uk]
Feb 12 17:22:10 main esmith::event[18533]:
Feb 12 17:22:13 main esmith::event[18533]: [ERROR] /usr/libexec/nethserver/smbads: failed to add service primaries to system keytab
Feb 12 17:22:13 main esmith::event[18533]: [ERROR] /usr/libexec/nethserver/smbads: failed to initialize keytabs
Feb 12 17:22:13 main esmith::event[18533]: Action: /etc/e-smith/events/nethserver-sssd-save/S30nethserver-sssd-initkeytabs FAILED: 5 [9.569786]
Feb 12 17:22:13 main esmith::event[18533]: Action: /etc/e-smith/events/nethserver-sssd-save/S80nethserver-sssd-notifyclients SUCCESS [0.320337]

Can anyone tell me what this means?

Thanks,

Tony

Bump :grinning:

1 Like

Please share the relevant log entries regarding SOGo from /var/log/messages.

Is the AD working?

Maybe it helps to upgrade the DC:

signal-event nethserver-dc-upgrade

I have ‘solved’ the Sogo problem. I wiped the machine and reinstalled the system from scratch. Sogo loaded OK this time.

I still get an error message on AD set up. As I cannot get the Terminal session to work within Nethserver I use WinSCP with the same result as previously shown. It appears to indicate AD was install successfully but I still got the warning.

A couple of silly questions. 1) How do I tell if it’s working?
2) Can I migrate from SME Server using LDAP instead? This is an in-house server with few users and no real need for the complications of AD.

The message log:
21:43
pam_listfile(sshd:auth): Refused user root for service sshd sshd
2
21:36
pam_sss(crond:session): Request to sssd failed. Connection refused CROND
21:36
pam_sss(crond:session): Request to sssd failed. Connection refused crond
21:29
<>; ; rspamd_srv_request_handler: cannot read from server pipe: Resource temporarily unavailable rspamd
21:29
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 3 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{647}\x{646}\x{627}\x{644}\x{643} rspamd
21:29
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 2 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{906}\x{92b}\x{942} rspamd
21:29
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 1 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{441}\x{430}\x{43c} rspamd
21:29
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 0 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 7; pattern: a\x{10d}koli rspamd
21:29
ping plugin: ping_send failed: Operation not permitted collectd
21:17
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 3 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{647}\x{646}\x{627}\x{644}\x{643} rspamd
21:17
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 2 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{906}\x{92b}\x{942} rspamd
21:17
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 1 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{441}\x{430}\x{43c} rspamd
21:17
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 0 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 7; pattern: a\x{10d}koli rspamd
21:16
***** nmbd
21:16
nmbd
21:16
Samba name server SERVER is now a local master browser for workgroup WORKGROUP on subnet 192.168.200.32 nmbd
21:16
nmbd
21:16
***** nmbd
21:16
[2021/02/23 21:16:54.220132, 0] …/…/source3/nmbd/nmbd_become_lmb.c:397(become_local_master_stage2) nmbd
21:16
daemon_ready: daemon ‘winbindd’ finished starting up and ready to serve connections winbindd
21:16
[2021/02/23 21:16:33.735123, 0] …/…/lib/util/become_daemon.c:136(daemon_ready) winbindd
21:16
initialize_winbindd_cache: clearing cache and re-creating with version number 2 winbindd
21:16
[2021/02/23 21:16:33.688469, 0] …/…/source3/winbindd/winbindd_cache.c:3166(initialize_winbindd_cache) winbindd
21:16
Got sig[15] terminate (is_parent=0) winbindd
21:16
[2021/02/23 21:16:33.535687, 0] …/…/source3/winbindd/winbindd.c:243(winbindd_sig_term_handler) winbindd
21:16
Got sig[15] terminate (is_parent=0) winbindd
21:16
[2021/02/23 21:16:33.532254, 0] …/…/source3/winbindd/winbindd.c:243(winbindd_sig_term_handler) winbindd
21:16
Got sig[15] terminate (is_parent=0) winbindd
21:16
[2021/02/23 21:16:33.527556, 0] …/…/source3/winbindd/winbindd.c:243(winbindd_sig_term_handler) winbindd
21:16
Got sig[15] terminate (is_parent=1) winbindd
21:16
[2021/02/23 21:16:33.525699, 0] …/…/source3/winbindd/winbindd.c:243(winbindd_sig_term_handler) winbindd
21:16
daemon_ready: daemon ‘smbd’ finished starting up and ready to serve connections smbd
21:16
[2021/02/23 21:16:33.132280, 0] …/…/lib/util/become_daemon.c:136(daemon_ready) smbd
21:16
sam_sid_to_name: possible deadlock - trying to lookup SID S-1-5-21-3754080163-3589471130-837215766-514 winbindd
21:16
[2021/02/23 21:16:32.875907, 0] …/…/source3/winbindd/winbindd_samr.c:685(sam_sid_to_name) winbindd
21:16
sam_sid_to_name: possible deadlock - trying to lookup SID S-1-5-21-3754080163-3589471130-837215766-501 winbindd
21:16
[2021/02/23 21:16:32.874534, 0] …/…/source3/winbindd/winbindd_samr.c:685(sam_sid_to_name) winbindd
21:16
daemon_ready: daemon ‘nmbd’ finished starting up and ready to serve connections nmbd
21:16
[2021/02/23 21:16:31.188160, 0] …/…/lib/util/become_daemon.c:136(daemon_ready) nmbd
21:16
Got SIGTERM: going down… nmbd
21:16
[2021/02/23 21:16:31.079126, 0] …/…/source3/nmbd/nmbd.c:59(terminate) nmbd
21:14
pam_listfile(cockpit:auth): Refused user root for service cockpit cockpit-session
18:40
<7y8ege>; cfg; rspamd_controller_load_saved_stats: cannot load controller stats from /var/lib/rspamd/stats.ucl: No such file or directory rspamd
18:40
<>; ; rspamd_srv_request_handler: cannot read from server pipe: Resource temporarily unavailable rspamd
18:40
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 3 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{647}\x{646}\x{627}\x{644}\x{643} rspamd
18:40
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 2 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{906}\x{92b}\x{942} rspamd
18:40
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 1 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 6; pattern: \x{441}\x{430}\x{43c} rspamd
18:40
<7y8ege>; cfg; rspamd_language_detector_init: cannot compile stop words for 0 language group: regexp parsing error: ‘character value in \x{…} sequence is too large’ at position 7; pattern: a\x{10d}koli rspamd
18:40
***** nmbd
18:40
nmbd
18:40
Samba name server MAIN is now a local master browser for workgroup WORKGROUP on subnet 192.168.200.32 nmbd
18:40

Thanks for your interest.

Check if the following works on command line

account-provider-test

or to login with admin (check out the useful commands in the wiki)

ldapsearch -Z -x -D CN=admin,CN=Users,DC=ad,DC=domain,DC=tld -w <PASSWORD> -b CN=Users,DC=ad,DC=domain,DC=tld, -h NSDC IP

and try to join a client to AD and access shares.

IIRC the warnings could be ignored.

I think it’s easier to migrate first and then remove the local samba account provider (should save users and groups).
Then install ldap account provider and import users/groups afterwards. If domain names are not the same you may have to edit users via phpldapadmin and merge mails.

Here is the migration documentation.

Be sure to not change the original server if something goes wrong…