@planet_jeroen @GG_jr @Stefano_Zamboni could you help us testing it?
Please let me know what could help
Yeah, I’m testing , but Murphy realy dislikes me trying to test and keeps throwing production issues at me which force me to support lab’s instead of test Nethserver 
I’ll be testing later today, and tomorrow if need be. I will follow my proposed test plan, unless someone has any remarks about how it can be improved upon. I should have already been done, sorry for the delay.
1 Like
Maybe a stupid question, but could someone please correct this commandline to something that works ? 
yum install --enablerepo=nethserver-testing nethserver-sssd-1.3.4-1.11.gfb6cd19.ns7.noarch.rpm
?
Do I need to enable the testing repo in a different way ?
edit: could it be lag due to mirrors not being updated immediately, or at all, for the testing repo ? Is there a way to force not using a mirror ?
edit2: maybe I’m just not looking at the right places, but neither the manual, nor the github page nor google help me here … nor forum search. I’d like to suggest to pin it somewhere … or slap me in the face with a trout and a pointer 
Try (leaving out the architecture and file extension) with:
yum makecahe fast
yum --enablerepo=nethserver-testing install nethserver-sssd-1.3.4-1.11.gfb6cd19.ns7
An option to disable mirrors would be to edit the repo file (/etc/yum.repos.d/NethServer.repo), but I think it’s not necessary.
2 Likes
that worked 
Thanx … now I can start the usefull part of my input here 
Test case 2 - New installation without SOGo
Fresh install of Nethserver, update fully
yum install --enablerepo=nethserver-testing nethserver-sssd-1.3.4-1.11.gfb6cd19.ns7
goto account provider page and create local AD: PLJNET.local (note I did not accept the proposal for a subdomain)
set admin passwords
go back to accounts provider page
Scenario 2.1) local AD
check assert TODO is not displayed on Dashboard
negative assert ldapservice credentials are visible on Accounts provider page
negative assert the ldapservice user is created automatically in AD net sam search -P samaccountname=ldapservice and has attribute userWorkstations: /
net sam search seems an invalid command. net list users yields nothing.
Content of /var/log/messages for domain creation operation:
Dec 19 01:23:50 NethAD systemd-nspawn: CentOS Linux 7 (Core)
Dec 19 01:23:50 NethAD systemd-nspawn: Kernel 3.10.0-693.11.1.el7.x86_64 on an x86_64
Dec 19 01:24:04 NethAD esmith::event[1921]: Action: /etc/e-smith/events/nethserver-dc-save/S95nethserver-dc-waitstart SUCCESS [21.338894]
Dec 19 01:24:05 NethAD /sbin/e-smith/db[3486]: /var/lib/nethserver/db/configuration: OLD sssd=service|AdDns||LdapURI||Provider|none|Realm|PLJNET.LOCAL|Workgroup|PLJNET|status|disabled
Dec 19 01:24:05 NethAD /sbin/e-smith/db[3486]: /var/lib/nethserver/db/configuration: NEW sssd=service|AdDns|192.168.178.121|LdapURI||Provider|none|Realm|PLJNET.LOCAL|Workgroup|PLJNET|status|disabled
Dec 19 01:24:05 NethAD /sbin/e-smith/db[3486]: /var/lib/nethserver/db/configuration: OLD sssd=service|AdDns|192.168.178.121|LdapURI||Provider|none|Realm|PLJNET.LOCAL|Workgroup|PLJNET|status|disabled
Dec 19 01:24:05 NethAD /sbin/e-smith/db[3486]: /var/lib/nethserver/db/configuration: NEW sssd=service|AdDns|192.168.178.121|LdapURI||Provider|ad|Realm|PLJNET.LOCAL|Workgroup|PLJNET|status|disabled
Dec 19 01:24:05 NethAD /sbin/e-smith/db[3486]: /var/lib/nethserver/db/configuration: OLD sssd=service|AdDns|192.168.178.121|LdapURI||Provider|ad|Realm|PLJNET.LOCAL|Workgroup|PLJNET|status|disabled
Dec 19 01:24:05 NethAD /sbin/e-smith/db[3486]: /var/lib/nethserver/db/configuration: NEW sssd=service|AdDns|192.168.178.121|LdapURI||Provider|ad|Realm|PLJNET.LOCAL|Workgroup|PLJNET|status|enabled
Dec 19 01:24:05 NethAD dnsmasq[3341]: exiting on receipt of SIGTERM
Dec 19 01:24:05 NethAD systemd: Stopping DNS caching server....
Dec 19 01:24:05 NethAD systemd: Started DNS caching server..
Dec 19 01:24:05 NethAD systemd: Starting DNS caching server....
Dec 19 01:24:05 NethAD dnsmasq[3490]: started, version 2.76 cachesize 4000
Dec 19 01:24:05 NethAD dnsmasq[3490]: compile time options: IPv6 GNU-getopt DBus no-i18n IDN DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth no-DNSSEC loop-detect inotify
Dec 19 01:24:05 NethAD dnsmasq-tftp[3490]: TFTP root is /var/lib/tftpboot
Dec 19 01:24:05 NethAD dnsmasq[3490]: using nameserver 192.168.178.121#53 for domain pljnet.local
Dec 19 01:24:05 NethAD dnsmasq[3490]: using nameserver 8.8.8.8#53
Dec 19 01:24:05 NethAD dnsmasq[3490]: read /etc/hosts - 2 addresses
Dec 19 01:24:05 NethAD dbus[681]: [system] Activating via systemd: service name='org.freedesktop.realmd' unit='realmd.service'
Dec 19 01:24:05 NethAD dbus-daemon: dbus[681]: [system] Activating via systemd: service name='org.freedesktop.realmd' unit='realmd.service'
Dec 19 01:24:05 NethAD systemd: Starting Realm and Domain Configuration...
Dec 19 01:24:05 NethAD dbus[681]: [system] Successfully activated service 'org.freedesktop.realmd'
Dec 19 01:24:05 NethAD systemd: Started Realm and Domain Configuration.
Dec 19 01:24:05 NethAD dbus-daemon: dbus[681]: [system] Successfully activated service 'org.freedesktop.realmd'
Dec 19 01:24:05 NethAD realmd: * Resolving: _ldap._tcp.pljnet.local
Dec 19 01:24:05 NethAD realmd: * Performing LDAP DSE lookup on: 192.168.178.121
Dec 19 01:24:05 NethAD realmd: * Successfully discovered: pljnet.local
Dec 19 01:24:05 NethAD realmd: * Required files: /usr/sbin/oddjobd, /usr/libexec/oddjob/mkhomedir, /usr/sbin/sssd, /usr/bin/net
Dec 19 01:24:05 NethAD realmd: * LANG=C LOGNAME=root /usr/bin/net -s /var/cache/realmd/realmd-smb-conf.651QBZ -U Administrator ads join pljnet.local
Dec 19 01:24:06 NethAD realmd: Enter Administrator's password:
Dec 19 01:24:06 NethAD realmd: Using short domain name -- PLJNET
Dec 19 01:24:06 NethAD realmd: Joined 'NETHAD' to dns domain 'pljnet.local'
Dec 19 01:24:06 NethAD realmd: * LANG=C LOGNAME=root /usr/bin/net -s /var/cache/realmd/realmd-smb-conf.651QBZ -U Administrator ads keytab create
Dec 19 01:24:06 NethAD realmd: Enter Administrator's password:
Dec 19 01:24:06 NethAD realmd: * /usr/bin/systemctl enable sssd.service
Dec 19 01:24:06 NethAD realmd: Created symlink from /etc/systemd/system/multi-user.target.wants/sssd.service to /usr/lib/systemd/system/sssd.service.
Dec 19 01:24:06 NethAD systemd: Reloading.
Dec 19 01:24:06 NethAD realmd: * /usr/bin/systemctl restart sssd.service
Dec 19 01:24:06 NethAD systemd: Starting System Security Services Daemon...
Dec 19 01:24:06 NethAD sssd: Starting up
Dec 19 01:24:07 NethAD sssd[be[pljnet.local]]: Starting up
Dec 19 01:24:07 NethAD sssd[nss]: Starting up
Dec 19 01:24:07 NethAD sssd[pam]: Starting up
Dec 19 01:24:07 NethAD systemd: Started System Security Services Daemon.
Dec 19 01:24:07 NethAD systemd: Reached target User and Group Name Lookups.
Dec 19 01:24:07 NethAD systemd: Starting User and Group Name Lookups.
Dec 19 01:24:07 NethAD realmd: * /usr/bin/sh -c /usr/sbin/authconfig --update --enablesssd --enablesssdauth --enablemkhomedir --nostart && /usr/bin/systemctl enable oddjobd.service && /usr/bin/systemctl start oddjobd.service
Dec 19 01:24:07 NethAD systemd: Reloading.
Dec 19 01:24:07 NethAD systemd: Reloading.
Dec 19 01:24:07 NethAD systemd: Reloading.
Dec 19 01:24:07 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:07 NethAD systemd: Started privileged operations for unprivileged applications.
Dec 19 01:24:07 NethAD systemd: Starting privileged operations for unprivileged applications...
Dec 19 01:24:07 NethAD realmd: * Successfully enrolled machine in realm
Dec 19 01:24:07 NethAD esmith::event[1921]: Password for Administrator:
Dec 19 01:24:07 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:07 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:07 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:07 NethAD esmith::event[3484]: Event: nethserver-sssd-save
Dec 19 01:24:07 NethAD systemd: Stopping System Security Services Daemon...
Dec 19 01:24:07 NethAD sssd[be[pljnet.local]]: Shutting down
Dec 19 01:24:07 NethAD sssd[nss]: Shutting down
Dec 19 01:24:07 NethAD sssd[pam]: Shutting down
Dec 19 01:24:07 NethAD systemd: Stopped System Security Services Daemon.
Dec 19 01:24:07 NethAD esmith::event[3484]: [NOTICE] wipe out sssd databases and configuration
Dec 19 01:24:07 NethAD esmith::event[3484]: Action: /etc/e-smith/events/nethserver-sssd-save/S01nethserver-sssd-cleanup SUCCESS [0.025144]
Dec 19 01:24:07 NethAD esmith::event[3484]: expanding /etc/backup-config.d/nethserver-sssd.include
Dec 19 01:24:08 NethAD esmith::event[3484]: expanding /etc/openldap/ldap.conf
Dec 19 01:24:08 NethAD esmith::event[3484]: expanding /etc/samba/smb.conf
Dec 19 01:24:08 NethAD esmith::event[3484]: expanding /etc/sssd/sssd.conf
Dec 19 01:24:08 NethAD esmith::event[3484]: Action: /etc/e-smith/events/actions/generic_template_expand SUCCESS [0.218733]
Dec 19 01:24:08 NethAD esmith::event[3484]: Action: /etc/e-smith/events/nethserver-sssd-save/S20nethserver-sssd-conf SUCCESS [0.220988]
Dec 19 01:24:08 NethAD esmith::event[3484]: Action: /etc/e-smith/events/nethserver-sssd-save/S30nethserver-sssd-initkeytabs SUCCESS [0.412874]
Dec 19 01:24:08 NethAD esmith::event[3484]: Action: /etc/e-smith/events/nethserver-sssd-save/S80nethserver-sssd-notifyclients SUCCESS [0.139121]
Dec 19 01:24:09 NethAD systemd: Reloading.
Dec 19 01:24:09 NethAD systemd: Starting System Security Services Daemon...
Dec 19 01:24:09 NethAD sssd: Starting up
Dec 19 01:24:09 NethAD sssd[be[PLJNET.local]]: Starting up
Dec 19 01:24:09 NethAD sssd[pam]: Starting up
Dec 19 01:24:09 NethAD sssd[nss]: Starting up
Dec 19 01:24:09 NethAD systemd: Started System Security Services Daemon.
Dec 19 01:24:09 NethAD esmith::event[3484]: [INFO] sssd has been started
Dec 19 01:24:09 NethAD esmith::event[3484]: Action: /etc/e-smith/events/actions/adjust-services SUCCESS [0.446894]
Dec 19 01:24:09 NethAD esmith::event[3484]: Event: nethserver-sssd-save SUCCESS
Dec 19 01:24:09 NethAD esmith::event[1921]: Action: /etc/e-smith/events/nethserver-dc-save/S96nethserver-dc-join SUCCESS [4.581999]
Dec 19 01:24:09 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:09 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:09 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:09 NethAD esmith::event[1921]: Password complexity activated!
Dec 19 01:24:09 NethAD esmith::event[1921]: Password history length changed!
Dec 19 01:24:09 NethAD esmith::event[1921]: Minimum password age changed!
Dec 19 01:24:09 NethAD esmith::event[1921]: Maximum password age changed!
Dec 19 01:24:09 NethAD esmith::event[1921]: All changes applied successfully!
Dec 19 01:24:09 NethAD esmith::event[1921]: Action: /etc/e-smith/events/nethserver-dc-save/S97nethserver-dc-password-policy SUCCESS [0.629243]
Dec 19 01:24:10 NethAD sssd: ; TSIG error with server: tsig verify failure
Dec 19 01:24:10 NethAD sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Dec 19 01:24:10 NethAD sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Dec 19 01:24:10 NethAD sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Dec 19 01:24:10 NethAD esmith::event[1921]: modifying entry "cn=Partitions,cn=Configuration,dc=pljnet,dc=local"
Dec 19 01:24:10 NethAD esmith::event[1921]:
Dec 19 01:24:10 NethAD esmith::event[1921]: Action: /etc/e-smith/events/nethserver-dc-save/S97nethserver-dc-set-upn SUCCESS [0.622453]
Dec 19 01:24:11 NethAD esmith::event[1921]: User 'admin' created successfully
Dec 19 01:24:12 NethAD esmith::event[1921]: Added members to group Domain Admins
Dec 19 01:24:12 NethAD esmith::event[1921]: Action: /etc/e-smith/events/nethserver-dc-save/S98nethserver-dc-createadmins SUCCESS [2.19672]
Dec 19 01:24:13 NethAD esmith::event[1921]: Added members to group Account Operators
Dec 19 01:24:13 NethAD esmith::event[1921]: [NOTICE] Added machine account to Account Operators group
Dec 19 01:24:13 NethAD esmith::event[1921]: Action: /etc/e-smith/events/nethserver-dc-save/S98nethserver-dc-machine-grants SUCCESS [0.971413]
Dec 19 01:24:13 NethAD esmith::event[1921]: Event: nethserver-dc-save SUCCESS
Dec 19 01:24:13 NethAD esmith::event[1908]: Action: /etc/e-smith/events/nethserver-dc-update/S95nethserver-dc-firststart SUCCESS [91.821012]
Dec 19 01:24:14 NethAD esmith::event[1908]: Action: /etc/e-smith/events/nethserver-dc-update/S96nethserver-dc-machine-grants SUCCESS [0.401836]
Dec 19 01:24:14 NethAD esmith::event[1908]: Event: nethserver-dc-update SUCCESS
Dec 19 01:24:14 NethAD esmith::event[3825]: Event: runlevel-adjust
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:14 NethAD systemd: Reloading.
Dec 19 01:24:15 NethAD systemd: Reloading.
Dec 19 01:24:15 NethAD systemd: Reloading.
Dec 19 01:24:15 NethAD esmith::event[3825]: Action: /etc/e-smith/events/runlevel-adjust/S20runlevel-adjust SUCCESS [0.910403]
Dec 19 01:24:15 NethAD esmith::event[3825]: Event: runlevel-adjust SUCCESS
Dec 19 01:24:15 NethAD esmith::event[4032]: Event: firewall-adjust
Dec 19 01:24:15 NethAD esmith::event[4033]: Event: nethserver-firewall-base-save firewall-adjust
Dec 19 01:24:15 NethAD esmith::event[4033]: Action: /etc/e-smith/events/nethserver-firewall-base-save/S02providers-cleanup SUCCESS [0.138213]
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/lsm/lsm.conf
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/actions
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/hosts
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/interfaces
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/maclist
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/mangle
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/masq
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/modules
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/nat
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/policy
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/providers
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/rtrules
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/rules
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/shorewall.conf
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/stoppedrules
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/tcinterfaces
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/tcpri
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/tunnels
Dec 19 01:24:15 NethAD esmith::event[4033]: expanding /etc/shorewall/zones
Dec 19 01:24:15 NethAD esmith::event[4033]: Action: /etc/e-smith/events/actions/generic_template_expand SUCCESS [0.370991]
Dec 19 01:24:15 NethAD systemd: Reloading.
Dec 19 01:24:16 NethAD kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 01:24:16 NethAD kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 01:24:16 NethAD logger: Shorewall reloaded
Dec 19 01:24:16 NethAD esmith::event[4033]: [NOTICE] Shorewall restart
Dec 19 01:24:16 NethAD esmith::event[4033]: Action: /etc/e-smith/events/nethserver-firewall-base-save/S89nethserver-shorewall-restart SUCCESS [0.745854]
Dec 19 01:24:16 NethAD systemd: Reloading.
Dec 19 01:24:16 NethAD esmith::event[4033]: [INFO] service lsm is disabled: skipped
Dec 19 01:24:16 NethAD esmith::event[4033]: Action: /etc/e-smith/events/actions/adjust-services SUCCESS [0.201563]
Dec 19 01:24:16 NethAD esmith::event[4033]: Event: nethserver-firewall-base-save SUCCESS
Dec 19 01:24:16 NethAD esmith::event[4032]: Action: /etc/e-smith/events/firewall-adjust/S20firewall-adjust SUCCESS [1.529917]
Dec 19 01:24:16 NethAD esmith::event[4032]: Event: firewall-adjust SUCCESS
Dec 19 01:26:48 NethAD esmith::event[4313]: Event: password-modify admin@PLJNET.local /tmp/ng-VLMqw2
Dec 19 01:26:48 NethAD esmith::event[4313]: Action: /etc/e-smith/events/password-modify/S25password-set SUCCESS [0.002824]
Dec 19 01:26:48 NethAD esmith::event[4313]: spawn /usr/bin/systemd-run -M nsdc -q -t /usr/bin/samba-tool user setpassword admin
Dec 19 01:26:49 NethAD esmith::event[4313]: New Password:
Dec 19 01:26:49 NethAD esmith::event[4313]: Retype Password:
Dec 19 01:26:49 NethAD esmith::event[4313]: Changed password OK
Dec 19 01:26:49 NethAD esmith::event[4313]: Action: /etc/e-smith/events/password-modify/S30nethserver-dc-password-set SUCCESS [0.302922]
Dec 19 01:26:49 NethAD esmith::event[4313]: Enabled user 'admin'
Dec 19 01:26:49 NethAD esmith::event[4313]: Action: /etc/e-smith/events/password-modify/S40nethserver-dc-user-unlock SUCCESS [0.279583]
Dec 19 01:26:49 NethAD esmith::event[4313]: Action: /etc/e-smith/events/password-modify/S90password-cleanup SUCCESS [0.017355]
Dec 19 01:26:49 NethAD esmith::event[4313]: Event: password-modify SUCCESS
Dec 19 01:27:03 NethAD esmith::event[4353]: Event: password-modify administrator@PLJNET.local /tmp/ng-v0ukRP
Dec 19 01:27:03 NethAD esmith::event[4353]: Action: /etc/e-smith/events/password-modify/S25password-set SUCCESS [0.002678]
Dec 19 01:27:03 NethAD esmith::event[4353]: spawn /usr/bin/systemd-run -M nsdc -q -t /usr/bin/samba-tool user setpassword administrator
Dec 19 01:27:03 NethAD esmith::event[4353]: New Password:
Dec 19 01:27:03 NethAD esmith::event[4353]: Retype Password:
Dec 19 01:27:03 NethAD esmith::event[4353]: Changed password OK
Dec 19 01:27:03 NethAD esmith::event[4353]: Action: /etc/e-smith/events/password-modify/S30nethserver-dc-password-set SUCCESS [0.307834]
Dec 19 01:27:04 NethAD esmith::event[4353]: Enabled user 'administrator'
Dec 19 01:27:04 NethAD esmith::event[4353]: Action: /etc/e-smith/events/password-modify/S40nethserver-dc-user-unlock SUCCESS [0.272658]
Dec 19 01:27:04 NethAD esmith::event[4353]: Action: /etc/e-smith/events/password-modify/S90password-cleanup SUCCESS [0.010934]
Dec 19 01:27:04 NethAD esmith::event[4353]: Event: password-modify SUCCESS
Dec 19 01:30:13 NethAD systemd: Starting Cleanup of Temporary Directories...
Dec 19 01:30:14 NethAD systemd: Started Cleanup of Temporary Directories.
The domain seems created tho, and can be joined: let’s see (skip ahead)
Scenario 2.2 local OpenLDAP
check assert TODO is not displayed on Dashboard
check assert Accounts provider page is displayed without errors
Not sure if it is correct tho:
I seem to miss bind credentials for an authenticated bind ?
Scenario 2.3) remote LDAP
Fresh install of Nethserver, update fully
yum install --enablerepo=nethserver-testing nethserver-sssd-1.3.4-1.11.gfb6cd19.ns7
goto account provider page and (try to) join just created LDAP on 192.168.178.120 (ip of VM1)
I cant join anonymous, and see no BIND credentials on the LDAP server. I have 0 experience here tho, so might be doing it wrong.
Scenario 2.4) remote AD
Fresh install of Nethserver, update fully
yum install --enablerepo=nethserver-testing nethserver-sssd-1.3.4-1.11.gfb6cd19.ns7
goto account provider page and join AD domain
check assert the Authentication credentials for LDAP applications checkbox is unset
check assert no yellow warning message is issued
check assert Accounts provider page can be SAVEd keeping the current settings
check assert TODO is not displayed on Dashboard
Test case 3 - New installation with SOGo
Fresh install of Nethserver, update fully
yum install --enablerepo=nethserver-testing nethserver-sssd-1.3.4-1.11.gfb6cd19.ns7
SOGo installed
goto accounts provider page, ad, join
Scenario 3.4) remote AD
check assert a warning “Set BindDN…” is displayed on Accounts provider page
check assert the TODO is displayed on Dashboard
/signing off for this part of today 
Edit: realy now. added some openldap stuff, not sure if it is worth much. I have no experience with it.
4 Likes
Thanks man this is gold for us
My mistake: it was net ads search...
Yes, the OpenLDAP screen is what we expect: no errors and lot of whitespace 
No, it’s ok and different from AD case. OpenLDAP show credentials under Status > Domain accounts page. I was thinking if it’s worth to make it similar to AD, but at the end I preferred to avoid many UI changes in this phase…
[root@testserver ~]# net ads search -P samaccountname=ldapservice
Got 0 replies
[quote]Yes, the OpenLDAP screen is what we expect: no errors and lot of whitespace
No, it’s ok and different from AD case. OpenLDAP show credentials under Status > Domain accounts page. I was thinking if it’s worth to make it similar to AD, but at the end I preferred to avoid many UI changes in this phase…
[/quote]
Scenario 2.3) remote LDAP
this scenario only works by first setting STARTTLS to YES and removing the ‘s’ from ldaps:\ip
check assert TODO is not displayed on Dashboard
check assert Accounts provider page can be SAVEd only if supplied credentials and settings are correct (however there are limitations on rights checking - some configuration errors can’t be caught and do not cause this test case to fail)
it seems something’s gone wrong…
Please could you run
grep -5 -E '(ERROR|FAIL)' /var/log/messages
…and paste it here?
It depends on the remote server configuration.
[root@nethap ~]# grep -5 -E '(error|fail)' /var/log/messages
[root@nethap ~]#
--
Dec 19 15:04:19 nethap esmith::event[2726]: expanding /etc/shorewall/tcpri
Dec 19 15:04:19 nethap esmith::event[2726]: expanding /etc/shorewall/tunnels
Dec 19 15:04:19 nethap esmith::event[2726]: expanding /etc/shorewall/zones
Dec 19 15:04:19 nethap esmith::event[2726]: Action: /etc/e-smith/events/actions/generic_template_expand SUCCESS [0.263082]
Dec 19 15:04:19 nethap systemd: Reloading.
Dec 19 15:04:20 nethap kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 15:04:20 nethap kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 15:04:20 nethap logger: Shorewall reloaded
Dec 19 15:04:20 nethap esmith::event[2726]: [NOTICE] Shorewall restart
Dec 19 15:04:20 nethap esmith::event[2726]: Action: /etc/e-smith/events/nethserver-firewall-base-save/S89nethserver-shorewall-restart SUCCESS [0.516046]
Dec 19 15:04:20 nethap systemd: Reloading.
Dec 19 15:04:20 nethap esmith::event[2726]: [INFO] service lsm is disabled: skipped
--
Dec 19 15:04:21 nethap esmith::event[2945]: expanding /etc/shorewall/tcpri
Dec 19 15:04:21 nethap esmith::event[2945]: expanding /etc/shorewall/tunnels
Dec 19 15:04:21 nethap esmith::event[2945]: expanding /etc/shorewall/zones
Dec 19 15:04:21 nethap esmith::event[2945]: Action: /etc/e-smith/events/actions/generic_template_expand SUCCESS [0.255898]
Dec 19 15:04:21 nethap systemd: Reloading.
Dec 19 15:04:21 nethap kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 15:04:21 nethap kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 15:04:21 nethap logger: Shorewall reloaded
Dec 19 15:04:21 nethap esmith::event[2945]: [NOTICE] Shorewall restart
Dec 19 15:04:21 nethap esmith::event[2945]: Action: /etc/e-smith/events/nethserver-firewall-base-save/S89nethserver-shorewall-restart SUCCESS [0.488266]
Dec 19 15:04:21 nethap systemd: Reloading.
Dec 19 15:04:21 nethap esmith::event[2945]: [INFO] service lsm is disabled: skipped
--
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libcurl.so.4()(64bit) for package: systemd-219-42.el7_4.4.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libcryptsetup.so.4()(64bit) for package: systemd-219-42.el7_4.4.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libblkid.so.1()(64bit) for package: systemd-219-42.el7_4.4.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libaudit.so.1()(64bit) for package: systemd-219-42.el7_4.4.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package systemd-libs.x86_64 0:219-42.el7_4.4 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libgpg-error.so.0()(64bit) for package: systemd-libs-219-42.el7_4.4.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package zlib.x86_64 0:1.2.7-17.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: --> Running transaction check
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package acl.x86_64 0:2.2.51-12.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package audit-libs.x86_64 0:2.7.6-3.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libcap-ng.so.0()(64bit) for package: audit-libs-2.7.6-3.el7.x86_64
--
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libssh2(x86-64) >= 1.4.3 for package: libcurl-7.29.0-42.el7_4.1.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: --> Processing Dependency: libssh2.so.1()(64bit) for package: libcurl-7.29.0-42.el7_4.1.x86_64
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libdb.x86_64 0:5.3.21-20.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libffi.x86_64 0:3.0.13-18.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libgcrypt.x86_64 0:1.5.3-14.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libgpg-error.x86_64 0:1.12-3.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libmount.x86_64 0:2.23.2-43.el7_4.2 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libsepol.x86_64 0:2.5-6.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libtasn1.x86_64 0:4.10-1.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package libverto.x86_64 0:0.2.5-4.el7 will be installed
Dec 19 15:04:34 nethap esmith::event[2229]: ---> Package ncurses.x86_64 0:5.9-14.20130511.el7_4 will be installed
--
Dec 19 15:04:34 nethap esmith::event[2229]: libdb-utils x86_64 5.3.21-20.el7 base 132 k
Dec 19 15:04:34 nethap esmith::event[2229]: libedit x86_64 3.0-12.20121213cvs.el7 base 92 k
Dec 19 15:04:34 nethap esmith::event[2229]: libffi x86_64 3.0.13-18.el7 base 30 k
Dec 19 15:04:34 nethap esmith::event[2229]: libgcc x86_64 4.8.5-16.el7_4.1 updates 98 k
Dec 19 15:04:34 nethap esmith::event[2229]: libgcrypt x86_64 1.5.3-14.el7 base 263 k
Dec 19 15:04:34 nethap esmith::event[2229]: libgpg-error x86_64 1.12-3.el7 base 87 k
Dec 19 15:04:34 nethap esmith::event[2229]: libidn x86_64 1.28-4.el7 base 209 k
Dec 19 15:04:34 nethap esmith::event[2229]: libmount x86_64 2.23.2-43.el7_4.2 updates 178 k
Dec 19 15:04:34 nethap esmith::event[2229]: libpwquality x86_64 1.2.3-4.el7 base 84 k
Dec 19 15:04:34 nethap esmith::event[2229]: libselinux x86_64 2.5-11.el7 base 162 k
Dec 19 15:04:34 nethap esmith::event[2229]: libsemanage x86_64 2.5-8.el7 base 145 k
--
Dec 19 15:04:49 nethap yum[3148]: Installed: p11-kit-0.23.5-3.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: libxml2-2.9.1-6.el7_2.3.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: readline-6.2-10.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: grep-2.20-3.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: 1:gmp-6.0.0-15.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: libgpg-error-1.12-3.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: libgcrypt-1.5.3-14.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: libcap-ng-0.7.5-4.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: audit-libs-2.7.6-3.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: lua-5.1.4-15.el7.x86_64
Dec 19 15:04:49 nethap yum[3148]: Installed: sqlite-3.7.17-8.el7.x86_64
--
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : p11-kit-0.23.5-3.el7.x86_64 35/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : libxml2-2.9.1-6.el7_2.3.x86_64 36/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : readline-6.2-10.el7.x86_64 37/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : grep-2.20-3.el7.x86_64 38/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : 1:gmp-6.0.0-15.el7.x86_64 39/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : libgpg-error-1.12-3.el7.x86_64 40/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : libgcrypt-1.5.3-14.el7.x86_64 41/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : libcap-ng-0.7.5-4.el7.x86_64 42/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : audit-libs-2.7.6-3.el7.x86_64 43/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : lua-5.1.4-15.el7.x86_64 44/152
Dec 19 15:04:55 nethap esmith::event[2229]: Installing : sqlite-3.7.17-8.el7.x86_64 45/152
--
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : perl-Encode-2.51-7.el7.x86_64 59/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : libtasn1-4.10-1.el7.x86_64 60/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : perl-threads-1.87-4.el7.x86_64 61/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : 1:hardlink-1.0-19.el7.x86_64 62/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : cracklib-2.9.0-11.el7.x86_64 63/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : libgpg-error-1.12-3.el7.x86_64 64/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : kmod-libs-20-15.el7_4.6.x86_64 65/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : 7:device-mapper-libs-1.02.140-8.el7.x86_64 66/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : nss-softokn-freebl-3.28.3-8.el7_4.x86_64 67/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : gzip-1.5-9.el7.x86_64 68/152
Dec 19 15:05:02 nethap esmith::event[2229]: Verifying : nspr-4.13.1-1.0.el7_3.x86_64 69/152
--
Dec 19 15:05:04 nethap esmith::event[2229]: libdb-utils.x86_64 0:5.3.21-20.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libedit.x86_64 0:3.0-12.20121213cvs.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libffi.x86_64 0:3.0.13-18.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libgcc.x86_64 0:4.8.5-16.el7_4.1
Dec 19 15:05:04 nethap esmith::event[2229]: libgcrypt.x86_64 0:1.5.3-14.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libgpg-error.x86_64 0:1.12-3.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libidn.x86_64 0:1.28-4.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libmount.x86_64 0:2.23.2-43.el7_4.2
Dec 19 15:05:04 nethap esmith::event[2229]: libpwquality.x86_64 0:1.2.3-4.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libselinux.x86_64 0:2.5-11.el7
Dec 19 15:05:04 nethap esmith::event[2229]: libsemanage.x86_64 0:2.5-8.el7
--
Dec 19 15:05:23 nethap systemd: Started System Security Services Daemon.
Dec 19 15:05:23 nethap esmith::event[3794]: [INFO] sssd has been started
Dec 19 15:05:23 nethap esmith::event[3794]: Action: /etc/e-smith/events/actions/adjust-services SUCCESS [0.346416]
Dec 19 15:05:23 nethap esmith::event[3794]: Event: nethserver-sssd-save SUCCESS
Dec 19 15:05:23 nethap esmith::event[2229]: Action: /etc/e-smith/events/nethserver-dc-save/S96nethserver-dc-join SUCCESS [2.793106]
Dec 19 15:05:23 nethap sssd: ; TSIG error with server: tsig verify failure
Dec 19 15:05:23 nethap esmith::event[2229]: Password complexity activated!
Dec 19 15:05:23 nethap esmith::event[2229]: Password history length changed!
Dec 19 15:05:23 nethap esmith::event[2229]: Minimum password age changed!
Dec 19 15:05:23 nethap esmith::event[2229]: Maximum password age changed!
Dec 19 15:05:23 nethap esmith::event[2229]: All changes applied successfully!
Dec 19 15:05:23 nethap esmith::event[2229]: Action: /etc/e-smith/events/nethserver-dc-save/S97nethserver-dc-password-policy SUCCESS [0.54547]
Dec 19 15:05:23 nethap sssd: ; TSIG error with server: tsig verify failure
Dec 19 15:05:24 nethap sssd: ; TSIG error with server: tsig verify failure
Dec 19 15:05:24 nethap sssd: ; TSIG error with server: tsig verify failure
Dec 19 15:05:24 nethap sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Dec 19 15:05:24 nethap sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Dec 19 15:05:24 nethap sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Dec 19 15:05:24 nethap esmith::event[2229]: modifying entry "cn=Partitions,cn=Configuration,dc=mydomain,dc=local"
Dec 19 15:05:24 nethap esmith::event[2229]:
Dec 19 15:05:24 nethap esmith::event[2229]: Action: /etc/e-smith/events/nethserver-dc-save/S97nethserver-dc-set-upn SUCCESS [0.470443]
Dec 19 15:05:24 nethap esmith::event[2229]: User 'admin' created successfully
Dec 19 15:05:25 nethap esmith::event[2229]: Added members to group Domain Admins
--
Dec 19 15:05:27 nethap esmith::event[4297]: expanding /etc/shorewall/tcpri
Dec 19 15:05:27 nethap esmith::event[4297]: expanding /etc/shorewall/tunnels
Dec 19 15:05:27 nethap esmith::event[4297]: expanding /etc/shorewall/zones
Dec 19 15:05:27 nethap esmith::event[4297]: Action: /etc/e-smith/events/actions/generic_template_expand SUCCESS [0.271491]
Dec 19 15:05:28 nethap systemd: Reloading.
Dec 19 15:05:28 nethap kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 15:05:28 nethap kernel: ipt_ULOG: ULOG: fail to register logger.
Dec 19 15:05:28 nethap logger: Shorewall reloaded
Dec 19 15:05:28 nethap esmith::event[4297]: [NOTICE] Shorewall restart
Dec 19 15:05:28 nethap esmith::event[4297]: Action: /etc/e-smith/events/nethserver-firewall-base-save/S89nethserver-shorewall-restart SUCCESS [0.508735]
Dec 19 15:05:28 nethap systemd: Reloading.
Dec 19 15:05:28 nethap esmith::event[4297]: [INFO] service lsm is disabled: skipped
[root@nethap ~]#
1 Like
Feature released in nethserver-sssd-1.3.5-1.ns7.noarch.rpm
1 Like