Ok, the nmap command output says if all samba sub-processes are running correctly. Here’s the expected output:
$ nmap nsdc
Starting Nmap 7.60 ( https://nmap.org ) at 2018-06-07 09:19 CEST
Nmap scan report for nsdc (XXXXXXXXXXXXXX)
Host is up (0.00015s latency).
rDNS record for XXXXXXXXXXXXXX
Not shown: 987 closed ports
PORT STATE SERVICE
53/tcp open domain
88/tcp open kerberos-sec
135/tcp open msrpc
139/tcp open netbios-ssn
389/tcp open ldap
445/tcp open microsoft-ds
464/tcp open kpasswd5
636/tcp open ldapssl
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
Under some conditions related to upstream updates the kerberos-sec and kpasswd5 are missing and authentication stops working. Please check your.
Can you see the accounts list under “Users and groups” page?
This command should fail and show the error you see in the UI
/usr/libexec/nethserver/list-users administrator
Could you check also your DNS/SSSD/Kerberos config
config show dns
config show sssd
config show nsdc
systemctl status dnsmasq
systemctl status sssd
cat /etc/krb5.conf
[root@nethserver ~]# config show nsdc
nsdc=service
IpAddress=192.168.3.201
ProvisionType=newdomain
bridge=br0
status=enabled
systemctl status dnsmasq
[root@nethserver ~]# systemctl status dnsmasq
● dnsmasq.service - DNS caching server.
Loaded: loaded (/usr/lib/systemd/system/dnsmasq.service; enabled; vendor preset: disabled)
Drop-In: /etc/systemd/system/dnsmasq.service.d
└─ipset.conf
Active: active (running) since Tue 2018-06-05 14:21:47 -05; 1 day 18h ago
Process: 1713 ExecStartPre=/etc/e-smith/events/actions/nethserver-squid-ipset (code=exited, status=0/SUCCESS)
Main PID: 2128 (dnsmasq)
Tasks: 1
CGroup: /system.slice/dnsmasq.service
└─2128 /usr/sbin/dnsmasq -k
Jun 05 14:21:47 nethserver.info2.unicentrobogota.com systemd[1]: Started DNS ...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: started, ...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: compile t...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq-tftp[2128]: TFTP...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: using nam...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: using nam...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: using nam...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: using nam...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: using nam...
Jun 05 14:21:48 nethserver.info2.unicentrobogota.com dnsmasq[2128]: read /etc...
Hint: Some lines were ellipsized, use -l to show in full.
systemctl status sssd
[root@nethserver ~]# systemctl status sssd
● sssd.service - System Security Services Daemon
Loaded: loaded (/usr/lib/systemd/system/sssd.service; enabled; vendor preset: disabled)
Active: active (running) since Tue 2018-06-05 14:21:53 -05; 1 day 18h ago
Main PID: 2145 (sssd)
Tasks: 4
CGroup: /system.slice/sssd.service
├─2145 /usr/sbin/sssd -i --logger=files
├─2817 /usr/libexec/sssd/sssd_nss --uid 0 --gid 0 --logger=files
├─2818 /usr/libexec/sssd/sssd_pam --uid 0 --gid 0 --logger=files
└─6259 /usr/libexec/sssd/sssd_be --domain info2.unicentrobogota.co...
Jun 05 14:38:01 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:38:01 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:38:01 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:52:50 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:52:50 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:53:15 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:53:35 nethserver.info2.unicentrobogota.com sssd_be[2679]: GSSAPI cl...
Jun 05 14:53:35 nethserver.info2.unicentrobogota.com sssd[be[info2.unicentrobogota.com]][2679]: ...
Jun 05 14:53:35 nethserver.info2.unicentrobogota.com sssd[be[info2.unicentrobogota.com]][6259]: ...
Jun 05 14:54:47 nethserver.info2.unicentrobogota.com sssd[be[info2.unicentrobogota.com]][6259]: ...
Hint: Some lines were ellipsized, use -l to show in full.
[root@nethserver ~]# /usr/libexec/nethserver/list-users administrator
Could not resolve domain ad.info2.unicentrobogota.com
[root@nethserver ~]# nmap 192.168.3.201
Starting Nmap 6.40 ( http://nmap.org ) at 2018-06-07 09:24 -05
Nmap scan report for 192.168.3.201
Host is up (0.000027s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
53/tcp open domain
88/tcp open kerberos-sec
135/tcp open msrpc
139/tcp open netbios-ssn
389/tcp open ldap
445/tcp open microsoft-ds
464/tcp open kpasswd5
636/tcp open ldapssl
1024/tcp open kdm
1025/tcp open NFS-or-IIS
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
MAC Address: E2:35:6C:5F:08:29 (Unknown)
Nmap done: 1 IP address (1 host up) scanned in 14.88 seconds
[root@nethserver ~]# cat /etc/resolv.conf
# ================= DO NOT MODIFY THIS FILE =================
#
# Manual changes will be lost when this file is regenerated.
#
# Please read the developer's guide, which is available
# at NethServer official site: https://www.nethserver.org
#
#
domain info2.unicentrobogota.com
search info2.unicentrobogota.com
# dnsmasq is enabled on this machine:
nameserver 127.0.0.1
No I couldn’t solve the problem, DNS querys are not working I’m planning to format the machine, Until 20 days I can’t touch the machine for that pourpose (web aplication working).
I have Ntop misterious Traffic in the machine I think that it is hijacked, dont know what to do.
One of the configured repositories failed (Unknown),
and yum doesn’t have enough cached data to continue. At this point the only
safe thing yum can do is fail. There are a few ways to work “fix” this:
1. Contact the upstream for the repository and get them to fix the problem.
2. Reconfigure the baseurl/etc. for the repository, to point to a working
upstream. This is most often useful if you are using a newer
distribution release than is supported by the repository (and the
packages for the previous distribution release still work).
3. Run the command with the repository temporarily disabled
yum --disablerepo=<repoid> ...
4. Disable the repository permanently, so yum won't use it by default. Yum
will then just ignore the repository until you permanently enable it
again or use --enablerepo for temporary usage:
yum-config-manager --disable <repoid>
or
subscription-manager repos --disable=<repoid>
5. Configure the failing repository to be skipped, if it is unavailable.
Note that yum will try to contact the repo. when it runs most commands,
so will have to try and fail each time (and thus. yum will be be much
slower). If it is a very temporary problem though, this is often a nice
compromise:
yum-config-manager --save --setopt=<repoid>.skip_if_unavailable=true
Cannot find a valid baseurl for repo: base/7/x86_64