Zentyal Forum, Linux Small Business Server
Zentyal Server => Installation and Upgrades => Topic started by: rafaelmbaez on May 28, 2012, 01:19:59 pm
-
When I create a user, it says:
Cannot set quota to 0....
The user is created, but I cant access it in my computers domain. But old users have no problem to access it. Its crazy
I need a fix ASAP, cant understand why this is happening, never had quotas activated, and I think its because an update.
I think Zentyal is a really good software, but instead of put more improvements, it should be much more stable.
Please help
-
I think this is update that broke my system.
http://lists.zentyal.org/pipermail/zentyal-commits/2012-April/005950.html
Can I disable it? Can I revert it? I cant work, I cant add users!!!
this is mad
-
Hello Rafael.
I have just tested this and I cannot reproduce the error you mention. I have created several users with different default quota values (including 0), and also changed user quotas to different values.
If you can reproduce this it would be nice if you could add some more information. Please also test this on a clean system (i.e. in a virtual machine), in order to rule out any possible custom changes you have made to your system.
-
Rafael, how many users do you have?
-
Hello Rafael,
in order to help us with this could you execute the following command and pot the output here:
sudo /usr/zentyal-useruser-quota -q UID
If you don't know the uidnumber of your user you could get it using the 'uid' command. For example:
jag@zapp:/tmp$ id jag
uid=1000(jag) gid=1000(jag) groups=1000(jag),4(adm),20(dialout),24(cdrom),27(sudo),46(plugdev),110(lpadmin),111(sambashare),112(admin)
In this case the user 'jag' uid number is 1000.
Let us know what you find
-
I have the same error
My setup it 1Master/3Slave
and the error make other error
/usr/share/zentyal-users/user-quota -q 2059
-1
-
Probably te quota themservles are not working correctly.
Before the upgrade the quotes worked?. By worked I mean that if you exceeded quota the filesystem denied the writing of more data. I do NOT mean wether you could set the quota field value, before the upgrade we have less checks so it detects more errors now.
A thing that could make the quota misswork would be to have strange permissions in the /home directory. Could you paste the output of the command 'ls -ld /home'?
-
I have the same problem
"sudo /usr/zentyal-useruser-quota -q UID" returns
-1
"ls -ld /home" returns
drwxr-xr-x 29 root root 4096 2012-06-04 10:15 /home
I was gonna put users in the domain but I can't log into it with a test user. I can, however, put the computer in the domain with the admin login but after a reboot of the windows box I can't log with the same user and password. It always says "invalid password".
Any help is greatly appreciated! Thanks for your time.
-
"sudo /usr/zentyal-useruser-quota -q UID"
You need to replace 'UID' with the UID number of your user, otherwise it would always return -1 . You can get the uid number with the command 'id USER_NAME'.
The permissions of /home are correct so this is not the problem
-
thats what i did for the UID btw. I just dont wanna put the username on here.
-
Ok, could you run 'sudo quotestats'? . I am convinced that is a problem of the quota system itself but I don't yet know what exact problem is it.
-
root@zentyal:/var/log/zentyal# quotastats
Kernel quota version: 6.5.1
Number of dquot lookups: 2967167
Number of dquot drops: 2966061
Number of dquot reads: 42
Number of dquot writes: 166
Number of quotafile syncs: 80
Number of dquot cache hits: 2966978
Number of allocated dquots: 42
Number of free dquots: 10
Number of in use dquot entries (user/group): 32
-
Thanks for you quick answer. This output seems correct.
Maybe it could be how the mount points are set up in the system? The output of this two commands could be useful to check this theory:
- mount
- ls /home /
-
yeah the homes are mounted from a NAS
/xxxx on /home type nfs (rw,nolock,addr=xxx.xxx.xxx.xxx) (modified output for names and ip)
-
You have the aquota.group and aquota.user files either in / or /home?.
Anyway until it is fixed I provide you a version with the check disabled. Use it to replace /usr/share/perl5/EBox/UsersAndGroups.pm and then execute 'sudo /etc/init.d/zentyal apache restart' then create your users. However the quotas would not work, regardless of what will be shown in the interface.
-
yes i got:
aquota.group and aquota.user in /
-rw------- 1 root root 12288 2012-06-04 04:13 aquota.group
-rw------- 1 root root 11264 2012-06-03 22:04 aquota.user
Thanks for helping.
Anything else you want me to test?
-
No, with this we have enough material. It is clear that since you mount the /home with NFS the quota are not set correctly and this is the cause of the failure. In previous versions it also failed but the fail was ignored.
Of course we have to provide a way to control this situation or disable the quota system. I will update you when we had news about this feature.
-
Alright,
Thank you so much!
-
Update,
The error is gone but I still can't log into the domain with a test user. I tried changing the password and also deleted the user and home for that user and recreated it.
Still says I got the wrong password.
-
Well, this other error is unrelated to disk quota.
- Can you use the user/password in other zentyal services, user corner for example?
- What is your zentyal-users and zentyal-samba configuration?. The PDC is Zentyal itself or it is in AD synchronization mode?
-
I can use the username/password to access the shares without any problems and yes the PDC is zentyal only... no sync with an AD. I thought it could have been related because the person who first posted the problem in this topic said he could not log into the domain either
-
Give PDC administrator rights to your user and use it to join or re-join the computer to the domain. Then you should be able to access with all users to the computer.
-
Gave it another try, same problem, I deleted the test user just to be sure... re-created it with the file you gave me. I can join the domain just fine but I can't login with the same credentials used to join the domain.
Is there a way to turn debug mode higher for that? I can't seem to find anything in the logs yet it says I have the wrong password...
small update on that:
For fun i tried "passwd testtest" which is my test user
Here's the output
root@zentyal:/home# passwd testtest
passwd: Authentication information cannot be recovered
passwd: password unchanged
more updates:
Looking at my syslog server I found this message coming from the Zentyal box:
Entry (uid=testtest,ou=Users,dc=xxxx,dc=com), attribute 'sambaNTPassword' not allowed
-
Hello! I can not figure out how to turn off quota checking.
You have the aquota.group and aquota.user files either in / or /home?.
Anyway until it is fixed I provide you a version with the check disabled. Use it to replace /usr/share/perl5/EBox/UsersAndGroups.pm and then execute 'sudo /etc/init.d/zentyal apache restart' then create your users. However the quotas would not work, regardless of what will be shown in the interface.
-
You just download the file and replace it. Then, you restart the apache module.
/etc/init.d/zentyal apache restart
-
Hello psauxw,
your error puzzles me, it is very strange to be able to join the domain but not be able to login. Maybe there is something of note en /var/log/samba ?. It would be worth a try to see if there is some new message logged after a failed login.
-
I've been trying to look at every log but the only useful infos that ive found are in /var/log/samba/nmbd
[2012/06/06 11:41:19, 0] libsmb/nmblib.c:834(send_udp)
Packet send failed to 192.168.5.232(138) ERRNO=Operation not permitted
That was right after I tried to login. The ip is the right one too (the vm i tried to log with)
/var/log/samba contains logs for every machines but if I do a "less 192.168.5.232" the log is filled with:
[2012/02/20 11:46:33, 0] lib/debug.c:663(reopen_logs)
Unable to open new log file /var/log/samba/: Is a directory
-
Reading again the thread I think that is probably that the user has not set correctly all the LDAP attributes. Could you post a dump of the user LDAP data?.
To get it run this command:
sudo slapcat -a "(uid=USER_NAME)"
Then edit out the confidential fields and post it.
Also you can do a login with the administrator user which you used to join the system to the domain?
-
I can join the domain with any user with administration's right but using the same user I can't login once the computer is in the domain.
root@zentyal:~# id testtest
uid=2069(testtest) gid=1901(__USERS__) groups=1901(__USERS__),2002(admin),512(Domain Admins),513(Domain Users),544(Administrators)
I edited the following to remove passwords SHA and MD5 and the domain's name
root@zentyal:~# slapcat -a "(uid=testtest)"
dn: uid=testtest,ou=Users,dc=xxxx,dc=com
cn: test test
uid: testtest
sn: test
loginShell: /usr/sbin/nologin
uidNumber: 2069
gidNumber: 1901
homeDirectory: /home/testtest
userPassword:
quota: 0
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: passwordHolder
objectClass: systemQuotas
objectClass: CourierMailAccount
objectClass: usereboxmail
objectClass: fetchmailUser
objectClass: sambaSamAccount
eboxSha1Password:
eboxMd5Password:
eboxLmPassword:
eboxNtPassword:
eboxDigestPassword:
eboxRealmPassword:
structuralObjectClass: inetOrgPerson
entryUUID: ac9b8c2c-4362-1031-918b-433f45acaea9
creatorsName: cn=ebox,dc=xxxx,dc=com
createTimestamp: 20120605140121Z
givenName: test
mail: testtest@xxxx.com
mailbox: xxxx.com/testtest/
userMaildirSize: 0
mailquota: 0
mailHomeDirectory: /var/vmail/
sambaPwdCanChange: 0
sambaLogoffTime: 2147483647
sambaLogonTime: 0
sambaAcctFlags: [U]
sambaPasswordHistory: 00000000000000000000000000000000000000000000000000000000
sambaKickoffTime: 2147483647
sambaPwdLastSet: 1338904882
sambaPwdMustChange: 2147483647
sambaHomePath: \\zentyal\homes\testtest
sambaPrimaryGroupSID: S-1-5-21-3818554400-921237426-3143208535-513
sambaLMPassword:
sambaNTPassword:
sambaSID: S-1-5-21-3818554400-921237426-3143208535-5138
entryCSN: 20120605140122.572281Z#000000#000#000000
modifiersName: cn=ebox,dc=xxxx,dc=com
modifyTimestamp: 20120605140122Z
im off for the weekend, thanks for your help this week. I'll continu trying to figure things out with you next week.
-
I tried updating...problem still exist
-
I got the same problem
1 Master
5 Slaves
when i create a new user i get the message -> Cannot set quota to 0
and the user is created in the master machine and synced to the slaves
i cant configure the new user on the slaves - i get a error message
Sorry, an unexpected error has occurred Unknown error at EBox::SambaLdapUser::_getAccountFlags Referral received
zentyal is up to date
Core version 2.2.7
*edit*
with replacing UsersAndGroups.pm with the attached file http://forum.zentyal.org/index.php/topic,11007.msg44872.html#msg44872
user creating, sync, domain login - with slaves works ;)
-
I still got the problem and kinda lost hope to find a solution so I was wondering if there would be a quick and safe way to copy all my configuration on a new fresh zentyal installation?
I have : users, shares, DHCP reservation via network objects, 3 v-lan.
I think that's about it.
Thank you for your time again
-
bumping this for a new week =P
-
Same problem here in 4 diferent deployments. Quite annoying. :'(
-
yes, i really don't know when this happened but i'm just really happy that i didnt migrate my users to use the domain else i would be in deep crap
-
Any new developments on this problem?
-
I update UsersAndGroups to 2.2.7
add new User - Quota error (master)
Sync to Slave works, but i cant configure the user on slaves
Sorry, an unexpected error has occurred Unknown error at EBox::SambaLdapUser::_getAccountFlags Referral received
replaced UsersAndGroups.pm on the MasterHost
add new User - No Error (master)
Sync to Slave works and i can configure the user on slaves (Except Quota)
Problem still exist with UsersAndGroups 2.2.7
1 Master
5 Slaves
all up to Date
-
I cant believe this is not fixed, and I having the same problems again.
Cant create users, quota error appear, but the user cant login in a computer in the domain.
We need a fix of this asap.
-
Sorry, it seems that we don't backported the fix to the 2.2.X series. We will release a new zentyal-users packages ASAP, I think it will be available on one or two days.
meanwhile you can follow this steps to hotfix 2.2.X installations.
- Open the file /use/share/perl5/EBox/UsersAnsGroups.pm
- In the whereabouts of line 1227 you will find this:
if ((not defined $afterQuota) or ($quota != $afterQuota)) {
throw EBox::Exceptions::External(
__x('Cannot set quota to {userQuota}. Please, choose another value',
userQuota => $userQuota)
)
}
- Comment out or remove this section
- Execute 'sudo /etc/init.d/zentyal pache restart'
-
Sorry, an unexpected error has occurred Unknown error at EBox::SambaLdapUser::_getAccountFlags Referral received
This has nothing to do with this problem, it is caused by a synchronization problem between master and slave. Check the connection between them and rejoin the slave if it continues.
-
This has nothing to do with this problem, it is caused by a synchronization problem between master and slave. Check the connection between them and rejoin the slave if it continues.
Hello
If i create my new users with the quota error i got this message on slaves
Sorry, an unexpected error has occurred Unknown error at EBox::SambaLdapUser::_getAccountFlags Referral received
If i create my new users with the fix above (no quota) - sync work and i can configure my users on slaves
I think the quota error on the master is responsible
thanks ;)
-
The fix has been published for 2.2.X series. The package is zentyal-users version 2.2.8
-
I think the quota error on the master is responsible
Then you must be right. This error must also be fired with the quota error. You can try with the new package and see if it works
-
The fix has been published for 2.2.X series. The package is zentyal-users version 2.2.8
FYI, I applied this update this morning using Zentyal GUI 8) but my system became unresponsive :(
No more access to Zentyal GUI and slow access to internet ???
I tried to find what was wrong. Nothing special except maybe more error messages in /var/log/zentysal/error.log...
Well, I will have to look at this later but the urgent aspect was to ensure internet access was running smoothly. So I decided to reboot Zentyal server.
What a wrong idea :(
It took quite a lot of time before I could SSH and access GUI. Then no internet access. I was wondering why until I discovered that both my external interfaces were not enables in the /network/gateway menu >:( >:( >:(
-
Christian, you only upgraded zentyal-users or they were more packages included in the upgrade?.
If you are not sure you car peruse the /var/lib/zentyal/software.log file
-
only users & group. Well, I'm sure but will check twice.
Also notice that I'm facing (at least from my standpoint) inconsistent behaviour with gateways and failover. As discussed in another post, from time to time, when main gateway is seen as "failed", Zentyal switches to secondary gateway but never revert back until I do it manually.
In such case, main gateway is disabled in gateway interface.
This may have a link with problem I faced after reboot.
However, even before rebooting, access to Zentyal GUI was not working any more.
See hereafter log extract. Notice that I launched update more or less at 9:28am. I got internet access back at 10:12am... hopefully I'm not running this platform for any business stuff (yet) ;)
/var/log/zentyal/software.log extract
2012-07-25 09:28:33> Reading package lists...
2012-07-25 09:28:33> Building dependency tree...
2012-07-25 09:28:33> Reading state information...
2012-07-25 09:28:33> The following packages will be upgraded:
2012-07-25 09:28:33> procps
2012-07-25 09:28:34> 1 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
2012-07-25 09:28:34> Need to get 249kB of archives.
2012-07-25 09:28:34> After this operation, 12.3kB disk space will be freed.
2012-07-25 09:28:34> Get:1 http://fr.archive.ubuntu.com/ubuntu/ lucid-updates/main procps 1:3.2.8-1ubuntu4.3 [249kB]
2012-07-25 09:28:34> Fetched 249kB in 0s (733kB/s)
2012-07-25 09:28:34> (Reading database ... 90716 files and directories currently installed.)
2012-07-25 09:28:34> Preparing to replace procps 1:3.2.8-1ubuntu4.2 (using .../procps_1%3a3.2.8-1ubuntu4.3_amd64.deb) ...
2012-07-25 09:28:34> Unpacking replacement procps ...
2012-07-25 09:28:36> Processing triggers for man-db ...
2012-07-25 09:28:37> Processing triggers for ureadahead ...
2012-07-25 09:28:37> Setting up procps (1:3.2.8-1ubuntu4.3) ...
2012-07-25 09:28:37> Installing new version of config file /etc/init/procps.conf ...
2012-07-25 09:28:37>
2012-07-25 09:28:37> Processing triggers for libc-bin ...
2012-07-25 09:28:37> ldconfig deferred processing now taking place
2012-07-25 09:28:38> Zentyal apt-wrapper install finished
2012-07-25 09:29:26> Zentyal apt-wrapper install started
2012-07-25 09:29:26> Reading package lists...
2012-07-25 09:29:26> Building dependency tree...
2012-07-25 09:29:26> Reading state information...
2012-07-25 09:29:27> The following packages will be upgraded:
2012-07-25 09:29:27> zentyal-users
2012-07-25 09:29:27> 1 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
2012-07-25 09:29:27> Need to get 78.2kB of archives.
2012-07-25 09:29:27> After this operation, 0B of additional disk space will be used.
2012-07-25 09:29:27> Get:1 http://ppa.launchpad.net/zentyal/2.2/ubuntu/ lucid/main zentyal-users 2.2.8 [78.2kB]
2012-07-25 09:29:27> Fetched 78.2kB in 0s (528kB/s)
2012-07-25 09:29:27> (Reading database ... 90716 files and directories currently installed.)
2012-07-25 09:29:27> Preparing to replace zentyal-users 2.2.7 (using .../zentyal-users_2.2.8_all.deb) ...
2012-07-25 09:29:27> Unpacking replacement zentyal-users ...
2012-07-25 09:29:29> Processing triggers for ureadahead ...
2012-07-25 09:29:29> Setting up zentyal-users (2.2.8) ...
2012-07-25 09:29:34> * Restarting Zentyal module: users
2012-07-25 09:29:34> ...done.
2012-07-25 09:29:34>
2012-07-25 09:29:34> Processing triggers for zentyal-core ...
2012-07-25 09:29:35> * Restarting Zentyal module: apache
2012-07-25 09:29:35> ...done.
2012-07-25 09:29:37> * Restarting Zentyal module: logs
2012-07-25 09:29:37> ...done.
2012-07-25 09:29:39> * Restarting Zentyal module: events
2012-07-25 09:29:39> ...done.
2012-07-25 09:29:40> Zentyal apt-wrapper install finished
-
Thank You
Updated from UsersAndGroups 2.2.7 -> UsersAndGroups 2.2.8
on Master and Slaves
no more quota errors
sync and user configuration on clients works ;)
for me i`ts solved