Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
Directory and Authentication / one domain wide GPO to prevent thunderbird updates for all users
« on: January 14, 2022, 10:03:50 am »
Hello,
I want to add one domain-wide GPO rule on a Zentyal7 samba/AD server to prevent any updates for Thunderbird on all local Windows clients, since the update usually breaks a lot of perfectly working stuff.
What is the easiest way, preferably from the command line in Linux, to do this ?
Currently, I only know that the following registry value is doing this, but for each client only, not domain-wide :
... and I don't want to run to each client computer and add this registry value by hand, when some domain-wide rule could do it.
I want to add one domain-wide GPO rule on a Zentyal7 samba/AD server to prevent any updates for Thunderbird on all local Windows clients, since the update usually breaks a lot of perfectly working stuff.
What is the easiest way, preferably from the command line in Linux, to do this ?
Currently, I only know that the following registry value is doing this, but for each client only, not domain-wide :
Code: [Select]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Mozilla\Thunderbird]
"DisableAppUpdate"=dword:00000001
... and I don't want to run to each client computer and add this registry value by hand, when some domain-wide rule could do it.
2
Directory and Authentication / Zentyal 7: Domain users always lose their "Desktop" etc. data; temp profile
« on: September 01, 2021, 02:52:18 pm »
Hello,
I recently installed Zentyal 7 on a local server.
I have the following problem : Domain users can log in on a Windows-Client (usually, Win7 or Win10 Pro), but whatever they create in their profile is never properly saved. For example, one user can create a tiny folder on his desktop, but when he logs out and logs in again, the created folder simply vanishes. Sometimes, users are always logged in with a temporary profile and thus also lose everything they do on their profile, like, for example, Thunderbird settings, stuff on the Desktop, etc.etc.
In one case, a Windows user logs in into the domain, but is automatically immidately logged off again. This even happens to him if the whole Windows-10-pro-client is freshly installed , so it cannot be because of some old registry settings, .bak registry settings, etc. etc.
Do you have any kind advice of how to deal with this and how to fix these bugs?
I recently installed Zentyal 7 on a local server.
I have the following problem : Domain users can log in on a Windows-Client (usually, Win7 or Win10 Pro), but whatever they create in their profile is never properly saved. For example, one user can create a tiny folder on his desktop, but when he logs out and logs in again, the created folder simply vanishes. Sometimes, users are always logged in with a temporary profile and thus also lose everything they do on their profile, like, for example, Thunderbird settings, stuff on the Desktop, etc.etc.
In one case, a Windows user logs in into the domain, but is automatically immidately logged off again. This even happens to him if the whole Windows-10-pro-client is freshly installed , so it cannot be because of some old registry settings, .bak registry settings, etc. etc.
Do you have any kind advice of how to deal with this and how to fix these bugs?
3
Directory and Authentication / only SOME users should SSH to the Zentyal server
« on: February 18, 2020, 03:56:13 pm »
Hello,
In Zentyal I have an option to give ALL samba users the option to SSH to the server and get a shell login.
But I don't want to give all users this option, but only some users, and restrict other users.
How do I do this ?
In Zentyal I have an option to give ALL samba users the option to SSH to the server and get a shell login.
But I don't want to give all users this option, but only some users, and restrict other users.
How do I do this ?
4
Directory and Authentication / clone old zentyal 4.1 users incl. password to new zentyal 6?
« on: September 22, 2019, 06:21:55 pm »
Hello,
I have the need to freshly install a new Zentyal 6 on some machine and then to add all the existing users from an existing old Zentyal 4.1 installation, which exists on the old machine.
Somehow I would not want to manually add all users again.
Is there a script or something like that, which will add all users, including all their previous passwords and groups, to a new Zentyal 6 installation from an existing Zentyal 4.1 installation ?
I have the need to freshly install a new Zentyal 6 on some machine and then to add all the existing users from an existing old Zentyal 4.1 installation, which exists on the old machine.
Somehow I would not want to manually add all users again.
Is there a script or something like that, which will add all users, including all their previous passwords and groups, to a new Zentyal 6 installation from an existing Zentyal 4.1 installation ?
5
Directory and Authentication / need more samba interfaces, my own smb.conf is lost after reboot, what to do?
« on: June 03, 2019, 12:24:50 am »
Hello,
I need more interfaces for my samba configuration file "smb.conf", like so:
However, when I edit this in /etc/samba/smb.conf, my changes are lost when the next reboot happens.
What to do to make my changes more permanent ?
I need more interfaces for my samba configuration file "smb.conf", like so:
Code: [Select]
interfaces=lo,eth0,tun0
bind_interfaces_only=NO
However, when I edit this in /etc/samba/smb.conf, my changes are lost when the next reboot happens.
What to do to make my changes more permanent ?
6
Directory and Authentication / Possible little firewall problem over shares in VPN \\10.9.0.1\shares
« on: January 28, 2019, 03:34:46 pm »
Hello,
I installed a Zentyal 4.1 long time ago and it still works and no I _don't_ want to upgrade under any circumstances; however I have to fix a tiny problem.
When being in the internal 192.168.x.x network I can reach the Zentyal shares fine using \\server01\shares on Windows-7 clients.
HOWEVER, the same machine has a 10.8.0.100 VPN-ip-adress, and trying to reach that from a VPN-connected Windows-Client won't work.
I assume it is the firewall, because:
Starting Nmap 6.40 ( http://nmap.org ) at 2019-01-28 15:25 CET
Nmap scan report for localhost (127.0.0.1)
Host is up (0.0000040s latency).
Other addresses for localhost (not scanned): 127.0.0.1
rDNS record for 127.0.0.1: localhost.localdomain
Not shown: 975 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
53/tcp open domain
80/tcp open http
88/tcp open kerberos-sec
110/tcp open pop3
135/tcp open msrpc
139/tcp open netbios-ssn
143/tcp open imap
389/tcp open ldap
443/tcp open https
445/tcp open microsoft-ds
464/tcp open kpasswd5
465/tcp open smtps
587/tcp open submission
636/tcp open ldapssl
993/tcp open imaps
995/tcp open pop3s
1024/tcp open kdm
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
3306/tcp open mysql
5000/tcp open upnp
8443/tcp open https-alt
20000/tcp open dnp
Nmap done: 1 IP address (1 host up) scanned in 1.68 seconds
root@srv01:~# nmap 10.9.0.101
Starting Nmap 6.40 ( http://nmap.org ) at 2019-01-28 15:26 CET
Nmap scan report for 10.9.0.101
Host is up (0.000023s latency).
Not shown: 987 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
53/tcp open domain
80/tcp open http
110/tcp open pop3
143/tcp open imap
443/tcp open https
465/tcp open smtps
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
8443/tcp open https-alt
20000/tcp open dnp
Nmap done: 1 IP address (1 host up) scanned in 2.48 seconds
So you can see that the firewall won't allow (?) port 135 and port 139 on the VPN-IP.
How can I fix that? Any advice appreciated.
I installed a Zentyal 4.1 long time ago and it still works and no I _don't_ want to upgrade under any circumstances; however I have to fix a tiny problem.
When being in the internal 192.168.x.x network I can reach the Zentyal shares fine using \\server01\shares on Windows-7 clients.
HOWEVER, the same machine has a 10.8.0.100 VPN-ip-adress, and trying to reach that from a VPN-connected Windows-Client won't work.
I assume it is the firewall, because:
Starting Nmap 6.40 ( http://nmap.org ) at 2019-01-28 15:25 CET
Nmap scan report for localhost (127.0.0.1)
Host is up (0.0000040s latency).
Other addresses for localhost (not scanned): 127.0.0.1
rDNS record for 127.0.0.1: localhost.localdomain
Not shown: 975 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
53/tcp open domain
80/tcp open http
88/tcp open kerberos-sec
110/tcp open pop3
135/tcp open msrpc
139/tcp open netbios-ssn
143/tcp open imap
389/tcp open ldap
443/tcp open https
445/tcp open microsoft-ds
464/tcp open kpasswd5
465/tcp open smtps
587/tcp open submission
636/tcp open ldapssl
993/tcp open imaps
995/tcp open pop3s
1024/tcp open kdm
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
3306/tcp open mysql
5000/tcp open upnp
8443/tcp open https-alt
20000/tcp open dnp
Nmap done: 1 IP address (1 host up) scanned in 1.68 seconds
root@srv01:~# nmap 10.9.0.101
Starting Nmap 6.40 ( http://nmap.org ) at 2019-01-28 15:26 CET
Nmap scan report for 10.9.0.101
Host is up (0.000023s latency).
Not shown: 987 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
53/tcp open domain
80/tcp open http
110/tcp open pop3
143/tcp open imap
443/tcp open https
465/tcp open smtps
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
8443/tcp open https-alt
20000/tcp open dnp
Nmap done: 1 IP address (1 host up) scanned in 2.48 seconds
So you can see that the firewall won't allow (?) port 135 and port 139 on the VPN-IP.
How can I fix that? Any advice appreciated.
7
Email and Groupware / Zentyal 6: Does it have a "fetch external mail" option?
« on: November 10, 2018, 06:40:35 pm »
Hello,
I just want to know if Zentyal 6 has the option "fetch external mail" for each user. Is this still there?
If you can answer me, you save my time of making a test-installation.
I just want to know if Zentyal 6 has the option "fetch external mail" for each user. Is this still there?
If you can answer me, you save my time of making a test-installation.
8
Directory and Authentication / Samba working on VPN-ip 10.9.0.x : Is this possible? Current: Error 0x80004005
« on: May 02, 2017, 05:24:11 pm »
Hello,
I am running Zentyal 4.1 and 4.2, 64bit, and I wonder if a little tricky configuration is possible.
So far, I have installed Zentyal. But now the requirement arose that the Zentyal server is reachable via VPN.
So I admit I did a very ugly VPN-hack, I added a boot-script that automatically connects to an outside VPN-server on starting.
Thus, the Zentyal gets a 10.9.0.101 IP (static) and thus is reachable via client-to-client communication for all VPN-users in the 10.9.0.x area.
That is fine for Mail, Webserver, etc.etc. but not-so-fine for Samba: Trying to reach the shares via \\10.9.0.101\shares results in waiting a while, then a network error "0x80004005".
I checked the /etc/samba/smb.conf and I added tun0 to the interfaces:
interfaces = lo,eth0,eth1,tun0
However, it still won't let me connect from a Windows client to the Samba share at \\10.9.0.101\shares
Any help is greatly appreciated.
I am running Zentyal 4.1 and 4.2, 64bit, and I wonder if a little tricky configuration is possible.
So far, I have installed Zentyal. But now the requirement arose that the Zentyal server is reachable via VPN.
So I admit I did a very ugly VPN-hack, I added a boot-script that automatically connects to an outside VPN-server on starting.
Thus, the Zentyal gets a 10.9.0.101 IP (static) and thus is reachable via client-to-client communication for all VPN-users in the 10.9.0.x area.
That is fine for Mail, Webserver, etc.etc. but not-so-fine for Samba: Trying to reach the shares via \\10.9.0.101\shares results in waiting a while, then a network error "0x80004005".
I checked the /etc/samba/smb.conf and I added tun0 to the interfaces:
interfaces = lo,eth0,eth1,tun0
However, it still won't let me connect from a Windows client to the Samba share at \\10.9.0.101\shares
Any help is greatly appreciated.
9
Installation and Upgrades / upgrade 4.1.5 to 4.1.9 worked but upgrade to 4.2 borked with error
« on: July 23, 2016, 12:17:57 pm »
Hi,
I have an old 4.1.5 Zentyal test distro that worked, but I did not use it for a while, so I switched it on today again after a long time and I thought it would be a good idea to upgrade.
So I upgraded core components to 4.1.9. That worked.
Then the button appeared "upgrade to 4.2" . I pressed it....
I didn't look what was happening because I was busy.... but the machine shut down........
I manually switched it on again..... it asked for my 2 cryptsetup passwords. But the web interface now says "error" :
title
Aktionen
Zeige technische Details
Gehen Sie zurück
Leider ist ein unerwarteter Fehler aufgetreten
Es gibt einige Softwarepakete, die nicht korrekt installiert wurden: linux-image-3.16.0-77-generic.
Sie sollten es erneut installieren und versuchen sie ihren Vorgang nochmal.
Zeige technische Details
Error trace
Can't call method "ldap" on an undefined value at /usr/share/perl5/EBox/MailVDomainsLdap.pm line 43.
...propagated at /usr/share/perl5/EBox/CGI/Base.pm line 321.
at /usr/share/perl5/EBox/CGI/Run.pm line 105
in EBox::CGI::Run::run at /usr/share/perl5/EBox/CGI/Run.pm line 105
102: if (Scalar::Util::blessed($ex) and $ex->isa('EBox::Exceptions::Base')) {
103: $ex->throw();
104: } else {
105: die $ex;
106: }
107: }
108: }
Show function arguments
in main::__ANON__ at /usr/share/zentyal/psgi/zentyal.psgi line 46
43: local $SIG{__WARN__} = sub { EBox::warn($_[0]) };
44:
45: my $req = Plack::Request->new($env);
46: return EBox::CGI::Run->run($req);
47: };
48:
49: my $builder = new Plack::Builder();
Show function arguments
in Plack::App::URLMap::call at /usr/share/perl5/Plack/App/URLMap.pm line 71
68: return $self->response_cb($app->($env), sub {
69: $env->{PATH_INFO} = $orig_path_info;
70: $env->{SCRIPT_NAME} = $orig_script_name;
71: });
72: }
73:
74: DEBUG && warn "All matching failed.\n";
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in EBox::Middleware::Auth::call at /usr/share/perl5/EBox/Middleware/Auth.pm line 366
363: $self->_logout($env);
364: } elsif ($self->_validateSession($env)) {
365: delete $env->{'psgix.session'}{AuthReason};
366: return $self->app->($env);
367: } else {
368: # Require authentication, redirect to the login form.
369: return $self->_redirectToLogin($env);
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Middleware::Conditional::call at /usr/share/perl5/Plack/Middleware/Conditional.pm line 16
13: my($self, $env) = @_;
14:
15: my $app = $self->condition->($env) ? $self->middleware : $self->app;
16: return $app->($env);
17: }
18:
19: 1;
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in EBox::WebAdmin::Middleware::SubAppAuth::call at /usr/share/perl5/EBox/WebAdmin/Middleware/SubAppAuth.pm line 57
54: }
55: }
56: }
57: return $self->app->($env);
58: }
59:
60: 1;
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Middleware::Session::call at /usr/share/perl5/Plack/Middleware/Session.pm line 52
49:
50: $env->{'psgix.session.options'} = { id => $id };
51:
52: my $res = $self->app->($env);
53: $self->response_cb($res, sub { $self->finalize($env, $_[0]) });
54: }
55:
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Middleware::ReverseProxy::call at /usr/share/perl5/Plack/Middleware/ReverseProxy.pm line 68
65: }
66: }
67:
68: $self->app->($env);
69: }
70:
71: 1;
Show function arguments
in EBox::Middleware::UnhandledError::call at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in (eval) at /usr/share/zentyal/psgi/zentyal.psgi line 0
1: # Copyright (C) 2010-2014 Zentyal S.L.
2: #
3: # This program is free software; you can redistribute it and/or modify
at /usr/share/zentyal/psgi/zentyal.psgi line 0
1: # Copyright (C) 2010-2014 Zentyal S.L.
2: #
3: # This program is free software; you can redistribute it and/or modify
Gehen Sie zurück
I have an old 4.1.5 Zentyal test distro that worked, but I did not use it for a while, so I switched it on today again after a long time and I thought it would be a good idea to upgrade.
So I upgraded core components to 4.1.9. That worked.
Then the button appeared "upgrade to 4.2" . I pressed it....
I didn't look what was happening because I was busy.... but the machine shut down........
I manually switched it on again..... it asked for my 2 cryptsetup passwords. But the web interface now says "error" :
title
Aktionen
Zeige technische Details
Gehen Sie zurück
Leider ist ein unerwarteter Fehler aufgetreten
Es gibt einige Softwarepakete, die nicht korrekt installiert wurden: linux-image-3.16.0-77-generic.
Sie sollten es erneut installieren und versuchen sie ihren Vorgang nochmal.
Zeige technische Details
Error trace
Can't call method "ldap" on an undefined value at /usr/share/perl5/EBox/MailVDomainsLdap.pm line 43.
...propagated at /usr/share/perl5/EBox/CGI/Base.pm line 321.
at /usr/share/perl5/EBox/CGI/Run.pm line 105
in EBox::CGI::Run::run at /usr/share/perl5/EBox/CGI/Run.pm line 105
102: if (Scalar::Util::blessed($ex) and $ex->isa('EBox::Exceptions::Base')) {
103: $ex->throw();
104: } else {
105: die $ex;
106: }
107: }
108: }
Show function arguments
in main::__ANON__ at /usr/share/zentyal/psgi/zentyal.psgi line 46
43: local $SIG{__WARN__} = sub { EBox::warn($_[0]) };
44:
45: my $req = Plack::Request->new($env);
46: return EBox::CGI::Run->run($req);
47: };
48:
49: my $builder = new Plack::Builder();
Show function arguments
in Plack::App::URLMap::call at /usr/share/perl5/Plack/App/URLMap.pm line 71
68: return $self->response_cb($app->($env), sub {
69: $env->{PATH_INFO} = $orig_path_info;
70: $env->{SCRIPT_NAME} = $orig_script_name;
71: });
72: }
73:
74: DEBUG && warn "All matching failed.\n";
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in EBox::Middleware::Auth::call at /usr/share/perl5/EBox/Middleware/Auth.pm line 366
363: $self->_logout($env);
364: } elsif ($self->_validateSession($env)) {
365: delete $env->{'psgix.session'}{AuthReason};
366: return $self->app->($env);
367: } else {
368: # Require authentication, redirect to the login form.
369: return $self->_redirectToLogin($env);
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Middleware::Conditional::call at /usr/share/perl5/Plack/Middleware/Conditional.pm line 16
13: my($self, $env) = @_;
14:
15: my $app = $self->condition->($env) ? $self->middleware : $self->app;
16: return $app->($env);
17: }
18:
19: 1;
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in EBox::WebAdmin::Middleware::SubAppAuth::call at /usr/share/perl5/EBox/WebAdmin/Middleware/SubAppAuth.pm line 57
54: }
55: }
56: }
57: return $self->app->($env);
58: }
59:
60: 1;
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Middleware::Session::call at /usr/share/perl5/Plack/Middleware/Session.pm line 52
49:
50: $env->{'psgix.session.options'} = { id => $id };
51:
52: my $res = $self->app->($env);
53: $self->response_cb($res, sub { $self->finalize($env, $_[0]) });
54: }
55:
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Middleware::ReverseProxy::call at /usr/share/perl5/Plack/Middleware/ReverseProxy.pm line 68
65: }
66: }
67:
68: $self->app->($env);
69: }
70:
71: 1;
Show function arguments
in EBox::Middleware::UnhandledError::call at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in Plack::Component::__ANON__ at /usr/share/perl5/Plack/Component.pm line 50
47: sub to_app {
48: my $self = shift;
49: $self->prepare_app;
50: return sub { $self->call(@_) };
51: }
52:
53:
Show function arguments
in (eval) at /usr/share/zentyal/psgi/zentyal.psgi line 0
1: # Copyright (C) 2010-2014 Zentyal S.L.
2: #
3: # This program is free software; you can redistribute it and/or modify
at /usr/share/zentyal/psgi/zentyal.psgi line 0
1: # Copyright (C) 2010-2014 Zentyal S.L.
2: #
3: # This program is free software; you can redistribute it and/or modify
Gehen Sie zurück
10
Email and Groupware / Special mail configuration - how to implement this in Webmail ?
« on: July 10, 2016, 07:43:27 pm »
Hello,
We have a rather "special" mail configuration. Our setup is as follows:
We have a local domain, called "companyname.lan" and a Zentyal 4.2 server called "srv01.companyname.lan" (aka 'Server01').
"Server01" fetches the mails for each user from the external domain "mail.companyname.com" every minute and delivers it to user1, user2, user3.... at srv01.companyname.lan. The fetched, external mails are available for each user at the local imap server on Server01.
When we SEND e-mail, we use the external sending mailserver: mail.companyname.com ; not the Zentyal "Server01".
In Thunderbird, we can configure this easily, just by selecting the proper sending server.
However, when user1/2/3... logs in into Srv01 as Webmail, he can only send to other local users, not to anyone on the Internet.
Thus, we want to configure webmail so if "user1@companyname.lan" logs in, he should send e-mails as "user1@companyname.com" and use the existing external mail server "mail.companyname.com" instead of the local imap server on Zentyal.
Is that possible?
If it is possible, how do I implement this ? What do I have to change in Webmail so it will act like this ?
We have a rather "special" mail configuration. Our setup is as follows:
We have a local domain, called "companyname.lan" and a Zentyal 4.2 server called "srv01.companyname.lan" (aka 'Server01').
"Server01" fetches the mails for each user from the external domain "mail.companyname.com" every minute and delivers it to user1, user2, user3.... at srv01.companyname.lan. The fetched, external mails are available for each user at the local imap server on Server01.
When we SEND e-mail, we use the external sending mailserver: mail.companyname.com ; not the Zentyal "Server01".
In Thunderbird, we can configure this easily, just by selecting the proper sending server.
However, when user1/2/3... logs in into Srv01 as Webmail, he can only send to other local users, not to anyone on the Internet.
Thus, we want to configure webmail so if "user1@companyname.lan" logs in, he should send e-mails as "user1@companyname.com" and use the existing external mail server "mail.companyname.com" instead of the local imap server on Zentyal.
Is that possible?
If it is possible, how do I implement this ? What do I have to change in Webmail so it will act like this ?
11
Email and Groupware / email services never start
« on: April 28, 2016, 03:19:13 pm »
Editing the users email settings in the web interface, I get a warning:
Okay, so mail is not started, but why?
Trying to start mail:
That's right, I only need eth0, I have not configured eth1..... but.... why should I ?
What shall I do to get mail to work ?
Quote
"Mail account is unavailable because either there isn't any mail virtual domain created or you need to save changes in order to activate the new domains.
Click here to create a new mail virtual domain"
Okay, so mail is not started, but why?
Trying to start mail:
Quote
root@zentyal-cyprus:~# service zentyal status
Usage: /etc/init.d/zentyal start|stop|restart
/etc/init.d/zentyal <module> start|stop|status|enabled|restart
root@zentyal-cyprus:~# service zentyal mail status
Zentyal: status module mail: [ STOPPED ]
root@zentyal-cyprus:~# service zentyal mail start
* Restarting Zentyal module: mail [fail]
root command set -e
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'zentyal-mail-zentyal-cyprus'
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'imap/zentyal-cyprus.niotronic.lan'
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'imap/zentyal-cyprus.niotronic.lan@NIOTRONIC.LAN'
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'smtp/zentyal-cyprus.niotronic.lan'
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'smtp/zentyal-cyprus.niotronic.lan@NIOTRONIC.LAN'
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'pop/zentyal-cyprus.niotronic.lan'
samba-tool domain exportkeytab '/etc/dovecot/dovecot.keytab' --principal 'pop/zentyal-cyprus.niotronic.lan@NIOTRONIC.LAN'
chown 'root':'dovecot' '/etc/dovecot/dovecot.keytab'
chmod '440' '/etc/dovecot/dovecot.keytab' failed.
Error output: GENSEC backend 'gssapi_spnego' registered
GENSEC backend 'gssapi_krb5' registered
GENSEC backend 'gssapi_krb5_sasl' registered
GENSEC backend 'spnego' registered
GENSEC backend 'schannel' registered
GENSEC backend 'naclrpc_as_system' registered
GENSEC backend 'sasl-EXTERNAL' registered
GENSEC backend 'ntlmssp' registered
GENSEC backend 'http_basic' registered
GENSEC backend 'http_ntlm' registered
GENSEC backend 'krb5' registered
GENSEC backend 'fake_gssapi_krb5' registered
interpret_string_addr_internal: getaddrinfo failed for name eth1 (flags 32) [Name or service not known]
interpret_interface: Can't find address for eth1
interpret_string_addr_internal: getaddrinfo failed for name eth1 (flags 32) [Name or service not known]
interpret_interface: Can't find address for eth1
ERROR(runtime): uncaught exception - Key table entry not found
File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 175, in _run
return self.run(*args, **kwargs)
File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 117, in run
net.export_keytab(keytab=keytab, principal=principal)
Command output: .
Exit value: 255
root@zentyal-cyprus:~#
That's right, I only need eth0, I have not configured eth1..... but.... why should I ?
What shall I do to get mail to work ?
12
Installation and Upgrades / possible bug: Deleted users' home directory remains, and looks strange
« on: March 13, 2016, 11:24:31 pm »
Hello.
I was trying to reproduce bugtracker's issue #4811 (which is, "suddenly cannot add users anymore, useradd fails!") by using a Zentyal server running in a Virtualbox.
I could not reproduce the bug, but I found another hint: I added several users, and then I deleted one user (in this case, "user10").
The home directory of "user 10" remains, and it looks like this:
drwxr-xr-x 15 att att 4096 Mär 13 23:10 att
drwx------ 2 office-assholesign domain users 4096 Mär 11 19:26 office-assholesign
drwx------ 2 office-cyprus domain users 4096 Mär 11 19:27 office-cyprus
drwx------ 2 office-cyprus2 domain users 4096 Mär 12 20:58 office-cyprus2
drwxrwx---+ 4 root domain users 4096 Mär 11 18:45 samba
drwx------ 2 user1 domain users 4096 Mär 11 19:21 user1
drwx------ 2 2513 domain users 4096 Mär 12 20:19 user10
drwx------ 2 user10-test2 domain users 4096 Mär 13 23:12 user10-test2
drwx------ 2 user11 domain users 4096 Mär 12 20:55 user11
drwx------ 2 user12 domain users 4096 Mär 12 20:56 user12
drwx------ 2 user13 domain users 4096 Mär 12 20:57 user13
drwx------ 2 user13 domain users 4096 Mär 12 20:56 user13-13
drwx------ 2 user14 domain users 4096 Mär 12 20:59 user14
drwx------ 2 user14-cyprus domain users 4096 Mär 12 20:57 user14-cyprus
drwx------ 2 user2 domain users 4096 Mär 12 20:16 user2
drwx------ 2 user3 domain users 4096 Mär 12 20:16 user3
drwx------ 2 user4 domain users 4096 Mär 12 20:17 user4
drwx------ 2 user5 domain users 4096 Mär 12 20:17 user5
drwx------ 2 user6 domain users 4096 Mär 12 20:17 user6
drwx------ 2 user7 domain users 4096 Mär 12 20:18 user7
drwx------ 2 user8 domain users 4096 Mär 12 20:18 user8
drwx------ 2 user9 domain users 4096 Mär 12 20:18 user9
root@virtualzentyal:/home#
You notice this strange "user10" ? -> drwx------ 2 2513 domain users 4096 Mär 12 20:19 user10
It is still there, in the home directory, despite I deleted the user.
Where is the /etc/passwd and /etc/shadow credentials of each user stored? I cannot find it in these files....... ?
I thought if I delete a user, the home directory ought to be deleted too, and the /etc/passwd and /etc/shadow "entries" - whereever in Zentyal they really are now - also ought not to carry around the deleted user?
Any hints appreciated...
I was trying to reproduce bugtracker's issue #4811 (which is, "suddenly cannot add users anymore, useradd fails!") by using a Zentyal server running in a Virtualbox.
I could not reproduce the bug, but I found another hint: I added several users, and then I deleted one user (in this case, "user10").
The home directory of "user 10" remains, and it looks like this:
drwxr-xr-x 15 att att 4096 Mär 13 23:10 att
drwx------ 2 office-assholesign domain users 4096 Mär 11 19:26 office-assholesign
drwx------ 2 office-cyprus domain users 4096 Mär 11 19:27 office-cyprus
drwx------ 2 office-cyprus2 domain users 4096 Mär 12 20:58 office-cyprus2
drwxrwx---+ 4 root domain users 4096 Mär 11 18:45 samba
drwx------ 2 user1 domain users 4096 Mär 11 19:21 user1
drwx------ 2 2513 domain users 4096 Mär 12 20:19 user10
drwx------ 2 user10-test2 domain users 4096 Mär 13 23:12 user10-test2
drwx------ 2 user11 domain users 4096 Mär 12 20:55 user11
drwx------ 2 user12 domain users 4096 Mär 12 20:56 user12
drwx------ 2 user13 domain users 4096 Mär 12 20:57 user13
drwx------ 2 user13 domain users 4096 Mär 12 20:56 user13-13
drwx------ 2 user14 domain users 4096 Mär 12 20:59 user14
drwx------ 2 user14-cyprus domain users 4096 Mär 12 20:57 user14-cyprus
drwx------ 2 user2 domain users 4096 Mär 12 20:16 user2
drwx------ 2 user3 domain users 4096 Mär 12 20:16 user3
drwx------ 2 user4 domain users 4096 Mär 12 20:17 user4
drwx------ 2 user5 domain users 4096 Mär 12 20:17 user5
drwx------ 2 user6 domain users 4096 Mär 12 20:17 user6
drwx------ 2 user7 domain users 4096 Mär 12 20:18 user7
drwx------ 2 user8 domain users 4096 Mär 12 20:18 user8
drwx------ 2 user9 domain users 4096 Mär 12 20:18 user9
root@virtualzentyal:/home#
You notice this strange "user10" ? -> drwx------ 2 2513 domain users 4096 Mär 12 20:19 user10
It is still there, in the home directory, despite I deleted the user.
Where is the /etc/passwd and /etc/shadow credentials of each user stored? I cannot find it in these files....... ?
I thought if I delete a user, the home directory ought to be deleted too, and the /etc/passwd and /etc/shadow "entries" - whereever in Zentyal they really are now - also ought not to carry around the deleted user?
Any hints appreciated...
13
Installation and Upgrades / zentyal in virtualbox: apt-get update fails
« on: March 12, 2016, 06:26:31 pm »
Hello,
I have installed Zentyal 4.2 64bit into a Virtualbox. It's a fresh install.
I am informed that 61 system updates are available.
I click on "update"!
It fails with "apt-get install failed.... blablah ... -fix-missing?"
Now I guess I have to edit /etc/apt/sources.list but I don't know from where to get the "good" updates.....
Also, GCC C-Compiler is not pre-installed, which is a shame. I need to compile....!
I have installed Zentyal 4.2 64bit into a Virtualbox. It's a fresh install.
I am informed that 61 system updates are available.
I click on "update"!
It fails with "apt-get install failed.... blablah ... -fix-missing?"
Now I guess I have to edit /etc/apt/sources.list but I don't know from where to get the "good" updates.....
Also, GCC C-Compiler is not pre-installed, which is a shame. I need to compile....!
14
Installation and Upgrades / I suddenly cannot add any users anymore whatsoever!
« on: January 07, 2016, 11:12:42 am »
Hello,
I have a strange issue with Zentyal 4.2.
I installed it - ok, that worked nicely.
I configured my network and 2 interface cards - fine so far.
I added some users - that works very well.
I shut down the machine, rebooted it today, wanted to add more users but it suddenly fails:
https://tracker.zentyal.org/issues/4811
"Unexpected Error" :
root command set -e mkdir -p '/home/samba/profiles/test2' chown -R 2513:2513 '/home/samba/profiles/test2' chmod 0700 '/home/samba/profiles/test2' setfacl -b '/home/samba/profiles/test2' setfacl -R -m u:root:rwx,g::---,g:2513:---,u:'test2':rwx '/home/samba/profiles/test2' setfacl -R -m d:u:root:rwx,d:g::---,d:g:2513:---,d:u:'test2':rwx '/home/samba/profiles/test2' failed. Error output: setfacl: Option -m: Invalid argument near character 32 Command output: . Exit value: 2 at /usr/share/perl5/EBox/Sudo.pm line 240
The user was called "test2" ; the first user I tried to add was called "office-cyprus" and I thought that maybe due to the "-" sign in the name there was a problem. But when I added another user "test2" he could not add this user with the same message (see above).
The rest you can see in bug report 4811....... that was the "office-cyprus" user that suddenly offended Zentyal 4.2.
Your milage may vary. Any help, especially fast help, appreciated...... !
I have a strange issue with Zentyal 4.2.
I installed it - ok, that worked nicely.
I configured my network and 2 interface cards - fine so far.
I added some users - that works very well.
I shut down the machine, rebooted it today, wanted to add more users but it suddenly fails:
https://tracker.zentyal.org/issues/4811
"Unexpected Error" :
root command set -e mkdir -p '/home/samba/profiles/test2' chown -R 2513:2513 '/home/samba/profiles/test2' chmod 0700 '/home/samba/profiles/test2' setfacl -b '/home/samba/profiles/test2' setfacl -R -m u:root:rwx,g::---,g:2513:---,u:'test2':rwx '/home/samba/profiles/test2' setfacl -R -m d:u:root:rwx,d:g::---,d:g:2513:---,d:u:'test2':rwx '/home/samba/profiles/test2' failed. Error output: setfacl: Option -m: Invalid argument near character 32 Command output: . Exit value: 2 at /usr/share/perl5/EBox/Sudo.pm line 240
The user was called "test2" ; the first user I tried to add was called "office-cyprus" and I thought that maybe due to the "-" sign in the name there was a problem. But when I added another user "test2" he could not add this user with the same message (see above).
The rest you can see in bug report 4811....... that was the "office-cyprus" user that suddenly offended Zentyal 4.2.
Your milage may vary. Any help, especially fast help, appreciated...... !
15
Other modules / Zentyal as openvpn client, does not change the gateway to the openvpn gateway...
« on: December 29, 2015, 12:26:39 pm »
Hello,
I was trying to use a Zentyal 4.1 server not only as a local fileserver, but also as a gateway machine to the rest of the internet.
For this purpose, I thought I could use my existing, working vpn client files, and simply issue "openvpn configfile.conf" and the Zentyal would happily be a working gateway to the vpn server, which would be the gateway to the internet.
HOWEVER, things did not quite work as I supposed them to. When I used the commandline "openvpn configfile.conf" as user root in a Zentyal shell, the Zentyal server DID connect to the VPN server correctly, but it was unable to change the route to that server (tun device, 10.8.0.1....)
So what, precisely, do I have to do so that Zentyal would make a connection to this other VPN server and tunnel all the outgoing traffic through it ?
I was trying to use a Zentyal 4.1 server not only as a local fileserver, but also as a gateway machine to the rest of the internet.
For this purpose, I thought I could use my existing, working vpn client files, and simply issue "openvpn configfile.conf" and the Zentyal would happily be a working gateway to the vpn server, which would be the gateway to the internet.
HOWEVER, things did not quite work as I supposed them to. When I used the commandline "openvpn configfile.conf" as user root in a Zentyal shell, the Zentyal server DID connect to the VPN server correctly, but it was unable to change the route to that server (tun device, 10.8.0.1....)
So what, precisely, do I have to do so that Zentyal would make a connection to this other VPN server and tunnel all the outgoing traffic through it ?