Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - trysomething

Pages: 1 2 [3] 4 5 ... 8
31
1.  Open the web GUI for your Zentyal server in Firefox (not IE or Edge or Chrome or Opera or any other browser, just Firefox)
2.  Browse to Users and Computers > Manage
3.  Select the PC inquestion by clicking on it once with the mouse
4.  Click on the trash can icon at the bottom of the usersand computers window5.  If prompted to make sure - choose OK or Yes or Just Do It
5.  Look at the top right corner of the screen, if it says "Save Changes" then click on it and then click on the Save button.
DONE - easy peasy lemon squeezy

32
Email and Groupware / Re: Sanity Check Please - Outgoing SMTP
« on: June 09, 2016, 12:52:40 am »
OK, so there's a whole bunch of stuff you didn't get told properly, that being said it's likely a simple solution.
First of all are you using Zentyal as a Gateway and Email server?  because that's actually not supposed to be a thing and it's probably 99% of your problem there.
Second have you read the part about installing the Root CA certificate on clients that are not joined to the domain?
There are 3 different scenarios in the Wiki that go over connecting clients, but first of all if you go into https://yourzentyaldomain/webmail, login and send a test message to a Google, Hotmail or Yahoo email address does it go through?  If so cool you have port 25, if not call your ISP and ask if port 25 is blocked or not, if it's blocked then you've got a whole lot of thinking to do.
BBeyond that if you are going to use the self signed certificate then on a Windows machine with Outlook you'll need to go into your Zentyal admin GUI and browse to Mail > Openchange and then click the download the certificate file.  Once you have the file then you'll have to install the cert into your Trusted Root Certificates folder (which is not how it works automatically).  Once that's done your Outlook should work fine for machines inside and outside of the LAN that are not joined to the domain.
The same goes for mobile devices, but you'll have to find out what format you can install the certificate to the device.
OR you can go buy a 3rd party UCC/SAN cert that covers:
yourhostname.yourdomain.com
autodiscover.yourdomain.com
yourdomain.com
and if you're going to do web hosting throw in www.yourdomain.com - Comodo has one that's like $50/year so it's worth it.  I wrote a tutorial on how to install 3rd party SSL and it works like a champ.
There's also the distinct possibility that you've entered all of the necessary DNS records into Zentyal, but not your external DNS - which you'll need to put any SPF, SRV and other pointers into your external DNS host too.
Anyways there's a quick getting started guid for you, those are the most likely culprits.  If none of that works drop an update in here and we'll get things narrowed down for you.

33
Email and Groupware / Re: autodiscover using third party DNS
« on: April 20, 2016, 02:01:39 am »
There are a ton of threads about using 3rd party SSL, but here's the easy way to do it...
Make the directory /etc/Zentyal/stubs/openchange like so:
sudo su
***enter sudo password to become root user***
mkdir -p /etc/Zentyal/stubs
mkdir -p /etc/Zentyal/stubs/openchange

Now copy the OpenChange stub file into your new directory:

cp /usr/share/Zentyal/stubs/openchange/apache-ocsmanager.conf.mas /etc/Zentyal/stubs/openchange/apache-ocsmanager.conf.mas

Edit the stub to point to your SSL certificates.  You'll look for the line like below:

SSLCertificateFile <% SSLCertificate %> (I'm not 100% on the part between less than and greater than but you get the point)

Edit that line and add one for your key file and for your ca-bundle or your cat file (whichever you ended up with) so it looks like:
SSLCertificateFile /etc/apache2/certs/your_certificate.crt (maybe .pem, again just depends)
SSLCertificateKeyFile /etc/apache2/ssl/private/your_keyfile.key
SSLCACertificateFile /etc/apache2/certs/your_CA_file.ca-bundle

Once that's done save it, close it and restart OpenChange like so:
service Zentyal-openchange restart

Now as long as your SSL covers hostname.yourdomain.com and autodiscover.yourdomain.com you're good to go.

34
Email and Groupware / Re: outlook 2013 keep asking me about password
« on: April 15, 2016, 06:39:46 pm »
This really depends on the method you used to move from 4.0 to 4.2 - but there's probably a quick easy fix for it.
On your client PC go into %AppData%>Local>Microsoft>Outlook and delete everything in that folder.
You'll want to have Outlook closed before you do this and then open Outlook up again.
If that's not the fix for it then you'll want to jump into C:\Users\<your user name>\Documents\Outlook Files - this one is kind of more important so I just rename it by putting a bunch of Z's or X's in front of it.  So I'd rename ryan.pst to ZZZZZZZZZZZZZZZryan.pst - if everything is good from that THEN I delete the file, if not then I just change it back and go on with my life.
Finally, if all of that doesn't do the job then you can open up your Control Panel, search for Mail and open the "Mail (32-bit), on the right are 3 buttons you want to click on "Show Profiles" and then add a new profile (the name only matters when you're inside the profiles part so name it anything but Outlook since that one's already there).  Setup your account as normal and then back in the profiles window either pick the option to always use that profile OR have Outlook always prompt for a profile.
Try it all in that order and let me know if you're still having the same issue.

35
Email and Groupware / Re: autodiscover using third party DNS
« on: March 30, 2016, 12:44:11 am »
Just in case anyone comes across this thread looking for another answer here's some info...
1.  If you're using 3rd party SSL you have to have a cert that covers autodiscover.yourdomain.com, hostname.yourdomain.com and yourdomain.com
     example - autodiscover.zentyal.com, mail.zentyal.com and Zentyal.com
2.  If you use the self signed SSL you HAVE to install your Root CA on anything to use Autodiscover, download it from the admin panel under Mail>Openchange - there's a button to download it there.  Install that cert under the Trusted Root Authorities (or something really like that), don't do the auto install it junk that doesn't work)..
3.  When using 3rd party DNS you have to create the entry for autodiscover.yourdomain.com and point it to the exact same IP as hostname.yourdomain.com - yes that is kind of dumb but it's really crazy smart in getting everything to line up properly and allowing Outlook to Autodiscover things...

36
Other modules / Re: Backup Software Needed
« on: March 30, 2016, 12:38:29 am »
Actually there's a stupid cool tool called DD - you can use DD to create full disk images in real-time AND you can transter the images when completed via SSH, FTP, drop 'em on a USB or do pretty much anything you'ed do with any other complexticated software.
DD is already there on your machine too, so you literally just Google for something like "use DD to make disk images" and there's a crazy well written article about how exactly to do it and even how to automagic it so it just works without doing anything else.
It even cleans up after itself!!!!
On a side note did anyone happen to mention you can't import PST's into Zentyal from your SBS???  True fact, it'll make your Zentyal server go down faster than a drunken prom queen if you know what I mean.
There are a TON of IMAP transfer solutions out there, that's what you'll need for mailbox moving and then you've gotta figure out how on Earth to export your calendars as iCal's and your contacts as Vcards.  Legit, that's a HUGE pain and I lost a lot of hair on that end of the world!!!
I've been on a crisis recovery mission lately for a TON of places around here so I'm not here all of the time, but if you run into anything else just drop a new post in here and someone will be able to get you.
Good luck!

37
Well I'll save you a TON of hair pulling and headache on this one.  It's really pretty simple :-)
1.  Make 2 directories "mkdir -p /etc/Zentyal/stubs"  THEN "mkdir -p /etc/Zentyal/stubs/openchange"
2.  Set permissions on both like "chmod o+x /etc/Zentyal/stubs" THEN "chmod o+x /etc/Zentyal/stubs/openchange"
3.  Copy thee Opnchange Stub lie"cp /usr/share/Zentyal/stubs/openchange/apache-ocsmanager.conf.mas /etc/Zentyal/stubs/openchange"
4.  Now edit your .mas file "nano /etc/Zentyal/stubs/openchange/apache-ocsmanager.conf.mas", scroll down until you see where it says "sslengine on", under that is a pointer to the self signed SSL, delete that line out.  Depending on your certificate it may differ, but let's say you have "example.com.crt", "example.com.key" and "example.com.ca-bundle" (Comodo does the ca-bundle now it's great!).  You're going to have to point to those files like this:
     SSLCertificateFile /etc/apache2/certs/example.com.crt
     SSLCertificateKeyFile /etc/apache2/certs/example.com.key
     SSLCACertificateFile /etc/apache2/certs/example.com.ca-bundle
Edit the names and locations obviously to fit your environment and save/close the file.
5.  Make a directory (like above) "mkdir -p /etc/apache2/certs"
6.  If you're going to upload via SFTP set permissions for RWX like "chmod 0777 /etc/apache2/certs", upload your files and then fix permissions to match the original certificate store - I think it's something like 0744 or 0644 you'll have to check on that one.
7.  Now restart Openchange like "service Zentyal openchange restart" and as long as it says OK you're officially rocking the Wildcard SSL!

To help get rid of more headaches you can go check out my page I've dedicated to Zentyal 4+ on my website at http://thetikilab.com/zentyal.html - It's constantly growing too so there's almost always something new on the thing LoL.
OH yeah, for the record Zentyal does NOT support the import of PST files.  It can and likely will legit crash the Samba and Openchange quicker than you'd imagine.  There's some info about using an IMAP transfer tool to migrate mailboxes gracefully.  Then you've just gotta figure out how to drop everyone's Contacts into an LDIF or Vcard file and calendars into an Ical file to import via the webmail.  I've actually had some success just opening a PST that is offline and copying my contacts into my current user account without incident, but it's DEFFINATELY something you need to be aware of.  That bit screwed me up for a month LoL. 

38
Other modules / Re: Is it possible to install jabber on Zentyal 4.2 ?
« on: March 03, 2016, 01:04:53 am »
Yes it is but not from the Zentyal Repositories

https://help.ubuntu.com/lts/serverguide/jabberd2-server.html

That's for installing Jabber2 on Ubuntu Server 14.04.
You'll want to be careful on the install though, I'd suggest doing a disk image backup before trying to make this work.

39
If you are creating shares on Zentyal, then changing permissions through console you're going to have these issues over and over again.  Here's something to try though that may help you figure things out.
Login to a console as a user with root privileges.  Then run "sudo su" to be elevated to root.  Now make a directory inside "media", for example "makdir -p /media/testshare".
Now chmod it to 0777 like "chmod 0777 /media/testshare".
Now go into the GUI and set ACL's for it.
If you give a share guest access you can't do ACL's on either, even though sometimes people get this wonky setup that shows them both checked sometimes.
I'd also go and check in /var/crash to see if there's a Samba crash or SMB crash listed.  There's also the log files inside of /var/log/samba - if you go into the directory /usr/share/Zentyal/stubs/samba you can find some .mas files, in cone (pretty sure it's samba.conf.mas) you can set the log levels to a higher verbosity and see if your logs have any indicator as to what the culprit may be.
As a final thought, what kind of VM is everyone on a VM using?  What kind of specifications did you give it?  What kind of network adapter configuration is it using? 

40
Email and Groupware / Re: how to update to sogo 3
« on: February 04, 2016, 11:39:31 pm »
In normal Zentyal configurations you have the "stub files" that do special configuration for Sogo (and other modules too).
/usr/share/Zentyal/stubs -> inside are directories with module names like "Openchange" and inside of those are the "stubs".
Stub files have almost the same name as regular files like sogo.conf, but end with .mas - so /usr/share/Zentyal/stubs/openchange/sogo.conf.mas actually rewrites /etc/default/sogo (pretty sure that's the right combination).
In the original stubs you see things set to <% domain %> or <% hostname %> instead of "example.lan" or "server01".
To modify these files you have to create the directory /etc/Zentyal/stubs, then you create the directory for the module you want to tweak - for example you'd run the following commands:
sudo mkdir /etc/Zentyal/stubs
sudo mkdir /etc/Zentyal/stubs/openchange

After you can copy your original stub file over and modify it as needed.

In your case you've installed Sogo as a package that is not related to Zentyal and it's likely that in one of the many, many files the read/write permissions are incorrect.  You likely need to do some digging on Sogo configuration files and find ones owned by root - I think that several need to be owned by ebox.
You CANNOT just go and do a recursive ownership change without wrecking pretty much everything though.
So I'd suggest going into /usr/share/Zentyal/stubs and looking inside the openchange directory and possibly the samba directory too, I don't believe there's a Sogo directory in there anymore.  Once you've nailed that down then just find all of the files that have something to do with Sogo, figure out where it's original is (i.e. /usr/share/Zentyal/stubs/openchange/sogo.mas would probably originally be in /etc/sogo/sogo or something to that effect), check permissions and ownership and set the owner to ebox and permissions to 0644.  Once you've figured all of that out then restart openchange:
sudo service Zentyal openchange restart

and then try to use the webmail.
Good luck.

41
Holy cow I thought I had replied to you on this one.  Here's a quick breakdown of things.
1.  Openchange/Sogo/Samba/Apache2 already creates the autodiscover record and you should NOT try to manually make that.
2.  Adding your TLD into Zentyal DNS will ONLY create a local DNS entry, that means that the alias of autodiscover created in the local Zentyal will only be able to resolve inside of your LAN. 
So if your publid IP is 123.45.67.89 and your TLD is example.com but your internal IP is 192.168.1.1 then inside of your LAN you'll see autodiscover.example.com resolve to autodiscover.192.168.1.2 BUT outside the external DNS directs to autodiscover.123.45.67.89
Ironically in looking at that it kind of makes sense to me now though.  Now I'm going to go back and hit the books to see if I can figure this out some more.
By the way did you ever get this up and running?  I'm still struggling with an Openchange issue on another post so I'm kind of distracted right now LoL.
Sorry for the lag in replying.

******I'm an idiot - all the stuff I said about NOT putting your TLD in local DNS was wrong and based on me coming down off of a 36 or so hour work day.  Turns out it does actually make sense from the DNS side of things and in fact has solved one of my current issues.  Which is strange since doing the opposite (removing my TLD) solved another issue some time ago.
Anyways If you're behind a router and you set a local IP to your Zentyal 4+ server then you deffinately want to add it into your DNS.  You ABSOLUTELY DO NOT want to try and assign the Public IP address to it though.  That is where the secret is!
Say for example your router IP address is 192.168.1.1 and your Zentyal IP address is 192.168.1.10, in the Zentyal DNS you'll put 192.168.1.10 ONLY for the TLD IP address.  This way your external DNS routes traffic into your router with the public IP, then your router directs it into your Zentyal box and finally your Zentyal DNS resolves it appropriately.
Having your external DNS point to "Autodiscover.yourdomain.com" to your IP address is still imperative, but checking the box inside Openchange to enable Autodiscover is still worth the effort.
Sorry I was wrong before, and I'm still curious to know if you'd ever sorted this all out.

42
Email and Groupware / Re: how to update to sogo 3
« on: February 03, 2016, 08:42:49 pm »
If you notice Zentyal is pretty good about adding updates via the software management system.  Since Sogo, Openchange, Samba and Mail are so tightly connected I would suggest against trying to force the install.
If you REALLY want to do it though I'd suggest doing a backup of EVERYTHING on your server, then doing an image backup.  This way if things go wrong you just need to spend a couple of hours restoring everything instead of an entire night or so struggling.  DO NOT SKIP THE STEP OF IMAGING AND BACKING UP!!!!!
Once you have that all tied up go check this out:
http://sogo.nu/support/faq/article/how-to-install-sogo-on-ubuntu.html

After that point I have no clue if it will work since Zentyal uses stub files and the Sogo install is dependent on those.  If you install a new version of Sogo from the Sogo Repo then it may or may not work at all.  So really it comes down to how much the new features are worth, if it works it's great but if it doesn't then you're stuck with a broken system and having to restore everything.
Either way, good luck to you.

43
Email and Groupware / Re: Openchange not reading stubs
« on: February 03, 2016, 08:23:44 pm »
Thanks for the info, all I got was the following:

2016/02/03 10:58:38 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/status 'ebox.redis'
2016/02/03 10:58:38 INFO> Service.pm:997 EBox::Module::Service::restartService - Restarting service for module: webadmin
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - set -e
/bin/mv /var/lib/zentyal/tmp/hcNFDE_HI9 '/var/lib/zentyal/conf/nginx.conf'
/bin/chmod 0644 '/var/lib/zentyal/conf/nginx.conf'
/bin/chown ebox.ebox '/var/lib/zentyal/conf/nginx.conf'
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - set -e
/bin/mv /var/lib/zentyal/tmp/yM2XRAFujq '/etc/init/zentyal.webadmin-nginx.conf'
/bin/chmod 0644 '/etc/init/zentyal.webadmin-nginx.conf'
/bin/chown 0.0 '/etc/init/zentyal.webadmin-nginx.conf'
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - set -e
/bin/mv /var/lib/zentyal/tmp/rsrXO1ja0K '/etc/init/zentyal.webadmin-uwsgi.conf'
/bin/chmod 0644 '/etc/init/zentyal.webadmin-uwsgi.conf'
/bin/chown 0.0 '/etc/init/zentyal.webadmin-uwsgi.conf'
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - set -e
/bin/mv /var/lib/zentyal/tmp/yKxajTr0mZ '/var/lib/zentyal/dynamicwww//css/public.css'
/bin/chmod 0644 '/var/lib/zentyal/dynamicwww//css/public.css'
/bin/chown 107.113 '/var/lib/zentyal/dynamicwww//css/public.css'
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - set -e
/bin/mv /var/lib/zentyal/tmp/4a_iDeeKwY '/var/lib/zentyal/dynamicwww//css/login.css'
/bin/chmod 0644 '/var/lib/zentyal/dynamicwww//css/login.css'
/bin/chown 107.113 '/var/lib/zentyal/dynamicwww//css/login.css'
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - set -e
/bin/mv /var/lib/zentyal/tmp/r1DgOKKxYk '/usr/share/zentyal/www//css/jquery-ui/jquery-ui.css'
/bin/chmod 0644 '/usr/share/zentyal/www//css/jquery-ui/jquery-ui.css'
/bin/chown 107.113 '/usr/share/zentyal/www//css/jquery-ui/jquery-ui.css'
2016/02/03 10:58:41 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - rm -f /var/lib/zentyal/tmp/webadmin_no_restart_on_trigger
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - sed -i 's/^enabled=.*/enabled=1/' /etc/default/apport
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/status 'zentyal.webadmin-uwsgi'
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/stop 'zentyal.webadmin-uwsgi'
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/start 'zentyal.webadmin-uwsgi'
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/status 'zentyal.webadmin-nginx'
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/stop 'zentyal.webadmin-nginx'
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - /sbin/start 'zentyal.webadmin-nginx'
2016/02/03 10:58:42 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /etc/init.d/zentyal webadmin restart (pid: 18289) - service apport restart

It doesn't look like anything is wrong though.  Do you know if there is a way to drop the first bunch of characters when reading a log though?  I'm blind so I use a screen reader and hearing the first hundred or so things for every line is mind numbing at best LoL. 
Should I restart Openchange and check the Zentyal.log again?
For the record I did have apache-ocsmanager.conf.mas inside of /etc/Zentyal/stubs/openchange and I've even made certain that all permissions matched exactly as they do in /usr/share/Zentyal/stubs/* for any stub I've created.
Just to make sure I was crazy I dropped some invalid lines of code into the custom stub and restarted Openchange without error, I then moved the horribly wrong file into the /usr/share/Zentyal/stubs/openchange directory and restarted with a failure.
Any more suggestions or help is greatly appreciated.
Thank you again :)

44
Email and Groupware / Openchange not reading stubs
« on: February 02, 2016, 07:35:52 pm »
I'm working on a Zentyal 4.2 server and Openchange/Samba/Sogo have all been testing my patience for a while now.  Most recently I reslved my Samba crashes and realized that Openchange was still being goofy so I deleted out my custom stub under /etc/Zentyal/stubs/openchange/apache-ocsmanager.conf.mas and restarted the server.  Ironically nothing changed, so I remembered that I'd made a backup of the original stub /usr/share/Zentyal/stubs, edited the original and then just copied the edited version over so I undid that and everything worked as expected.
Once I had that I figured that having the same file in both spots was maybe a problem so I just copied the original over to /etc/Zentyal/stubs/openchange and edited it directly leaving the original in pristine condition.  Restarting Openchange didn't make a difference so I restarted the whole server and still nothing changed.
I went into the original file /usr/share/Zentyal/stubs/openchange/apache-ocsmanager.conf.mas and made the changes, then restarted Openchange and it stuck this time.
I'm also having some authentication issues, when I setup an Outlook client I have to go into the settings and set Outlook to always prompt for logon credentials.  This works at about 75% of what it "should" be because I ended up having to configure the Send/Receive Groups in Outlook too.  These are all based on older posts, old bug reports with the "Solved" status and all of them are based on something that was previously fixed in an update.
My server is 100% up to date.
I even opened up all ports on my Zentyal Firewall and dropped the server into the DMZ last night to run some tests on it.  Somehow it seems like Openchange is just out to get me...
Anyone ever find anything like this happening?  If so did anyone ever come up with a fix for it?
Any help is super appreciated!

45
Email and Groupware / Re: The connection to the server was interrupted
« on: February 02, 2016, 06:59:56 pm »
Are you trying this from inside the LAN or outside of the LAN?  Do you have your external DNS setup correctly?  Do you have your TLD/FQDN set in Zentyal DNS?
Quick crash course in Zentyal.  The DNS is meant for local (internal DNS) and not for outside world DNS, so adding your domain into Zentyal DNS is quite a disservice actually.  All of your outside world DNS needs to be setup in your outside DNS, so go to wherever your can configure your DNS records and setup the following entries to point to your DNS record:
yourdomain.com (kind of a duh I know)
hostname.yourdomain.com (in the Zentyal Web Admin GUI is says "Hostname" and your hostname next to it - again kind of a duh but I'm covering all of the bases here)
Autodiscover.yourdomain.com (notice it's "A" and not "a" - muy importante amigo)

It's going to take some time to provision through the DNS of the world, but once that's all set make sure your Zentyal firewall allows the following ports:
HTTP  -  80
HTTPS -  443
MAPI  -  135

After a couple of hours you "should" be able to open Outlook and use the screen where you just type in your name, email address and passwords and between Outlook and the server you'll get a MAPI connection that just works automatically.  This is of course if you don't have your TLD inside Zentyal DNS.
Using MAPI everything syncs across all of your devices, mail, contacts, calendars and it's just way better in my little world.
Hope this helps

Pages: 1 2 [3] 4 5 ... 8