Messages

76

Installation and Upgrades / Re: prevent from multiple login with single id

« on: November 21, 2011, 10:27:32 am »

hi, i have several issue here. i has find out that a user can do a multiple login using the single id in the captive portal authentication in multiple desktop and laptop. how can i prevent this from happening because i want only single id sign on only???can some one help me

You have to create a Network Object and assign fixed IP address to all who have access to the Internet. So even captive portal users will be controlled.

Mods, you may want to move this post here... hehe

77

Installation and Upgrades / Re: Captive Portal + Wifi [SOLVED]

« on: November 21, 2011, 08:56:07 am »

Problem solved. Thanks for all the inputs!

78

Installation and Upgrades / Re: IPSEC Site-to-Site VPN (Zental 2.2 and Cisco 2800) - Possible?

« on: November 21, 2011, 08:54:46 am »

Any comments from the developer? I have been stuck with this problem for a loooong time.

79

Installation and Upgrades / Re: Help with directories

« on: November 18, 2011, 01:17:45 am »

Please read the manual first and post anything you can't accomplish.

http://doc.zentyal.org/en/virt.html

hth

80

Installation and Upgrades / Re: Firewall Blocks Everything!

« on: November 18, 2011, 01:13:52 am »

Check the subnet you're using if you have a proper firewall rule that permits it.

81

Installation and Upgrades / Re: Lost access to admin interface after upgrade 2.0 > 2.2.

« on: November 17, 2011, 11:38:21 am »

I'm sorry for your hard time. Anyway, if you find time, please post here what you did or how the Zentyal team be able to reproduce the error so they can fix them. This way you can help the community by reporting any possible bugs you've found.

I'm also planning to upgrade my Zentyal 2.0 to 2.2 next week but I'm having a second thought...

I hope your problem can be fixed by then.

Good luck.

82

Installation and Upgrades / Re: every 3 day zentyal hangs

« on: November 17, 2011, 07:27:52 am »

You may want to look for interesting info on:

/var/log/messages
/var/log/syslog
/var/log/dmesg
/var/log/zentyal

83

Installation and Upgrades / Re: Lost access to admin interface after upgrade 2.0 > 2.2.

« on: November 17, 2011, 06:32:44 am »

Backup your apache2.conf and post the contents of the default Zentyal 2.2 apache2.conf as attached here.

Code: [Select]


Timeout 300
KeepAlive Off
MaxKeepAliveRequests 500
KeepAliveTimeout 15
AddDefaultCharset utf-8

PidFile /var/lib/zentyal/tmp//apache.pid

<IfModule mpm_prefork_module>
    StartServers             1
    MinSpareServers          1
    MaxSpareServers          1
    MaxClients               1
    MaxRequestsPerChild  10000
</IfModule>

# worker MPM
# StartServers: initial number of server processes to start
# MaxClients: maximum number of simultaneous client connections
# MinSpareThreads: minimum number of worker threads which are kept spare
# MaxSpareThreads: maximum number of worker threads which are kept spare
# ThreadsPerChild: constant number of worker threads in each server process
# MaxRequestsPerChild: maximum number of requests a server process serves
<IfModule mpm_worker_module>
    StartServers             1
    MinSpareThreads          1
    MaxSpareThreads          1
    ThreadsPerChild          1
    MaxClients               1
    MaxRequestsPerChild  10000
</IfModule>

PerlInterpMaxRequests 10000

Include /etc/apache2/mods-available/auth_basic.load
Include /etc/apache2/mods-available/authn_file.load
Include /etc/apache2/mods-available/authz_default.load
Include /etc/apache2/mods-available/authz_groupfile.load
Include /etc/apache2/mods-available/authz_host.load
Include /etc/apache2/mods-available/authz_user.load
Include /etc/apache2/mods-available/autoindex.load
Include /etc/apache2/mods-available/cgi.load
Include /etc/apache2/mods-available/deflate.conf
Include /etc/apache2/mods-available/deflate.load
Include /etc/apache2/mods-available/dir.conf
Include /etc/apache2/mods-available/dir.load
Include /etc/apache2/mods-available/env.load
Include /etc/apache2/mods-available/mime.load
Include /etc/apache2/mods-available/negotiation.load
Include /etc/apache2/mods-available/setenvif.load
Include /etc/apache2/mods-available/rewrite.load
Include /etc/apache2/mods-available/ssl.conf
Include /etc/apache2/mods-available/ssl.load
Include /etc/apache2/mods-available/status.load
Include /etc/apache2/mods-available/perl.load


Listen 443
User ebox
Group ebox

ServerAdmin webmaster@localhost
ServerName localhost

DocumentRoot /usr/share/zentyal/www/

<Directory />
    Options SymLinksIfOwnerMatch
    AllowOverride None
</Directory>

<Directory /usr/share/zentyal/www/>
    Options Indexes MultiViews FollowSymLinks
    AllowOverride None
    Order allow,deny
    Allow from all
</Directory>

<Directory /var/lib/zentyal/dynamicwww>
    Options Indexes MultiViews
    AllowOverride None
    Order allow,deny
    Allow from all
</Directory>



UseCanonicalName Off
TypesConfig /etc/mime.types
DefaultType text/plain


Listen 443
User ebox
Group ebox

ServerAdmin webmaster@localhost
ServerName localhost

DocumentRoot /usr/share/zentyal/www/

<Directory />
    Options SymLinksIfOwnerMatch
    AllowOverride None
</Directory>

<Directory /usr/share/zentyal/www/>
    Options Indexes MultiViews FollowSymLinks
    AllowOverride None
    Order allow,deny
    Allow from all
</Directory>

<Directory /var/lib/zentyal/dynamicwww>
    Options Indexes MultiViews
    AllowOverride None
    Order allow,deny
    Allow from all
</Directory>



UseCanonicalName Off
TypesConfig /etc/mime.types
DefaultType text/plain

<IfModule mod_mime_magic.c>
    MIMEMagicFile /usr/share/misc/file/magic.mime
</IfModule>

HostnameLookups Off

ErrorLog /var/log/zentyal/error.log
LogLevel warn

LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" \"%{for$

CustomLog /var/log/zentyal/access.log combined

<IfModule mod_backtrace.c>
    EnableExceptionHook On
</IfModule>

<IfModule mod_whatkilledus.c>
    EnableExceptionHook On
</IfModule>

ServerSignature Off
ServerTokens Min

<IfModule mod_ssl.c>
    SSLEngine on
    SSLProtocol all
    SSLCipherSuite HIGH:MEDIUM
    SSLCertificateFile /var/lib/zentyal/conf/ssl/ssl.pem
    SSLCACertificatePath /var/lib/zentyal/conf/ssl-ca/
</IfModule>

PerlWarn On

PerlModule EBox::Auth
PerlSetVar EBoxPath /
PerlSetVar EBoxLoginScript /Login/Index
PerlSetVar EBoxSatisfy Any
# FIXME: disabled to avoid error after upgrade (apache restart)
#PerlSetVar EBoxCookieName Zentyal
PerlSetVar AuthCookieDebug 0

<Files LOGIN>
        AuthType EBox::Auth
        AuthName EBox
        SetHandler perl-script
        PerlHandler EBox::Auth->login
</Files>

<Directory /usr/share/zentyal/cgi/>
    <IfModule mod_ssl.c>
        SSLOptions +StdEnvVars
    </IfModule>

    AuthType EBox::Auth
    AuthName EBox
    PerlAuthenHandler EBox::Auth->authenticate
    PerlAuthzHandler  EBox::Auth->authorize
    require valid-user
    SetHandler perl-script
    PerlHandler ModPerl::Registry
    PerlSendHeader On
    AllowOverride None
    Options +ExecCGI
    Order allow,deny
    Allow from all
</Directory>

RewriteEngine On

# Compatibility with old URLs (permanent redirects)
RewriteRule ^/ebox(.*) /$1
RewriteRule ^/zentyal(.*) /$1
# skip rewrites for favicon and login
RewriteCond %{REQUEST_FILENAME} ^/favicon.ico$ [OR]
RewriteCond %{REQUEST_FILENAME} ^/LOGIN$ [OR]
RewriteCond %{REQUEST_FILENAME} ^/slave$
RewriteRule .? - [S=100]
# Map /ebox.cgi to the right Perl CGI and redirect
RewriteRule ^/ebox.cgi$ /
# From /data/ to / and finish
RewriteRule ^/data(.*) $1 [L]
# From /dynamic-data/ to the right directory in FS and finish
RewriteRule ^/dynamic-data(.*) /var/lib/zentyal/dynamicwww$1 [L]
RewriteRule ^/(.*) /usr/share/zentyal/cgi/ebox.cgi [E=script:$1,L]


Restart apache and see if this fixed it.

84

Installation and Upgrades / Re: Lost access to admin interface after upgrade 2.0 > 2.2.

« on: November 17, 2011, 04:49:32 am »

Post the content of the file /var/lib/zentyal/conf/apache2.conf here so we can see. Have you checked if apache is running? Can you access it from a remote browser? Can you access the default apache page?

what's the result of
hostname -f

85

Installation and Upgrades / Re: p2p block

« on: November 17, 2011, 02:48:17 am »

You can also download a shallist and add it to HTTP PROXY > Filter Profile > Domain List file. Mark the 'WAREZ' and 'TRACKER' category filter policy as 'always deny'.

HTH

86

Installation and Upgrades / Re: Lost access to admin interface after upgrade 2.0 > 2.2.

« on: November 17, 2011, 01:45:10 am »

Hi,

Try to recreate this file (/etc/apache/ssl/apache.pem) and ensure proper permission and file ownership. Your error shows:

mv: cannot stat '/etc/apache/ssl/apache.pem:: No such file or directory

Also, try to restart apache service and try again.

HTH

87

Installation and Upgrades / Re: / 100% full - GUI login fails

« on: November 17, 2011, 01:36:14 am »

# edquota -u root
-And adjust the quota as required

Now we're getting somewhere, thanks v much for that c4rdinal.

Thanks for your help C4rdinal.

An applaud would be nice..hehe

88

Installation and Upgrades / Re: / 100% full - GUI login fails

« on: November 16, 2011, 11:14:58 am »

Ok, I have deleted *ALL* the zentyal backups, now I can log in. / still only has 14% free, despite having 800gb+ free on the disk itself. How can I increase the quota for root on / ?

I currently have no backups and am likely to run into this problem again soon. Can anyone explain why a 480Mb quota imposed on root anyway?!

# edquota -u root
-And adjust the quota as required

89

Installation and Upgrades / Re: / 100% full - GUI login fails

« on: November 16, 2011, 10:34:39 am »

I have deleted old log files but this has not created any free space.

I said all logs, not just the old one. Also, empty any /temp or equivalent dir or files. Or move files not essential in the / dir.

90

Installation and Upgrades / Re: / 100% full - GUI login fails

« on: November 16, 2011, 10:32:40 am »

I suggest you empty all possible logs in the /var/log directory to free up some space.
Optionally, if you have additional partition you can transfer /var/log there...

HTH