Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
31
Installation and Upgrades / Re: zentyal-samba 3.2.7 upgrade issue
« on: October 25, 2013, 10:47:53 pm »
update: After a long time there was finally a change:
Reconnecting to redis server (1 try)... at /usr/share/perl5/EBox/config/Redis.pm line 467, <GEN> line 1.
Not sure what it means, but more information never hurt anyone i guess.
Reconnecting to redis server (1 try)... at /usr/share/perl5/EBox/config/Redis.pm line 467, <GEN> line 1.
Not sure what it means, but more information never hurt anyone i guess.
32
Installation and Upgrades / zentyal-samba 3.2.7 upgrade issue
« on: October 25, 2013, 10:31:00 pm »
I attempted to upgrade my zentyal 3 domain controller to the latest version from the webui. The upgrade froze and the server stopped working. I then did a reboot and after waiting almosst 1/2 an hour for it to come up I then tried: apt-get update && apt-get upgrade. The system then told me that I must manually run 'dpkg --configure -a' to correct the problem.
I ran the command, but the server is now stuck for over an hour at the line: 'Setting up zentyal-samba (3.2.7) ...'
It will not go any further than that. What are the correct steps to correct this issue? I am trying to prevent having to setup the entire domain again from scratch (if possible)
Let me know if you need any additional information. I would be happy to provide it.
Thanks
I ran the command, but the server is now stuck for over an hour at the line: 'Setting up zentyal-samba (3.2.7) ...'
It will not go any further than that. What are the correct steps to correct this issue? I am trying to prevent having to setup the entire domain again from scratch (if possible)
Let me know if you need any additional information. I would be happy to provide it.
Thanks
33
Installation and Upgrades / Re: Persistent Default Gateway
« on: August 12, 2013, 03:09:19 pm »
Hi Rafael,
That suggestion does not work. In the situation described the default gateway is already defined. It just does not take effect. going to network -> Gateways and deleting the default gateway and then saving before adding it again works, but why bother when /etc/init.d/zentyal network restart works much faster
That suggestion does not work. In the situation described the default gateway is already defined. It just does not take effect. going to network -> Gateways and deleting the default gateway and then saving before adding it again works, but why bother when /etc/init.d/zentyal network restart works much faster
34
Installation and Upgrades / Re: Persistent Default Gateway
« on: August 10, 2013, 07:29:05 pm »
I also have the same issue. What makes it especially dicey is this is on a remote server that is a PDC for one of my clients. I am able to get the default route back by running /etc/init.d/zentyal network restart, but this is definitely not ideal.
I did install virtualbox-ose as the backend to run my VMs and that seems to have the ability to setup bridged networking without having to change zentyal primary interface to bridged. I am going to attempt to change my interface setup back to normal and see if that eliminates the problem. While allowing the VM to still have a bridged connection.
I'll post back the results.
I did install virtualbox-ose as the backend to run my VMs and that seems to have the ability to setup bridged networking without having to change zentyal primary interface to bridged. I am going to attempt to change my interface setup back to normal and see if that eliminates the problem. While allowing the VM to still have a bridged connection.
I'll post back the results.
35
Installation and Upgrades / Re: rejoin-slave command: what am i doing wrong?
« on: March 27, 2012, 01:12:46 pm »
Thanks for the reply all the suggestions you have made i went over several times. I have accepted that this is the way things are for now and moved on. I may revisit this subject once the new version with samba 4 support comes out.
thanks again
thanks again
36
Installation and Upgrades / Re: master/slave manual password sync
« on: March 07, 2012, 05:50:04 pm »
Ok, so basically i am making what was my zentyal master into a slave to AD. Then make my remote servers a slave to the zentyal master!!! 
I was always under the assumption that once you configured a zentyal server as a slave, you could not also have it act as a master. Ill investigate this more in my test VMs
AS far as the OU support; I CANT FRAKKIN WAIT!
Every update gets better and better with the Admin features. The user-land features are already above and beyond what we expect for an open source product.
I was always under the assumption that once you configured a zentyal server as a slave, you could not also have it act as a master. Ill investigate this more in my test VMs
AS far as the OU support; I CANT FRAKKIN WAIT!
Every update gets better and better with the Admin features. The user-land features are already above and beyond what we expect for an open source product.
37
Installation and Upgrades / Re: master/slave manual password sync
« on: March 06, 2012, 03:51:29 pm »
We may get a support contract for one master and one slave. I think i can squeeze that by my boss without raising to much of a fuss 
38
Installation and Upgrades / Re: master/slave manual password sync
« on: March 06, 2012, 03:49:56 pm »
Thanks for the input Jsalamero & Remon. I brought up getting a support contract with my boss. And even did the rough math explaining how Window$ is still going to be way more expensive for us. But of course corporate politics and budgets play into every decision so getting the funding i need wont be happening soon.
I had thought about using AD as the master but i thought you could only have one slave connected to an AD server. Am i wrong about this? I am pretty sure i read that in the forums or documentation.
As far as the sync frequency settings you described. Where are those options defined? I am willing to try anything at this point since we have started using CentOS with Red Hat directory server for the remaining sites. It supports multi-master replication very nicely and is great with multiple OUs and customizable LDAP trees. But ofcourse its a monster with setting up simple functionality for items like cups, radius, ftp etcetc. And is basically a 'build from scratch' solution.
I had thought about using AD as the master but i thought you could only have one slave connected to an AD server. Am i wrong about this? I am pretty sure i read that in the forums or documentation.
As far as the sync frequency settings you described. Where are those options defined? I am willing to try anything at this point since we have started using CentOS with Red Hat directory server for the remaining sites. It supports multi-master replication very nicely and is great with multiple OUs and customizable LDAP trees. But ofcourse its a monster with setting up simple functionality for items like cups, radius, ftp etcetc. And is basically a 'build from scratch' solution.
39
Installation and Upgrades / Re: rejoin-slave command: what am i doing wrong?
« on: February 23, 2012, 04:17:55 pm »
Any one have any additional insights to add to this topic. I've tried again with another site and once i started getting the smbldapuser bug i did a rejoin-slave. THe samba shares could no longer be mapped and computers could not join the domain. There must be a 'correct way' to do this. Or some tiny step that i am over looking.
Maybe the command was not designed to do what id like it todo. If thats the case i just need confirmation
Maybe the command was not designed to do what id like it todo. If thats the case i just need confirmation
40
Installation and Upgrades / rejoin-slave command: what am i doing wrong?
« on: February 13, 2012, 03:38:26 pm »
I have a master slave setup with 1 master and 20+ slaves with File & print sharing planned (10 have been deployed) I often get the following error message.
Unknown error at EBox::SambaLdapUser::_getAccountFlags Referral received
From searching the forums and opening a ticket it appears the solution is to run the following command
sudo /usr/share/zentyal-users/rejoin-slave
The problem is everytime i have run that command on the slave it destroys my samba domain. The sync issue is taken care of but the commputers can not long into the domain any more. When i try to map a drive using the domain admin or any domain user account i get errors that point to the domain does not exist.
I usually end up having to the re-install users & groups on the slave which of course means a new samba domain SID and extra work rejoining all the computers to the domain.
Is this supposed to be normal behaviour after using the rejoin-slave command or am i doing something wrong? As i get further into the deployment it becomes less and less practical to keep rejoining the slave to sync ldap accounts. If anyone has any ideas or the correct steps to follow please help.
Unknown error at EBox::SambaLdapUser::_getAccountFlags Referral received
From searching the forums and opening a ticket it appears the solution is to run the following command
sudo /usr/share/zentyal-users/rejoin-slave
The problem is everytime i have run that command on the slave it destroys my samba domain. The sync issue is taken care of but the commputers can not long into the domain any more. When i try to map a drive using the domain admin or any domain user account i get errors that point to the domain does not exist.
I usually end up having to the re-install users & groups on the slave which of course means a new samba domain SID and extra work rejoining all the computers to the domain.
Is this supposed to be normal behaviour after using the rejoin-slave command or am i doing something wrong? As i get further into the deployment it becomes less and less practical to keep rejoining the slave to sync ldap accounts. If anyone has any ideas or the correct steps to follow please help.
41
Installation and Upgrades / Re: Master/slave error [could not get lock for zentyal-slave-sync]
« on: February 08, 2012, 01:09:01 am »
sadly after using the commands you suggested the whole config went boom and we ended up having to start from scratch. The first few servers went well, but no that we are at the 6th one its started happening all over again. If any more ideas i can try please let me know. I fear if we have to restart from scratch again that will be the end of our zentyal experiment. 
42
Installation and Upgrades / Re: master/slave manual password sync
« on: February 03, 2012, 09:21:34 pm »
this is only getting worse as we add more users to the master. We hope to get about 500 users on the server connected to about 30 slaves. but i can not improve the sync to save my life. If any one else has any additional ideas or comments please let me know. (re install the server is not a good answer. if i have to that we will be abandoning this project and just forking over the money to microsoft for our servers
43
Installation and Upgrades / Re: change server IP after install
« on: February 02, 2012, 07:33:08 pm »
forgot to mention since the remote sites all have zentyal slaves. Once the basic setup is complete with PDC, file shares and print server. Not much needs to be done on the box. I set them to auto update and all my user management is done on the master.
44
Installation and Upgrades / Re: change server IP after install
« on: February 02, 2012, 07:30:51 pm »
Basically what we did is setup one zentyal master in our data center. Each remote site has a slave installed with file sharing and print sharing as the 2 main modules. This allows us to control all the users and groups from one location.
We also installed a document server in the data center (as a slave) and setup alfresco share on top of it so users at remote sites can connect to samba shares for their entire company, or login to the document portal and work on shared documents. I used ldap pass-through to get alfresco to use the master for user authentication and of course since it the same account the user logs into their computer with it makes things simple
I then installed zimbra server and also pointed that to the master ldap so that i basically have single sign-on for most of our critical services.
THere are a few issues with the implementation though. Not deal breakers but big enough for us to consider not moving forward with the project at all.
1. Lack of support for basic ldap objects like organizational units. Since not all our remote sites belong to the same customer. i would have liked to have some seperationg between them so that client A does not see logins for client B in their environment
2. Sync from master to slave is extermely slow at best or buggy at worst. sometimes it works great and i can create an account and use it within a couple of minutes at the slave site. But most of the times creating an account or modifying a group on the master is super slow. about 3 to 4 minutes before the server responds that the account iscreated. Then i have to battle with manual sync and the sync-ldap process being locked for up to an hour at times. This is an issue when i try and change someones password and have to wait an hour or so before they can use it.
I cant think of anything else right now, but as i think of the good and the bad i will add to this post
I forgot to mention opening tickets on the zentyal site gets very quick responses. Nothing better than going into something new and having timely support from the creators. Even my boss was pleasantly surprised at how fast we got responses
We also installed a document server in the data center (as a slave) and setup alfresco share on top of it so users at remote sites can connect to samba shares for their entire company, or login to the document portal and work on shared documents. I used ldap pass-through to get alfresco to use the master for user authentication and of course since it the same account the user logs into their computer with it makes things simple
I then installed zimbra server and also pointed that to the master ldap so that i basically have single sign-on for most of our critical services.
THere are a few issues with the implementation though. Not deal breakers but big enough for us to consider not moving forward with the project at all.
1. Lack of support for basic ldap objects like organizational units. Since not all our remote sites belong to the same customer. i would have liked to have some seperationg between them so that client A does not see logins for client B in their environment
2. Sync from master to slave is extermely slow at best or buggy at worst. sometimes it works great and i can create an account and use it within a couple of minutes at the slave site. But most of the times creating an account or modifying a group on the master is super slow. about 3 to 4 minutes before the server responds that the account iscreated. Then i have to battle with manual sync and the sync-ldap process being locked for up to an hour at times. This is an issue when i try and change someones password and have to wait an hour or so before they can use it.
I cant think of anything else right now, but as i think of the good and the bad i will add to this post
I forgot to mention opening tickets on the zentyal site gets very quick responses. Nothing better than going into something new and having timely support from the creators. Even my boss was pleasantly surprised at how fast we got responses
45
Installation and Upgrades / Re: master/slave config question
« on: January 31, 2012, 06:54:13 pm »I do agree that current Zentyal "master/slave" implementation is not 100% what an LDAP admin would dream for but I'm sure this will evolve in the right direction
Yes it is not there yet. But still very close. They have all the right ideas and only a few bugs away from 100%. Even the bugs I do encounter can be worked around so in the eyes of my boss. Our systems work perfectly