Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1] 2
1
Installation and Upgrades / Re: [Solved] Unsynchronized OUs
« on: February 07, 2014, 11:34:51 am »
As a follow-up, I found a description of S4's replication and it only syncs the Users and Groups OUs by design. The result is that you will see all of the new groups added but will not see any of their contents. Not really bad since moving users between OUs is supported in AD but you do have to be careful of any GPOs assigned to the group the user is moved from/to. This is apparently on the ToDo list but is fairly low in priority.
See ya...
See ya...
2
Installation and Upgrades / [Solved] Unsynchronized OUs
« on: February 06, 2014, 01:36:07 pm »
I added several groups (many years ago) to the normal 2003 AD for users with nonstandard permissions/restrictions. Prob is, while the group OUs are being replicated, none of the users in those groups are. Looking at the LDAP config in the Dashboard, it looks like only the usual groups are being synched altho all groups are listed. Reading the docs doesn't seem to show a way to "turn on" a group that isn't normally synched.
Is this possible to do and, if so, how?
Thanx,
Garth
Is this possible to do and, if so, how?
Thanx,
Garth
3
Installation and Upgrades / Re: [Solved]Samba error during module save
« on: February 06, 2014, 11:06:45 am »
Fixed! :-) I had set the forward and reverse DNS on the Windows DC to Active Directory Domain and NOT Active Directory Forest. When I changed them to Forest, all started working.
See ya...
See ya...
4
Installation and Upgrades / [Solved]Samba error during module save
« on: February 05, 2014, 01:50:59 pm »
First, using the latest 3.3 64-bit ISO. I have been following the excellent video on joining and then demoting a windows 2003 DC but I am getting the following error:
<start>
Some modules reported error when saving changes . More information on the logs in /var/log/zentyal/
The following modules failed while saving their changes, their state is unknown: samba
<end>
with the following zentyal.log entries (domain and machine names changed):
<start>
2014/02/05 06:36:30 INFO> GlobalImpl.pm:618 EBox::GlobalImpl::saveAllModules - Saving config and restarting services: firewall dns samba logs users
2014/02/05 06:36:30 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: firewall
2014/02/05 06:36:30 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: dns
2014/02/05 06:36:33 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: samba
2014/02/05 06:36:33 INFO> Provision.pm:890 EBox::Samba::Provision::checkAddress - Resolving dc1.mydomain.com to an IP address
2014/02/05 06:36:33 INFO> Provision.pm:910 EBox::Samba::Provision::checkAddress - The DC dc1.mydomain.com has been resolved to 10.173.49.7
2014/02/05 06:36:33 INFO> Provision.pm:913 EBox::Samba::Provision::checkAddress - Checking reverse DNS resolution of '10.173.49.7'...
2014/02/05 06:36:33 INFO> Provision.pm:937 EBox::Samba::Provision::checkAddress - The IP address 10.173.49.7 does not have associated PTR record
2014/02/05 06:36:33 INFO> Provision.pm:836 EBox::Samba::Provision::checkServerReachable - Checking if AD server '10.173.49.7' is online...
2014/02/05 06:36:33 INFO> Provision.pm:946 EBox::Samba::Provision::checkFunctionalLevels - Checking forest and domain functional levels...
2014/02/05 06:36:33 INFO> Provision.pm:855 EBox::Samba::Provision::checkLocalRealmAndDomain - Checking local domain and realm...
2014/02/05 06:36:33 INFO> Provision.pm:1014 EBox::Samba::Provision::checkClockSkew - Checking clock skew with AD server...
2014/02/05 06:36:33 INFO> Provision.pm:1035 EBox::Samba::Provision::checkClockSkew - Clock skew below two minutes, should be enough.
2014/02/05 06:36:33 INFO> Provision.pm:755 EBox::Samba::Provision::checkDnsZonesInMainPartition - Checking for old DNS zones stored in main domain partition...
2014/02/05 06:36:33 INFO> Provision.pm:802 EBox::Samba::Provision::checkForestDomains - Checking number of domains inside forest...
2014/02/05 06:36:33 INFO> Provision.pm:974 EBox::Samba::Provision::checkTrustDomainObjects - Checking for domain trust relationships...
2014/02/05 06:36:33 INFO> Provision.pm:1076 EBox::Samba::Provision::checkADServerSite - Checking the site where the specified server is located
2014/02/05 06:36:33 INFO> Provision.pm:1084 EBox::Samba::Provision::checkADServerSite - The specified server has been located at site named PRR
2014/02/05 06:36:33 INFO> Provision.pm:1101 EBox::Samba::Provision::checkADNebiosName - Checking domain netbios name...
2014/02/05 06:36:33 INFO> Provision.pm:1323 EBox::Samba::Provision::provisionADC - Joining to domain 'mydomain.com' as DC
2014/02/05 06:36:33 INFO> Provision.pm:1336 EBox::Samba::Provision::provisionADC - Trying to get a kerberos ticket for principal 'garthk@mydomain.COM'
2014/02/05 06:36:33 INFO> Provision.pm:1345 EBox::Samba::Provision::provisionADC - Executing domain join
2014/02/05 06:36:50 INFO> Provision.pm:286 EBox::Samba::Provision::setupDNS - Setting up DNS
2014/02/05 06:36:50 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: dns
2014/02/05 06:36:51 INFO> Provision.pm:286 EBox::Samba::Provision::setupDNS - Setting up DNS
2014/02/05 06:36:51 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: dns
2014/02/05 06:36:53 ERROR> GlobalImpl.pm:654 EBox::GlobalImpl::saveAllModules - Failed to save changes in module samba: Can't locate object method "throw" via package "Can't locate object method "throw" via package "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
" (perhaps you forgot to load "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
"?) at /usr/share/perl5/EBox/Samba/Provision.pm line 1495, <GEN0> line 1848.
" (perhaps you forgot to load "Can't locate object method "throw" via package "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
" (perhaps you forgot to load "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
"?) at /usr/share/perl5/EBox/Samba/Provision.pm line 1495, <GEN0> line 1848.
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1855.
2014/02/05 06:36:53 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: logs
2014/02/05 06:36:54 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: users
2014/02/05 06:36:54 ERROR> Ldap.pm:475 EBox::Ldap::safeConnect - Couldn't connect to LDAP server ldapi://%2fvar%2frun%2fslapd%2fldapi: connect: No such file or directory. Retrying
2014/02/05 06:36:54 INFO> Ldap.pm:486 EBox::Ldap::safeConnect - LDAP reconnect successful
2014/02/05 06:36:55 ERROR> GlobalImpl.pm:738 EBox::GlobalImpl::saveAllModules - The following modules failed while saving their changes, their state is unknown: samba at Trace begun at /usr/share/perl5/EBox/Exceptions/Base.pm line 79
EBox::Exceptions::Base::stacktrace('EBox::Exceptions::Internal=HASH(0x526dda0)') called at /usr/share/perl5/EBox/Exceptions/Base.pm line 119
EBox::Exceptions::Base::log('EBox::Exceptions::Internal=HASH(0x526dda0)') called at /usr/share/perl5/EBox/Exceptions/Internal.pm line 35
EBox::Exceptions::Internal::new('EBox::Exceptions::Internal', 'The following modules failed while saving their changes, their state is unknown: samba ') called at /usr/share/perl5/EBox/Exceptions/Base.pm line 91
EBox::Exceptions::Base::throw('EBox::Exceptions::Internal', 'The following modules failed while saving their changes, their state is unknown: samba ') called at /usr/share/perl5/EBox/GlobalImpl.pm line 738
EBox::GlobalImpl::saveAllModules('EBox::GlobalImpl=HASH(0x25fe6a8)', 'progress', 'EBox::ProgressIndicator=HASH(0x1e985e0)') called at /usr/share/perl5/EBox/Global.pm line 95
EBox::Global::AUTOLOAD('EBox::Global=HASH(0x26065f0)', 'progress', 'EBox::ProgressIndicator=HASH(0x1e985e0)') called at /usr/share/zentyal/global-action line 31
eval {...} at /usr/share/zentyal/global-action line 29
<end>
There are several discussions on the web about this but most indicate that the problem is fixed. What am I doing wrong?
Thanx,
Garth
<start>
Some modules reported error when saving changes . More information on the logs in /var/log/zentyal/
The following modules failed while saving their changes, their state is unknown: samba
<end>
with the following zentyal.log entries (domain and machine names changed):
<start>
2014/02/05 06:36:30 INFO> GlobalImpl.pm:618 EBox::GlobalImpl::saveAllModules - Saving config and restarting services: firewall dns samba logs users
2014/02/05 06:36:30 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: firewall
2014/02/05 06:36:30 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: dns
2014/02/05 06:36:33 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: samba
2014/02/05 06:36:33 INFO> Provision.pm:890 EBox::Samba::Provision::checkAddress - Resolving dc1.mydomain.com to an IP address
2014/02/05 06:36:33 INFO> Provision.pm:910 EBox::Samba::Provision::checkAddress - The DC dc1.mydomain.com has been resolved to 10.173.49.7
2014/02/05 06:36:33 INFO> Provision.pm:913 EBox::Samba::Provision::checkAddress - Checking reverse DNS resolution of '10.173.49.7'...
2014/02/05 06:36:33 INFO> Provision.pm:937 EBox::Samba::Provision::checkAddress - The IP address 10.173.49.7 does not have associated PTR record
2014/02/05 06:36:33 INFO> Provision.pm:836 EBox::Samba::Provision::checkServerReachable - Checking if AD server '10.173.49.7' is online...
2014/02/05 06:36:33 INFO> Provision.pm:946 EBox::Samba::Provision::checkFunctionalLevels - Checking forest and domain functional levels...
2014/02/05 06:36:33 INFO> Provision.pm:855 EBox::Samba::Provision::checkLocalRealmAndDomain - Checking local domain and realm...
2014/02/05 06:36:33 INFO> Provision.pm:1014 EBox::Samba::Provision::checkClockSkew - Checking clock skew with AD server...
2014/02/05 06:36:33 INFO> Provision.pm:1035 EBox::Samba::Provision::checkClockSkew - Clock skew below two minutes, should be enough.
2014/02/05 06:36:33 INFO> Provision.pm:755 EBox::Samba::Provision::checkDnsZonesInMainPartition - Checking for old DNS zones stored in main domain partition...
2014/02/05 06:36:33 INFO> Provision.pm:802 EBox::Samba::Provision::checkForestDomains - Checking number of domains inside forest...
2014/02/05 06:36:33 INFO> Provision.pm:974 EBox::Samba::Provision::checkTrustDomainObjects - Checking for domain trust relationships...
2014/02/05 06:36:33 INFO> Provision.pm:1076 EBox::Samba::Provision::checkADServerSite - Checking the site where the specified server is located
2014/02/05 06:36:33 INFO> Provision.pm:1084 EBox::Samba::Provision::checkADServerSite - The specified server has been located at site named PRR
2014/02/05 06:36:33 INFO> Provision.pm:1101 EBox::Samba::Provision::checkADNebiosName - Checking domain netbios name...
2014/02/05 06:36:33 INFO> Provision.pm:1323 EBox::Samba::Provision::provisionADC - Joining to domain 'mydomain.com' as DC
2014/02/05 06:36:33 INFO> Provision.pm:1336 EBox::Samba::Provision::provisionADC - Trying to get a kerberos ticket for principal 'garthk@mydomain.COM'
2014/02/05 06:36:33 INFO> Provision.pm:1345 EBox::Samba::Provision::provisionADC - Executing domain join
2014/02/05 06:36:50 INFO> Provision.pm:286 EBox::Samba::Provision::setupDNS - Setting up DNS
2014/02/05 06:36:50 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: dns
2014/02/05 06:36:51 INFO> Provision.pm:286 EBox::Samba::Provision::setupDNS - Setting up DNS
2014/02/05 06:36:51 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: dns
2014/02/05 06:36:53 ERROR> GlobalImpl.pm:654 EBox::GlobalImpl::saveAllModules - Failed to save changes in module samba: Can't locate object method "throw" via package "Can't locate object method "throw" via package "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
" (perhaps you forgot to load "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
"?) at /usr/share/perl5/EBox/Samba/Provision.pm line 1495, <GEN0> line 1848.
" (perhaps you forgot to load "Can't locate object method "throw" via package "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
" (perhaps you forgot to load "Can't locate object method "throw" via package "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
" (perhaps you forgot to load "First line of LDIF entry does not begin with 'dn:' at /usr/share/perl5/EBox/LDB.pm line 824
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1505.
"?) at /usr/share/perl5/EBox/Samba/Provision.pm line 1495, <GEN0> line 1848.
"?) at /usr/share/perl5/EBox/Module/Base.pm line 238, <GEN0> line 1855.
2014/02/05 06:36:53 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: logs
2014/02/05 06:36:54 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: users
2014/02/05 06:36:54 ERROR> Ldap.pm:475 EBox::Ldap::safeConnect - Couldn't connect to LDAP server ldapi://%2fvar%2frun%2fslapd%2fldapi: connect: No such file or directory. Retrying
2014/02/05 06:36:54 INFO> Ldap.pm:486 EBox::Ldap::safeConnect - LDAP reconnect successful
2014/02/05 06:36:55 ERROR> GlobalImpl.pm:738 EBox::GlobalImpl::saveAllModules - The following modules failed while saving their changes, their state is unknown: samba at Trace begun at /usr/share/perl5/EBox/Exceptions/Base.pm line 79
EBox::Exceptions::Base::stacktrace('EBox::Exceptions::Internal=HASH(0x526dda0)') called at /usr/share/perl5/EBox/Exceptions/Base.pm line 119
EBox::Exceptions::Base::log('EBox::Exceptions::Internal=HASH(0x526dda0)') called at /usr/share/perl5/EBox/Exceptions/Internal.pm line 35
EBox::Exceptions::Internal::new('EBox::Exceptions::Internal', 'The following modules failed while saving their changes, their state is unknown: samba ') called at /usr/share/perl5/EBox/Exceptions/Base.pm line 91
EBox::Exceptions::Base::throw('EBox::Exceptions::Internal', 'The following modules failed while saving their changes, their state is unknown: samba ') called at /usr/share/perl5/EBox/GlobalImpl.pm line 738
EBox::GlobalImpl::saveAllModules('EBox::GlobalImpl=HASH(0x25fe6a8)', 'progress', 'EBox::ProgressIndicator=HASH(0x1e985e0)') called at /usr/share/perl5/EBox/Global.pm line 95
EBox::Global::AUTOLOAD('EBox::Global=HASH(0x26065f0)', 'progress', 'EBox::ProgressIndicator=HASH(0x1e985e0)') called at /usr/share/zentyal/global-action line 31
eval {...} at /usr/share/zentyal/global-action line 29
<end>
There are several discussions on the web about this but most indicate that the problem is fixed. What am I doing wrong?
Thanx,
Garth
5
Installation and Upgrades / Re: Pros and cons of running zentyal as KVM host or as KVM guest
« on: December 23, 2013, 05:51:00 pm »
Absolutely no harm taken and no need to apologize! PM is still Really Good Stuff! My only real prob with PM is that they continue to enhance clustering and failover (a Good Thing) but I don't have that kind of hardware setting around. 
See ya...
See ya...
6
Installation and Upgrades / [SOLVED] Re: Add OpenChange to existing server
« on: December 23, 2013, 05:24:31 pm »
I remembered reading that most AD changes (new users, groups,...) must be done on the PDC. In particular, I remembered this when I created new users and groups on the BDC and they never replicated to the PDC. So, I snapped both boxes back to just after a clean join of the BDC to the AD and did the OC install on the PDC instead and most everything worked just fine. Existing users became OC-enabled but I still had to enable new users even tho I had set the option to auto-enable new users. That's NBD IMHO.
Time to continue playing.
See ya...
Time to continue playing.
See ya...
7
Installation and Upgrades / Re: Pros and cons of running zentyal as KVM host or as KVM guest
« on: December 23, 2013, 05:07:34 pm »
Not sure where I erred in my statement concerning PM. Feel free to correct me if I missed something. My take remains that the non-paid repositories will be updated more frequently and with less well-tested code (clearly stated in the announcement) and that this *may* be of concern for someone that intends to run a business on that code. I never stated that this was bad, just that the buyer (or non-buyer) beware.
No intent to flame or bad-mouth PM.
See ya...
No intent to flame or bad-mouth PM.
See ya...
8
Installation and Upgrades / Re: Add OpenChange to existing server
« on: December 23, 2013, 02:02:37 pm »
So, I shut off the second DC and snapped the first box back to standalone and installed OC. No probs. I checked an existing account and it was properly OC enabled. I set OC to enable new accts by default and created a new test acct. While it didn't enable automatically, I was able to enable it manually.
I've snapped both servers back to where they were both DCs in the AD and checked repl with drs showrepl and all looks good. I'll have a try at adding OC to the BDC again and see what happens.
Any hints welcome.
More later...
I've snapped both servers back to where they were both DCs in the AD and checked repl with drs showrepl and all looks good. I'll have a try at adding OC to the BDC again and see what happens.
Any hints welcome.
More later...
9
Installation and Upgrades / Re: Pros and cons of running zentyal as KVM host or as KVM guest
« on: December 23, 2013, 11:14:31 am »
As for Proxmox, I used to use it but they have changed their business model so that only paying customers have access to the stable repositories. All others have to use the development repositories, sort of like Z, which are under constant change. I understand the requirement to do this (buying groceries) but be sure and read the fine print if you intend to run your business on it. I now stick to plain 12.04 with KVM using Virt Manager to admin the VMs.
Again, not a knock against Proxmox, just an FYI.
See ya...
Again, not a knock against Proxmox, just an FYI.
See ya...
10
Installation and Upgrades / Re: Add OpenChange to existing server
« on: December 22, 2013, 03:56:14 pm »
I added OpenChange (and Mail) to the second server in the AD and all seemed to install correctly. However, when I tried to enable an existing account in the OpenChange section, a red pop-up would occur stating that an internal software error had occurred. I then changed the User Template to auto create/enable OpenChange whenever a new user was created and the same pop-up showed up during the process of creating the new user. The account was created but not enabled for OC. I've since snapped the VM back to pre-OC and will have another try. If the results are the same, I'll reply again and include the Z logs.
See ya...
See ya...
11
Installation and Upgrades / [SOLVED] Add OpenChange to existing server
« on: December 22, 2013, 02:18:43 pm »
I have two Z3.3 DCs in an AD that appear to be working. I would like to add OpenChange/WebMail to one of the servers. Anyone had any experience doing this? They're both VMs so I intend to snapshot both before I start so I can easily roll back and try again but any helpful hints would be appreciated.
Thanx,
Garth
Thanx,
Garth
12
Installation and Upgrades / Re: Error 2000 on Install
« on: December 21, 2013, 11:22:44 am »
Did you checksum the ISO using the MD5 value from the Zentyal download site?
Just a thought.
HTH,
Garth
Just a thought.
HTH,
Garth
13
Installation and Upgrades / Minimal Virtual Server
« on: December 20, 2013, 04:34:57 pm »
I have tried installing Z3.3 from the x64 ISO to a KVM VM using the F4 key, "Install a Minimum Virtual Machine", option on the first installation screen but with no success.
Is this option supported?
NBD, just curious.
Thanx,
Garth
Is this option supported?
NBD, just curious.
Thanx,
Garth
14
Installation and Upgrades / Re: Conflicting 3.3 Install Instructions
« on: December 18, 2013, 06:15:04 pm »
Hmm... Too complicated for a test install. I'll use "admin" next time and leave it out of the domain.
When I was trying to get Samba 4 to join an existing 2003 AD, all worked except for DNS repl. Should I expect this to work correctly when I join Zentyal 3.3.1 to the domain as a DC or are there still issues to be worked out?
Thanx,
Garth
When I was trying to get Samba 4 to join an existing 2003 AD, all worked except for DNS repl. Should I expect this to work correctly when I join Zentyal 3.3.1 to the domain as a DC or are there still issues to be worked out?
Thanx,
Garth
15
Installation and Upgrades / Re: Conflicting 3.3 Install Instructions
« on: December 18, 2013, 05:43:31 pm »
Truly Fun Stuff! :-)
Quick question: How can I add the user added during the install as a "proper" domain user with email? Whenever I try, I get "user already exists".
Pretty soon I intend to trash this install and reinstall joining an existing 2003 Forest level Windows AD. Any tricks I need to know about?
Thanx,
Garth
Quick question: How can I add the user added during the install as a "proper" domain user with email? Whenever I try, I get "user already exists".
Pretty soon I intend to trash this install and reinstall joining an existing 2003 Forest level Windows AD. Any tricks I need to know about?
Thanx,
Garth
Pages: [1] 2