Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - theb2b

Pages: [1] 2 3 4
1
Installation and Upgrades / Re: Webadmin not Accessible
« on: January 05, 2020, 08:20:46 pm »
That did it! Followed the directions posted by user nontrival on incorporating Lets Encrypt certs into older version of Zentyal, see this post;

[url]https://forum.zentyal.org/index.php/topic,28251.0.html[url]

Now have access to my webadmin page.

Specifically used these commands from his post
cat /etc/letsencrypt/live/blah.org/privkey.pem /etc/letsencrypt/live/blah.org/cert.pem /etc/letsencrypt/live/blah.org/fullchain.pem > /tmp/temp.pem
cp -f /tmp/temp.pem /var/lib/zentyal/conf/ssl/ssl.pem
chown ebox:adm /var/lib/zentyal/conf/ssl.pem
chmod 600 /var/lib/zentyal/conf/ssl.pem

nontrival doesn't specifically list the chown command but when I copied the ssl.pem ownership was given to zentyal admin user, so I switched it to ebox and adm as the other certs in that directory are listed as ebox and adm, thought it best to keep users the same.

Huge thank you to doncamilo for pointing me in the right direction to figure this out!

2
Installation and Upgrades / Re: Webadmin not Accessible
« on: January 02, 2020, 06:52:31 pm »
Unfortunately I don't have access to the WebAdmin GUI so I will need to figure out how to create new set of certificates from the command line that will be usable by Zentyal.

Just as a thought does Zentyal use openssl certs and if so then I should be able to run openssl to generate a cert?

I do have a wildcard cert for my web server from Lets Encrypt, I remember one contributor to this site came up with a script to incorporate Lets Encrypt certs into Zentyal I'll see if I can find that post and member and give it a go.

3
Installation and Upgrades / Re: Webadmin not Accessible
« on: December 31, 2019, 05:35:51 am »
Quote
However, services defined in '/etc/systemd/system' folder take precedence. So check this folder. Is there some zentyal.webadmin-nginx.service or zentyal.webadmin-uwsgi.service file?

Services listed above are not in /etc/sysemd/system folder.

Run the commands as suggested, found or couple of issues I do believe. First Nginx was not starting, apache2 had ports 80 and 443. When I stopped apache2 then started nginx using systemctl start nginx, started up no errors. But when I ran systemctl start zentyal.webadmin-nginx.service failed to start. when I ran journalctl -o verbose -u zentyal.webadmin-nginx.service found following.

MESSAGE=nginx: [emerg] SSL_CTX_use_PrivateKey_file("/var/lib/zentyal/conf/ssl/ssl.pem") failed (SSL: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch)

Now looking at my certs, need to determine why nginx thinks they don't match. Found per the nginx manpage above error will occur if the server certificate and the bundle have been concatenated in the wrong order. The cert is created by zentyal, right? So how could they be concatenated in the wrong order or am I looking in the wrong place?

4
Installation and Upgrades / Re: Webadmin not Accessible
« on: December 30, 2019, 03:33:27 am »
:)

I forgotten to reply! ¡I'm sorry!

Please, upload your logs another time. The link you provided is time out.

Run this command too:

Code: [Select]
sudo  ps aux | grep 'uwsgi'

I'm sorry for delaying my response!

Cheers!
Crazy time of the year with family, holidays, etc so I'm the one needs to apologize, believe I have the request information.
Below is the result of sudo ps aux | grep uwsgi

zenadmin 15173  0.0  0.0  12936   948 pts/0    S+   20:24   0:00 grep --color=auto uwsgi
ebox     15860  0.0  1.8 288948 76756 ?        Ss   Dec24   0:33 /usr/bin/uwsgi --master --ignore-sigpipe --buffer-size 10240 --plugins 0:psgi --uid ebox --gid ebox --umask 000 -s /run/zentyal-webadmin/webadmin.sock --touch-reload /var/lib/zentyal/webadmin.reload --psgi /usr/share/zentyal/psgi/zentyal.psgi
ebox     15990  0.0  1.8 288948 75360 ?        S    Dec24   0:00 /usr/bin/uwsgi --master --ignore-sigpipe --buffer-size 10240 --plugins 0:psgi --uid ebox --gid ebox --umask 000 -s /run/zentyal-webadmin/webadmin.sock --touch-reload /var/lib/zentyal/webadmin.reload --psgi /usr/share/zentyal/psgi/zentyal.psgi

Here is link again, will be active until the 10th, same log file posted earlier if you need\want more recent one let me know.

https://nextcloud.broughtonhome.org/index.php/s/ypgcoAWa7HYNSEq

scottdr, ran the command;
sudo netstat -tulpn | grep nginx
Returned was nothing, no output displayed on the screen.

5
Installation and Upgrades / Re: Webadmin not Accessible
« on: November 07, 2019, 12:45:54 am »
Traveling today so just now seeing your request.

https://nextcloud.broughtonhome.org/index.php/s/n3q4Q8MPnccYwpg


6
Installation and Upgrades / Re: Webadmin not Accessible
« on: November 06, 2019, 03:04:24 am »
Ok, I'm game how do I check for errors. Did a quick google for this and didn't really find anything that I believe applies to Zentyal. But then again I have no knowledge of what I looking for.

Thanks!

7
Installation and Upgrades / Webadmin not Accessible [SOLVED]
« on: November 05, 2019, 01:14:53 pm »
Trying to access the webadmin page and getting a page not found error. I have verified nginx is running and I can access the default page handed out by nginx. The port is shown as closed when I run nmap and I have run zs webadmin restart and the command runs with no errors. Checked both the error logs for zentyal, nothing shown or listed for this process. Also checked the logs for nginx, same thing nothing in the logs, as far as I can tell.

Any suggestions on what to look for, check or some more troubleshooting steps I can take would be appreciated.
Ubuntu 16.04.5
Zentyal 5.03
nginx 1.10.3

8
Installation and Upgrades / No Web Admin - V5
« on: February 02, 2019, 04:31:11 am »
Recent update to the core of ubuntu caused the lost of the web admin interface, actually lost all web accesses. The update removed bits and pieces of apache so I got it back and running thought I would be good to go, or so I thought. Still no running instance of web admin interface. Run namp against the server shows port 8443 open but in a closed state, nothing listening. Spun up another instances of Zentyal and low and behold no apache but it has nginx and operable web admin interface. My primary instance also has nginx.

So the question is how do I get the web admin interface running on my now primary domain controller? On my test zentyal instance looking at nginx /conf.d and /sites-enabled directory I don't see any reference to a zentyal web admin, how is this configured to run?

9
Never mind julio, rebooted the server and all is good now. Thanks!

10
Resolved issue with ips logging but still getting the "Operation not permitted error. Thoughts on how to address that?

11
Getting following message when attempting to open the webadmin interface after login.

Cannot write to '/var/log/zentyal/zentyal.log': Operation not permitted at /usr/share/perl5/Log/Log4perl/Appender/File.pm line 245

Initially found I had run out of space on the / drive, but have resolved that problem but I'm still getting the above message. Restarted, from the cli, DHCP\DNS they are now working, tried to restart logs, did not resolve the problem. What caused me to run out of space on the root drive was ips module and logs it was filling. as an example the stat.log was well over 10 gig and there where others in the same directory. I have stopped the ips service\module for now and rm the stat.log until I can get above resolved ips will remain stopped. From what I can tell the permissions for the log in question same as all other logs in that directory -rw-r--r--.


12
Email and Groupware / Re: Openchange Start Error
« on: October 25, 2017, 02:33:54 pm »
Resolved the error and have example.org working again. Removed mail modules, removed example.org from DNS, rebooted then put it all back in. Working correctly now.

BerT666, got me thinking along that track with your comment to setup a new box, Thanks.

13
Email and Groupware / Re: Openchange Start Error
« on: October 24, 2017, 02:09:52 pm »
As shown not a copy error, the log is, shall I say, incomplete? I agree they need to finish out the log entry as this would help with the troubleshooting.

tail syslog, below is what I found;

Oct 24 06:56:30 servername [sssd[ldap_child[12157]]]: Failed to initialize credentials using keytab [/var/lib/samba/private/secrets.keytab]: Cannot contact any KDC for realm 'EXAMPLE.LAN'. Unable to create GSSAPI-encrypted LDAP connection.
Oct 24 06:56:30 servername [sssd[ldap_child[12157]]]: Cannot contact any KDC for realm 'EXAMPLE.LAN'
Oct 24 06:56:30 servername [sssd[ldap_child[12158]]]: Failed to initialize credentials using keytab [/var/lib/samba/private/secrets.keytab]: Cannot contact any KDC for realm EXAMPLE.LAN'. Unable to create GSSAPI-encrypted LDAP connection.
Oct 24 06:56:30 servername [sssd[ldap_child[12158]]]: Cannot contact any KDC for realm 'EXAMPLE.LAN'

No change in hostname, in DHCP web GUI screen under configuration I made couple of changes but flipped them back but that was after the problem started. I switched Search Domain from example.lan to example.org and in Dynamic DNS Options enabled Dynamic DNS but as I stated switched these two settings back and no change or impact on the problem. Made these changes, I should have included this in my first posting, I was able to ping from my internal lan servername.example.org, that no longer works but I can ping servername.example.lan. In addition if I ping servername ping returns servername.example.lan.

14
Email and Groupware / [Solved]Openchange Start Error
« on: October 23, 2017, 02:34:09 pm »
Need some advise here, openchange, email in general, is not starting and when I attempt to start it get the following error message zentyal.log. Not looking for resolution just need some help pointing me in the right direction to solve it.

Running Zentyal 4.2.11 on Ubuntu LTS 14.04 fully patched. Thanks in advance.

2017/10/23 07:16:38 WARN> zentyal.psgi:43 main::__ANON__ - Use of uninitialized value $hostname in substitution (s///) at /usr/share/perl5/EBox/DHCP.pm line 1089.
2017/10/23 07:16:39 WARN> zentyal.psgi:43 main::__ANON__ - Odd number of elements in hash assignment at /usr/share/perl5/EBox/Dashboard/ModuleStatus.pm line 47, <GEN0> line 43998.
2017/10/23 07:16:39 WARN> zentyal.psgi:43 main::__ANON__ - Odd number of elements in hash assignment at /usr/share/perl5/EBox/Dashboard/ModuleStatus.pm line 47, <GEN0> line 44000.
2017/10/23 07:16:39 WARN> zentyal.psgi:43 main::__ANON__ - Odd number of elements in hash assignment at /usr/share/perl5/EBox/Dashboard/ModuleStatus.pm line 47, <GEN0> line 44002.
2017/10/23 07:16:39 WARN> zentyal.psgi:43 main::__ANON__ - Odd number of elements in hash assignment at /usr/share/perl5/EBox/Dashboard/ModuleStatus.pm line 47, <GEN0> line 44004.
2017/10/23 07:16:39 WARN> zentyal.psgi:43 main::__ANON__ - Odd number of elements in hash assignment at /usr/share/perl5/EBox/Dashboard/ModuleStatus.pm line 47.
2017/10/23 07:16:40 WARN> zentyal.psgi:43 main::__ANON__ - Odd number of elements in hash assignment at /usr/share/perl5/EBox/Dashboard/ModuleStatus.pm line 47, <GEN0> line 44010.

If I enter $hostname get no response but command hostname returns correct results.

In addition I'm also getting this error in the log;
2017/10/23 07:29:27 INFO> Service.pm:997 EBox::Module::Service::restartService - Restarting service for module: openchange
2017/10/23 07:29:28 ERROR> LDAP.pm:106 EBox::Module::LDAP::_dnsResolve - DNS query failed: NXDOMAIN (using nameservers 127.0.0.1, /etc/resolv.conf was
2017/10/23 07:29:28 ERROR> Service.pm:1001 EBox::Module::Service::restartService - Error restarting service: DNS query failed: NXDOMAIN (using nameservers 127.0.0.1, /etc/resolv.conf was
&#39;# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)
# and managed by Zentyal.
#
#     DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
#
nameserver 127.0.0.1
search example.lan example
&#39;

15
Had a similar issue, never checked the logs, what I did was remove all but the core modules, including Anti-Virus, then installed and enabled "Domain Controller and File Sharing" module I was able to join it to my existing 4.2 domain. I still received an error about samba but with a difference I had a link at the bottom of the error message to return to the Dashboard. When I checked "User and Computers" "Manage" the Zentyal server appears under "Domain Controllers" and is synced up with my PDC server. Changes made to PDC are replicated across to the BDC server now.

The other thing I did was to allow Zentyal 5 to first create it's own domain then I joined it to my existing domain.

I include detail about Anti-Virus module as it seems to be problematic, pron to crashing when I have it installed, next issue to look into.

Pages: [1] 2 3 4