Messages

1

News and Announcements / Re: Upgrade from Zentyal 6.2 to 7.0 is now available

« on: March 18, 2021, 11:13:57 pm »

We are up and running and fixed the issue with this commands!

sudo rm -rf /var/lib/zentyal/conf/ssl
sudo /usr/share/zentyal/create-certificate /var/lib/zentyal/conf/ssl `hostname --fqdn`
sudo systemctl start zentyal.webadmin-nginx.service

This is good info here.

Anyone got a link on a HowTo setup a secondary the quickest way. Since I am in a single server environment (I know I don't need your comments on that, its been rock solid for 3 years), I'd like to setup a secondary just for redundancy if this thing sh*ts the bed again.

2

News and Announcements / Re: Upgrade from Zentyal 6.2 to 7.0 is now available

« on: March 11, 2021, 05:49:42 am »

Well as luck would have it I just hosed out my only server.
DNS wont upgrade:

Code: [Select]

sudo apt-get install zentyal-core
Reading package lists... Done
Building dependency tree       
Reading state information... Done
zentyal-core is already the newest version (7.0.0).
You might want to run 'apt --fix-broken install' to correct these.
The following packages have unmet dependencies:
 zentyal-dns : Depends: zentyal-core (< 7.0.0) but 7.0.0 is to be installed
E: Unmet dependencies. Try 'apt --fix-broken install' with no packages (or specify a solution).

sudo apt --fix-broken install
attempts to upgrade zentyal-dns but fails

Code: [Select]

Preparing to unpack .../zentyal-dns_7.0.0_all.deb ...
Unpacking zentyal-dns (7.0.0) over (6.2.0) ...
dpkg: error processing archive /var/cache/apt/archives/zentyal-dns_7.0.0_all.deb (--unpack):
 trying to overwrite '/etc/bind/db.root', which is also in package bind9 1:9.11.3+dfsg-1ubuntu1.14
Errors were encountered while processing:
 /var/cache/apt/archives/zentyal-dns_7.0.0_all.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)
sudo dpkg --configure -a does not solve it
sudo apt-get autoremove does not solve it:

Code: [Select]

sudo apt-get autoremove
Reading package lists... Done
Building dependency tree       
Reading state information... Done
You might want to run 'apt --fix-broken install' to correct these.
The following packages have unmet dependencies:
 zentyal-dns : Depends: zentyal-core (< 7.0.0) but 7.0.0 is installed
E: Unmet dependencies. Try 'apt --fix-broken install' with no packages (or specify a solution).
I attempted to update since I have been seeing the "Update to 7.0" in the gui for maybe 6 weeks.
But as I read that was just a screw up on the developers side and somehow that was popping up when it should not have been.

Not really sure what to do now, besides just rebuild and waste the rest of my week and the clients time.

DNS will not install, logins won't function, and Domain Controller and File Sharing is not installed now.

Any ideas? Doubt I can roll back in any way.

UPDATE:
Success, I rolled back.
Edited sources.list, removed 7.0
removed Zentyal, sudo apt-get remove zentyal-core zentyal-software
re-installed it all
Had to hack DNS to get out and install again
Edited resolve.conf, added upstream router as DNS
sudo apt-get update (->>it worked so I know DNS is resolving)
sudo apt-get zentyal-core zentyal-software
Installs the basics, screws up resolve.conf again, so can't install Domain, NTP (what I use and need)
Edited resolve.conf again as above
Via the Zentyal Gui, install Domain Controller and File Sharing, NTP
Installs successfully.
All users, groups, computers are in place.
----
Only issue is I can't map drives. I assume I can re-attach the workstation(s) and that will fix it, which is a pain in the ass, but better than rebuilding the entire domain from scratch.
Working on the issue. Can't ping by FQDN, I'll go back though and test that path, make sure DNS is setup correctly.

3

Directory and Authentication / Re: Login Script - Still Does NOT WORK

« on: June 15, 2019, 04:19:48 am »

And I have tried editing the .conf to login.bat and logon.bat, both files exist in \scripts, same file.
Neither work.

4

Directory and Authentication / Re: Login Script - Still Does NOT WORK

« on: June 15, 2019, 03:37:10 am »

Code: [Select]

Load smb config files from /etc/samba/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section "[homes]"
Processing section "[netlogon]"
Processing section "[sysvol]"
Loaded services file OK.
Server role: ROLE_ACTIVE_DIRECTORY_DC

Press enter to see a dump of your service definitions

# Global parameters
[global]
bind interfaces only = Yes
interfaces = lo eth0 wlan0
ldap server require strong auth = No
log file = /var/log/samba/samba.log
logon script = login.bat
map to guest = Bad User
max log size = 100000
passdb backend = samba_dsdb
realm = domain.name
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
server signing = if_required
server string = Zentyal Server
template homedir = /home/%U
template shell = /bin/bash
winbind enum groups = Yes
winbind enum users = Yes
workgroup = SBCIA
rpc_server:tcpip = no
rpc_daemon:spoolssd = embedded
rpc_server:spoolss = embedded
rpc_server:winreg = embedded
rpc_server:ntsvcs = embedded
rpc_server:eventlog = embedded
rpc_server:srvsvc = embedded
rpc_server:svcctl = embedded
rpc_server:default = external
winbindd:use external pipes = true
idmap_ldb:use rfc2307 = yes
drs:max object sync = 1200
dsdb:schema update allowed = yes
server role check:inhibit = yes
idmap config * : backend = tdb
include = /etc/samba/shares.conf
map archive = No
map readonly = no
store dos attributes = Yes
vfs objects = dfs_samba4 acl_xattr


[homes]
browseable = No
comment = Home Directories
create mask = 0611
directory mask = 0711
path = /home/%S
read only = No
vfs objects = acl_xattr full_audit
full_audit:failure = connect opendir disconnect unlink mkdir rmdir open rename
full_audit:success = connect opendir disconnect unlink mkdir rmdir open rename


[netlogon]
browseable = No
path = /var/lib/samba/sysvol/domain.name/scripts


[sysvol]
path = /var/lib/samba/sysvol
read only = No

5

Directory and Authentication / Re: Login Script - Still Does NOT WORK

« on: June 15, 2019, 03:35:01 am »

I was pretty clear. Documentation says the login.bat works. Or logon.bat.
It simply does not.

Yes, I could go back and configure GPO's to recreate the mappings, but with a simple upgrade to replace existing, it takes more time, and I have to deploy a solution that is not tested in the environment. The login script has been working flawlessly with all versions of windows, including 10latest. So I don't want to have to re-invent anything.

That was my point, the documented use of a login script fails to work, there is minimal information on how to troubleshoot, outside of some posts that say just drop the logon.bat into the /var/lib/samba/sysvol/domain.name/scripts

So I will rebuild the login using GPO's which then I have to test before deployment.

6

Directory and Authentication / Re: Login Script - Still Does NOT WORK

« on: June 13, 2019, 10:07:51 pm »

I know I can do that, but when migrating an existing legacy domain, it is much more simple to use what is in place.

Part of the point of migrating away from Windows is to be able to NOT rely on GPO's and for many many smaller environments it is simply not needed.

All that being said, still the functionallity is that this works, but it simply does not.

So yeah, I will just go and build GPO's to map drives, as a script to bat is just so hard to deal with /s.

7

Directory and Authentication / Re: Login Script - Still Does NOT WORK

« on: June 12, 2019, 10:29:08 pm »

So does no one read these forums? Or is the product has zero support? If an answer can't even be deprived for the testing product (community version) why would anyone assume that a paid product would provide better results?

Without a login script, the product is about useless in a business environment.

Not to mention, there is no way to 'flag' a request, question, or issue as the Paid or Community product.

8

Directory and Authentication / Login Script - Still Does NOT WORK

« on: June 12, 2019, 09:26:05 am »

I have searched and gone through every post regarding the login script. Many which were never answered.

I am using the Community Edition, 6.0.1.
Workstation is attached to Domain, running Win7 (as a test box, I'll move to Win10 when this works)

Nothing I can do makes a login script work. I simple have:
      net use f: \\NAS01\Sharename
      net use G: \\ZentyalServerName\Sharename
NAS01 is a ReadyNas attached to the Domain/Zentyal. All accounts/groups can be seen with the ReadyNAS

The login script does not map either drive. The Zentyal Share or the NAS share.
As stated numerous times across the web, I can map drives manually via a command on Windows.
I have created in the /scripts folder
   login.bat
   logon.bat
Both have the same mapping commands as listed above.

I have read that you simply drop in the file - Don't work.
I have read about editing the smb.conf - added logon.bat, and tried login.bat - Does not work.

I have installed the Windows Admin Tools and configured the test user for logon.bat, and then tested login.bat - Don't work.
I have connected to the /scripts folder and created a new file from Windows, with the commands, saving it as a BAT (not a txt).
I have connected via SSH and just sudo nano login.bat and created a brand new file (for logon and login).

As you can see I have exhausted almost every option here.
Not a single post on the internet says HOW they got this working, most NEVER got it working.

Any idea how I can make a login script run?
It would seem this is core functionality with Zentyal and it should be expected to work.

I am far from a novice here and it seems I have exhausted all the available google knowledge.

Anyone have any ideas?