This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
News and Announcements / Re: Upgrade from Zentyal 6.2 to 7.0 is now available
« on: April 23, 2021, 01:17:28 pm »Hi,
I have two machines with zentyal 6.2 and I have the offer on the web gui to upgrade to zentyal 7.0, however the process gets stuck on preparing. On both machines I have zentyal core 6.2.3, on web gui there is 6.2.8 suggestion (it redirects to doc page), but I cannot update it even via command line.
Any idea?
Thank you
You have to upgrade to 6.2.8 before attempting to upgrade to 7.0. Make sure you have a backup or snapshot before attempting an upgrade.
Right, but I cannot do it. I was able to upgrade up to 6.2.4 as you can see https://postimg.cc/qzh702G1.
Had the same issue. Check if it is related to Expired APT (GPG) Key (webmaster's msg)
2
News and Announcements / Re: Upgrade from Zentyal 6.2 to 7.0 is now available
« on: April 23, 2021, 12:51:29 pm »
We try to upgrade from 6.2.9. As Daniel Joven suggested we run the script itself to upgrade the system by executing the command:
Could not upload an execution output here; download link https://gofile.io/d/y16VhA
Noticeable errors start line 4842, then at line 5015
/var/log/mysql/error.log - https://gofile.io/d/fHM5jd
Code: [Select]
sudo bash -x /usr/share/zentyal/release-upgrade
Could not upload an execution output here; download link https://gofile.io/d/y16VhA
Noticeable errors start line 4842, then at line 5015
/var/log/mysql/error.log - https://gofile.io/d/fHM5jd
3
Directory and Authentication / How to set up ACLs against Organizational Units
« on: May 22, 2019, 11:02:45 am »
Hello,
I've looked for a solution/answer for several days, but I did not find it (maybe I looked badly ...).
Introductory
Domain: Zentyal 6.0.1 DE (all updates available from the web console are installed)
Client: Windows Server 2016, Server 2012R2, Server 2008
AD Container 1: TEST_OU_01 (OU = TEST_OU_01, DC = zentyal, DC = local)
AD Container 2: TEST_OU_02 (OU = TEST_OU_02, DC = zentyal, DC = local)
AD Group 1: TEST_GROUP_01 (CN = TEST_GROUP_01, OU = TEST_OU_01, DC = zentyal, DC = local)
Members
AD User 1: TEST_USER_01 (non-Admin) (CN = TEST_USER_01, OU = TEST_OU_01, DC = zentyal, DC = local)
AD User 2: TEST_USER_02 (non-Admin) (CN = TEST_USER_02, OU = TEST_OU_01, DC = zentyal, DC = local)
AD Group 2: TEST_GROUP_02 (CN = TEST_GROUP_02, OU = TEST_OU_02, DC = zentyal, DC = local)
Members
AD User 3: TEST_USER_AA (non-Admin) (CN = TEST_USER_AA, OU = TEST_OU_02, DC = zentyal, DC = local)
AD User 4: TEST_USER_BB (non-Admin) (CN = TEST_USER_BB, OU = TEST_OU_02, DC = zentyal, DC = local)
ADSI configuration
TEST_OU_01
- Removed "Everyone" and "Authenticated Users"
- TEST_GROUP_01 Allow (Read), Deny (All other)
TEST_OU_02
- Removed "Everyone" and "Authenticated Users"
- TEST_GROUP_02 Allow (Read), Deny (All other)
When TEST_USER_01 connects to a Client PC and runs "AD Users and Computers", he can't see TEST_OU_02 and it's content.
But when TEST_USER_01 runs cmd and executes the command:
User can see all groups (TEST_GROUP_01 and TEST_GROUP_02)
User can see all users (TEST_USER_01-02, TEST_USER_AA-BB)
When I performe these actions in a valid MS domain, the user TEST_USER_01 does not have access to the TEST_OU_02 and its content (neither via RSAT, nor net, nor dsquery, etc.).
Desired result
Allow (or deny) certain users access to specific OUs.
I've looked for a solution/answer for several days, but I did not find it (maybe I looked badly ...).
Introductory
Domain: Zentyal 6.0.1 DE (all updates available from the web console are installed)
Client: Windows Server 2016, Server 2012R2, Server 2008
AD Container 1: TEST_OU_01 (OU = TEST_OU_01, DC = zentyal, DC = local)
AD Container 2: TEST_OU_02 (OU = TEST_OU_02, DC = zentyal, DC = local)
AD Group 1: TEST_GROUP_01 (CN = TEST_GROUP_01, OU = TEST_OU_01, DC = zentyal, DC = local)
Members
AD User 1: TEST_USER_01 (non-Admin) (CN = TEST_USER_01, OU = TEST_OU_01, DC = zentyal, DC = local)
AD User 2: TEST_USER_02 (non-Admin) (CN = TEST_USER_02, OU = TEST_OU_01, DC = zentyal, DC = local)
AD Group 2: TEST_GROUP_02 (CN = TEST_GROUP_02, OU = TEST_OU_02, DC = zentyal, DC = local)
Members
AD User 3: TEST_USER_AA (non-Admin) (CN = TEST_USER_AA, OU = TEST_OU_02, DC = zentyal, DC = local)
AD User 4: TEST_USER_BB (non-Admin) (CN = TEST_USER_BB, OU = TEST_OU_02, DC = zentyal, DC = local)
ADSI configuration
TEST_OU_01
- Removed "Everyone" and "Authenticated Users"
- TEST_GROUP_01 Allow (Read), Deny (All other)
TEST_OU_02
- Removed "Everyone" and "Authenticated Users"
- TEST_GROUP_02 Allow (Read), Deny (All other)
When TEST_USER_01 connects to a Client PC and runs "AD Users and Computers", he can't see TEST_OU_02 and it's content.
But when TEST_USER_01 runs cmd and executes the command:
Code: [Select]
net group / domain
User can see all groups (TEST_GROUP_01 and TEST_GROUP_02)
Code: [Select]
net group / domain
User can see all users (TEST_USER_01-02, TEST_USER_AA-BB)
When I performe these actions in a valid MS domain, the user TEST_USER_01 does not have access to the TEST_OU_02 and its content (neither via RSAT, nor net, nor dsquery, etc.).
Desired result
Allow (or deny) certain users access to specific OUs.
4
Russian / Запрет доступа к объектам AD
« on: April 18, 2019, 02:52:00 pm »
Добрый день,
Несколько дней искал решение\ответ, но так и не нашел (может плохо искал...).
Вводные
Домен: Zentyal 6.0.1 DE (установлены все обновления доступные из веб консоли)
Клиент: Windows Server 2016, Server 2008
Ситуация
1. На контейнер Groups1 (в котором находиться группа TES) высталяю Deny Full control.
2. Подключаюсь пользователем test01, запускаю cmd и выполняю комманду:
Выполнив данные действия в действующем MS доменне, доступа к группе TES пользователь test01 не имеет (ни через RSAT, ни net, ни dsquery и т.д.).
Желаемый результат
Разрешить (или запретить) доступ определенным пользователям к определенным OU.
З.Ы:
Deny Full control - "влоб" потому, что перебор правельных настроек недавал результата, впрочем как и этот...
UPD1: На Server 2008 та же ситуация.
Несколько дней искал решение\ответ, но так и не нашел (может плохо искал...).
Вводные
Домен: Zentyal 6.0.1 DE (установлены все обновления доступные из веб консоли)
Клиент: Windows Server 2016, Server 2008
Контейнер: | Groups1 | (OU=Groups1,DC=zentyal,DC=local) |
Группа: | TES | (CN=TES,OU=Groups1,DC=zentyal,DC=local) |
Пользователь: | test01 (non-Admin) | (CN=TEST USER 01,CN=Users,DC=zentyal,DC=local) |
Ситуация
1. На контейнер Groups1 (в котором находиться группа TES) высталяю Deny Full control.
2. Подключаюсь пользователем test01, запускаю cmd и выполняю комманду:
Code: [Select]
net group /domain
3. В резуьтате получаю список всех груп включая TES, доступа к которой у пользователя test01 уже нету.Выполнив данные действия в действующем MS доменне, доступа к группе TES пользователь test01 не имеет (ни через RSAT, ни net, ни dsquery и т.д.).
Желаемый результат
Разрешить (или запретить) доступ определенным пользователям к определенным OU.
З.Ы:
Deny Full control - "влоб" потому, что перебор правельных настроек недавал результата, впрочем как и этот...
UPD1: На Server 2008 та же ситуация.
Pages: [1]