Hi all. I am trying to use UCS 5 in an old network. They use an old win2012 server, which has some hw problem and is bluescreening once a week.
I tried UCS 5 in my homelab, created a new test domain, worked great, I loved it.
So, I tried to do the same in this network:
- Installed UCS5
- joined the domain
- installed the updates
- rebooted
- i set the license key to install the AD takeover to turn off that win2012 server (so: just installed, did not start it)
- someone called me at the phone, i came back after one hour, the session was logged out and… now i can’t login anymore as Administrator. It says wrong password. I can login as root on both the webpage (limited access) and the local terminal.
what can I do?
some troubleshooting from other topics:
kinit Administrator
kinit: Password incorrect
univention-check-join-status
Joined successfully
ldapsearch -x -D "uid=Administrator,cn=users,$(ucr get ldap/base)" -w 'YOUR_PASSWORD' uid=Administrator 1.1
ldap_bind: Invalid credentials (49)
univention-ldapsearch -LLL uid=Administrator createTimestamp modifyTimestamp
createTimestamp: [the time i installed the server, yesterday]
modifyTimestamp: [the exact time i installed the ad takeover program, today]
/etc/libnss-ldap.conf
is referring to the ucs server itself
So, I don’t really know what to do now. I can wipe the server and delete all the info from active directory and try again, but i am scared it will happen again if i don’t know what happened, maybe i did some mistake in config…
edit: I tried to see the status of the name service cache daemon and i see this in the logs:
systemctl status nscd.service
nss-ldap: do_open: do_start_tls failed: stat=-1
nss_ldap: could not search LDAP server - Server is unavailable