I am setting up a new dc slave and when I log in to my Master server and when I go to the App Center and try to install UCS RADIUS from by selecting the appropriate slave, I receive the following error message.
The weird part is I was able to install the DHCP “app” without issue.
When I am on the slave server, I am unable to even locate the RADIUS app from the App Center there.
Any help is greatly appreciated.
Thanks!
Hi,
pretty sure this is a firewall and/or a DNS issue.
Check your filter rules on your firewall and verify the output on the slave of:
ucr get dns/forwarder1 dns/forwarder2
ucr get nameserver1 nameserver2 nameserver3
/CV
Hey, Christian,
Thanks for the help.
Here are my results.
root@vd-ucs:~# ucr get nameserver1
192.168.4.10
root@vd-ucs:~# ucr get nameserver2
192.168.50.35
ucr get dns/forwader1
Is not providing any results, but I do have the Google Public DNS in as a forwarder on this server.
To be safe thought I ran the following
root@vd-ucs:~# sudo ucr set dns/forwarder1=8.8.8.8
Setting dns/forwarder1
File: /etc/bind/named.conf.proxy
File: /etc/bind/named.conf.samba4
root@vd-ucs:~# ucr get dns/forwader1
root@vd-ucs:~#
But there were still no results, from ucr get dns/forwarder1
From the slave, I can ping the internet and I can even download other apps directly to the slave itself from the App Center. And I was able to install the DHCP server from the master without any issue.
I checked my firewall and it is not blocking anything that it shouldn’t be.
Another interesting thing is if I run the following.
root@vd-ucs:~# univention-app install radius
usage: univention-app install [-h] [--noninteractive] [--username USERNAME]
[--pwdfile PWDFILE]
[--set KEY=VALUE [KEY=VALUE ...]] [--dry-run]
[--do-not-revert] [--only-master-packages]
[--do-not-install-master-packages-remotely]
[--do-not-pull-image]
app
univention-app install: error: Unable to find app radius. Maybe "/usr/bin/univention-app update" to get the latest list of applications?
Let me know if you have any other suggestions. I greatly appreciate your help.
Hi,
we have a typo in there. It is dns/forwarder1.
Is vd-ucs your slave?
You mentioned:
How did you set this?
But in the setting it you had no typo, so it was set correctly.
So verify settings on master and slave as written. And restart bind as well as nscd:
systemctl restart bind9
systemctl restart nscd
Once done, verify on master and slave:
host vd-ucs
host www.univention.de
Resolvable?
/CV
Hey, Christian,
Yes, vd-ucs is the slave in question.
I set the forwarders up under the web base interface previously.
Ah I missed the typo, here is the results now,
From the slave.
root@vd-ucs:~# ucr get dns/forwarder1
8.8.8.8
root@vd-ucs:~# ucr get dns/forwarder2
8.8.4.4
From the master
root@ucs-home:~# ucr get nameserver1
192.168.50.35
root@ucs-home:~# ucr get dns/forwarder1
8.8.8.8
Restarted both bind9 and nscd on both slave and master.
Slave results
root@vd-ucs:~# host vd-ucs
vd-ucs.coldwell-banker-heritage.intranet has address 192.168.4.10
root@vd-ucs:~# host www.univention.de
www.univention.de has address 78.47.199.152
Master Results
root@ucs-home:~# host vd-ucs
vd-ucs.coldwell-banker-heritage.intranet has address 192.168.4.10
root@ucs-home:~# host www.univention.de
www.univention.de has address 78.47.199.152
Attempted to install radius to the slave from the master and still got the same results.
Also, wanted to say thanks again for your help! This is a puzzling me for sure.
Hi,
nice. Now being sure DNS seems to work fine. Sorry to insist there but you really need to make sure it works.
Now:
univention-check-join-status
If it is fine you should try to install the app through command line with univention-app. And there is a logfile at /var/log/univention/*app*log
/CV
Hey, Christian,
Thanks for your help. I checked the status and is stated it was successfully joined, I then tried to install it from the app again and this time it went thru!!
Thank you so much for your help!!!