Keine Anmeldung an die Domäne

Hallo,

wir haben im letzten Jahr von der UCS-Version 4 auf die -Version 5 umgestellt. Bisher lief alles ohne Probleme…
Doch seit heute Morgen bekomme ich (im UCS-Portal) immer eine Fehlermeldung und eine Anmeldung ist nicht möglich. An den Arbeitsstationen kann sich keiner an der Domäne anmelden. Ein durchsuchen von LDAP scheitert mit der Meldung dass die Anmeldedaten nicht korrekt seien…

Ich hoffe jemand kann uns helfen (bevor ich alles neu aufsetzten muß)

Viele Grüße,
Frank

FEHLERMELDUNG:
Interner Server-Fehler.
{‘desc’: ‘Invalid credentials’}

Traceback (most recent call last):

  • File “/usr/lib/python3/dist-packages/univention/management/console/session.py”, line 350, in get_module_providing*
  • moduleManager[module_name]*
    KeyError: None

During handling of the above exception, another exception occurred:

Traceback (most recent call last):

  • File “/usr/lib/python3/dist-packages/univention/management/console/ldap.py”, line 188, in getter*
  • raise KeyError()*
    KeyError

During handling of the above exception, another exception occurred:

Traceback (most recent call last):

  • File “/usr/lib/python3/dist-packages/tornado/web.py”, line 1595, in _execute*
  • result = yield result*
  • File “/usr/lib/python3/dist-packages/tornado/gen.py”, line 1133, in run*
  • value = future.result()*
  • File “/usr/lib/python3/dist-packages/univention/management/console/resources.py”, line 715, in get*
  • module_name = acls.get_module_providing(moduleManager, command)*
  • File “/usr/lib/python3/dist-packages/univention/management/console/session.py”, line 355, in get_module_providing*
  • self._reload_acls_and_permitted_commands()*
  • File “/usr/lib/python3/dist-packages/univention/management/console/session.py”, line 309, in _reload_acls_and_permitted_commands*
  • lo, _po = get_machine_connection(write=False)*
  • File “/usr/lib/python3/dist-packages/univention/management/console/ldap.py”, line 144, in get_machine_connection*
  • return connection()*
  • File “/usr/lib/python3/dist-packages/univention/management/console/ldap.py”, line 200, in _decorated*
  • kwargs[loarg], kwargs[poarg] = lo, po = getter()*
  • File “/usr/lib/python3/dist-packages/univention/management/console/ldap.py”, line 190, in getter*
  • conn = connection()*
  • File “/usr/lib/python3/dist-packages/univention/management/console/ldap.py”, line 101, in connection*
  • return _getMachineConnection(*kwargs)
  • File “/usr/lib/python3/dist-packages/univention/admin/uldap.py”, line 181, in getMachineConnection*
  • lo = univention.uldap.getMachineConnection(start_tls, decode_ignorelist=decode_ignorelist, ldap_master=ldap_master)*
  • File “/usr/lib/python3/dist-packages/univention/uldap.py”, line 199, in getMachineConnection*
  • return access(host=server, port=port, base=ucr[‘ldap/base’], binddn=ucr[‘ldap/hostdn’], bindpw=bindpw, start_tls=start_tls, decode_ignorelist=decode_ignorelist, reconnect=reconnect)*
  • File “/usr/lib/python3/dist-packages/univention/uldap.py”, line 295, in init*
  • self.__open(ca_certfile)*
  • File “/usr/lib/python3/dist-packages/univention/uldap.py”, line 397, in __open*
  • self.bind(self.binddn, self.bindpw)*
  • File “/usr/lib/python3/dist-packages/univention/uldap.py”, line 215, in _decorated*
  • return func(self, *args, *kwargs)
  • File “/usr/lib/python3/dist-packages/univention/uldap.py”, line 309, in bind*
  • self.lo.simple_bind_s(self.binddn, self.bindpw)*
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 1215, in simple_bind_s*
  • res = self._apply_method_s(SimpleLDAPObject.simple_bind_s,*args,*kwargs)
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 1197, in _apply_method_s*
  • return func(self,*args,*kwargs)
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 444, in simple_bind_s*
  • resp_type, resp_data, resp_msgid, resp_ctrls = self.result3(msgid,all=1,timeout=self.timeout)*
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 749, in result3*
  • resp_ctrl_classes=resp_ctrl_classes*
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 756, in result4*
  • ldap_result = self._ldap_call(self._l.result4,msgid,all,timeout,add_ctrls,add_intermediates,add_extop)*
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 329, in _ldap_call*
  • reraise(exc_type, exc_value, exc_traceback)*
  • File “/usr/lib/python3/dist-packages/ldap/compat.py”, line 44, in reraise*
  • raise exc_value*
  • File “/usr/lib/python3/dist-packages/ldap/ldapobject.py”, line 313, in _ldap_call*
  • result = func(*args,*kwargs)
    ldap.INVALID_CREDENTIALS: {‘desc’: ‘Invalid credentials’}

Hallo, ich habe das gleiche Problem. Bist du weiter gekommen?

Hallo, ich habe ebenfalls das Problem. Hat jemand eine Lösung gefunden?

Sind die UCS Zertifikate noch gültig? Das ist oft das Problem

Ein Problem beim machine secret wäre auch eine Option…

udm computers/$(ucr get server/role) modify --dn “$(ucr get ldap/hostdn)” --set password="$(</etc/machine.secret)"

Was sagt:
/usr/lib/nagios/plugins/check_univention_ssl_certificate OK: SSL

?

Mastodon