Keycloak error after Backup2Master

UCS - Univention Corporate Server
1

After all the problems with the years-old installation, I created a backup DC which I have promoted to Master now (and which upgraded to the latest UCS version fine).

The only problem is that the newly promoted DC does not let me run the only Domain jon script left which is for Nextcloud.

I have found this error in the log which was the only one I couldn’t remedy before running the script:

urllib3.util.ssl_match_hostname.CertificateError: hostname ‘ucs-sso-ng.induhvidual.local’ doesn’t match either of ‘UCS2.induhvidual.local’, ‘UCS2’

UCS has been the old master, whereas UCS2 is the new one.

So if I find no solution for the Keycloak problem, I will not be able to use Nextcloud (and probably run into some other problems sometime).

join_nextcloud.log (6.6 KB)

2

Maybe I should add that the server is only reachable locally as of now, not via internet which shouldn’t pose any problem as the domain obviously is a local one.

So I tried using the following command which I found here:
https://docs.software-univention.de/keycloak-app/latest/configuration.html

image

(Screenshot probably too small…)

ucr set umc/saml/idp-server=“https://ucs-sso-ng.$(hostname -d)/realms/ucs/protocol/saml/descriptor”

Hostname is resolved to “induhvidual.local”.

Which results in a resoving error:

image
image1279×149 5.91 KB

What to do?

Thank you very much.