Univention-upgrade prompts for root password to connect to UCS backup server


#1

Hi at all,

I’ve problems to install/update an app from the app-center at a UCS backup.

Today I’ve started the update (here Kopano) on the UCS master via “univention-upgrade”.

The following apps can be upgraded:

Kopano Core: Version 8.3.1.32 can be upgraded to 8.4.5.0
Starting univention-app upgrade at Sat Jun  9 11:32:56 2018...

The installation started an a few minutes later there was an password prompt for

root@myUCSBackup.intra.mydomain.tld

Snippet from updater.log

2018-06-09 12:27:49,129 DEBUG:univention.appcenter.actions.upgrade.progress:30
Installing some packages of kopano-core on myUCSBackup.intra.mydomain.tld
2018-06-09 12:27:49,180 INFO:univention.appcenter.actions.upgrade:Installing some packages of kopano-core on myUCSBackup.intra.mydomain.tld
Calling /usr/sbin/univention-ssh /tmp/tmpNffy0n root@myUCSBackup.intra.mydomain.tld univention-app install kopano-core=8.4.5.0 --only-master-packages --noninteractive --do-not-send-info
2018-06-09 12:31:07,535 DEBUG:univention.appcenter.actions.upgrade:Calling /usr/sbin/univention-ssh /tmp/tmpNffy0n myUCSBackup.intra.mydomain.tld univention-app install kopano-core=8.4.5.0 --only-master-packages --noninteractive --do-not-send-info

I’ve entered the root password and the installation will go on.

My questions are:

  • which format has the password file for univention-ssl (/tmp/tmpNffy0n)
  • where is the password for myUCSBackup.intra.mydomain.tld stored, so that I can change it to the correct value

My versions:

UCS: 4.2-4 errata418
App Center compatibility: 4
Installed: cups=1.7.5 dhcp-server=11.0.0 kopano-core=8.4.5.0 kopano-webapp=3.3.0.610 nagios=3.5 pkgdb=10 samba4=4.6 squid=3.4 z-push-kopano=2.3.7
Upgradable:

Thanks
Ulf


#2

Hi,

I can not answer all of your questions or solve your issue, but you can find several passwords in the *.secret files at /etc.

root@master:/etc# ls | grep secret
backup-join.secret
idp-ldap-user.secret
ldap-backup.secret
ldap.secret
libnss-ldap.secret
listfilter.secret
machine.secret
pam_ldap.secret
slave-join.secret

Possibly it might help you.


#3

Hi,

thanks for the list. I will doublecheck these files next time I’m on the server.

Ulf