<div dir="ltr"><div>Hello everybody,<br></div><div><br></div><div>Has Someone succefully connected ovirt engine to Samba4 to be able to authenticate user from this kind of server?, Eduardo, have you succeed in your attemp to connect engine to Samba4?, I would like to do the same and engine can authenticate other users. I would like to do this without Windows Active Directory.</div>
<div><br></div><div>Many thanks in avanced,</div><div><br></div><div>Juanjo.</div><div><br></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, Apr 9, 2013 at 2:12 PM, Eduardo Ramos <span dir="ltr"><<a href="mailto:eduardo@freedominterface.org" target="_blank">eduardo@freedominterface.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
Hi Roy!<br>
<br>
In fact "engine-config -a" works fine. It shows me the db config
content. By the way, that engine is running ok as well. I just can't
get engine connected to my samba4.<br>
<br>
Watching postgresql log file, whenever I use engine-manage-domains
or engine-config, the following messages are appended:<br>
<br>
<small>LOG: connection received: host=localhost port=33331<br>
LOG: connection authorized: user=engine database=engine<br>
LOG: unexpected EOF on client connection</small><br>
<br>
But engine-config works fine. I'm using CentOS 6.3 and using yum
there are not update for postgresql or jdbc to update. The same with
ovirt-engine.<br>
<br>
I'm really not understanding why it doesn't works.<div><div class="h5"><br>
<br>
<br>
<div>On 04/07/2013 05:57 AM, Roy Golan
wrote:<br>
</div>
<blockquote type="cite">
<div>On 04/04/2013 09:45 PM, Eduardo Ramos
wrote:<br>
</div>
<blockquote type="cite">
Hi all!<br>
<br>
I'm trying to connect my ovirt-engine in a samba4 server. Samba4
is ActiveDirectory complaint. But when I use
engine-manage-domains, it returns me a strange message:<br>
<br>
<small>[root@ovirt-dir eduardo]# engine-manage-domains
-action=add -domain=<a href="http://gsr.inpe.br" target="_blank">gsr.inpe.br</a> -provider=activeDirectory
-user=Administrator -interactive<br>
Enter password:<br>
<br>
Error: Authentication Failed. Error in DNS configuration.
Please verify the oVirt Engine host has a valid reverse DNS
(PTR) record.. Problematic domain is: getconnection: driver
class name=org.postgresql.xa.pgxadatasourcegetconnection:
url=jdbc:postgresql://localhost:5432/enginegetconnection:
considering encrypted passord. </small></blockquote>
<br>
<br>
it looks like engine-config have problems opening a db connection.
The DNS reported error is a bug and is shown due to the connection
error. <br>
<br>
you should get that same error if you'll use<br>
$ engine.config -a<br>
<br>
you have some problem connecting to the localhost postgres
instance using the password entered during setup probably.<br>
<br>
is your postgresql instance up the engine is able to connect to
the db? engine-config is getting the password from the same source
where the engine does.<br>
<br>
also, a PTR record is no longer needed since openjdk 7 due to a
change in the impl of the krb5 module.<br>
<br>
<br>
<blockquote type="cite"><small>secdomain=encryptdbpasswordexecute: beginning
execution of action action_get.fetching key=domainname
ver=general<br>
Failure while applying Kerberos configuration. Details:
Authentication Failed. Error in DNS configuration. Please
verify the oVirt Engine host has a valid reverse DNS (PTR)
record.<br>
<br>
<big><big><small>Using host command, I got the following
results:<br>
<small><br>
[root@ovirt-dir eduardo]# host <a href="http://ovirt-dir.gsr.inpe.br" target="_blank">ovirt-dir.gsr.inpe.br</a><br>
<a href="http://ovirt-dir.gsr.inpe.br" target="_blank">ovirt-dir.gsr.inpe.br</a> has address <a href="tel:150.163.80.125" value="+15016380125" target="_blank">150.163.80.125</a><br>
<br>
[root@ovirt-dir eduardo]# host <a href="tel:150.163.80.125" value="+15016380125" target="_blank">150.163.80.125</a><br>
125.80.163.150.in-addr.arpa domain name pointer
<a href="http://ovirt-dir.gsr.inpe.br" target="_blank">ovirt-dir.gsr.inpe.br</a>.<br>
<br>
[root@ovirt-dir eduardo]# host -t srv
_kerberos._<a href="http://tcp.gsr.inpe.br" target="_blank">tcp.gsr.inpe.br</a><br>
_kerberos._<a href="http://tcp.gsr.inpe.br" target="_blank">tcp.gsr.inpe.br</a> has SRV record 1 0 88
<a href="http://samba4.gsr.inpe.br" target="_blank">samba4.gsr.inpe.br</a>.<br>
<br>
[root@ovirt-dir eduardo]# host <a href="http://samba4.gsr.inpe.br" target="_blank">samba4.gsr.inpe.br</a><br>
<a href="http://samba4.gsr.inpe.br" target="_blank">samba4.gsr.inpe.br</a> has address <a href="tel:150.163.73.109" value="+15016373109" target="_blank">150.163.73.109</a><br>
<br>
[root@ovirt-dir eduardo]# host <a href="tel:150.163.73.109" value="+15016373109" target="_blank">150.163.73.109</a><br>
109.73.163.150.in-addr.arpa domain name pointer
<a href="http://samba4.gsr.inpe.br" target="_blank">samba4.gsr.inpe.br</a>.<br>
<br>
<big>As you can see, it is everything ok. No DNS
problem.<br>
<br>
Someone have any idea?<br>
<br>
Thanks.<br>
</big></small></small></big></big></small> <br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a>
<a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre>
</blockquote>
<br>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a>
<a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre>
</blockquote>
<br>
</div></div></div>
<br>_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@ovirt.org">Users@ovirt.org</a><br>
<a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/users</a><br>
<br></blockquote></div><br></div>