Hello everybody,

Has Someone succefully connected ovirt engine to Samba4 to be able to authenticate user from this kind of server?, Eduardo, have you succeed in your attemp to connect engine to Samba4?, I would like to do the same and engine can authenticate other users. I would like to do this without Windows Active Directory.

Many thanks in avanced,

Juanjo.



On Tue, Apr 9, 2013 at 2:12 PM, Eduardo Ramos <eduardo@freedominterface.org> wrote:
Hi Roy!

In fact "engine-config -a" works fine. It shows me the db config content. By the way, that engine is running ok as well. I just can't get engine connected to my samba4.

Watching postgresql log file, whenever I use engine-manage-domains or engine-config, the following messages are appended:

LOG:  connection received: host=localhost port=33331
LOG:  connection authorized: user=engine database=engine
LOG:  unexpected EOF on client connection


But engine-config works fine. I'm using CentOS 6.3 and using yum there are not update for postgresql or jdbc to update. The same with ovirt-engine.

I'm really not understanding why it doesn't works.



On 04/07/2013 05:57 AM, Roy Golan wrote:
On 04/04/2013 09:45 PM, Eduardo Ramos wrote:
Hi all!

I'm trying to connect my ovirt-engine in a samba4 server. Samba4 is ActiveDirectory complaint. But when I use engine-manage-domains, it returns me a strange message:

[root@ovirt-dir eduardo]# engine-manage-domains -action=add -domain=gsr.inpe.br -provider=activeDirectory -user=Administrator -interactive
Enter password:

Error: Authentication Failed. Error in DNS configuration. Please verify the oVirt Engine host has a valid reverse DNS (PTR) record.. Problematic domain is: getconnection: driver class name=org.postgresql.xa.pgxadatasourcegetconnection: url=jdbc:postgresql://localhost:5432/enginegetconnection: considering encrypted passord.


it looks like engine-config have problems opening a db connection. The DNS reported error is a bug and is shown due to the connection error.

you should get that same error if you'll use
 $ engine.config -a

you have some problem connecting to the localhost postgres instance using the password entered during setup probably.

is your postgresql instance up the engine is able to connect to the db? engine-config is getting the password from the same source where the engine does.

also, a PTR record is no longer needed since openjdk 7 due to a change in the impl of the krb5 module.


secdomain=encryptdbpasswordexecute: beginning execution of action action_get.fetching key=domainname ver=general
Failure while applying Kerberos configuration. Details: Authentication Failed. Error in DNS configuration. Please verify the oVirt Engine host has a valid reverse DNS (PTR) record.

Using host command, I got the following results:

[root@ovirt-dir eduardo]# host ovirt-dir.gsr.inpe.br
ovirt-dir.gsr.inpe.br has address 150.163.80.125

[root@ovirt-dir eduardo]# host 150.163.80.125
125.80.163.150.in-addr.arpa domain name pointer ovirt-dir.gsr.inpe.br.

[root@ovirt-dir eduardo]# host -t srv _kerberos._tcp.gsr.inpe.br
_kerberos._tcp.gsr.inpe.br has SRV record 1 0 88 samba4.gsr.inpe.br.

[root@ovirt-dir eduardo]# host samba4.gsr.inpe.br
samba4.gsr.inpe.br has address 150.163.73.109

[root@ovirt-dir eduardo]# host 150.163.73.109
109.73.163.150.in-addr.arpa domain name pointer samba4.gsr.inpe.br.

As you can see, it is everything ok. No DNS problem.

Someone have any idea?

Thanks.


_______________________________________________
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users



_______________________________________________
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


_______________________________________________
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users