songhailiu Absent Member.
Absent Member.
3281 views

DHCP issues Please help

WHen I tried to enable DHCP in oes2 install and configuration using yast2 (or anything ), I got
Novell DHCP (or DNS ,Linux LDAP) services requires additional configuration information before continuing or disable. Got power failure last (not on UPS)
Labels (1)
0 Likes
18 Replies
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

songhailiu;2104505 wrote:
WHen I tried to enable DHCP in oes2 install and configuration using yast2 (or anything ), I got
Novell DHCP (or DNS ,Linux LDAP) services requires additional configuration information before continuing or disable. Got power failure last (not on UPS)


Credentials failed
to validate using:
server:xxx
user:xxx
LDAP port 636
failed to configure novell DHCP services
0 Likes
TASNovell Absent Member.
Absent Member.

Re: DHCP issues Please help

you could try modifying the dhcpd configuration and using LDAP unsecure on port 389. Or ensure that your LDAP server is correctly setup for the secure connection.
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

TASNovell;2104564 wrote:
you could try modifying the dhcpd configuration and using LDAP unsecure on port 389. Or ensure that your LDAP server is correctly setup for the secure connection.

What do I need to modify for unsecure on port 389?Thanks
0 Likes
Knowledge Partner
Knowledge Partner

Re: DHCP issues Please help

songhailiu;2104576 wrote:
What do I need to modify for unsecure on port 389?Thanks


Just re-run the OES Install and Configure tool from within YaST. Don't select/deselect any additional packages in the product selection screen - just accept what's already installed.
You should then continue on the the OES configuration screen where you can enable to (re)configure DHCP and retry with the same or different settings.

-Willem
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

magic31;2104663 wrote:
Just re-run the OES Install and Configure tool from within YaST. Don't select/deselect any additional packages in the product selection screen - just accept what's already installed.
You should then continue on the the OES configuration screen where you can enable to (re)configure DHCP and retry with the same or different settings.

-Willem


That is what I did and at end failed to configure novell DHCP services because the LDAP issue.
0 Likes
Knowledge Partner
Knowledge Partner

Re: DHCP issues Please help

songhailiu;2104775 wrote:
That is what I did and at end failed to configure novell DHCP services because the LDAP issue.


Sorry, missed that....

When reconfiguring, also enable to reconfigure LDAP and maybe also LUM. If you don't want to be forced to use secure LDAP (which should normally work), make sure to uncheck 'Require TLS for simple binds...' option within the eDirectory LDAP server object for the server you have specified as LDAP source.

As a side step, are you sure all server certificates are valid and in working order? A good thing to double check as to avoid other issues.

Cheers,
Willem
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

magic31;2104806 wrote:
Sorry, missed that....

When reconfiguring, also enable to reconfigure LDAP and maybe also LUM. If you don't want to be forced to use secure LDAP (which should normally work), make sure to uncheck 'Require TLS for simple binds...' option within the eDirectory LDAP server object for the server you have specified as LDAP source.

As a side step, are you sure all server certificates are valid and in working order? A good thing to double check as to avoid other issues.

Cheers,
Willem


certificate shows unvalidated . After I validate them, it change back to unvalidated.
I repair it and no error
DO a ldapsearch:
ldap bind:can't contact LDAP server (-1)

ndstrace.log is empty
ndsd.log
May 09 12:43:02 LDAP Agent for Novell eDirectory 8.8 SP5 (20504.04) stopped
May 09 16:56:53 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
May 09 16:56:53 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 16:57:01 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
May 09 16:57:01 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 16:57:11 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
May 09 16:57:34 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 16:57:41 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
Loader Failed:for dxevent,error dxevent: cannot open shared object file: No such file or directory,errno 2
Loader Failed:for dxevent,error dxevent: cannot open shared object file: No such file or directory,errno 2
May 09 16:58:12 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 23:06:10 LDAP Agent for Novell eDirectory 8.8 SP5 (20504.04) stopped
May 10 09:20:41 Trace Utility for Novell eDirectory 8.8 SP5 v20504.06 started
May 10 09:24:26 Got SIGINT/SIGTERM signal, server shutting down
May 10 09:24:36 Trace Utility for Novell eDirectory 8.8 SP5 v20504.06 stopped
May 10 09:24:37 LDAP Agent for Novell eDirectory 8.8 SP5 (20504.04) stopped
May 10 09:24:37 Unloading SSNCP...
May 10 09:24:37 SecretStore NCP Plugin Unloaded Successfully
May 10 09:24:37 Novell PKI Services unloaded
May 10 09:24:39 NDS iMonitor for Novell eDirectory 8.8.5 SP5 v20504.05 SP5 shutdown successfully.
May 10 09:24:41 Information: SNMP Trap Server for Novell eDirectory 8.8.5 v20504.03 stopped.

May 10 09:24:41 GAMS closed
May 10 09:24:41 MASV closed
May 10 09:24:41 SPM DClient closed
[ -- DHost Logging STOPPED Tue May 10 09:24:43 2011 -- ]
May 10 09:24:43 Shutdown NCPServer
May 10 09:24:43 Shutdown NCPServer ... beginning check for packets in process
May 10 09:24:44 DSDeregisterSignalHandler succeeded for signal 63
May 10 09:24:44 ... NCPServer halted
May 10 09:24:45 Path of Novell eDirectory configuration file /etc/opt/novell/eDirectory/conf/nds.conf
May 10 09:24:45 Init NCPServer
May 10 09:24:45 DSRegisterSignalHandler succeeded for signal 63
May 10 09:24:45 Host process for Novell eDirectory 8.8 SP5 v20504.06 successfully started
May 10 09:24:45 DHLog: file size 1048576
[ -- DHost Logging STARTED Tue May 10 09:24:45 2011 -- ]
May 10 09:24:45 MASV Init called
May 10 09:24:45 Mandatory Access Control Service Version: 2.0.1 started
May 10 09:24:45 NMAS Server Version:3.3.2.3 Build:20091224 started
May 10 09:24:45 SPM DClient Version:3.3.2.3 Build:20091224 started
May 10 09:24:45 MASV Init called
May 10 09:24:45 MASV already initialized.
May 10 09:24:45 Opening NCPServer
May 10 09:24:45 NCP Server name WNC-DOUOES1
Loader Failed:for dxevent,error dxevent: cannot open shared object file: No such file or directory,errno 2
NCP Engine Mounting Volume SYS
Primary path: /usr/novell/sys
May 10 09:24:47 volume SYS has matching attribute
May 10 09:24:47 GAMS Init called
May 10 09:24:47 Graded Authentication Management Service Version: 2.0.1 started
May 10 09:24:47 Information: SNMP Trap Server for Novell eDirectory 8.8.5 v20504.03 started.

May 10 09:24:47 NDS iMonitor for Novell eDirectory 8.8.5 SP5 v20504.05 SP5 started successfully.
May 10 09:24:48 Novell PKI Services Started Successfully
May 10 09:24:48 PKIHealth.log in directory: /var/opt/novell/eDirectory/log/
May 10 09:24:49 Loading SecretStore Server...
May 10 09:24:49 Novell SecretStore Service Version 3.4.1 Loaded Successfully
May 10 09:24:49 Loading SecretStore NCP Transport Plugin...
May 10 09:24:49 Novell SecretStore NCP Plugin Version 3.4.1 Loaded Successfully.
We are in DHost.
NCP Engine Mounting Volume _ADMIN
Primary path: /_admin
NCP Engine Mounting Volume HOME
Primary path: /media/nss/HOME
NCP Engine Mounting Volume CLASS
Primary path: /media/nss/CLASS
NCP Engine Mounting Volume DATA
Primary path: /media/nss/DATA
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

songhailiu;2104838 wrote:
certificate shows unvalidated . After I validate them, it change back to unvalidated.
I repair it and no error
DO a ldapsearch:
ldap bind:can't contact LDAP server (-1)

ndstrace.log is empty
ndsd.log
May 09 12:43:02 LDAP Agent for Novell eDirectory 8.8 SP5 (20504.04) stopped
May 09 16:56:53 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
May 09 16:56:53 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 16:57:01 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
May 09 16:57:01 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 16:57:11 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
May 09 16:57:34 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 16:57:41 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully loaded
Loader Failed:for dxevent,error dxevent: cannot open shared object file: No such file or directory,errno 2
Loader Failed:for dxevent,error dxevent: cannot open shared object file: No such file or directory,errno 2
May 09 16:58:12 Repair utility for Novell eDirectory 8.8 - 8.8 SP5 v20504.04 Successfully unloaded
May 09 23:06:10 LDAP Agent for Novell eDirectory 8.8 SP5 (20504.04) stopped
May 10 09:20:41 Trace Utility for Novell eDirectory 8.8 SP5 v20504.06 started
May 10 09:24:26 Got SIGINT/SIGTERM signal, server shutting down
May 10 09:24:36 Trace Utility for Novell eDirectory 8.8 SP5 v20504.06 stopped
May 10 09:24:37 LDAP Agent for Novell eDirectory 8.8 SP5 (20504.04) stopped
May 10 09:24:37 Unloading SSNCP...
May 10 09:24:37 SecretStore NCP Plugin Unloaded Successfully
May 10 09:24:37 Novell PKI Services unloaded
May 10 09:24:39 NDS iMonitor for Novell eDirectory 8.8.5 SP5 v20504.05 SP5 shutdown successfully.
May 10 09:24:41 Information: SNMP Trap Server for Novell eDirectory 8.8.5 v20504.03 stopped.

May 10 09:24:41 GAMS closed
May 10 09:24:41 MASV closed
May 10 09:24:41 SPM DClient closed
[ -- DHost Logging STOPPED Tue May 10 09:24:43 2011 -- ]
May 10 09:24:43 Shutdown NCPServer
May 10 09:24:43 Shutdown NCPServer ... beginning check for packets in process
May 10 09:24:44 DSDeregisterSignalHandler succeeded for signal 63
May 10 09:24:44 ... NCPServer halted
May 10 09:24:45 Path of Novell eDirectory configuration file /etc/opt/novell/eDirectory/conf/nds.conf
May 10 09:24:45 Init NCPServer
May 10 09:24:45 DSRegisterSignalHandler succeeded for signal 63
May 10 09:24:45 Host process for Novell eDirectory 8.8 SP5 v20504.06 successfully started
May 10 09:24:45 DHLog: file size 1048576
[ -- DHost Logging STARTED Tue May 10 09:24:45 2011 -- ]
May 10 09:24:45 MASV Init called
May 10 09:24:45 Mandatory Access Control Service Version: 2.0.1 started
May 10 09:24:45 NMAS Server Version:3.3.2.3 Build:20091224 started
May 10 09:24:45 SPM DClient Version:3.3.2.3 Build:20091224 started
May 10 09:24:45 MASV Init called
May 10 09:24:45 MASV already initialized.
May 10 09:24:45 Opening NCPServer
May 10 09:24:45 NCP Server name WNC-DOUOES1
Loader Failed:for dxevent,error dxevent: cannot open shared object file: No such file or directory,errno 2
NCP Engine Mounting Volume SYS
Primary path: /usr/novell/sys
May 10 09:24:47 volume SYS has matching attribute
May 10 09:24:47 GAMS Init called
May 10 09:24:47 Graded Authentication Management Service Version: 2.0.1 started
May 10 09:24:47 Information: SNMP Trap Server for Novell eDirectory 8.8.5 v20504.03 started.

May 10 09:24:47 NDS iMonitor for Novell eDirectory 8.8.5 SP5 v20504.05 SP5 started successfully.
May 10 09:24:48 Novell PKI Services Started Successfully
May 10 09:24:48 PKIHealth.log in directory: /var/opt/novell/eDirectory/log/
May 10 09:24:49 Loading SecretStore Server...
May 10 09:24:49 Novell SecretStore Service Version 3.4.1 Loaded Successfully
May 10 09:24:49 Loading SecretStore NCP Transport Plugin...
May 10 09:24:49 Novell SecretStore NCP Plugin Version 3.4.1 Loaded Successfully.
We are in DHost.
NCP Engine Mounting Volume _ADMIN
Primary path: /_admin
NCP Engine Mounting Volume HOME
Primary path: /media/nss/HOME
NCP Engine Mounting Volume CLASS
Primary path: /media/nss/CLASS
NCP Engine Mounting Volume DATA
Primary path: /media/nss/DATA


When I did nldap -s or nldap -c
The SSL or TCp port is not listening / is Diabled /Request not serviced
How to start it? I did NLDAP -u and -l but still not start
0 Likes
Knowledge Partner
Knowledge Partner

Re: DHCP issues Please help

songhailiu;2104838 wrote:
certificate shows unvalidated . After I validate them, it change back to unvalidated.
I repair it and no error
DO a ldapsearch:
ldap bind:can't contact LDAP server (-1)

..


What happens if you run 'namconfig -k' 'namconfig cache_refresh' and after that restart namcd again (service namcd restart)? All those commands run without error and without a long pause?


As a recap how this issue started: You had a running OES2 server with eDirectory etc installed and no issues. Then trying to add DHCP to the OES2 services 1) packages got installed but 2) you had a power out when in the OES configuration screen?
So all services still are running correctly, except DHCP... right?
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

magic31;2105031 wrote:
What happens if you run 'namconfig -k' 'namconfig cache_refresh' and after that restart namcd again (service namcd restart)? All those commands run without error and without a long pause?


As a recap how this issue started: You had a running OES2 server with eDirectory etc installed and no issues. Then trying to add DHCP to the OES2 services 1) packages got installed but 2) you had a power out when in the OES configuration screen?
So all services still are running correctly, except DHCP... right?

There is rain and storm. The power outage kill the server. After server come back, DHCP won't start any more. I did troubleshooting. The NLDAP can not load and NAMCD is dead. I am in the process to find UPS for it after I fix DHCP.
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

WXX-DOUOES1:~ # rcnamcd status
Checking for LUM NAMCD daemon dead
WXX-DOUOES1:~ # grep namcd /var/log/messages
May 10 21:42:33 WXX-DOUOES1 namcd: SIGTTOU caught
May 10 21:42:33 WXX-DOUOES1 namcd: SIGTTIN caught
May 10 21:42:33 WXX-DOUOES1 namcd: SIGTSTP caught
May 10 21:42:33 WXX-DOUOES1 /usr/sbin/namcd[11533]: Starting namcd..
May 10 21:42:33 WXX-DOUOES1 /usr/sbin/namcd[11533]: namcd populating the user hash tables
May 10 21:42:33 WXX-DOUOES1 /usr/sbin/namcd[11533]: User profile file cannot be opened/does not exist
May 10 21:42:33 WXX-DOUOES1 /usr/sbin/namcd[11533]: Failed to populate user hash tables from file, namcd populating the hash tables from eDir
May 10 21:42:34 WXX-DOUOES1 /usr/sbin/namcd[11533]: ldap_initconn: LDAP bind failed (error = [81]), trying to connect to alternative LDAP server
May 10 21:42:34 WXX-DOUOES1 /usr/sbin/namcd[11533]: Unknown error returned reading configuration parameter: alternative-ldap-server-list
May 10 21:42:34 WXX-DOUOES1 /usr/sbin/namcd[11533]: _nds_nss_struct_init: Error [226] in _nds_ldap_private_struct_init.
May 10 21:42:34 WXX-DOUOES1 /usr/sbin/namcd[11533]: Problem in namcd initialization, exiting...
May 10 21:42:36 WXX-DOUOES1 /usr/sbin/namcd[11533]: Deleted hash tables and flushed data into local files
May 10 21:42:36 WXX-DOUOES1 /usr/sbin/namcd[11533]: Deinitialized threads
May 10 21:46:43 WXX-DOUOES1 namcd: SIGTTOU caught
May 10 21:46:43 WXX-DOUOES1 namcd: SIGTTIN caught
May 10 21:46:43 WXX-DOUOES1 namcd: SIGTSTP caught
May 10 21:46:43 WXX-DOUOES1 /usr/sbin/namcd[13853]: Starting namcd..
May 10 21:46:43 WXX-DOUOES1 /usr/sbin/namcd[13853]: namcd populating the user hash tables
May 10 21:46:43 WXX-DOUOES1 /usr/sbin/namcd[13853]: User profile file cannot be opened/does not exist
May 10 21:46:43 WXX-DOUOES1 /usr/sbin/namcd[13853]: Failed to populate user hash tables from file, namcd populating the hash tables from eDir
May 10 21:46:44 WXX-DOUOES1 /usr/sbin/namcd[13853]: ldap_initconn: LDAP bind failed (error = [81]), trying to connect to alternative LDAP server
May 10 21:46:44 WXX-DOUOES1 /usr/sbin/namcd[13853]: Unknown error returned reading configuration parameter: alternative-ldap-server-list
May 10 21:46:44 WXX-DOUOES1 /usr/sbin/namcd[13853]: _nds_nss_struct_init: Error [226] in _nds_ldap_private_struct_init.
May 10 21:46:44 WXX-DOUOES1 /usr/sbin/namcd[13853]: Problem in namcd initialization, exiting...
May 10 21:46:46 WXX-DOUOES1 /usr/sbin/namcd[13853]: Deleted hash tables and flushed data into local files
May 10 21:46:46 WXX-DOUOES1 /usr/sbin/namcd[13853]: Deinitialized threads
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

namconfig -k
Enter the admin(cn=xxx,ou=rootadmin,o=XXXc) password:
Waiting for LDAP server to start on secure port. This may take a few minutes....
Can't contact LDAP server "10.1.2.192" on port 636
XXX-DOUOES1:/etc/sysconfig/novell #
XXX-DOUOES1:/etc/sysconfig/novell # namconfig cache_refresh
Stopping the service 'namcd'...done.
Starting the service 'namcd'... Done.
XXX-DOUOES1:/etc/sysconfig/novell # nldap -s
NLDAP server loading / unloading utility for Novell eDirectory 8.8 SP5 v20504.04.


[1] Instance at /etc/opt/novell/eDirectory/conf/nds.conf: XXX-DOUOES1.OU=XXXC-DOUGLAS.O=XXXC.XXXC
The SSL Port is not Listening / is Disabled / Request not serviced
XXX-DOUOES1:/etc/sysconfig/novell # rcnamcd status
Checking for LUM NAMCD daemon dead
XXX-DOUOES1:/etc/sysconfig/novell # rcnamcd start
Starting NAM Cache Daemon ...
Waiting for LDAP server to be ready ...
............................................................
Waiting for namcd initialization to complete ...
........................................................................................................................
done
XXX-DOUOES1:/etc/sysconfig/novell # rcnamcd status
Checking for LUM NAMCD daemon dead
XXX-DOUOES1:/etc/sysconfig/novell #
0 Likes
Knowledge Partner
Knowledge Partner

Re: DHCP issues Please help

songhailiu;2105371 wrote:
namconfig -k
...
Can't contact LDAP server "10.1.2.192" on port 636
...


The ip listed there is the ip of the server, or another one?

Are the server certificates still valid (e.g. they have not expired, which could be if you have originally installed the server two years, or longer, ago)?

This is the general troubleshooting guide for LUM, I'd check step 9 first as that might be the problem : Troubleshooting Linux User Management - Step by step

-Willem
0 Likes
songhailiu Absent Member.
Absent Member.

Re: DHCP issues Please help

Following step by step documentation and find :
Novell eDirectory LDAP server if not listening on the TCP port.
LDAP Server is not associated with a certificate.
Validation failed in post_ndsd_start script.
some solution is to remove proxy user
"Re: LDAP server is not associated with a certificate?!
The source of your problem might be the LDAP proxy user.
You have to make sure the proxy user has a password set, but that password must be empty. There is an important distionction between a user having no password and a user having an empty password.
In fact, tools like ConsoleOne and iManager allow you to define users with no password at all. Such user object don't have a "key pair" and therefore cannot be used for login at all. OTOH if you define an empty password, the user can be used for login but doesn't need a password for login. This second case is what's needed for the LDAP proxy user.
You also have to make sure that the user is associated with a password policy that allows for empty passwords. It is probably best to create a separate password policy just for the proxy user and assign this password policy to the proxy user. My personal preference is to use a password policy that disabled universal password and so that only the NDS password is used, and then use NDS password restrictions to allow empty passwords and to disable the changing of the password by the user himself."


I am lost which user is proxy user and where to put it:(Do I create one?)
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.