Send netdisco-users mailing list submissions to
netdisco-users@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/netdisco-users
or, via email, send a message with subject or body 'help' to
netdisco-users-requ...@lists.sourceforge.net
You can reach the person managing the list at
netdisco-users-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of netdisco-users digest..."
Today's Topics:
1. auth via ldap (FreeIPA) (Zarko Dudic)
2. Re: auth via ldap (FreeIPA) (Oliver Gorwits)
3. Re: Updating SNMP Info on Netdisco Version 2 (Oliver Gorwits)
4. Re: Force RANCID link to use IP (Oliver Gorwits)
5. Re: Force RANCID link to use IP (tbucha...@vinu.edu)
6. Re: auth via ldap (FreeIPA) (Zarko Dudic)
--- Begin Message ---
Hi there, I'm trying to auth to**"App::Netdisco 2.033006" web UI via
LDAP (we use FreeIPA), say I'd like to login as this user.
-bash-4.1$ ldapsearch -x -h ca-ldap01 -b
'uid=zarko,cn=users,cn=accounts,dc=us,dc=example,dc=com'
# zarko, users, accounts, us.example.com
dn: uid=zarko,cn=users,cn=accounts,dc=us,dc=example,dc=com
loginShell: /bin/bash
title: Second but important account
uid: zarko
objectClass: ipaobject
objectClass: person
objectClass: top
objectClass: ipasshuser
objectClass: inetorgperson
objectClass: organizationalperson
objectClass: krbticketpolicyaux
objectClass: krbprincipalaux
objectClass: shadowAccount
objectClass: inetuser
objectClass: posixaccount
objectClass: ipaSshGroupOfPubKeys
objectClass: mepOriginEntry
initials: ZD
sn: Dudic
homeDirectory: /home/zarko
givenName: Zarko
cn: Zarko Dudic
uidNumber: 485400003
displayName: Zarko Dudic
gecos: Zarko Dudic
manager: uid=zdudic,cn=users,cn=accounts,dc=us,dc=example,dc=com
gidNumber: 485400023
I've added to deployment.yml
ldap:
servers:
- 'ldap-server-fqdn'
user_string: 'uid=%USER%,cn=users,cn=accounts,dc=us,dc=example,dc=com'
base: "cn=users,cn=accounts,dc=us,dc=example,dc=com"
opts:
debug: 3
I can't login, not any relevant logs at files like netdisco-daemon.log
and netdisco-web.log
Any tip for troubleshooting is appreciated.
--
Thanks,
Zarko
--- End Message ---
--- Begin Message ---
Hi Zarko,
To see the debug output (I see you configured it in the ldap settings),
you may need to run the web server in foreground mode and also enable
warnings.
Add this to your Netdisco config:
log: "debug"
warnings: 1
show_errors: 1
and then stop the web server daemon and run the web server like this in
the foreground:
~netdisco/bin/localenv plackup -R share,lib bin/netdisco-web-fg
Note that all the LDAP config in Netdisco is from the Net::LDAP Perl
module, so you can refer to their manual pages for further help. I'm
afraid I've only tested against a Microsoft AD (which is the
default/minimal config in the docs), myself.
https://metacpan.org/pod/Net::LDAP
regards,
oliver.
On 2016-10-14 00:00, Zarko Dudic wrote:
Hi there, I'm trying to auth to "App::Netdisco 2.033006" web UI via
LDAP (we use FreeIPA), say I'd like to login as this user.
-bash-4.1$ ldapsearch -x -h ca-ldap01 -b
'uid=zarko,cn=users,cn=accounts,dc=us,dc=example,dc=com'
# zarko, users, accounts, us.example.com
dn: uid=zarko,cn=users,cn=accounts,dc=us,dc=example,dc=com
loginShell: /bin/bash
title: Second but important account
uid: zarko
objectClass: ipaobject
objectClass: person
objectClass: top
objectClass: ipasshuser
objectClass: inetorgperson
objectClass: organizationalperson
objectClass: krbticketpolicyaux
objectClass: krbprincipalaux
objectClass: shadowAccount
objectClass: inetuser
objectClass: posixaccount
objectClass: ipaSshGroupOfPubKeys
objectClass: mepOriginEntry
initials: ZD
sn: Dudic
homeDirectory: /home/zarko
givenName: Zarko
cn: Zarko Dudic
uidNumber: 485400003
displayName: Zarko Dudic
gecos: Zarko Dudic
manager: uid=zdudic,cn=users,cn=accounts,dc=us,dc=example,dc=com
gidNumber: 485400023
I've added to deployment.yml
ldap:
servers:
- 'ldap-server-fqdn'
user_string:
'uid=%USER%,cn=users,cn=accounts,dc=us,dc=example,dc=com'
base: "cn=users,cn=accounts,dc=us,dc=example,dc=com"
opts:
debug: 3
I can't login, not any relevant logs at files like
netdisco-daemon.log and netdisco-web.log
Any tip for troubleshooting is appreciated.
--
Thanks,
Zarko
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Netdisco mailing list
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
--- End Message ---
--- Begin Message ---
Hi Muris,
On 2016-10-12 00:51, Muris wrote:
I started to test Netdisco 2, and i have loaded the latest version
2.034000 however i noticed SNMP info is still 3.31. How do you force
it to upgrade to 3.33 or anything later? It seems it hasnt updated the
SNMP Info..
Yes, you can run the following command:
~netdisco/bin/localenv cpanm SNMP::Info --notest
regards,
oliver.
Thankyou in advance
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Netdisco mailing list
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
--- End Message ---
--- Begin Message ---
Hi Ted,
Perhaps this config will work better:
rancid:
by_ip: [ alldevices ]
groups:
alldevices: [ any ]
I think the example group name in the documentation is wrong. Let me
know how you get on,
regards,
oliver.
On 2016-10-10 17:47, tbucha...@vinu.edu wrote:
I have installed the RANCID web plugin according to
https://metacpan.org/pod/App::NetdiscoX::Web::Plugin::RANCID but the
link
continues to use the System Name rather than the IP address of the
device
in the link on the Details tab. Is there any other way to force this
link
to use the IP address of the device in the URL in order to view the
configuration details of the device? I can use a web browser to view
the
configuration details but no matter what I try I can not make the
Netdisco
page use the IP address. I'm running on CentOS 6 with the rancid 3.1-4
rpm installed from the EPEL repo. I have tried *, '*', networking
(which
is the actual group name in RANCID). I restart the HTTP service after
every change. Thanks for any clues regarding this
extra_web_plugins:
- X::RANCID
plugin_rancid:
location: 'http://netdisco.example.com/cvs/%DEVICE%'
open_in_same_window: true
rancid:
by_ip: [ other ]
--- End Message ---
--- Begin Message ---
Excellent! Thank you, Oliver. That worked first time!
From: Oliver Gorwits <oli...@cpan.org>
To: netdisco-users@lists.sourceforge.net
Date: 10/14/2016 06:18 AM
Subject: Re: [Netdisco] Force RANCID link to use IP
Hi Ted,
Perhaps this config will work better:
rancid:
by_ip: [ alldevices ]
groups:
alldevices: [ any ]
I think the example group name in the documentation is wrong. Let me
know how you get on,
regards,
oliver.
On 2016-10-10 17:47, tbucha...@vinu.edu wrote:
> I have installed the RANCID web plugin according to
> https://metacpan.org/pod/App::NetdiscoX::Web::Plugin::RANCID but the
> link
> continues to use the System Name rather than the IP address of the
> device
> in the link on the Details tab. Is there any other way to force this
> link
> to use the IP address of the device in the URL in order to view the
> configuration details of the device? I can use a web browser to view
> the
> configuration details but no matter what I try I can not make the
> Netdisco
> page use the IP address. I'm running on CentOS 6 with the rancid 3.1-4
> rpm installed from the EPEL repo. I have tried *, '*', networking
> (which
> is the actual group name in RANCID). I restart the HTTP service after
> every change. Thanks for any clues regarding this
>
> extra_web_plugins:
> - X::RANCID
>
> plugin_rancid:
> location: 'http://netdisco.example.com/cvs/%DEVICE%'
> open_in_same_window: true
>
> rancid:
> by_ip: [ other ]
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Netdisco mailing list
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
--- End Message ---
--- Begin Message ---
Thanks Oliver, I've enabled debugging as you suggested:
log: "debug"
warnings: 1
show_errors: 1
and then stop the web server daemon and run the web server like this in the
foreground:
~netdisco/bin/localenv plackup -R share,lib bin/netdisco-web-fg
This causes that I can't login even with local admin account, the CLI output I
see is:
[14/Oct/2016:12:19:36 -0700] "GET / HTTP/1.1" 200 6708 "-"
"Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like
Gecko) Chrome/53.0.2785.143 Safari/537.36"
[14/Oct/2016:12:19:40 -0700] "GET /ajax/userlog HTTP/1.1" 302 0
"http://ca-netdisco.us.oracle.com:5000/inventory"; "Mozilla/5.0 (X11;
Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0"
[14/Oct/2016:12:19:41 -0700] "GET /login?return_url=%2Fajax%2Fuserlog
HTTP/1.1" 200 12528 "http://ca-netdisco.us.oracle.com:5000/inventory";
"Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101
Firefox/47.0"
[1409] 2016-10-14 19:19:43 debug Attempting to authenticate admin
against realm users
[1409] 2016-10-14 19:19:43 error request to POST /login crashed:
DBIx::Class::Storage::DBI::catch {...} (): DBI Connection failed: DBI
connect('dbname=netdisco','netdisco',...) failed: FATAL: Ident
authentication failed for user "netdisco" at
/home/netdisco/perl5/lib/perl5/DBIx/Class/Storage/DBI.pm line 1487. at
/home/netdisco/perl5/lib/perl5/App/Netdisco/Web/AuthN.pm line 63
[14/Oct/2016:12:19:43 -0700] "POST /login HTTP/1.1" 500 36289
"http://ca-netdisco:5000/"; "Mozilla/5.0 (Windows NT 6.3; WOW64)
AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36"
[14/Oct/2016:12:19:43 -0700] "GET /css/error.css HTTP/1.1" 200 6712
"http://ca-netdisco:5000/login"; "Mozilla/5.0 (Windows NT 6.3; WOW64)
AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36"
[14/Oct/2016:12:19:43 -0700] "GET /favicon.ico HTTP/1.1" 200 6710
"http://ca-netdisco:5000/login"; "Mozilla/5.0 (Windows NT 6.3; WOW64)
AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36"
And the browser shows the Runtime error with messages:
DBIx::Class::Storage::DBI::catch {...} (): DBI Connection failed: DBI
connect('dbname=netdisco','netdisco',...) failed: FATAL: Ident
authentication failed for user "netdisco" at
/home/netdisco/perl5/lib/perl5/DBIx/Class/Storage/DBI.pm line 1487. at
/home/netdisco/perl5/lib/perl5/App/Netdisco/Web/AuthN.pm line 63
/home/netdisco/perl5/lib/perl5/DBIx/Class/Storage/DBI.pm around line 1487
1484 }
1485 else {
1486 require DBI;
1487 $dbh = DBI->connect(@$info);
1488 }
1489
1490 die $DBI::errstr unless $dbh;
Stack
main in /home/netdisco/perl5/bin/plackup l. 10
... and many others, not sure if it's relevant to post them here.
--- End Message ---
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Netdisco mailing list - Digest Mode
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
