Hey Alberto, I think I've understood what is wrong.
The latest release of the system does not use "openwisp2_shared_secret" anymore because each organization has its own shared secret. Go in the admin to organizations > default organization > and see the value of the shared_secret, which should be automatically generated. You may also change its value to one of your liking (you may also want to change the default organization name and other details). *Try again after doing the previous steps and let me know.* I tried to explain this new behaviour in the readme of ansible-openwisp2: *Now proceed with the following steps:* - *change the password (and the username if you like) of the superuser as soon as possible* - *edit the information of the default organization* - *in the default organization you just updated, note down the automatically generated shared secret option, you will need it to use the auto-registration feature of openwisp-config* *Did you notice this section in the README? Do you think I should make it more evident?* I am also working to make this misconfiguration issue more evident in the logs on OpenWRT/LEDE. *I will update you on this shortly.* On Wed, Mar 22, 2017 at 3:38 PM Alberto Crespo <[email protected]> wrote: > Hi everybody. > > I am using the Unifi AP Lite ( > https://wiki.openwrt.org/toh/hwdata/ubiquiti/ubiquiti_unifi_apac_lite ) > which uses OpenWRT version Trunk version ( > https://downloads.openwrt.org/snapshots/trunk/ar71xx/generic/openwrt-ar71xx-generic-ubnt-unifiac-lite-squashfs-sysupgrade.bin > ). > > I have installed the *openWisp-config version*: > openwisp-config-openssl_0.4.6a-1_all.ipk > <http://downloads.openwisp.org/openwisp-config/latest/openwisp-config-openssl_0.4.6a-1_all.ipk> > ( > > http://downloads.openwisp.org/openwisp-config/latest/openwisp-config-openssl_0.4.6a-1_all.ipk > ) > > root@ConselhoQuarterao1:~# openwisp_config --version > openwisp-config 0.4.6a > > > */etc/config/openwisp file :* > > > config controller 'http' > option url 'https://P <https://186.225.62.171/>UBLIC_IP' > > #option interval '120' > option verify_ssl '0' > option shared_secret 'coma1kat' > #option consistent_key '1' > option mac_interface 'eth1' > option merge_config '1' > #option test_config '1' > #option test_script '/usr/sbin/mytest' > option uuid '' > option key '' > list unmanaged 'system.@led' > list unmanaged 'network.loopback' > list unmanaged 'network.@switch' > list unmanaged 'network.@switch_vlan' > # curl options > #option connect_timeout '15' > #option max_time '30' > #option capath '/etc/ssl/certs' > #option cacert '/etc/ssl/certs/ca-certificates.crt' > # hooks > #option pre_reload_hook '/usr/sbin/my_pre_reload_hook' > > Controller *installation date*: 21/03/2017 > > Controller *playbook.yml* > > - hosts: openwisp2 > roles: > - openwisp.openwisp2 > vars: > openwisp2_shared_secret: coma1kat > > > Controller *hosts* > [openwisp2] > PUBLIC_IP > > *LOGS:* > > *Unifi* > *logread | grep openwisp* > > *Wed Mar 22 14:12:24 2017 daemon.info <http://daemon.info/> openwisp: > OpenWISP config agent started* > *Wed Mar 22 14:12:24 2017 daemon.info <http://daemon.info/> openwisp: > Registering device...* > *Wed Mar 22 14:12:25 2017 daemon.err openwisp: Registration failed! * > *Wed Mar 22 14:12:30 2017 daemon.info <http://daemon.info/> openwisp: > Registering device...* > *Wed Mar 22 14:12:31 2017 daemon.err openwisp: Registration failed! * > *Wed Mar 22 14:12:36 2017 daemon.info <http://daemon.info/> openwisp: > Registering device...* > *Wed Mar 22 14:12:36 2017 daemon.err openwisp: Registration failed! * > *Wed Mar 22 14:12:41 2017 daemon.info <http://daemon.info/> openwisp: > Registering device...* > *Wed Mar 22 14:12:42 2017 daemon.err openwisp: Registration failed! * > *Wed Mar 22 14:12:47 2017 daemon.info <http://daemon.info/> openwisp: > Registering device...* > *Wed Mar 22 14:12:47 2017 daemon.err openwisp: Registration failed! * > *Wed Mar 22 14:12:52 2017 daemon.info <http://daemon.info/> openwisp: > Registering device...* > *Wed Mar 22 14:12:53 2017 daemon.err openwisp: Registration failed! * > *Wed Mar 22 14:12:53 2017 daemon.info <http://daemon.info/> procd: > Instance openwisp_config::instance1 s in a crash loop 6 crashes, 0 seconds > since last crash* > > *Controller* > > *tail -f /opt/openwisp2/log/uwsgi.log* > > *[pid: 954|app: 0|req: 33/52] 186.225.62.169 () {38 vars in 541 bytes} > [Wed Mar 22 14:28:07 2017] POST /controller/register/ => generated 19 bytes > in 5 msecs (HTTP/1.1 403) 3 headers in 110 bytes (1 switches on core 0)* > *[pid: 954|app: 0|req: 33/52] 186.225.62.169 () {38 vars in 541 bytes} > [Wed Mar 22 14:28:13 2017] POST /controller/register/ => generated 19 bytes > in 5 msecs (HTTP/1.1 403) 3 headers in 110 bytes (1 switches on core 1)* > *[pid: 954|app: 0|req: 33/52] 186.225.62.169 () {38 vars in 541 bytes} > [Wed Mar 22 14:28:19 2017] POST /controller/register/ => generated 19 bytes > in 5 msecs (HTTP/1.1 403) 3 headers in 110 bytes (1 switches on core 0)* > *[pid: 954|app: 0|req: 33/52] 186.225.62.169 () {38 vars in 541 bytes} > [Wed Mar 22 14:28:25 2017] POST /controller/register/ => generated 19 bytes > in 5 msecs (HTTP/1.1 403) 3 headers in 110 bytes (1 switches on core 1)* > *[pid: 954|app: 0|req: 33/52] 186.225.62.169 () {38 vars in 541 bytes} > [Wed Mar 22 14:28:31 2017] POST /controller/register/ => generated 19 bytes > in 5 msecs (HTTP/1.1 403) 3 headers in 110 bytes (1 switches on core 0)* > *[pid: 954|app: 0|req: 33/52] 186.225.62.169 () {38 vars in 541 bytes} > [Wed Mar 22 14:28:37 2017] POST /controller/register/ => generated 19 bytes > in 5 msecs (HTTP/1.1 403) 3 headers in 110 bytes (1 switches on core 1)* > > * tail -f /opt/openwisp2/log/nginx.access.log* > > *186.225.62.169 - - [22/Mar/2017:11:13:46 -0300] "POST > /controller/register/ HTTP/1.1" 403 30 "-" "curl/7.50.0"* > *186.225.62.169 - - [22/Mar/2017:11:13:51 -0300] "POST > /controller/register/ HTTP/1.1" 403 30 "-" "curl/7.50.0"* > *186.225.62.169 - - [22/Mar/2017:11:13:57 -0300] "POST > /controller/register/ HTTP/1.1" 403 30 "-" "curl/7.50.0"* > *186.225.62.169 - - [22/Mar/2017:11:14:02 -0300] "POST > /controller/register/ HTTP/1.1" 403 30 "-" "curl/7.50.0"* > *186.225.62.169 - - [22/Mar/2017:11:14:08 -0300] "POST > /controller/register/ HTTP/1.1" 403 30 "-" "curl/7.50.0"* > *186.225.62.169 - - [22/Mar/2017:11:14:13 -0300] "POST > /controller/register/ HTTP/1.1" 403 30 "-" "curl/7.50.0"* > > > *HTTP 403 Forbidden status? What I am doing wrong?* > > Thank you > > -- > You received this message because you are subscribed to the Google Groups > "OpenWISP" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "OpenWISP" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
