Re: [PacketFence-users] Cannot join domain using GUI - net ads join works

Tue, 02 Feb 2021 18:36:48 -0800 

Thanks for your answers ! 
Here's an update 

I've edited /usr/local/pf/conf/iptables.conf and remove the line "-I FORWARD -j 
NETFLOW" (followed by systemctl restart packetfence-iptables) 

then used yum update,reinstalled dkms-ipt-netflow and rebooted. In last hope I 
use pf-maint.pl but the issues is still there. 




When testing these commands : 

-"chroot /chroots/<mon_domaine>/ net ads join -s /etc/samba/domain.conf -U 
user" is join the domain successfully. 

-"chroot /chroots/domain/ wbinfo -u" does list the users. 

-"chroot /chroots/<mon_domaine>/ net ads info -s /etc/samba/<mydomain>.conf" 
does give me the DC infos. 




On the web interface : 

-Failed to join domain: failed to find DC for domain 




I get this error when I click on "Join" and give user + password. 

But when I go in the Active Directoy tab or save the object after editing, it 
auto retry to join the domain and I get a 504 Error 

PS : I've deleted previous messages to lighten the mail. 


De: "packetfence-users" <packetfence-users@lists.sourceforge.net> 
À: "packetfence-users" <packetfence-users@lists.sourceforge.net> 
Cc: "ADE" <adrian.dessai...@novasys.coop> 
Envoyé: Lundi 1 Février 2021 16:31:09 
Objet: Re: [PacketFence-users] Cannot join domain using GUI - net ads join 
works 

Hello ! 

I got the exact same issue ! Do you have a command to reload PacketFence 
iptable configuration ? 

Regards, 

Adrian. 


De: "packetfence-users" <packetfence-users@lists.sourceforge.net> 
À: "Geert Heremans" <heremans.ge...@gmail.com>, "packetfence-users" 
<packetfence-users@lists.sourceforge.net> 
Cc: "Durand fabrice" <fdur...@inverse.ca> 
Envoyé: Mercredi 7 Octobre 2020 15:30:09 
Objet: Re: [PacketFence-users] Cannot join domain using GUI - net ads join 
works 



Ok so it looks that you iptables config is not able to load. 

It's probably related to NETFLOW kernel module. 

You have 2 choices, the first one: 

edit /usr/local/pf/conf/iptables.conf and remove the line "-I FORWARD -j 
NETFLOW" 

or do a yum update , if there is a new kernel then reboot the server then do 
yum reinstall dkms-ipt-netflow 




Then once done check again iptables -L -n -v , if it's more verbose then retry 
to join to the domain, it should work. 




Regards 

Fabrice 




_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users























					Reply via email to