Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-25 Thread Akala Kehinde via PacketFence-users
Hello Fabrice, It worked! Thanks a million:) Want to know if the change affects anything else. And asked earlier what your advice would be, if its a good idea to have the AD in same network as the PF Mgmtn. interface. Regards, Kehinde On Thu, Aug 24, 2017 at 8:58 AM, Akala Kehinde

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-24 Thread Akala Kehinde via PacketFence-users
Hello Fabrice, But just 1 thing... Would you then advice me to have the return route for my domain pointing to 172.16.100.10? Regards, Kehinde On Thu, Aug 24, 2017 at 8:55 AM, Akala Kehinde wrote: > Hello Fabrice, > > I guess PF was configured by default for all

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-24 Thread Akala Kehinde via PacketFence-users
Hello Fabrice, I guess PF was configured by default for all services, protocols and routes via just 1 interface. I was actually routing my domain network through a second interface which of course needed a tweak in the iptables.conf file. Thanks a lot man. Will apply d fix and test again. See

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hi Fabrice, Pls see attached.. Regards, Kehinde On Thu, Aug 24, 2017 at 1:33 AM, Durand fabrice wrote: > no it's perfect, MYDOMAIN-b is the link to the namespace. > > So the issue is probably iptables, can you paste the content of > var/conf/iptables.conf ? > > > > Le

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hi Fabrice, See below: [root@pfence sysctl.d]# ip route default via 172.16.7.1 dev eth1 169.254.0.0/30 dev MYDOMAIN-b proto kernel scope link src 169.254.0.2 169.254.0.0/16 dev eth0 scope link metric 1002 169.254.0.0/16 dev eth1 scope link metric 1003 169.254.0.0/16 dev eth0.100 scope

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hi Fabrice, See below: [root@pfence sysctl.d]# ip netns exec MYDOMAIN ping 172.16.7.10 PING 172.16.7.10 (172.16.7.10) 56(84) bytes of data. --- 172.16.7.10 ping statistics --- 22 packets transmitted, 0 received, 100% packet loss, time 21107ms [root@pfence sysctl.d]# ip netns exec MYDOMAIN

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hello Fabrice, Was thinkig, could it be a problem with the winbindd itself. Regards, Kehinde On Wed, Aug 23, 2017 at 3:02 PM, Akala Kehinde wrote: > Hallo Fabrice, > > [root@pfence sysctl.d]# cat 99-ip_forward.conf > # ip forwarding enabled by packetfence >

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Fabrice Durand via PacketFence-users
Ok so your issue is related to the route of the system. do: ip route and: ip route get 172.16.7.10 restart iptables Le 2017-08-23 à 15:44, Akala Kehinde a écrit : > Hi Fabrice, > > See below: > > [root@pfence sysctl.d]# ip netns exec MYDOMAIN ping 172.16.7.10 > PING 172.16.7.10

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Fabrice Durand via PacketFence-users
Let's try that: ip netns exec MYDOMAIN ping 172.16.7.10 ip netns exec MYDOMAIN nslookup www.google.de What is the result ? Le 2017-08-23 à 10:55, Akala Kehinde a écrit : > Hello Fabrice, > > Was thinkig, could it be a problem with the winbindd itself. > > Regards, > Kehinde > > On Wed, Aug

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hallo Fabrice, [root@pfence sysctl.d]# cat 99-ip_forward.conf # ip forwarding enabled by packetfence net.ipv4.ip_forward = 1 Checked timing already on both servers, it"s d same. Regards, Kehinde On Wed, Aug 23, 2017 at 2:32 PM, Fabrice Durand via PacketFence-users <

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Fabrice Durand via PacketFence-users
Hello Akala, does ip_forward is enable ? does the time of the packetfence server is the same as the AD server ? Regards Fabrice Le 2017-08-23 à 02:38, Akala Kehinde a écrit : > Hello Fabrice, > > Kindly see below: > > [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -u > could not obtain

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hello Fabrice, Kindly see below: [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -u could not obtain winbind interface details: WBC_ERR_WINBIND_NOT_AVAILABLE could not obtain winbind domain name! Error looking up domain users [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -g could not

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-23 Thread Akala Kehinde via PacketFence-users
Hell Fabrice, And actually the FQDN of my domain name is EGELSBACH.TESTMAWOH.DE and not TESTMAWOH.DE. None works for me. Regards, Kehinde On Wed, Aug 23, 2017 at 8:38 AM, Akala Kehinde wrote: > Hello Fabrice, > > Kindly see below: > > [root@pfence pf]# chroot

Re: [PacketFence-users] PF just refuses to join AD domain??

2017-08-22 Thread Durand fabrice via PacketFence-users
Hello Akala, what happen if you do that: chroot /chroots/MYDOMAIN wbinfo -u wbinfo -g if there is no usernames or groups displayed then try : dns_name=TESTMAWOH.DE and rejoin Regards Fabrice Le 2017-08-22 à 22:21, Akala Kehinde via PacketFence-users a écrit : Hello guys, I get this

[PacketFence-users] PF just refuses to join AD domain??

2017-08-22 Thread Akala Kehinde via PacketFence-users
Hello guys, I get this error when trying to join PF to an Active Directory Server: [root@pfence pf]# tail -f /chroots/MYDOMAIN/var/log/sambaMYDOMAIN/log.winbindd [2017/08/23 02:20:34.196193, 0] ../source3/winbindd/winbindd_util.c:869(init_domain_list) Could not fetch our SID - did we join?