Active Directory registration not working Windows 7 x64 client
-
[code]net stop “FOG Service”
del c:\fog.log
net start “FOG Service”[/code] -
To watch the log, open a powershell and run:
[code]get-content -wait c:\fog.log[/code]
-
Much appreciated Tom, with powershell, first time I’ve used this, I was able to get the contents, seems log gets emptied at some point. This is what I see:
[CODE]16/02/2015 2:41 p.m. FOG::HostnameChanger Attempting to connect to fog server…
16/02/2015 2:41 p.m. FOG::HostnameChanger Module is active…
16/02/2015 2:41 p.m. FOG::HostnameChanger AD mode requested, confirming settings.
16/02/2015 2:41 p.m. FOG::HostnameChanger Padding is invalid and cannot be removed.
16/02/2015 2:41 p.m. FOG::HostnameChanger at System.Security.Cryptography.RijndaelManagedTransform.DecryptData(Byte
[] inputBuffer, Int32 inputOffset, Int32 inputCount, Byte[]& outputBuffer, Int32 outputOffset, PaddingMode paddingMode,
Boolean fLast)
at System.Security.Cryptography.RijndaelManagedTransform.TransformFinalBlock(Byte[] inputBuffer, Int32 inputOffset,
Int32 inputCount)
at System.Security.Cryptography.CryptoStream.FlushFinalBlock()
at System.Security.Cryptography.CryptoStream.Dispose(Boolean disposing)
at System.IO.Stream.Close()
at FOG.FOGCrypt.decrypt(Byte[] cipherData, Byte[] Key, Byte[] IV)
at FOG.FOGCrypt.decrypt(Byte[] cipherData, String Password)
at FOG.FOGCrypt.decryptHex(String hex)
at FOG.HostNameChanger.changeHostName()
[/CODE]Error looks similar to [URL=‘http://fogproject.org/forum/threads/fog-hostnamechanger-padding-is-invalid-and-cannot-be-removed.1078/’]this thread[/URL].
Had an a.b.c style DOMAIN, Administrator user did not have domain name in front. Have triple checked I got the password correct. The user is “Administrator” i.e. with all permissions as of this moment, as I’m trying to debug one problem at a time.
-
This is what I get with the original HostnameChange.dll:
[CODE] 16/02/2015 2:49 p.m. FOG::HostnameChanger Attempting to connect to fog server…
16/02/2015 2:49 p.m. FOG::HostnameChanger Attempting to connect to fog server…
16/02/2015 2:49 p.m. FOG::HostnameChanger Module is active…
16/02/2015 2:49 p.m. FOG::HostnameChanger Module is active…
16/02/2015 2:49 p.m. FOG::HostnameChanger AD mode requested, confirming settings.
16/02/2015 2:49 p.m. FOG::HostnameChanger AD mode requested, confirming settings.
16/02/2015 2:49 p.m. FOG::HostnameChanger Hostname is up to date
16/02/2015 2:49 p.m. FOG::HostnameChanger Hostname is up to date
16/02/2015 2:49 p.m. FOG::HostnameChanger Attempting to join domain if not already a member…
16/02/2015 2:49 p.m. FOG::HostnameChanger Domain Error! (‘Unknown Error’ Code: 1791)
16/02/2015 2:49 p.m. FOG::HostnameChanger Domain Error! (‘Unknown Error’ Code: 1326)[/CODE]PS: had to split posts, as get a message that this was marked as spam by Askimet or something like that.
-
From your comments [URL=‘http://fogproject.org/forum/threads/requests-for-wiki-access-ask-here.3811/page-2#post-42253’]here[/URL]. I am assuming that you have partly figured this out?
This error usually occurs due to the password not being encrypted correctly.
Check here and double check your settings.
[url]http://www.fogproject.org/wiki/index.php/FOGCrypt[/url][B]EDIT[/B]
OR the user you are inputting does not have the proper rights in your AD to join computers to the domain. -
[quote=“Berend de Boer, post: 42246, member: 28367”]
Had an a.b.c style DOMAIN, Administrator user did not have domain name in front. Have triple checked I got the password correct. The user is “Administrator” i.e. with all permissions as of this moment, as I’m trying to debug one problem at a time.[/quote]
It is worth mentioning that this user needs to be a domain user with rights to add computers to the domain, not a user on the computer. -
[quote=“Junkhacker, post: 42278, member: 21583”]It is worth mentioning that this user needs to be a domain user with rights to add computers to the domain, not a user on the computer.[/quote]
Yep, it’s the domain administrator. I just wanted to avoid having permission issues, so using max permissions for now.
-
[quote=“Wolfbane8653, post: 42276, member: 3362”]From your comments [URL=‘http://fogproject.org/forum/threads/requests-for-wiki-access-ask-here.3811/page-2#post-42253’]here[/URL]. I am assuming that you have partly figured this out?
This error usually occurs due to the password not being encrypted correctly.[/quote]
That’s what one would think, but have triple checked the password, and got another person to check the encrypted password too.
But note I was using the old HostnameChanger and the new one. What error does indicate password not being encrypted correctly? Because I got different errors in both cases.
-
16/02/2015 2:49 p.m. FOG::HostnameChanger Domain Error! (‘Unknown Error’ Code: 1791)
16/02/2015 2:49 p.m. FOG::HostnameChanger Domain Error! (‘Unknown Error’ Code: 1326)Those errors are messages coming directly from microsoft during the domain join process.
Look them up and you may have a better/clearer answer. The error codes you see are not FOG generated
-
The error codes appear to be as per [url]http://www.hiteksoftware.com/knowledge/articles/049.htm[/url]
[SIZE=4][FONT=arial][COLOR=#000000]1326 Logon failure: unknown user name or bad password.[/COLOR][/FONT][/SIZE]
[SIZE=4][FONT=arial][COLOR=#000000]1791 A remote procedure call is already in progress for this thread.[/COLOR][/FONT][/SIZE] -
[quote=“Tom Elliott, post: 42287, member: 7271”]Look them up and you may have a better/clearer answer. The error codes you see are not FOG generated[/quote]
Yep, they are generated by the old HostnameChanger. But the new one says this:
[CODE]16/02/2015 2:41 p.m. FOG::HostnameChanger Padding is invalid and cannot be removed.
16/02/2015 2:41 p.m. FOG::HostnameChanger at System.Security.Cryptography.RijndaelManagedTransform.DecryptData(Byte
[] inputBuffer, Int32 inputOffset, Int32 inputCount, Byte[]& outputBuffer, Int32 outputOffset, PaddingMode paddingMode,
Boolean fLast)
at System.Security.Cryptography.RijndaelManagedTransform.TransformFinalBlock(Byte[] inputBuffer, Int32 inputOffset,
Int32 inputCount)
[/CODE]As this is a different error message, does that mean that perhaps the encryption key of the new HostnameChanger is not the default one?
The old dll error message may seem to indicate I really have a problem with username/password, and I’ll check that again.
-
Which new one are you referring to?
The one from the github fogproject repo? Or the one from the fogservice repo?
-
[quote=“Tom Elliott, post: 42293, member: 7271”]Which new one are you referring to?
The one from the github fogproject repo? Or the one from the fogservice repo?[/quote]
The one I downloaded [URL=‘http://www.fogproject.org/forum/threads/active-directory-registration-not-working-windows-7-x64-client.11514/#post-42039’]from here in this thread[/URL].
-
OK, I had both the old dll and new dll in the directory, and it seems the service picks up both. That’s confusing. When using the new dll, I get this output (as already posted):
[CODE] 16/03/2015 9:04 p.m. FOG Service Engine Version: 3
16/03/2015 9:04 p.m. Starting all sub processes
16/03/2015 9:04 p.m. 2 modules loaded
16/03/2015 9:04 p.m. * Starting FOG.HostNameChanger
16/03/2015 9:04 p.m. * Starting FOG.MODDebug
16/03/2015 9:04 p.m. FOG::MODDebug Start Called
16/03/2015 9:04 p.m. FOG::MODDebug Sleeping for 100 Seconds
16/03/2015 9:04 p.m. FOG::HostnameChanger Starting hostname change process…
16/03/2015 9:04 p.m. FOG::HostnameChanger Yielding to other subservices for 5 seconds.
16/03/2015 9:04 p.m. FOG::HostnameChanger Attempting to connect to fog server…
16/03/2015 9:04 p.m. FOG::HostnameChanger Module is active…
16/03/2015 9:04 p.m. FOG::HostnameChanger AD mode requested, confirming settings.
16/03/2015 9:04 p.m. FOG::HostnameChanger Padding is invalid and cannot be removed.
16/03/2015 9:04 p.m. FOG::HostnameChanger at System.Security.Cryptography.RijndaelManagedTransform.DecryptData(Byte
[] inputBuffer, Int32 inputOffset, Int32 inputCount, Byte[]& outputBuffer, Int32 outputOffset, PaddingMode paddingMode,
Boolean fLast)
at System.Security.Cryptography.RijndaelManagedTransform.TransformFinalBlock(Byte[] inputBuffer, Int32 inputOffset,
Int32 inputCount)
at System.Security.Cryptography.CryptoStream.FlushFinalBlock()
at System.Security.Cryptography.CryptoStream.Dispose(Boolean disposing)
at System.IO.Stream.Close()
at FOG.FOGCrypt.decrypt(Byte[] cipherData, Byte[] Key, Byte[] IV)
at FOG.FOGCrypt.decrypt(Byte[] cipherData, String Password)
at FOG.FOGCrypt.decryptHex(String hex)
at FOG.HostNameChanger.changeHostName()[/CODE]I’ve tried to fire up MonoDevelop, an IDE on Linux and to recompile this, but it seems my dll is not recognised unfortunately.
-
PS: it would be great if someone had a tip on how to compile HostnameChange.dll on Linux and produce a .dll that’s recognised. Then I could do some actual debugging!
-
And to repeat, with the original HostnameChange.dll I get this:
[CODE] 16/03/2015 9:21 p.m. FOG Service Engine Version: 3
16/03/2015 9:21 p.m. Starting all sub processes
16/03/2015 9:21 p.m. 1 modules loaded
16/03/2015 9:21 p.m. * Starting FOG.HostNameChanger
16/03/2015 9:21 p.m. FOG::HostnameChanger Starting hostname change process…
16/03/2015 9:21 p.m. FOG::HostnameChanger Yielding to other subservices for 7 seconds.
16/03/2015 9:21 p.m. FOG::HostnameChanger Attempting to connect to fog server…
16/03/2015 9:21 p.m. FOG::HostnameChanger Module is active…
16/03/2015 9:21 p.m. FOG::HostnameChanger AD mode requested, confirming settings.
16/03/2015 9:21 p.m. FOG::HostnameChanger Hostname is up to date
16/03/2015 9:21 p.m. FOG::HostnameChanger Attempting to join domain if not already a member…
16/03/2015 9:21 p.m. FOG::HostnameChanger Domain Error! (‘Unknown Error’ Code: 1355)[/CODE]That’s the same error [URL='http://www.fogproject.org/forum/threads/fog-service-register-no-longer-working.10703/#post-29215’]that’s mentioned here[/URL].
-
And your username field is not in the format domain/username?
-
Wow, compiliation actually works if I compile the FOGService.exe as well and copy that first. That’s great, can now do development on Linux.
-
[quote=“Tom Elliott, post: 43893, member: 7271”]And your username field is not in the format domain/username?[/quote]
No, it wasn’t. The domain name is automatically appended I saw already. The problem is that the password is garbled. When I hard-code it, everything works. Narrowing down to the culprit.
-
One thing I found out is that you cannot use the fully qualified name as domain in the active domain settings of a client. It must be in NetBios format. The reason is that the backend returns the user name as “<DOMAIN><username>” and if you have as domain “fog.example.org” you get a user name “fog.example.org\Administrator” for example, which won’t work.