New to Fog.... A little help with hostname changer and Join AD
-
Also, the machine I captured the image from was sysprepped and fogprepped and answer file has * for computer name, not sure if that makes a difference, but a post I read suggested it may.
-
Problem with the hostname changer is that 3480 does not generate the srvpublic.key file 0.7.4 is looking for. This is somewhat intentional as it, too, was extremely insecure. We’re now generating our own certificate authority and signing a certificate based on the CA.
-
Tom,
Thanks for the quick reply. What would you suggest to get this working, should I downgrade to a working svn or use the legacy client or generate my own keys?
Thanks,
James
-
@Tom-Elliott said:
Please try these commands:
sudo rm -rf /opt/fog/snapins/CA /opt/fog/snapins/SSL /var/www/fog/management/other/ssl
Edit the installer updater piece in /opt/fog/.fogsettings and delete the last two lines of the file:
They should look like:
caCreated="yes" and maybe vhostCreated="yes"
if you don’t have those lines then don’t worry about it.
Then try re-running the installer.
-
I think you should uninstall the fog client, and re-install from the client loactions. Basically you have to re-download the new client and install it.
-
This post is deleted! -
This post is deleted! -
I’ve tried completely removing the fog service and reinstalling and I keep getting the same errors in fog.log:
Invalid host certificate
URL: http://myfogserver/fog/management/other/ssl/srvpublic.crt
ERROR: Could not download file
ERROR: The remote server returned an error: 404 not found
ERROR: Could not get security token
ERROR: Could not find file C:\Windows\system32\token.dat
ERROR: Could not authenticate
ERROR: The system cannot find the file specifiedWas the CA and ssl supposed to be recreated? Any further suggestions before I go digging?
Thanks so much for all your help!!
-
Can you rerun the fog installer with:
sudo ./installfog.sh --recreate-CA --recreate-keys
-
Just a heads up, you installed the beta client.And the specific version you install won’t work with hostname changer. I’d either switch to the legacy client OR wait until I fix v0.8.0 of the beta.
-
@Jbob
Ah… Yes, I realized it was a new version 0.8.0, but didn’t realize it was beta. Thanks for the heads up.
-
Logs after rerun:
5/27/2015 12:15 PM CommunicationHandler Response: Invalid host certificate
5/27/2015 12:15 PM CommunicationHandler URL: http://myfogserver/fog/management/other/ssl/srvpublic.crt
5/27/2015 12:15 PM CommunicationHandler ERROR: Could not get security token
5/27/2015 12:15 PM CommunicationHandler ERROR: Could not find file ‘C:\Windows\system32\token.dat’.
5/27/2015 12:15 PM EncryptionHandler CA cert found
5/27/2015 12:15 PM EncryptionHandler ERROR: Certificate validation failed
5/27/2015 12:15 PM EncryptionHandler ERROR: Trust chain did not complete to the known authority anchor. Errors: The signature of the certificate cannot be verified. (NotSignatureValid)
5/27/2015 12:15 PM CommunicationHandler ERROR: Could not authenticate
5/27/2015 12:15 PM CommunicationHandler ERROR: Certificate is not from FOG CA
5/27/2015 12:15 PM CommunicationHandler URL: http://myfogserver/fog/management/other/ssl/srvpublic/fog/service/servicemodule-active.php?moduleid=clientupdater&mac=00:21:70:0A:9A:A2||00:00:00:00:00:00:00:E0&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&newService=1&new -
I’ll re-iterate my message. I’d wait until we fix v0.8.0
-
@Jbob
Lol, I know, I just figured Tom wanted the logs and I was already in the middle of rerunning the installer when you commented. Just finished the legacy client installer.
Thanks,
James
-
With the legacy client, I’m not getting:
HostnameChanger Failed: Incomplete server response; got 7; wanted: 6
HostnameChanger: Host name was not found in the databaseThanks,
James
-
Did you set the “product-key” field on the host?
-
Yes, that was it!!! Again, thank you guys so much for all your help and hard work!!!
James
-
@Jbob
Sorry to bother, just a quick question for ya, is the domain join working in 0.8.1?
-
@James-Harting said:
@Jbob
Sorry to bother, just a quick question for ya, is the domain join working in 0.8.1?
Yes and No.
I am still having issues with it… but that doesn’t mean you’ll have issues.
-
Thanks for the reply, I will test it out.