• Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login
  • Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login

Active directory Join issue

Scheduled Pinned Locked Moved Solved
Windows Problems
7
115
95.4k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • J
    Joe Schmitt Senior Developer
    last edited by Jan 23, 2016, 12:46 AM

    @anthonyglamis Can you post the new client log with the error?

    Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG! Get in contact with me (chat bubble in the top right corner) if you want to join in.

    1 Reply Last reply Reply Quote 1
    • W
      Wayne Workman @anthonyglamis
      last edited by Wayne Workman Jan 22, 2016, 9:30 PM Jan 23, 2016, 3:30 AM

      @anthonyglamis Do you see anything when you go to http://192.168.1.243/fog/management/other/ssl/srvpublic.crt

      Also, please fill jbob’s request below.

      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
      Daily Clean Installation Results:
      https://fogtesting.fogproject.us/
      FOG Reporting:
      https://fog-external-reporting-results.fogproject.us/

      A 1 Reply Last reply Jan 25, 2016, 5:26 PM Reply Quote 0
      • A
        anthonyglamis @Wayne Workman
        last edited by anthonyglamis Jan 25, 2016, 11:27 AM Jan 25, 2016, 5:26 PM

        @Wayne-Workman @jbob @Arrowhead-IT

        I can download the cert but only in Chrome. Firefox says there is no data, and IE states page cannot be found.

        I was searching through threads and came across a thread in which Arrowhead-IT was having basically the same issues I am. The client works just fine if you install it after an image is deployed. This deployment is with the client service installed on an image and then deployed to a client.
        Attached are 2 logs.
        The 1st displays the authentication error being logged.
        The 2nd log is displays what is logged after I uninstall and re-install the client service on the same machine. Everything starts to work fine after that.

        0_1453742762067_LE431_1.log

        0_1453742772815_LE431.txt

        W 1 Reply Last reply Jan 25, 2016, 6:31 PM Reply Quote 0
        • W
          Wayne Workman @anthonyglamis
          last edited by Wayne Workman Jan 25, 2016, 12:32 PM Jan 25, 2016, 6:31 PM

          @anthonyglamis said:

          after I uninstall and re-install the client service on the same machine. Everything starts to work fine after that.

          If it works fine after you uninstall/reinstall, can you make a new image, and on your golden image before you capture, can you uninstall and then reinstall and then capture the image? Then try out the new image?

          You can make the new image from your old one (just download it but disable domain joining).

          You don’t have to overwrite your current image, just make a new one with a new name.

          Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
          Daily Clean Installation Results:
          https://fogtesting.fogproject.us/
          FOG Reporting:
          https://fog-external-reporting-results.fogproject.us/

          1 Reply Last reply Reply Quote 0
          • J
            Joe Schmitt Senior Developer
            last edited by Jan 25, 2016, 7:08 PM

            @anthonyglamis I am in agreement with @Wayne-Workman. That log file you posted indicates that your image has the wrong certificates. This could have been caused by a server re-install / key re-generation after making your image. Simply updating your image with a re-installed client should fix it.

            Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG! Get in contact with me (chat bubble in the top right corner) if you want to join in.

            A 1 Reply Last reply Jan 25, 2016, 8:02 PM Reply Quote 1
            • A
              anthonyglamis @Joe Schmitt
              last edited by anthonyglamis Jan 25, 2016, 2:03 PM Jan 25, 2016, 8:02 PM

              @Jbob @Wayne-Workman Workman

              For testing purposes I did exactly what you suggested. I have a new image compiled. Uninstalled the client service, ensured it was talking to the server and captured the imaged. I am attempting to deploy it now. I will update with the status. The only thing I am confused about it every time I update my revision I will have to create another image? Interesting. There is a new revision almost everyday.

              J W 2 Replies Last reply Jan 25, 2016, 8:05 PM Reply Quote 0
              • J
                JJ Fullmer Testers @anthonyglamis
                last edited by Jan 25, 2016, 8:05 PM

                @anthonyglamis No, you don’t need to create a new image for a new revision. It’s only if you reinstalled fog completely, regenerating the ca certs.

                Have you tried the FogApi powershell module? It's pretty cool IMHO
                https://github.com/darksidemilk/FogApi
                https://fogapi.readthedocs.io/en/latest/
                https://www.powershellgallery.com/packages/FogApi
                https://forums.fogproject.org/topic/12026/powershell-api-module

                A 1 Reply Last reply Jan 25, 2016, 9:06 PM Reply Quote 1
                • W
                  Wayne Workman @anthonyglamis
                  last edited by Jan 25, 2016, 8:07 PM

                  @anthonyglamis said:

                  The only thing I am confused about it every time I update my revision I will have to create another image?

                  This should not be the case, unless you’re just doing it wrong - which is possible.

                  The new client has a security model that is based on a cryptographically secure trust model. Details about it are in the wiki. If you blast your ssl certificates and CA on the server, then, this trust is also blasted.

                  And the new client will not accept communications from an un-trusted source. This is by design.

                  Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
                  Daily Clean Installation Results:
                  https://fogtesting.fogproject.us/
                  FOG Reporting:
                  https://fog-external-reporting-results.fogproject.us/

                  1 Reply Last reply Reply Quote 0
                  • A
                    anthonyglamis @JJ Fullmer
                    last edited by Jan 25, 2016, 9:06 PM

                    @Arrowhead-IT Well I’m an idiot then because after every revision I was reinstalling Fog. I tested 2 machines. The images were a success and the auto join to AD worked perfectly! This is going to make my life so much easier. Thanks guys for all the help. Thanks for your time. Now I can at least help anyone else that might have AD issues 😉 Also for someone like me who is a newbie to Linux, I might compile a write up to help anyone in the future.
                    Now on to figure out how to store printers and have them map automatically and I will be in serious business!

                    Once again thank you to everyone that replied to this thread!

                    W T 2 Replies Last reply Jan 25, 2016, 9:30 PM Reply Quote 2
                    • W
                      Wayne Workman @anthonyglamis
                      last edited by Jan 25, 2016, 9:30 PM

                      @anthonyglamis said:

                      Also for someone like me who is a newbie to Linux, I might compile a write up to help anyone in the future.

                      Please do. Post it in our Tutorials section.

                      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
                      Daily Clean Installation Results:
                      https://fogtesting.fogproject.us/
                      FOG Reporting:
                      https://fog-external-reporting-results.fogproject.us/

                      1 Reply Last reply Reply Quote 0
                      • T
                        Tom Elliott @anthonyglamis
                        last edited by Jan 25, 2016, 9:32 PM

                        @anthonyglamis Just so I’m understanding, there wasn’t a problem at all? I know you were having a problem, but this wasn’t something FOG was doing necessarily?

                        Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG! Get in contact with me (chat bubble in the top right corner) if you want to join in.

                        Web GUI issue? Please check apache error (debian/ubuntu: /var/log/apache2/error.log, centos/fedora/rhel: /var/log/httpd/error_log) and php-fpm log (/var/log/php*-fpm.log)

                        Please support FOG if you like it: https://wiki.fogproject.org/wiki/index.php/Support_FOG

                        A 1 Reply Last reply Jan 25, 2016, 9:50 PM Reply Quote 0
                        • A
                          anthonyglamis @Tom Elliott
                          last edited by Jan 25, 2016, 9:50 PM

                          @Tom-Elliott I’m not going to say there were not any small bugs that were fixed via the latest revisions. There were times where images would not even capture, but on a second try they would, or deploy for that matter. I’m not sure about the certificates issue either, logically it makes sense to compile an image, that is not on the domain, install the latest Client Service and then capture that image. Then deploy to your clients. I wasn’t always reinstalling fog after revisions so in theory I should have been successful once or twice.
                          I have successfully deployed an image to 2 laptops today, but here is what I ended up doing. I had a image I wanted to capture on a computer that was still on my domain. I UN-installed the Client Service, restarted, reinstalled the client service, ensured the client and server were talking (i didn’t have to check the log as it auto joined to AD so obviously it was working), and captured that image. It worked. I figured who cares if I capture an image of a computer already joined to my domain as the client service would rename a unique identifier as well as host name of my choice.

                          W 1 Reply Last reply Jan 25, 2016, 11:37 PM Reply Quote 0
                          • W
                            Wayne Workman @anthonyglamis
                            last edited by Jan 25, 2016, 11:37 PM

                            @anthonyglamis said:

                            I figured who cares if I capture an image of a computer already joined to my domain as the client service would rename a unique identifier as well as host name of my choice.

                            I’d very strongly recommend against that.

                            Not because what the fog client does isn’t sound or anything… but because…

                            You’re image is now dirty. Any custom settings that were applied to that computer for that particular OU, and any particular user that logged onto that computer… those are ON your image. IF that image is later renamed/rejoined on another piece of hardware, those settings float to that next system if those specific settings are not explicitly undone by the next set of policies… and then the next, and the next.

                            And - maybe your Active Directory setup doesn’t set any settings on clients… but my setup does. A lot of settings, in fact. Settings that are specific and unique to the individual OUs that computers are placed in. Specific policies, specific pieces of deployed software. I look after 500+ computers and I rely on AD to work, on policy to work as expected, and I cannot go around doing these things by hand on all the hosts.

                            The images I upload - They have never been on any domain, they have never visited www.google.com or www.microsoft.com. I bring all software in via LAN or flash drive. All updates from our WSUS service. Chrome has never been signed into, nor firefox. My images are 100% built from scratch, nothing but vanilla windows. I never install the bloatware that comes with driver downloads - I extract the driver files themselves and install them using the integrated Windows method manually. My images are absolutely 100% pure. Because of this, I can download my image at any point and just update it - and I still have a very pure image.

                            If you’re system has already been on a domain and has been dirtied, it’ll always be dirty. It’ll always have settings and behaviors that you might not expect. And you’re just asking for complications down the road regarding these things.

                            The new FOG Client feature to unjoin/rename/rejoin is intended for host renaming to be super smooth. Even if that permits an image that is already domain-joined to be uploaded and deployed without issue - it’s just really bad practice to do this.

                            Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
                            Daily Clean Installation Results:
                            https://fogtesting.fogproject.us/
                            FOG Reporting:
                            https://fog-external-reporting-results.fogproject.us/

                            A 1 Reply Last reply Jan 26, 2016, 4:57 AM Reply Quote 2
                            • A
                              anthonyglamis @Wayne Workman
                              last edited by Jan 26, 2016, 4:57 AM

                              @Wayne-Workman honestly you are Absolutely right, but I was so happy to get an image to work also while auto joining I was beside myself. I guess it’s back to the drawing board. I’ll create a baseline tomorrow and load a new client into it and see if I have any luck.

                              1 Reply Last reply Reply Quote 2
                              • A
                                anthonyglamis
                                last edited by Jan 26, 2016, 7:59 PM

                                @Wayne-Workman Glad to say I created a default master image, and have successfully deployed it 3 times with auto join working flawlessly! This was a test fog server. I am going to start to build out a master for for my corporate office, and will use this template for my 17 remote locations. I plan to have a sever in each communication room, as I want the image to pull from the local LAN rather than over the net. Some of our sites are in dire need of infrastructure upgrades, so I would kill the circuit deploying from a Master Node.

                                I’ll start to research this a little more, and will also work on the write up of my experience with the help of everyone that helped on this thread.

                                Also, when I started this project I went with Ubuntu 14.04 LTS as a platform. Would anyone suggest migrating to Ubuntu 15.10? Technically I have a stable platform, but I’m wondering how long the platform I am on now will be supported?

                                Thanks again guys!

                                W 1 Reply Last reply Jan 26, 2016, 8:06 PM Reply Quote 0
                                • W
                                  Wayne Workman @anthonyglamis
                                  last edited by Jan 26, 2016, 8:06 PM

                                  @anthonyglamis I’d actually suggest CentOS 7, or Debian.

                                  Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
                                  Daily Clean Installation Results:
                                  https://fogtesting.fogproject.us/
                                  FOG Reporting:
                                  https://fog-external-reporting-results.fogproject.us/

                                  A 1 Reply Last reply Jan 26, 2016, 8:13 PM Reply Quote 0
                                  • A
                                    anthonyglamis @Wayne Workman
                                    last edited by Jan 26, 2016, 8:13 PM

                                    @Wayne-Workman OK I can give those platforms a try. Would you suggest desktop or server?

                                    Can I get a little clarity? I ran svn up from the trunk directory. I restarted my Linux box as it also needed updating for software. Logged back in and I am on the same revision. I thought a reboot would start and stop the fog service thus updating it to the latest revision. Did I miss a command?

                                    W 1 Reply Last reply Jan 26, 2016, 8:15 PM Reply Quote 0
                                    • W
                                      Wayne Workman @anthonyglamis
                                      last edited by Jan 26, 2016, 8:15 PM

                                      @anthonyglamis after running svn up from the trunk directory, you would go into the bin directory and reinstall.

                                      The fast way is ./installfog.sh -y

                                      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
                                      Daily Clean Installation Results:
                                      https://fogtesting.fogproject.us/
                                      FOG Reporting:
                                      https://fog-external-reporting-results.fogproject.us/

                                      A 1 Reply Last reply Jan 26, 2016, 8:20 PM Reply Quote 0
                                      • A
                                        anthonyglamis @Wayne Workman
                                        last edited by anthonyglamis Jan 26, 2016, 2:22 PM Jan 26, 2016, 8:20 PM

                                        @Wayne-Workman Correct but won’t that kill my certificate chain? I thought this was my problem all along? So let me try to wrap my head around this. Update the revision. Reinstall fog, register a new client and deploy the same image I had stored? I’ll test this now.

                                        W 1 Reply Last reply Jan 26, 2016, 8:25 PM Reply Quote 0
                                        • W
                                          Wayne Workman @anthonyglamis
                                          last edited by Jan 26, 2016, 8:25 PM

                                          @anthonyglamis Yes, pull new revision, run installer.

                                          The certs and CA carry over.

                                          Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
                                          Daily Clean Installation Results:
                                          https://fogtesting.fogproject.us/
                                          FOG Reporting:
                                          https://fog-external-reporting-results.fogproject.us/

                                          A 1 Reply Last reply Jan 26, 2016, 8:40 PM Reply Quote 0
                                          • 1
                                          • 2
                                          • 3
                                          • 4
                                          • 5
                                          • 6
                                          • 3 / 6
                                          3 / 6
                                          • First post
                                            85/115
                                            Last post

                                          161

                                          Online

                                          12.0k

                                          Users

                                          17.3k

                                          Topics

                                          155.2k

                                          Posts
                                          Copyright © 2012-2024 FOG Project