[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: can't log in if pxe install was by another tjener

[Nigel Barker]
> Hi All,
> I installed some workstations by pxe from my test tjener, and they don't
> work on the new tjener.
> Workstations installed by usb netinst are fine.
> I am just going to go ahead and set them all to re-install, because school
> starts tomorrow (!) but I just wanted to post this for others. Perhaps the
> fix is easy, but if not, then maybe this could save some time for
> someone.

This is know, as designed, and the fix is easy.

At install time, the SSL certificate to the LDAP server is recorded, and
if another server "impersonate" the LDAP server, connections are
rejected.  To fix it, remove /etc/ldap/ssl/ldap-server-pubkey.pem on the
clients and reboot on the new Debian Edu backbone network (or run 
'service fetch-ldap-cert start' on the new network).

Happy hacking
Petter Reinholdtsen

Reply to: