Re: can't log in if pxe install was by another tjener
- To: debian-edu <firstname.lastname@example.org>
- Subject: Re: can't log in if pxe install was by another tjener
- From: Petter Reinholdtsen <email@example.com>
- Date: Sun, 25 Aug 2013 20:46:46 +0200
- Message-id: <firstname.lastname@example.org>
- In-reply-to: <CADLSRd55KgbbaM2RFTjRv61NWL9=cdkteBDuM2upPHVApZGuWA@mail.gmail.com>
- References: <CADLSRd55KgbbaM2RFTjRv61NWL9=cdkteBDuM2upPHVApZGuWA@mail.gmail.com>
> Hi All,
> I installed some workstations by pxe from my test tjener, and they don't
> work on the new tjener.
> Workstations installed by usb netinst are fine.
> I am just going to go ahead and set them all to re-install, because school
> starts tomorrow (!) but I just wanted to post this for others. Perhaps the
> fix is easy, but if not, then maybe this could save some time for
This is know, as designed, and the fix is easy.
At install time, the SSL certificate to the LDAP server is recorded, and
if another server "impersonate" the LDAP server, connections are
rejected. To fix it, remove /etc/ldap/ssl/ldap-server-pubkey.pem on the
clients and reboot on the new Debian Edu backbone network (or run
'service fetch-ldap-cert start' on the new network).