[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Login from Workstation not possible anymore

Hi Mike,

no:
root@K3064-1:/mount tjener:/home0 /mnt
returns
mount.nfs: access denied by server while mounting tjener:/home0

and /etc/exports on tjener has
# /etc/exports: the access control list for filesystems which may be exported 
#		to NFS clients.  See exports(5).
# ...
/opt/ltsp/i386 10.0.0.0/255.0.0.0(ro,async,no_root_squash,subtree_check) 192.168.0.0/255.255.0.0(ro,async,no_root_squash,subtree_check) 127.0.0.1(ro,async,no_root_squash,subtree_check,insecure) /srv/nfs4 @ltsp-server-hosts(sec=krb5p:krb5i:krb5:sys,rw,sync,fsid=0,crossmnt,no_subtree_check) @workstation-hosts(sec=krb5p:krb5i:krb5:sys,rw,sync,fsid=0,crossmnt,no_subtree_check) @server-hosts(sec=krb5p:krb5i:krb5:sys,rw,sync,fsid=0,crossmnt,no_subtree_check) /srv/nfs4/home0 @ltsp-server-hosts(sec=krb5p:krb5i:krb5:sys,rw,sync,no_subtree_check) @workstation-hosts(sec=krb5p:krb5i:krb5:sys,rw,sync,no_subtree_check) @server-hosts(sec=krb5p:krb5i:krb5:sys,rw,sync,no_subtree_check)
between /opt/ltsp/i386 and 10.0.0.0/ there was some space, not displayed here. I tried to delete it and ran exportfs -r , but no success in login in from Workstation. 

/var/log/auth.log says:
Oct 24 09:45:01 K3064-1 CRON[2329]: pam_unix(cron:session): session opened for user root by (uid=0) Oct 24 09:45:01 K3064-1 CRON[2328]: pam_unix(cron:session): session opened for user root by (uid=0) Oct 24 09:45:01 K3064-1 CRON[2329]: pam_unix(cron:session): session closed for user root Oct 24 09:45:01 K3064-1 CRON[2328]: pam_unix(cron:session): session closed for user root Oct 24 09:45:08 tjener krb5kdc[3025]: AS_REQ (8 etypes {18 17 20 19 16 23 25 26}) 10.30.64.101: NEEDED_PREAUTH: frank@INTERN for krbtgt/INTERN@INTERN, Additional pre-authentication required Oct 24 09:45:08 tjener krb5kdc[3025]: AS_REQ (8 etypes {18 17 20 19 16 23 25 26}) 10.30.64.101: ISSUE: authtime 1571903108, etypes {rep=18 tkt=18 ses=18}, frank@INTERN for krbtgt/INTERN@INTERN Oct 24 09:45:08 K3064-1 lightdm: pam_krb5(lightdm:auth): user frank authenticated as frank@INTERN Oct 24 09:45:08 K3064-1 lightdm: pam_unix(lightdm-greeter:session): session closed for user lightdm 
Oct 24 09:45:08 K3064-1 systemd-logind[524]: Removed session c1.
Oct 24 09:45:08 K3064-1 lightdm: pam_unix(lightdm:session): session opened for user frank by (uid=0) 
Oct 24 09:45:08 K3064-1 systemd-logind[524]: New session 4 of user frank.
Oct 24 09:45:08 K3064-1 systemd: pam_unix(systemd-user:session): session closed for user lightdm Oct 24 09:45:08 K3064-1 systemd: pam_unix(systemd-user:session): session opened for user frank by (uid=0) Oct 24 09:45:08 K3064-1 lightdm: pam_ck_connector(lightdm:session): nox11 mode, ignoring PAM_TTY :0 Oct 24 09:45:09 K3064-1 lightdm: pam_unix(lightdm-greeter:session): session opened for user lightdm by (uid=0) 
Oct 24 09:45:09 K3064-1 systemd-logind[524]: New session c2 of user lightdm.
Oct 24 09:45:09 K3064-1 systemd: pam_unix(systemd-user:session): session opened for user lightdm by (uid=0) Oct 24 09:45:34 tjener CRON[26440]: pam_unix(cron:session): session closed for user munin Oct 24 09:45:44 tjener krb5kdc[3025]: AS_REQ (8 etypes {18 17 20 19 16 23 25 26}) 10.30.64.101: NEEDED_PREAUTH: administrator@INTERN for krbtgt/INTERN@INTERN, Additional pre-authentication required Oct 24 09:45:44 tjener krb5kdc[3025]: AS_REQ (8 etypes {18 17 20 19 16 23 25 26}) 10.30.64.101: ISSUE: authtime 1571903144, etypes {rep=18 tkt=18 ses=18}, administrator@INTERN for krbtgt/INTERN@INTERN Oct 24 09:45:44 K3064-1 lightdm: pam_krb5(lightdm:auth): user administrator authenticated as administrator@INTERN Oct 24 09:45:44 K3064-1 lightdm: pam_unix(lightdm-greeter:session): session closed for user lightdm Oct 24 09:45:44 K3064-1 lightdm: pam_unix(lightdm:session): session opened for user administrator by (uid=0) Oct 24 09:45:44 K3064-1 systemd-logind[524]: New session 7 of user administrator. Oct 24 09:45:44 K3064-1 systemd: pam_unix(systemd-user:session): session opened for user administrator by (uid=0) Oct 24 09:45:44 K3064-1 lightdm: pam_ck_connector(lightdm:session): nox11 mode, ignoring PAM_TTY :0 
Oct 24 09:45:44 K3064-1 systemd-logind[524]: Removed session c2.
Oct 24 09:45:44 K3064-1 systemd: pam_unix(systemd-user:session): session closed for user lightdm Oct 24 09:45:45 K3064-1 lightdm: pam_unix(lightdm-greeter:session): session opened for user lightdm by (uid=0) 
Oct 24 09:45:45 K3064-1 systemd-logind[524]: New session c3 of user lightdm.
Oct 24 09:45:45 K3064-1 systemd: pam_unix(systemd-user:session): session opened for user lightdm by (uid=0) 


/var/log/syslog is:
Oct 24 09:45:01 K3064-1 liblogging-stdlog: action 'action 0' resumed (module 'builtin:omfwd') [v8.24.0 try http://www.rsyslog.com/e/2359 ] Oct 24 09:45:01 K3064-1 liblogging-stdlog: action 'action 0' resumed (module 'builtin:omfwd') [v8.24.0 try http://www.rsyslog.com/e/2359 ] Oct 24 09:45:01 K3064-1 CRON[2332]: (root) CMD (if [ -x /usr/sbin/debian-edu-update-netblock ]; then /usr/sbin/debian-edu-update-netblock auto > /dev/null; fi) Oct 24 09:45:01 K3064-1 CRON[2333]: (root) CMD (if [ -x /etc/munin/plugins/apt_all ]; then /etc/munin/plugins/apt_all update 7200 12 >/dev/null; elif [ -x /etc/munin/plugins/apt ]; then /etc/munin/plugins/apt update 7200 12 >/dev/null; f 
i)
Oct 24 09:45:01 K3064-1 debian-edu-update-netblock: making sure netblock is disabled Oct 24 09:45:04 K3064-1 nslcd[1209]: [5558ec] <passwd(all)> (re)loading /etc/nsswitch.conf Oct 24 09:45:04 tjener rpc.mountd[2628]: refused mount request from K3064-1.intern for /home0 (/): not exported 
Oct 24 09:45:04 tjener slapd[2967]: connection_read(49): no connection!
Oct 24 09:45:04 tjener rpc.mountd[2628]: refused mount request from K3064-1.intern for /home0 (/): not exported Oct 24 09:45:04 tjener rpc.mountd[2628]: refused mount request from K3064-1.intern for /home0 (/): not exported Oct 24 09:45:08 K3064-1 lightdm[2365]: Error getting user list from org.freedesktop.Accounts: GDBus.Error:org.freedesktop.DBus.Error.ServiceUnknown: The name org.freedesktop.Accounts was not provided by any .service files 
Oct 24 09:45:08 K3064-1 systemd[1]: Stopping User Manager for UID 118...
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped target Default.
Oct 24 09:45:08 K3064-1 gvfsd[1662]: A connection to the bus can't be made
Oct 24 09:45:08 K3064-1 systemd[1]: Created slice User Slice of frank.
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopping D-Bus User Message Bus...
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopping Virtual filesystem service... Oct 24 09:45:08 K3064-1 systemd[1637]: Stopping Accessibility services bus... 
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped D-Bus User Message Bus.
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped Accessibility services bus.
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped Virtual filesystem service.
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped target Basic System.
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped target Sockets.
Oct 24 09:45:08 K3064-1 systemd[1637]: Closed GnuPG network certificate management daemon. Oct 24 09:45:08 K3064-1 systemd[1637]: Closed GnuPG cryptographic agent and passphrase cache (restricted). Oct 24 09:45:08 K3064-1 systemd[1637]: Closed GnuPG cryptographic agent and passphrase cache. 
Oct 24 09:45:08 K3064-1 systemd[1637]: Closed D-Bus User Message Bus Socket.
Oct 24 09:45:08 K3064-1 systemd[1637]: Closed GnuPG cryptographic agent (ssh-agent emulation). Oct 24 09:45:08 K3064-1 systemd[1637]: Closed GnuPG cryptographic agent (access for web browsers). 
Oct 24 09:45:08 K3064-1 systemd[1637]: Reached target Shutdown.
Oct 24 09:45:08 K3064-1 systemd[1637]: Starting Exit the Session...
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped target Paths.
Oct 24 09:45:08 K3064-1 systemd[1637]: Stopped target Timers.
Oct 24 09:45:08 K3064-1 systemd[1]: Started Session 4 of user frank.
Oct 24 09:45:08 K3064-1 systemd[1]: Starting User Manager for UID 1003...
Oct 24 09:45:08 K3064-1 systemd[1637]: Received SIGRTMIN+24 from PID 2377 (kill). Oct 24 09:45:08 K3064-1 systemd[1]: user@118.service: Killing process 2377 (kill) with signal SIGKILL. 
Oct 24 09:45:08 K3064-1 systemd[1]: Stopped User Manager for UID 118.
Oct 24 09:45:08 K3064-1 systemd[1]: Removed slice User Slice of lightdm.
Oct 24 09:45:08 K3064-1 systemd[2378]: Listening on GnuPG cryptographic agent (access for web browsers). Oct 24 09:45:08 K3064-1 systemd[2378]: Listening on GnuPG cryptographic agent and passphrase cache. Oct 24 09:45:08 K3064-1 systemd[2378]: Starting D-Bus User Message Bus Socket. Oct 24 09:45:08 K3064-1 systemd[2378]: Listening on GnuPG cryptographic agent (ssh-agent emulation). 
Oct 24 09:45:08 K3064-1 systemd[2378]: Reached target Paths.
Oct 24 09:45:08 K3064-1 systemd[2378]: Listening on GnuPG network certificate management daemon. Oct 24 09:45:08 K3064-1 systemd[2378]: Listening on GnuPG cryptographic agent and passphrase cache (restricted). 
Oct 24 09:45:08 K3064-1 systemd[2378]: Reached target Timers.
Oct 24 09:45:08 K3064-1 systemd[2378]: Listening on D-Bus User Message Bus Socket. 
Oct 24 09:45:08 K3064-1 systemd[2378]: Reached target Sockets.
Oct 24 09:45:08 K3064-1 systemd[2378]: Reached target Basic System.
Oct 24 09:45:08 K3064-1 systemd[2378]: Reached target Default.
Oct 24 09:45:08 K3064-1 systemd[2378]: Startup finished in 35ms.
Oct 24 09:45:08 K3064-1 systemd[1]: Started User Manager for UID 1003.
Oct 24 09:45:09 K3064-1 lightdm[1137]: Error writing X authority: Failed to open X authority /skole/tjener/home0/frank/.Xauthority: No such file or directory Oct 24 09:45:09 K3064-1 lightdm[2401]: Error getting user list from org.freedesktop.Accounts: GDBus.Error:org.freedesktop.DBus.Error.ServiceUnknown: The name org.freedesktop.Accounts was not provided by any .service files 
Oct 24 09:45:09 tjener slapd[2967]: connection_read(50): no connection!
Oct 24 09:45:09 K3064-1 systemd[1]: Created slice User Slice of lightdm.
Oct 24 09:45:09 K3064-1 systemd[1]: Starting User Manager for UID 118...
Oct 24 09:45:09 K3064-1 systemd[1]: Started Session c2 of user lightdm.
Oct 24 09:45:09 K3064-1 systemd[2404]: Listening on GnuPG cryptographic agent (ssh-agent emulation). Oct 24 09:45:09 K3064-1 systemd[2404]: Listening on GnuPG cryptographic agent and passphrase cache (restricted). Oct 24 09:45:09 K3064-1 systemd[2404]: Listening on GnuPG cryptographic agent (access for web browsers). Oct 24 09:45:09 K3064-1 systemd[2404]: Listening on GnuPG cryptographic agent and passphrase cache. 
Oct 24 09:45:09 K3064-1 systemd[2404]: Reached target Timers.
Oct 24 09:45:09 K3064-1 systemd[2404]: Starting D-Bus User Message Bus Socket. Oct 24 09:45:09 K3064-1 systemd[2404]: Listening on GnuPG network certificate management daemon. 
Oct 24 09:45:09 K3064-1 systemd[2404]: Reached target Paths.
Oct 24 09:45:09 K3064-1 systemd[2404]: Listening on D-Bus User Message Bus Socket. 
Oct 24 09:45:09 K3064-1 systemd[2404]: Reached target Sockets.
Oct 24 09:45:09 K3064-1 systemd[2404]: Reached target Basic System.
Oct 24 09:45:09 K3064-1 systemd[2404]: Reached target Default.
Oct 24 09:45:09 K3064-1 systemd[2404]: Startup finished in 32ms.
Oct 24 09:45:09 K3064-1 systemd[1]: Started User Manager for UID 118.
Oct 24 09:45:09 K3064-1 systemd[2404]: Started D-Bus User Message Bus.
Oct 24 09:45:09 K3064-1 dbus-daemon[2417]: Activating via systemd: service name='org.a11y.Bus' unit='at-spi-dbus-bus.service' Oct 24 09:45:09 K3064-1 systemd[2404]: Starting Accessibility services bus... Oct 24 09:45:09 K3064-1 dbus-daemon[2417]: Successfully activated service 'org.a11y.Bus' 
Oct 24 09:45:09 K3064-1 systemd[2404]: Started Accessibility services bus.
Oct 24 09:45:10 K3064-1 dbus-daemon[2417]: Activating via systemd: service name='org.gtk.vfs.Daemon' unit='gvfs-daemon.service' Oct 24 09:45:10 K3064-1 systemd[2404]: Starting Virtual filesystem service... Oct 24 09:45:10 K3064-1 org.a11y.atspi.Registry[2419]: SpiRegistry daemon is running with well-known name - org.a11y.atspi.Registry Oct 24 09:45:10 K3064-1 dbus-daemon[2417]: Successfully activated service 'org.gtk.vfs.Daemon' 
Oct 24 09:45:10 K3064-1 systemd[2404]: Started Virtual filesystem service.


Sorry for so much text.

readU
Frank


Mike Gabriel:

Hi,

On  Mo 21 Okt 2019 14:33:07 CEST, Frank Weißer wrote:


Hi Petter,

did some
#debian-edu-test-install | grep -v success > debian-edu-test-install.out

and got following parts with error:
error: ./automount: unable to cd into /skole/tjener/home0/ (is DNS name of this machine in required netgroup?) 
info: slbackup is not installed
error: ./cups: URL 'https://localhost:631/' is not working.
error: ./doc: Release manual have 6 FIXMEs.  Please fix at http://wiki.debian.org/DebianEdu/Documentation/Stretch .
the host K3064-1 is in netgroups all-hosts, fsautoresize-hosts and workstation-hosts. 

/skole and /skole/tjener get mounted on the workstation.


Petter Reinholdtsen:

[Frank Weißer]

Any hints are appreciated


Try running debian-edu-test-install as root and see if it detect any
problems.



is it possible to manually mount /skole/tjener/home0 from a client?

   # mount tjener:/home0 /mnt

If that fails, you need to check /etc/exports on TJENER.

Anything in the logs (syslog, auth.log)?
The rpc.mountd (NFS server) process knows some debug options, same does autofs. Please enable debugging and report back what you find. 

Mike
Reply to: