Re: Kerberos authentication, posted by Thomas Kleeb on Wed Apr 11 13:42:29 2012
|
| Stefan Ritt wrote: |
|
| Thomas Kleeb wrote: |
|
Hello to @all
First please let me say that I'm a complete green-horn when it comes to linux 
I'm running elog on a linux virtual server and would like to use kerberos authentication. If I set 'Authentication = Kerberos' in the elogd.cfg file I get,
If I set 'Authentication = Kerberos, File' it works fine. I hope this is just some error on my part.
thanks,
Tom
|
Is Kerberos set up correctly on your PC? What is the Kerberos Realm? Does the command "kinit <your user name>" work correctly? If not, you have to install and configure Kerberos correctly. Make sure to have USE_KRB5 turned on in your Makefile.
|
Thanks for the quick reply! 
I downloaded and installed the latest RPM. Is Kerberos used in the RPM? The command "kinit xxxxxxx"requests my password and then returns to the prompt. I believe that the virtual server is a normal PSI linux, but I'm not 100% sure  |
|
Re: Kerberos authentication, posted by Stefan Ritt on Wed Apr 11 13:51:27 2012
|
| Thomas Kleeb wrote: |
|
| Stefan Ritt wrote: |
|
| Thomas Kleeb wrote: |
|
Hello to @all
First please let me say that I'm a complete green-horn when it comes to linux
I'm running elog on a linux virtual server and would like to use kerberos authentication. If I set 'Authentication = Kerberos' in the elogd.cfg file I get,
If I set 'Authentication = Kerberos, File' it works fine. I hope this is just some error on my part.
thanks,
Tom
|
Is Kerberos set up correctly on your PC? What is the Kerberos Realm? Does the command "kinit <your user name>" work correctly? If not, you have to install and configure Kerberos correctly. Make sure to have USE_KRB5 turned on in your Makefile.
|
Thanks for the quick reply!
I downloaded and installed the latest RPM. Is Kerberos used in the RPM? The command "kinit xxxxxxx"requests my password and then returns to the prompt. I believe that the virtual server is a normal PSI linux, but I'm not 100% sure
|
Kerberos is not used in the RPM. You have to compile yourself from the tar ball. |
|
Re: Kerberos authentication, posted by Thomas Kleeb on Wed Apr 11 14:00:52 2012
|
| Stefan Ritt wrote: |
|
| Thomas Kleeb wrote: |
|
| Stefan Ritt wrote: |
|
| Thomas Kleeb wrote: |
|
Hello to @all
First please let me say that I'm a complete green-horn when it comes to linux
I'm running elog on a linux virtual server and would like to use kerberos authentication. If I set 'Authentication = Kerberos' in the elogd.cfg file I get,
If I set 'Authentication = Kerberos, File' it works fine. I hope this is just some error on my part.
thanks,
Tom
|
Is Kerberos set up correctly on your PC? What is the Kerberos Realm? Does the command "kinit <your user name>" work correctly? If not, you have to install and configure Kerberos correctly. Make sure to have USE_KRB5 turned on in your Makefile.
|
Thanks for the quick reply!
I downloaded and installed the latest RPM. Is Kerberos used in the RPM? The command "kinit xxxxxxx"requests my password and then returns to the prompt. I believe that the virtual server is a normal PSI linux, but I'm not 100% sure
|
Kerberos is not used in the RPM. You have to compile yourself from the tar ball.
|
O.K.
Like I said in the beginning, I'm a linux green-horn  How do I stop the elogd daemon, and do I have to delete all the elog files and directories created by the RPM or can I just follow the instructions for the tar file and install / make over the RPM installation? |
|
Re: Kerberos authentication, posted by Stefan Ritt on Wed Apr 11 14:04:33 2012
|
| Thomas Kleeb wrote: |
|
Like I said in the beginning, I'm a linux green-horn How do I stop the elogd daemon, and do I have to delete all the elog files and directories created by the RPM or can I just follow the instructions for the tar file and install / make over the RPM installation?
|
/etc/rc.d/init.d/elogd stop
Just compile elogd with Kerberos support and copy it over the existing elogd daemon.
|
|
Re: Kerberos authentication, posted by Thomas Kleeb on Wed Apr 11 14:36:43 2012
|
| Stefan Ritt wrote: |
|
| Thomas Kleeb wrote: |
|
Like I said in the beginning, I'm a linux green-horn How do I stop the elogd daemon, and do I have to delete all the elog files and directories created by the RPM or can I just follow the instructions for the tar file and install / make over the RPM installation?
|
/etc/rc.d/init.d/elogd stop
Just compile elogd with Kerberos support and copy it over the existing elogd daemon.
|
I think it's working now !!!!
Thanks
Tom |
SSL, posted by Thomas Kleeb on Wed Apr 11 16:32:22 2012
|
I'm slowly able to see the finish line 
Now all I need to do is get SSL to work. My server name is hf-info-elog and I'm not sure what the correct values for Port= and URL= should be.
thank
Tom (the green-horn) |
|
Re: SSL, posted by Stefan Ritt on Wed Apr 11 16:43:37 2012
|
| Thomas Kleeb wrote: |
|
I'm slowly able to see the finish line
Now all I need to do is get SSL to work. My server name is hf-info-elog and I'm not sure what the correct values for Port= and URL= should be.
thank
Tom (the green-horn)
|
All you need is a SSL=1 in the config file, then the default port of 443 will be used. The URL is the one seen from outside, like
https://hf-info-elog.psi.ch
or so. The certificate from the distribution is self-signed and therefore the browser will complain. Go to AIT to obtain an official certificate.
- Stefan |
|
ELOG and Gmail?, posted by Christopher Lee on Wed Apr 11 17:43:13 2012
|
Firstly, as with some of the others recently, I am a complete newb when it comes to linux, Though I refuse to let that stop me and really want to get this working.
Pretty much I have a situation where I have been asked to install ELOG, though I am unable to use port 25 at all and also need to use GMAIL for the SMTP server?
It is also my undertanding from the documentation that ELOG only sends mail via port 25
So, I have setup iptables to forward everything from port 25 and a GMAIL IP address used in ELOG's global config for the SMTP, to a stunnel that redirects everything to GMAIL on port 465.
While getting that right took me almost two days, and that was with tons of help and more than half of it being spoon fed to me (though I have learnt SO SO MUCH from just that).
I am still unable to get ELOG to send emails, even if does now seem to connect
Below is a copy of the log from last night (I have spent most of the day trying to sort it out further, but I get the same error)
So I guess my question is, Is it possible to use GMAIL, with ELOG, based on my current conditions, and does anyone have any idea what I can do to go on from here, as I doubt I am the first one to head down this road?
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
10-Apr-2012 21:45:19 [Chris@1.2.3.4] {logbookA} Email from <chris@server.com> to chris@server.com, SMTP host 173.194.67.108:
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} 220 mx.google.com ESMTP XXXXXXXX.XX^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA}
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} EHLO SERVER.COM^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} 250-mx.google.com at your service, [152.106.18.2]^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} 250-SIZE 35882577^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} 250-8BITMIME^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} 250-AUTH LOGIN PLAIN XOAUTH^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} 250 ENHANCEDSTATUSCODES^M
10-Apr-2012 21:45:20 [Chris@1.2.3.4] {logbookA} AUTH LOGIN^M
10-Apr-2012 21:45:21 [Chris@1.2.3.4] {logbookA} Username:
10-Apr-2012 21:45:21 [Chris@1.2.3.4] {logbookA} username@gmail.com
10-Apr-2012 21:45:21 [Chris@1.2.3.4] {logbookA} Password:
10-Apr-2012 21:45:21 [Chris@1.2.3.4] {logbookA} MYXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
10-Apr-2012 21:45:21 [Chris@1.2.3.4] {logbookA} 501 5.5.2 Cannot Decode response fl2sm792152wib.2
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Right now I am pretty stuck, and any advice would be greatly appreciated on how to move forward.
Thanks in Advance
|