Zimbra

sharkfin1 · #1 (**permalink**) 11-06-2008, 07:36 PM

I am trying to install ZCS on RHEL 4.

The Red Hat and Zimbra versions:
Red Hat Enterprise Linux ES release 4 (Nahant Update 6)
zcs-5.0.6_GA_2313.RHEL4.20080522102400

My installation is failing with the following error:

Thu Nov 6 18:14:13 2008 zimbra-ldap is enabled
Thu Nov 6 18:14:13 2008 Initializing ldap...
Thu Nov 6 18:14:13 2008 *** Running as zimbra user: /opt/zimbra/libexec/zmldapinit
IO::Socket::INET: connect: Connection refused at /opt/zimbra/libexec/zmldapinit line 160.
Thu Nov 6 18:15:10 2008 failed. (28416)

My /etc/sudoers file appears to be correct:

%zimbra ALL=NOPASSWD:/opt/zimbra/openldapi/libexec/slapd
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmslapd
%zimbra ALL=NOPASSWD:/opt/zimbra/postfix/sbin/postfix, /opt/zimbra/postfix/sbin/postalias, /opt/zimbra/postfix/sbin/qshape.pl, /opt/zimbra/postfix/sbin/postconf,/opt/zimbra/postfix/sbin/postsuper
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmqstat,/opt/zimbra/libexec/zmmtastatus
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmmailboxdmgr
%zimbra ALL=NOPASSWD:/opt/zimbra/bin/zmcertmgr
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmldapinit

I have no: 'Defaults requiretty' line

I also have the following version of libltdl installed:
/usr/lib/libltdl.so.3.1.0

These cover the solutions I have seen so far for similar issues in the forums.

Any idea why my installation cannot initialize LDAP?

Thanks in advance for any assistance.

phoenix · #2 (**permalink**) 11-07-2008, 12:29 AM

Have you disabled SElinux and the Firewall? Do you have a Split DNS set-up?

sharkfin1 · #3 (**permalink**) 11-07-2008, 02:54 PM

I have SELinux disabled and the firewall disabled. I do not have a split DNS set up.

phoenix · #4 (**permalink**) 11-08-2008, 12:42 AM

Quote:

Originally Posted by sharkfin1

I have SELinux disabled and the firewall disabled. I do not have a split DNS set up.

If you're behind a NAT router then you'll need a Split DNS set-up.

sharkfin1 · #5 (**permalink**) 11-10-2008, 11:52 PM

Spilt DNS solved my LDAP initialization issue. However the installation still failed with the following log errors:

Mon Nov 10 15:51:16 2008 COS attribute retrieved for COS default: zimbraFeatureNotebookEnabled=
Mon Nov 10 15:51:17 2008 Global config attribute retrieved from ldap: zimbraNotebookAccount=
Mon Nov 10 15:51:17 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mc default zimbraFeatureNotebookEnabled TRUE
ERROR: zclient.IO_ERROR (Mon Nov 10 15:51:16 2008 COS attribute retrieved for COS default: zimbraFeatureNotebookEnabled=
Mon Nov 10 15:51:17 2008 Global config attribute retrieved from ldap: zimbraNotebookAccount=
Mon Nov 10 15:51:17 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mc default zimbraFeatureNotebookEnabled TRUE
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:20 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mcf zimbraNotebookAccount wiki@zcs.webmail.rpost.info
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:22 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov in wiki@zcs.webmail.rpost.info
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:24 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mc default zimbraFeatureNotebookEnabled FALSE
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:26 2008 failed to initialize documents...see logfile for details.
Mon Nov 10 15:51:27 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mc default zimbraFeatureNotebookEnabled FALSE
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:29 2008 Restarting mailboxd...
Mon Nov 10 15:51:29 2008 *** Running as zimbra user: /opt/zimbra/bin/zmmailboxdctl restart
wc: /opt/zimbra/log/zmmailboxd.out: No such file or directory
wc: /opt/zimbra/log/zmmailboxd.out: No such file or directory
tail: cannot open `/opt/zimbra/log/zmmailboxd.out' for reading: No such file or directory
mailboxd started.
Mon Nov 10 15:51:41 2008 done.
Mon Nov 10 15:51:41 2008 *** Running as zimbra user: /opt/zimbra/bin/zmsshkeygen
Generating public/private dsa key pair.
Your identification has been saved in /opt/zimbra/.ssh/zimbra_identity.
Your public key has been saved in /opt/zimbra/.ssh/zimbra_identity.pub.
The key fingerprint is:
5b:e7:8e:6f:90:70:5a:db:66:cb:82:fe:83:f5:1e:d8 zcs.webmail.rpost.info
ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.naming.AuthenticationException [LDAP: error code 49 - Invalid Credentials])
Mon Nov 10 15:51:46 2008 *** Running as zimbra user: /opt/zimbra/bin/zmupdateauthkeys
ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.naming.AuthenticationException [LDAP: error code 49 - Invalid Credentials])
Updating /opt/zimbra/.ssh/authorized_keys

Mon Nov 10 15:51:20 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mcf zimbraNotebookAccount wiki@zcs.webmail.rpost.info
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:22 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov in wiki@zcs.webmail.rpost.info
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:24 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mc default zimbraFeatureNotebookEnabled FALSE
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:26 2008 failed to initialize documents...see logfile for details.
Mon Nov 10 15:51:27 2008 *** Running as zimbra user: /opt/zimbra/bin/zmprov mc default zimbraFeatureNotebookEnabled FALSE
ERROR: zclient.IO_ERROR (invoke Connection refused, server: localhost) (cause: java.net.ConnectException Connection refused)
Mon Nov 10 15:51:29 2008 Restarting mailboxd...
Mon Nov 10 15:51:29 2008 *** Running as zimbra user: /opt/zimbra/bin/zmmailboxdctl restart
wc: /opt/zimbra/log/zmmailboxd.out: No such file or directory
wc: /opt/zimbra/log/zmmailboxd.out: No such file or directory
tail: cannot open `/opt/zimbra/log/zmmailboxd.out' for reading: No such file or directory
mailboxd started.
Mon Nov 10 15:51:41 2008 done.
Mon Nov 10 15:51:41 2008 *** Running as zimbra user: /opt/zimbra/bin/zmsshkeygen
Generating public/private dsa key pair.
Your identification has been saved in /opt/zimbra/.ssh/zimbra_identity.
Your public key has been saved in /opt/zimbra/.ssh/zimbra_identity.pub.
The key fingerprint is:
5b:e7:8e:6f:90:70:5a:db:66:cb:82:fe:83:f5:1e:d8 zcs.webmail.rpost.info
ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.naming.AuthenticationException [LDAP: error code 49 - Invalid Credentials])
Mon Nov 10 15:51:46 2008 *** Running as zimbra user: /opt/zimbra/bin/zmupdateauthkeys
ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.naming.AuthenticationException [LDAP: error code 49 - Invalid Credentials])
Updating /opt/zimbra/.ssh/authorized_keys

phoenix · #6 (**permalink**) 11-11-2008, 01:22 AM

Post the output of the following commands (run on the Zimbra server):

Code:

cat /etc/hosts
cat /etc/resolv.conf
host `hostname`  <-- use backticks not single quotes
dig yourdomain.com any
dig yourdomain.com mx

Please post the output of each command within 'quotes' (highlight the text and hit the # symbol above the edit box) to make it easier to read.

sharkfin1 · #7 (**permalink**) 11-11-2008, 01:18 PM

[root@zcs libexec]# cat /etc/hosts

Code:

'# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1               localhost.localdomain localhost
10.0.0.250              zcs.webmail.rpost.info'

[root@zcs libexec]# cat /etc/resolv.conf

Code:

'; generated by /sbin/dhclient-script
search webmail.rpost.info
nameserver 127.0.0.1
#nameserver 207.182.225.5
#nameserver 206.126.128.2'

[root@zcs libexec]# host `hostname`

Code:

'zcs.webmail.rpost.info has address 10.0.0.250'

[root@zcs libexec]# dig webmail.rpost.info any

Code:

'; <<>> DiG 9.2.4 <<>> webmail.rpost.info any
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5223
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 13, ADDITIONAL: 1

;; QUESTION SECTION:
;webmail.rpost.info.            IN      ANY

;; ANSWER SECTION:
webmail.rpost.info.     2619    IN      MX      300 webmail.rpost.info.s8b1.psmtp.com.
webmail.rpost.info.     2619    IN      MX      400 webmail.rpost.info.s8b2.psmtp.com.
webmail.rpost.info.     2619    IN      MX      10 zcs.webmail.rpost.info.
webmail.rpost.info.     2619    IN      MX      100 webmail.rpost.info.s8a1.psmtp.com.
webmail.rpost.info.     2619    IN      MX      200 webmail.rpost.info.s8a2.psmtp.com.

;; AUTHORITY SECTION:
.                       180859  IN      NS      B.ROOT-SERVERS.NET.
.                       180859  IN      NS      C.ROOT-SERVERS.NET.
.                       180859  IN      NS      D.ROOT-SERVERS.NET.
.                       180859  IN      NS      E.ROOT-SERVERS.NET.
.                       180859  IN      NS      F.ROOT-SERVERS.NET.
.                       180859  IN      NS      G.ROOT-SERVERS.NET.
.                       180859  IN      NS      H.ROOT-SERVERS.NET.
.                       180859  IN      NS      I.ROOT-SERVERS.NET.
.                       180859  IN      NS      J.ROOT-SERVERS.NET.
.                       180859  IN      NS      K.ROOT-SERVERS.NET.
.                       180859  IN      NS      L.ROOT-SERVERS.NET.
.                       180859  IN      NS      M.ROOT-SERVERS.NET.
.                       180859  IN      NS      A.ROOT-SERVERS.NET.

;; ADDITIONAL SECTION:
zcs.webmail.rpost.info. 3600    IN      A       10.0.0.250

;; Query time: 14 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Nov 11 12:09:03 2008
;; MSG SIZE  rcvd: 452'

[root@zcs libexec]# dig webmail.rpost.info mx

Code:

'; <<>> DiG 9.2.4 <<>> webmail.rpost.info mx
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61397
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 13, ADDITIONAL: 1

;; QUESTION SECTION:
;webmail.rpost.info.            IN      MX

;; ANSWER SECTION:
webmail.rpost.info.     2611    IN      MX      300 webmail.rpost.info.s8b1.psmtp.com.
webmail.rpost.info.     2611    IN      MX      400 webmail.rpost.info.s8b2.psmtp.com.
webmail.rpost.info.     2611    IN      MX      10 zcs.webmail.rpost.info.
webmail.rpost.info.     2611    IN      MX      100 webmail.rpost.info.s8a1.psmtp.com.
webmail.rpost.info.     2611    IN      MX      200 webmail.rpost.info.s8a2.psmtp.com.

;; AUTHORITY SECTION:
.                       180851  IN      NS      A.ROOT-SERVERS.NET.
.                       180851  IN      NS      B.ROOT-SERVERS.NET.
.                       180851  IN      NS      C.ROOT-SERVERS.NET.
.                       180851  IN      NS      D.ROOT-SERVERS.NET.
.                       180851  IN      NS      E.ROOT-SERVERS.NET.
.                       180851  IN      NS      F.ROOT-SERVERS.NET.
.                       180851  IN      NS      G.ROOT-SERVERS.NET.
.                       180851  IN      NS      H.ROOT-SERVERS.NET.
.                       180851  IN      NS      I.ROOT-SERVERS.NET.
.                       180851  IN      NS      J.ROOT-SERVERS.NET.
.                       180851  IN      NS      K.ROOT-SERVERS.NET.
.                       180851  IN      NS      L.ROOT-SERVERS.NET.
.                       180851  IN      NS      M.ROOT-SERVERS.NET.

;; ADDITIONAL SECTION:
zcs.webmail.rpost.info. 3600    IN      A       10.0.0.250

;; Query time: 20 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Nov 11 12:09:11 2008
;; MSG SIZE  rcvd: 452'

Note: The /etc/hosts file did not hold the FQDN which I corrected but this does not appear to solve the installation issue (after rerun of zmsetup.pl).

phoenix · #8 (**permalink**) 11-11-2008, 01:28 PM

Quote:

Originally Posted by sharkfin1

[root@zcs libexec]# cat /etc/hosts

Code:

'# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1               localhost.localdomain localhost
10.0.0.250              zcs.webmail.rpost.info'

Note: The /etc/hosts file did not hold the FQDN which I corrected but this does not appear to solve the installation issue (after rerun of zmsetup.pl).

You have a typing error in your hosts file(?) there's an extraneous ' after '.info - the format is also incorrect. The format should be like this:

Code:

10.0.0.250  zcs.webmail.rpost.info zcs

sharkfin1 · #9 (**permalink**) 11-11-2008, 01:51 PM

I added the hostname after the FQDN although the trailing ' was due to the posting rather than in the hosts file.

I still get installation errors which are all similar to this:

ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.naming.AuthenticationException [LDAP: error code 49 - Invalid Credentials])

phoenix · #10 (**permalink**) 11-11-2008, 02:03 PM

You're not, by any chance, trying to use another LDAP instead of the one in Zimbra are you? If you're just doing a straight Zimbra install I'd recommend doing an uninstall with './install.sh -u' and making sure there's no zimbra processes running. WHen you've done that, reboot the server and please check that iptables and SElinux are disabled then install Zimbra again.

Zimbra

Downloads

Product Information

Toolbox

Why Join?