| *** perestrelka has quit (Read error: Operation timed out) | 01:00 | |
| *** perestrelka (~vladdy@194.242.5.47) has joined #wikid | 01:03 | |
| *** alamarca (~alamarca@201.246.71.78) has joined #wikid | 13:28 | |
| *** nowen (~nowen@adsl-98-66-164-120.asm.bellsouth.net) has joined #wikid | 14:23 | |
| nowen | morning all | 14:24 |
|---|---|---|
| *** esoteric (43840c45@gateway/web/freenode/ip.67.132.12.69) has joined #wikid | 14:46 | |
| alamarca | hi | 14:53 |
| nowen | morning alamarca | 14:56 |
| esoteric | morning | 14:58 |
| nowen | hello | 15:02 |
| *** nowen1 (~nowen@adsl-74-176-209-220.asm.bellsouth.net) has joined #wikid | 15:05 | |
| nowen1 | hmm. | 15:05 |
| *** nowen has quit (Ping timeout: 264 seconds) | 15:07 | |
| *** nowen1 is now known as nowen | 15:11 | |
| nowen | ahh better | 15:11 |
| * esoteric cheers | 15:12 | |
| nowen | apparently AT&T doesn't like me downloading backtrack 5 | 15:13 |
| esoteric | ha backtrack is sick | 15:13 |
| esoteric | got it on my tumbdrive | 15:13 |
| nowen | i haven't used it before. I'm hoping to make some time | 15:13 |
| esoteric | when i moved into my old apt it was like a 2 week wait to get my internet setup all i had in my apt at the time was my bed and laptop | 15:14 |
| esoteric | cracked 3 WEPs and was good until time warner came :P | 15:14 |
| nowen | that would make time | 15:14 |
| esoteric | nowen: so I am still running into that issue with replication | 15:28 |
| nowen | esoteric: refresh my memory? | 15:28 |
| esoteric | the wauth listener is not starting | 15:28 |
| esoteric | on the primary | 15:29 |
| esoteric | with replication disabled the services start up fune | 15:29 |
| esoteric | fine* | 15:29 |
| esoteric | It appears your passphrase was incorrect. This is the most likely cause of the failure. | 15:30 |
| esoteric | my passphrase is fine ive been using the same one | 15:30 |
| nowen | and does 'netstat -anp | grep 8388' show it running or not? | 15:31 |
| esoteric | nah only in nonreplication | 15:32 |
| nowen | not sure if we have done this, but can you change /etc/WiKID/log4j.properties to this: http://pastebin.com/q0QFmJ3J | 15:32 |
| nowen | that will put all the logs into /opt/WiKID/log/ and into the WiKIDAdmin logs | 15:32 |
| esoteric | okay | 15:33 |
| nowen | there may also be something in /opt/WiKID/tomcat/logs/catalina.out | 15:33 |
| esoteric | 0 [main] DEBUG com.wikidsystems.server.WikidIPCListener - Starting IPC thread. 10 [main] DEBUG com.wikidsystems.server.wAuth - Started IPC Listener. 11 [main] DEBUG com.wikidsystems.server.wAuth - Registered callback for IPC. 29 [main] ERROR com.wikidsystems.server.wAuth - SQL error during initialization. Quitting. org.postgresql.util.PSQLException: Connection refused. Check that the hostname and port are correct and tha | 15:36 |
| esoteric | god thats ugly one sec | 15:36 |
| esoteric | http://pastebin.com/vW0GjyQL | 15:36 |
| esoteric | thats in wauth.log | 15:36 |
| nowen | ok | 15:38 |
| nowen | what port is postgres listening on? on the master? | 15:38 |
| esoteric | id assume the default | 15:39 |
| esoteric | as I used the vm | 15:39 |
| nowen | oh, yes. It's just that it is supposed to change when you set up replication, try 'netstat -anp | grep 543' | 15:40 |
| nowen | should show a bunch of stuff | 15:40 |
| nowen | but not 5432 | 15:40 |
| esoteric | http://pastebin.com/ZsWmh91p | 15:40 |
| esoteric | no 5432 | 15:41 |
| esoteric | 5434 it looks like | 15:41 |
| nowen | ok , run 'locate postgresql.conf' | 15:41 |
| esoteric | there are 5 | 15:42 |
| nowen | oh | 15:42 |
| nowen | that seems like 3 extra ;) | 15:42 |
| esoteric | is the one we want i think | 15:42 |
| esoteric | there are a bunch of templates in opt/wikid/conf | 15:43 |
| esoteric | and then a sample one that comes with pgsql | 15:43 |
| esoteric | and then the main one, and a .pre-wikid | 15:44 |
| esoteric | http://pastebin.com/b9fxdTHp | 15:44 |
| nowen | ok, run 'diff /opt/WiKID/conf/templates/postgresql.conf /var/lib/pgsql/data/postgresql.conf' | 15:45 |
| esoteric | http://pastebin.com/mi9x7RR3 | 15:46 |
| nowen | ok: 'cp /var/lib/pgsql/data/postgresql.conf /var/lib/pgsql/data/postgresql.conf.old' | 15:47 |
| nowen | and 'cp /opt/WiKID/conf/templates/postgresql.conf /var/lib/pgsql/data/postgresql.conf' | 15:47 |
| nowen | and try a restart | 15:47 |
| esoteric | o.O it's not prompting me for my password | 15:49 |
| esoteric | Starting Logger service...Database listener not available! Logger NOT started! | 15:49 |
| esoteric | Starting TimeCop service...Database listener not available! Timecop NOT started! | 15:49 |
| nowen | hmm, so I broke worser | 15:50 |
| nowen | you know, let's upgrade via rpm. that should overwrite the postgresql.conf. and then we can walk thru replication setup | 15:51 |
| esoteric | kk | 15:52 |
| nowen | I assume you haven't upgraded yet? | 15:52 |
| esoteric | nah | 15:52 |
| esoteric | let me find the rpm, unless you have the link on ya | 15:52 |
| nowen | ok, you probably need to run 'yum update sudo | 15:52 |
| nowen | I have a link | 15:52 |
| nowen | http://wiikidsystems-dl.com/wikid-server-enterprise-3.4.87.b823-1.noarch.rpm | 15:53 |
| esoteric | dont normally use cent we usually use sles | 15:53 |
| nowen | understood | 15:53 |
| esoteric | and this box is locked down so i dont think i can hit the repos | 15:54 |
| nowen | ok. you can always download the iso and do a local updte | 15:54 |
| esoteric | kk | 15:55 |
| esoteric | do i need that for the pgupdate? | 15:55 |
| nowen | not sure. I think that the latest rpm requires sudo > 1.7 | 15:55 |
| nowen | just try it and if you need the iso, I can also give you that link | 15:56 |
| esoteric | okay | 15:56 |
| esoteric | fucking capital U youve got to be kidding me rpm o.O | 15:57 |
| esoteric | installed | 15:58 |
| esoteric | er upgraded rather | 15:59 |
| nowen | cool | 15:59 |
| esoteric | i assume i should do this on my secondary as well | 15:59 |
| nowen | yes | 15:59 |
| esoteric | primary done secondary running | 16:00 |
| nowen | ohhh, I bet this fixes it | 16:00 |
| nowen | this was a bug | 16:00 |
| nowen | I may be slow but at least I have a bad memory | 16:00 |
| esoteric | both are done | 16:01 |
| nowen | ok - one more thing | 16:02 |
| nowen | http://wikidsystems-dl.com/wikid-utilities-3.0.9-1.i386.rpm | 16:02 |
| nowen | on both again | 16:02 |
| esoteric | installed | 16:05 |
| esoteric | er upgraded o.O | 16:05 |
| nowen | ok now give it a whirl | 16:05 |
| esoteric | i assme my old dbs and shit are in place | 16:05 |
| nowen | yes | 16:06 |
| esoteric | so i can just start up secondary then primary | 16:06 |
| nowen | yes | 16:06 |
| esoteric | one seccccccc | 16:08 |
| esoteric | whoops think i boned my vm | 16:09 |
| nowen | what happened? | 16:09 |
| esoteric | be being dumb and trying to go fast :P | 16:12 |
| nowen | hehe | 16:12 |
| esoteric | what is the default gateway() y | 16:12 |
| esoteric | ... y is not a gateway | 16:13 |
| esoteric | lol | 16:13 |
| nowen | that will slow down the networking for sure | 16:13 |
| esoteric | *face palm* | 16:13 |
| esoteric | awesome | 16:13 |
| esoteric | looks good | 16:14 |
| nowen | yes, sorry. we need to update the vmware image | 16:14 |
| esoteric | and port it to sles :D | 16:14 |
| nowen | or maybe just make people use the iso | 16:14 |
| nowen | hehe maybe ;) | 16:14 |
| esoteric | :P | 16:14 |
| nowen | we just released a .deb so we are getting better at that | 16:14 |
| esoteric | nice | 16:15 |
| esoteric | my personal hosts are debian | 16:15 |
| esoteric | I really appreciate your help nowen was fairly painless :P | 16:15 |
| nowen | tested on ubuntu | 16:15 |
| esoteric | sweet i dont even know what version they are on now o.O | 16:16 |
| esoteric | now i need to test shit | 16:16 |
| nowen | yes. check out example.jsp. | 16:17 |
| nowen | will you be using radius? is this for vpn? | 16:17 |
| esoteric | we are still testing but yes it will be with vpn and radius i believe | 16:18 |
| nowen | don't turn on ldap if you don't need it. | 16:19 |
| esoteric | kk | 16:19 |
| nowen | a bit of a hog | 16:19 |
| esoteric | we are authorizing through ad | 16:19 |
| esoteric | but it is just checking that the username exists | 16:19 |
| nowen | IAS or NPS? | 16:19 |
| esoteric | i have no idea | 16:20 |
| nowen | is that already configured? | 16:20 |
| esoteric | yes | 16:20 |
| nowen | 2008 == nps | 16:20 |
| esoteric | i believe our current ad env is 2003 | 16:20 |
| esoteric | but i could be wrong | 16:20 |
| nowen | http://www.wikidsystems.com/support/wikid-support-center/how-to/how-to-configure-ias-to-support-two-factor-authentication/?searchterm=ias | 16:21 |
| nowen | also: http://www.wikidsystems.com/support/wikid-support-center/installation-how-tos/how-to-let-users-add-themselves-using-ad-credentials | 16:21 |
| nowen | users can be added that way - ie self-registration based on existing trusted creds or pre-registered | 16:21 |
| nowen | how many users will you have? | 16:21 |
| esoteric | im not sure | 16:23 |
| nowen | you can also add them manually | 16:23 |
| esoteric | yea that is what we will be doing | 16:23 |
| nowen | but if you have a lot... | 16:23 |
| esoteric | as we will be testing with a small sub set of users | 16:24 |
| esoteric | stupid mobile hot spot device | 16:30 |
| esoteric | lunch time laters | 16:31 |
| nowen | later | 16:33 |
| *** Adi_ (7d15f1a6@gateway/web/freenode/ip.125.21.241.166) has joined #wikid | 19:50 | |
| Adi_ | hey guys can anyone provide me info on how to intgerate radius server with wikid enterprise ? | 19:52 |
| nowen | sure | 19:52 |
| nowen | Adi_: what is the issue? | 19:58 |
| Adi_ | well we are testing wikid enterprise and so i need to know how and where to put in the radius part | 19:59 |
| Adi_ | should the radius package be on the same server hosting wikid enterprise? | 20:00 |
| nowen | what are you trying to do? is this for VPN access? | 20:00 |
| nowen | you don't necessarily need a radius server | 20:01 |
| Adi_ | ok let me rephrase | 20:01 |
| Adi_ | what is the part that totally needs Radius? | 20:02 |
| nowen | if your VPN talks radius, it can talk directly to WiKID via radius | 20:02 |
| nowen | the WiKID server can process radius requests from a radius-capable device such as most vpns or from a radius server such as freeradius or IAS | 20:03 |
| Adi_ | ok | 20:03 |
| nowen | in either case, you enter the vpn/radius server ip address and shared secret as a Network client in wikid | 20:04 |
| nowen | so, that's why I'm curious as to what you are trying to do | 20:04 |
| Adi_ | basically we are trying to implemet it in our internal network | 20:05 |
| Adi_ | some people would also need vpn access | 20:06 |
| nowen | what do you mean by internal network? windows login? | 20:08 |
| Adi_ | yes | 20:08 |
| nowen | does windows login now support radius? | 20:09 |
| Adi_ | no not currently | 20:09 |
| nowen | have you checked out pgina? | 20:09 |
| Adi_ | sorry no | 20:10 |
| nowen | pgina is an open source gina replacement. it supports radius | 20:10 |
| Adi_ | ok thats cool | 20:10 |
| Adi_ | we are basically trying to integrate with our AD | 20:11 |
| Adi_ | the wikid server | 20:12 |
| nowen | the key thing to consider is your authentication protocol. if it works with radius, then you are golden | 20:12 |
| Adi_ | ok | 20:13 |
| Adi_ | ok so just found out that we are using NTLM which is default for AD | 20:20 |
| Adi_ | does NTLM work with Radius? | 20:21 |
| nowen | not to my knowledge | 20:21 |
| nowen | you can check with MS and see what the options are | 20:21 |
| Adi_ | what do we have to do if we have to integrate these two | 20:21 |
| Adi_ | ? | 20:22 |
| nowen | maybe with their IAS radius server? | 20:22 |
| Adi_ | ok ....thanks a bunch @nowen | 20:22 |
| nowen | well, first check with Microsoft. it is their software. the only thing I know it to replace the gina | 20:22 |
| nowen | Adi_: http://www.pgina.org/index.php/Main_Page | 20:41 |
| *** alamarca has quit (Ping timeout: 260 seconds) | 20:46 | |
| Adi_ | Hi Guys....I am back with a few more questions :) | 21:22 |
| nowen | ok | 21:22 |
| *** esoteric has quit (Ping timeout: 252 seconds) | 21:23 | |
| Adi_ | i have a windows machine on which i want to configure the wikid client....do you have quick and dirty to do the work on a client m/c | 21:23 |
| Adi_ | does the client machine only needs the token? | 21:25 |
| nowen | yes | 21:25 |
| Adi_ | ok where can i download it from | 21:25 |
| Adi_ | for the client | 21:25 |
| nowen | http://www.wikidsystems.com/downloads/token-clients | 21:25 |
| Adi_ | thanks nowen | 21:27 |
| nowen | no | 21:28 |
| nowen | problem :) | 21:28 |
| *** alamarca (~alamarca@201.246.71.78) has joined #wikid | 22:01 | |
| *** esoteric (43840c45@gateway/web/freenode/ip.67.132.12.69) has joined #wikid | 22:04 | |
| *** esoteric has quit (Quit: Page closed) | 22:14 | |
| *** alamarca has quit (Ping timeout: 248 seconds) | 22:24 | |
| *** Adi_ has quit (Quit: Page closed) | 22:27 | |
| *** nowen has parted #wikid (None) | 22:27 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!