| *** nowen (~nowen@adsl-74-176-163-207.asm.bellsouth.net) has joined #wikid | 13:10 | |
| *** nowen has quit (Ping timeout: 252 seconds) | 14:16 | |
| *** nowen (~nowen@adsl-98-66-183-205.asm.bellsouth.net) has joined #wikid | 14:57 | |
| *** Ben_ (324946a2@gateway/web/freenode/ip.50.73.70.162) has joined #wikid | 17:59 | |
| Ben_ | I have a new install from VM image and the wikidctl service will not stay running..any thoughts? | 17:59 |
|---|---|---|
| nowen | did you download the iso? | 18:00 |
| nowen | what version of | 18:01 |
| nowen | WiKID? | 18:01 |
| Ben_ | yes I downloaded it | 18:08 |
| Ben_ | umm one moment | 18:08 |
| nowen | I just emailed you too. run 'netstat -anp | grep 443' | 18:09 |
| Ben_ | 3.3.10 community | 18:09 |
| Ben_ | did that and the system is not listening on the 443 | 18:09 |
| Ben_ | nor 80 | 18:09 |
| Ben_ | wikidctl status says " Stopped: WiKID services not running on localhost." this right after running wikidctl start | 18:11 |
| Ben_ | the netstat command returned me to command prompt | 18:12 |
| nowen | hmm - ok - so that's a very old version of the Community version. | 18:12 |
| Ben_ | ok | 18:12 |
| nowen | I thought you had downloaded the Enterprise ISO which is 3.4.x | 18:12 |
| Ben_ | grabbed what I thought would be easier to test.. where do I find the VM Enterprise version | 18:13 |
| Ben_ | If it works out I can pretty assure we will adopt it. | 18:14 |
| nowen | http://wikidsystems-dl.com/wikid-enterprise-3.5.0-b1328-install.iso | 18:15 |
| nowen | is the latest. create a VM for centos/rhel. use at least 2 gigs of ram. | 18:15 |
| Ben_ | giving it a try...I have a VM ready for it... | 18:16 |
| Ben_ | installing... | 18:22 |
| Ben_ | got this error before trying to install to VM " Could not allocate requested partitions: Partitioning failed: could not allocate partitions as primary partitions. Not enough space left to create partition for /." | 18:25 |
| nowen | how big a drive did you create? | 18:25 |
| Ben_ | 47 GB VM (Thick provisioning) | 18:25 |
| Ben_ | got the error before using thin provisioning. | 18:26 |
| nowen | are you using LSI scsi? | 18:27 |
| Ben_ | no VMWare Paravirtual | 18:28 |
| nowen | I don't know anything about that. our iso is based on Centos 5, I am sure you can run it on vmware | 18:28 |
| Ben_ | choices are BusLogic (not recommended for OS type) LSI Logic Parallel LSI Logic SAS, or VM ware Paravirtual | 18:29 |
| Ben_ | which do you normally use? | 18:29 |
| nowen | I use virtual box ;). use LSI | 18:29 |
| Ben_ | ok..retrying | 18:29 |
| Ben_ | side note: whats the pricing on the Enterprise version | 18:33 |
| nowen | http://www.wikidsystems.com/learn-more/financial | 18:34 |
| Ben_ | ok i see it.. | 18:34 |
| Ben_ | looks good | 18:35 |
| nowen | uh oh, too low | 18:36 |
| Ben_ | install seems to be rolling right along.. | 18:50 |
| Ben_ | haha just saw your last message | 18:51 |
| Ben_ | btw.. I plan to use WiKID as a TACACS+ server..maybe moving to some form of two factor | 18:53 |
| nowen | hmm, not radius? | 18:56 |
| Ben_ | i understood tacacs+ to be more secure...no? | 19:11 |
| Ben_ | install finished but I am missing my interfaces..hmmm | 19:11 |
| nowen | running 'wikidctl setup' should find them | 19:12 |
| nowen | if you want to do authorization in AD, for example, you have to use radius | 19:12 |
| nowen | our implementation of tacacs is a bit of a hack because we only had one opensource tool to work with, while our radius implementation is quite nice | 19:13 |
| nowen | that being said, I have been told that our tacacs implementation is great - relative | 19:13 |
| Ben_ | it did not only asked me about sit0 not eth0 or eth1 and there is no /etc/sysconfig/network-scripts/ifcfg-eth0 file??? strange | 19:15 |
| nowen | what types of ethernet devices did you specify in vmware? | 19:16 |
| Ben_ | two basic NIC | 19:16 |
| nowen | are they bridged, nat'd? | 19:16 |
| Ben_ | VM says they are connected and set to connect at power on... | 19:17 |
| Ben_ | nothing fancy at all | 19:17 |
| nowen | what are the options? | 19:17 |
| Ben_ | in vcenter? | 19:17 |
| nowen | yeah | 19:18 |
| Ben_ | when adding a virtual adapter in can be either..VMXNET3 or E1000 | 19:19 |
| Ben_ | I choose VMXNET3 for all my other VMs | 19:19 |
| nowen | hmm, which did you use? | 19:19 |
| nowen | try e1000 | 19:19 |
| *** Tiru (614b5f79@gateway/web/freenode/ip.97.75.95.121) has joined #wikid | 19:19 | |
| nowen | ;) | 19:19 |
| Ben_ | of course | 19:19 |
| Tiru | Hi Nick | 19:20 |
| nowen | Hi | 19:20 |
| Tiru | I am Tiru from Transcore. I have just sent you an email , requesting for production cert. | 19:20 |
| Ben_ | rebooting.. | 19:20 |
| nowen | Tiru: ok | 19:21 |
| nowen | Tiru: is this a PO we already have or is it on it's way? | 19:22 |
| Ben_ | during boot up I see it is bringing up interface for eth2 (E1000) but not the others...I'll changed the type on the first two NICs | 19:23 |
| Ben_ | root | 19:23 |
| Ben_ | woops | 19:23 |
| Tiru | you already have it. I think the po is generated in Feb OR March of this year. | 19:23 |
| nowen | ooh | 19:23 |
| Tiru | I didn't get a chance to install the wikid server until beginning of this week. | 19:24 |
| nowen | on it's way | 19:24 |
| Tiru | Thanks Nick. | 19:25 |
| Tiru | I have to cut and paste the text in "Install the intermediate CA" option with the passphrase , correct ? | 19:26 |
| nowen | correct | 19:28 |
| Tiru | for creating a "local host cert" , should I say '"local host" or the name of the server ? | 19:39 |
| nowen | localhost is fine | 19:39 |
| Tiru | k. | 19:40 |
| Tiru | For "Client PKCS12 Passphrase" - can I use any pass phrase ? | 19:41 |
| nowen | yes, but be sure to remember it ;) | 19:41 |
| Tiru | lol... | 19:41 |
| Tiru | quick question - do I need to network connections for the wikid server - eth0 , eth1 ? | 19:54 |
| nowen | yes | 19:55 |
| Tiru | I mean 2 NICs ? | 19:55 |
| nowen | at least one, two recommended | 19:55 |
| Tiru | I have created the wikid server with only 1 NIC for external | 19:55 |
| Tiru | do I need the second NIC for internal admin purpose ? | 19:56 |
| nowen | you may want to add another for internal | 19:56 |
| nowen | up to you, we recommend it. | 19:56 |
| Tiru | sure, Got it | 19:56 |
| nowen | you can also NAT the external ip. | 19:56 |
| nowen | be sure to use the external ip for the domain identifier | 19:56 |
| Tiru | the external NIC for the wikid server in DMZ so do I need the second for internal in non-DMZ or can I have in DMZ ? | 19:57 |
| Ben_ | working pretty good! thanks.. | 20:03 |
| nowen | good stuff | 20:03 |
| nowen | Ben_: how may users do you expect to have? | 20:03 |
| Ben_ | 20 maybe | 20:03 |
| Ben_ | less most likely | 20:04 |
| nowen | first year is on me, Ian will know why ;) | 20:04 |
| *** Ben_ has quit (Ping timeout: 245 seconds) | 20:12 | |
| *** ChanServ changed the topic to: "It is con season! Blackhat, Defcon, BSidesLV If no one is here, try the nabble forums: http://www.wikidsystems.com/support/support/wikid-forums" | 21:17 | |
| *** nowen has quit (Quit: Leaving.) | 21:19 | |
| *** johnh (48d7e303@gateway/web/freenode/ip.72.215.227.3) has joined #wikid | 23:48 | |
| johnh | Windows 7 ult, wikid 3.1.22, client setup step 7 install, blank setup shortcuts window | 23:51 |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!