| *** KORG has quit (Read error: Connection reset by peer) | 03:47 | |
| *** KORG (~kvirc@crytek.dream.net.ua) has joined #wikid | 03:47 | |
| *** KORG has quit (Read error: Connection reset by peer) | 09:25 | |
| *** KORG (~kvirc@crytek.dream.net.ua) has joined #wikid | 09:25 | |
| *** KORG has quit (Read error: Connection reset by peer) | 09:45 | |
| *** KORG (~kvirc@crytek.dream.net.ua) has joined #wikid | 09:45 | |
| *** KORG has quit (Read error: Connection reset by peer) | 09:46 | |
| *** KORG (~kvirc@crytek.dream.net.ua) has joined #wikid | 09:46 | |
| *** KORG|2 (~kvirc@crytek.dream.net.ua) has joined #wikid | 12:09 | |
| *** KORG has quit (Read error: Connection reset by peer) | 12:09 | |
| *** nowen (~nowen@50-194-249-125-static.hfc.comcastbusiness.net) has joined #wikid | 12:58 | |
| *** Mark____ (44babf6d@gateway/web/freenode/ip.68.186.191.109) has joined #wikid | 14:10 | |
| Mark____ | Good morning | 14:10 |
|---|---|---|
| Mark____ | Nick are you here? | 14:10 |
| nowen | morning | 14:10 |
| nowen | yes | 14:10 |
| Mark____ | got a question | 14:12 |
| nowen | ok | 14:12 |
| Mark____ | we have some users that we are trying to put on 2FA | 14:12 |
| Mark____ | However, when they are in the plant they have to set up there proxy settings in the client | 14:12 |
| Mark____ | to make it work | 14:12 |
| Mark____ | but when they go home they then have to remove those settings | 14:12 |
| Mark____ | any suggestions on how we can work around this? | 14:13 |
| nowen | hmm | 14:13 |
| nowen | do their laptops automatically detect the proxy for their browsers? | 14:14 |
| nowen | maybe we could auto-detect too | 14:14 |
| Mark____ | It seems that the 2FA application is unable to fully detect the IE proxy settings automatically, but if user manually enters proxy in application it works. | 14:15 |
| Mark____ | they have their browsers set to auto detect | 14:15 |
| nowen | ok - let me see what we can do to auto-detect | 14:15 |
| Mark____ | and they even entered the 2FA site as an exception under their settings but still did not work | 14:15 |
| nowen | hmm | 14:16 |
| Mark____ | it is a company we bought so not truly on our network yet | 14:16 |
| nowen | ok | 14:16 |
| Mark____ | but if you could get 2FA to auto detect that might be the best solution | 14:16 |
| nowen | yeah. let me get some feedback | 14:16 |
| Mark____ | okay thanks | 14:18 |
| *** estranger (~russ@209.183.177.118) has joined #wikid | 15:01 | |
| nowen | hi estranger | 15:08 |
| estranger | hey :) just trying out wikid figured I'd join the channel while I start my journey | 15:09 |
| nowen | good idea ;-) | 15:09 |
| estranger | think I'm going to need enterprise if I am understanding right, I want to hook in 2factor with our watchguard vpn which auths using Radius | 15:14 |
| nowen | yes, we use a 3rd party lib for radius that we can't release as open source | 15:15 |
| nowen | you can download it here http://www.wikidsystems.com/downloads/how-to-test-and-get-wikid | 15:16 |
| estranger | yup, no problem, still a heck of a lot cheaper than tokens :) | 15:16 |
| estranger | yeah i got the iso, about to fire it up on vcenter | 15:16 |
| nowen | the smart phone tokens also use commercial libs for encryption | 15:16 |
| estranger | trying to fire it up at least, if people would stop bugging me at work :) | 15:17 |
| nowen | ;-) | 15:18 |
| estranger | I miss a step on the ISO? tomcat blows up starting with: org.postgresql.util.PSQLException: FATAL: role "tomcat" does not exist | 15:57 |
| nowen | did you run 'wikidctl setup'? | 15:58 |
| estranger | yup.. that stepped through everything, built the cert.. I didnt config sit0, just eth0, is the only thing I could think of? | 15:58 |
| nowen | hmm | 15:59 |
| nowen | that should be it | 15:59 |
| estranger | It's a fresh setup, ill just blow it out, try again... if it does the same thing I'll install with packages like I did with the CE earlier | 16:00 |
| nowen | are you logged in as root? | 16:00 |
| estranger | yup | 16:01 |
| estranger | oh.. not sure if this is messing up something weird, I still have my VM set to "Debian 5" not "CentOS 5". Let me fix that and reinstall before going down this rabbit hole | 16:02 |
| nowen | ok | 16:02 |
| estranger | same deal.. did I maybe grab the wrong iso version? wikid-enterprise-3.5.0-b1472-install.iso | 16:17 |
| nowen | no, that should be fine | 16:17 |
| nowen | let me boot it up and see | 16:17 |
| nowen | at the boot prompt, you just hit enter, correct? | 16:18 |
| estranger | correct | 16:19 |
| estranger | boot to the disk, hit enter.. it does it's thing, login root/wikid and run wikidctl setup, plug in my network info and gen the cert.. wikidctl start .. it starts .. going to the admin page gives a 404 and i get that in the tomcat logs | 16:20 |
| nowen | in catalina.out? | 16:20 |
| estranger | catalina.err actually .. .out was blank | 16:20 |
| estranger | http://pastebin.com/LFwv3a1N | 16:21 |
| estranger | i do see a chown error on /opt/WiKiD/log/*.pid when it does the Applying Cumulative schema updates after the setup | 16:25 |
| estranger | can't cut and paste out of the damn vcenter local console where I have it | 16:25 |
| estranger | I ignored it at first assuming it's just because there is no pid file.. but it IS relating to the schema so maybe it's more than that | 16:26 |
| nowen | working for me. | 16:26 |
| estranger | heh ok, ill just install w/ packages.. i have no idea why mine isn't | 16:27 |
| nowen | for vmware, I think you need legacy ethernet and lsci scsi | 16:27 |
| nowen | seems unlikely | 16:28 |
| estranger | yup, got those.. no biggie | 16:28 |
| nowen | well, it would be better to be on centos 6 | 16:29 |
| nowen | we use 5 | 16:29 |
| nowen | do you have a standard? | 16:29 |
| estranger | we use debian for most internal stuff, but I have no issue running centos6 on this if you say it would be best | 16:29 |
| nowen | most likely, it's our standard ;-) | 16:30 |
| estranger | centos6 it is, then :) 32 or 64? | 16:30 |
| nowen | your call, but I would say 64 | 16:31 |
| nowen | how many users will you have? | 16:31 |
| nowen | I ask b.c you might see better performance with oracle java | 16:32 |
| estranger | like 100 users | 16:35 |
| nowen | ok, well, your choice. that won't stress anything. | 16:35 |
| estranger | yeah I don't think it will be too intensive, prob just using it for VPNing in at least at first | 16:36 |
| estranger | and yeah I'll go 64, only asked because I noticed the ISO was 32 | 16:44 |
| estranger | for what it's worth, centos6 + rpms installed just fine | 20:31 |
| nowen | still a mystery about the iso. hmm | 20:33 |
| estranger | yeah.. when I ran the setup w/ the RPMs the screen scrolled all the UPDATE/ALTER/ect for the DB, that never happened on the ISO for me | 20:34 |
| estranger | for ADRegister, I can login, but where do I get the Token Registration Code? I can register a device w/ wikidtoken.jar, but using that reg code doesn't seem to be the right thing I am looking for? | 21:45 |
| nowen | it should be | 21:45 |
| nowen | do you get an error? | 21:46 |
| estranger | nevermind :) ID-10T error typoing the domaincode in the jsp | 21:47 |
| nowen | lol | 21:47 |
| estranger | works like a charm | 21:47 |
| estranger | awesome | 21:48 |
| nowen | I gotta run pick up my kid. | 21:50 |
| nowen | I'll be in again tomorrow | 21:50 |
| *** nowen has quit (Quit: Leaving.) | 21:52 | |
| *** Mark____ has quit (Ping timeout: 272 seconds) | 22:41 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!