Created
October 30, 2018 23:55
-
-
Save gordyt/5e428d3759263f5ca1959140caf55a38 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ZMC-LDAP Entrypoint | |
Starting as zmc-ldap-0.ldap-svc.default.svc.cluster.local | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
Waiting for DNS resolution for 'zmc-ldap-0.ldap-svc' | |
execute_as_root: mkdir -p /opt/zimbra/data/ldap/config /opt/zimbra/data/ldap/mdb /opt/zimbra/data/ldap/mdb/db /opt/zimbra/data/ldap/state /var/run/ldap | |
execute_as_root: chmod +rwx /opt/zimbra/data/ldap/config /opt/zimbra/data/ldap/mdb /opt/zimbra/data/ldap/mdb/db /opt/zimbra/data/ldap/state /var/run/ldap | |
execute_as_root: rsync -a --delete /opt/zimbra/common/etc/openldap/zimbra/config/ /opt/zimbra/data/ldap/config | |
execute_as_root: chown -R zimbra:zimbra /opt/zimbra/data/ldap/config /opt/zimbra/data/ldap/mdb /opt/zimbra/data/ldap/mdb/db /opt/zimbra/data/ldap/state /var/run/ldap | |
execute_as_root: find /opt/zimbra/data/ldap/config -name *.ldif -exec chmod 600 {} ; | |
execute_as_root: sed -i -e s/\/opt\/zimbra\/data\/ldap\/state\/run/\/var\/run\/ldap/g /opt/zimbra/data/ldap/config/cn=config.ldif | |
execute_as_zimbra: /opt/zimbra/libexec/zmldapschema | |
Looking for LDAP installation...succeeded | |
Installing core schema... | |
Installing cosine schema... | |
Installing inetOrgPerson schema... | |
Installing zimbra schema... | |
Installing amavis schema... | |
Installing dyngroup schema... | |
Installing OpenDKIM schema... | |
Installing local configuration: {'zimbra_ldap_password': 'gd4twhbxtpe5qrw', 'ssl_allow_mismatched_certs': 'true', 'ldap_port': 389, 'zimbra_zmprov_default_to_ldap': 'true', 'ldap_root_password': 'f8c6i8hl9dfzk3u', 'ssl_allow_untrusted_certs': 'true', 'zimbra_user': 'zimbra', 'ldap_host': 'zmc-ldap-0.ldap-svc', 'ldap_is_master': 'true', 'mailboxd_truststore': '/opt/zimbra/common/lib/jvm/java/jre/lib/security/cacerts', 'ldap_url': 'ldap://zmc-ldap-0.ldap-svc:389', 'zimbra_java_home': '/opt/zimbra/common/lib/jvm/java', 'ldap_ldapi_socket_file': '/var/run/ldap/ldapi', 'zimbra_require_interprocess_security': 1, 'zimbra_server_hostname': 'zmc-ldap-0.ldap-svc', 'ldap_starttls_supported': 1, 'zimbra_gid': 999, 'zimbra_uid': 999, 'ldap_master_url': 'ldap://zmc-ldap-0.ldap-svc:389', 'mailboxd_truststore_password': 'changeit'} | |
execute_as_zimbra: /opt/zimbra/bin/zmlocalconfig -f -e zimbra_ldap_password=gd4twhbxtpe5qrw ssl_allow_mismatched_certs=true ldap_port=389 zimbra_zmprov_default_to_ldap=true ldap_root_password=f8c6i8hl9dfzk3u ssl_allow_untrusted_certs=true zimbra_user=zimbra ldap_host=zmc-ldap-0.ldap-svc ldap_is_master=true mailboxd_truststore=/opt/zimbra/common/lib/jvm/java/jre/lib/security/cacerts ldap_url=ldap://zmc-ldap-0.ldap-svc:389 zimbra_java_home=/opt/zimbra/common/lib/jvm/java ldap_ldapi_socket_file=/var/run/ldap/ldapi zimbra_require_interprocess_security=1 zimbra_server_hostname=zmc-ldap-0.ldap-svc ldap_starttls_supported=1 zimbra_gid=999 zimbra_uid=999 ldap_master_url=ldap://zmc-ldap-0.ldap-svc:389 mailboxd_truststore_password=changeit | |
Installing key: /var/run/secrets/ca.key => /opt/zimbra/conf/ca/ca.key mode=384 | |
Installing key: /var/run/secrets/ca.pem => /opt/zimbra/conf/ca/ca.pem mode=420 | |
Installing key: /var/run/secrets/ldap-0.key => /opt/zimbra/conf/slapd.key mode=384 | |
Installing key: /var/run/secrets/ldap-0.crt => /opt/zimbra/conf/slapd.crt mode=420 | |
Hashing the certificates... | |
execute_as_zimbra: c_rehash /opt/zimbra/conf/ca | |
Doing /opt/zimbra/conf/ca | |
execute_as_zimbra: /opt/zimbra/common/bin/keytool -delete -alias my_ca -keystore /opt/zimbra/common/lib/jvm/java/jre/lib/security/cacerts -storepass changeit | |
keytool error: java.lang.Exception: Alias <my_ca> does not exist | |
execute_as_zimbra: /opt/zimbra/common/bin/keytool -import -alias my_ca -noprompt -file /opt/zimbra/conf/ca/ca.pem -keystore /opt/zimbra/common/lib/jvm/java/jre/lib/security/cacerts -storepass changeit | |
Certificate was added to keystore | |
updateRsyslogd: Updating /etc/rsyslog.d/50-default.conf...done. | |
execute_as_zimbra: /opt/zimbra/libexec/zmldapinit f8c6i8hl9dfzk3u gd4twhbxtpe5qrw | |
Configuring primary master: 'zmc-ldap-0' | |
Installing global configuration: OrderedDict([('zimbraSpamIsNotSpamAccount', 'ham.vrppn9tn@zmc.com'), ('zimbraDefaultDomainName', 'zmc.com'), ('zimbraIndexURL', 'solrcloud:zk-0.zk:2181,zk-1.zk:2181,zk-2.zk:2181'), ('zimbraEventBackendURL', 'solrcloud:zk-0.zk:2181,zk-1.zk:2181,zk-2.zk:2181'), ('zimbraAmavisQuarantineAccount', 'ham.vrppn9tn@zmc.com'), ('+zimbraReverseProxyUpstreamEwsServers', 'mailbox-svc'), ('zimbraSpamIsSpamAccount', 'spam.mnzg4620@zmc.com'), ('+zimbraReverseProxyAvailableLookupTargets', 'mailbox-svc'), ('+zimbraReverseProxyUpstreamLoginServers', 'mailbox-svc')]) | |
execute_as_zimbra: /opt/zimbra/bin/zmprov -r -m -l mcf zimbraSpamIsNotSpamAccount ham.vrppn9tn@zmc.com zimbraDefaultDomainName zmc.com zimbraIndexURL solrcloud:zk-0.zk:2181,zk-1.zk:2181,zk-2.zk:2181 zimbraEventBackendURL solrcloud:zk-0.zk:2181,zk-1.zk:2181,zk-2.zk:2181 zimbraAmavisQuarantineAccount ham.vrppn9tn@zmc.com +zimbraReverseProxyUpstreamEwsServers mailbox-svc zimbraSpamIsSpamAccount spam.mnzg4620@zmc.com +zimbraReverseProxyAvailableLookupTargets mailbox-svc +zimbraReverseProxyUpstreamLoginServers mailbox-svc | |
Installing global configuration: {'zimbraSSLDHParam': '/opt/zimbra/conf/dhparam.pem.zcs', 'zimbraEventIndexReplicationFactor': '2', 'zimbraRemoteImapServerEnabled': 'TRUE', 'zimbraComponentAvailable': '', 'zimbraHttpNumThreads': '300', 'zimbraSkinLogoURL': 'http://www.zimbra.com', 'zimbraRemoteImapSSLServerEnabled': 'TRUE', 'zimbraMtaLmtpHostLookup': 'native', 'zimbraSolrReplicationFactor': '2', 'zimbraLmtpNumThreads': '30'} | |
execute_as_zimbra: /opt/zimbra/bin/zmprov -r -m -l mcf zimbraSSLDHParam /opt/zimbra/conf/dhparam.pem.zcs zimbraEventIndexReplicationFactor 2 zimbraRemoteImapServerEnabled TRUE zimbraComponentAvailable zimbraHttpNumThreads 300 zimbraSkinLogoURL http://www.zimbra.com zimbraRemoteImapSSLServerEnabled TRUE zimbraMtaLmtpHostLookup native zimbraSolrReplicationFactor 2 zimbraLmtpNumThreads 30 | |
Installing global configuration: {'zimbraCertAuthorityCertSelfSigned': '-----BEGIN CERTIFICATE-----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\niw==\n-----END CERTIFICATE-----'} | |
execute_as_zimbra: /opt/zimbra/bin/zmprov -r -m -l mcf zimbraCertAuthorityCertSelfSigned -----BEGIN CERTIFICATE----- | |
MIIDXTCCAkWgAwIBAgIJAP6M9BLlHRo8MA0GCSqGSIb3DQEBCwUAMEUxCzAJBgNV | |
BAoMAkNBMSQwIgYDVQQLDBtaaW1icmEgQ29sbGFib3JhdGlvbiBTZXJ2ZXIxEDAO | |
BgNVBAMMB3ptYy5jb20wHhcNMTgxMDMwMjM0MjI5WhcNMjMxMDI5MjM0MjI5WjBF | |
MQswCQYDVQQKDAJDQTEkMCIGA1UECwwbWmltYnJhIENvbGxhYm9yYXRpb24gU2Vy | |
dmVyMRAwDgYDVQQDDAd6bWMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB | |
CgKCAQEAu1JTN84cPHsOO4ZEySeLzAwlP9iKd+NU0kREpCOQk0Iacu+s0BmZR3l5 | |
qLfpsOfz+eSQBf5RssPve0CU9k0XVgDFT4lc2d6ic0shss9RCh8dUCn6wW4Rxf90 | |
gep1VjuL0IPuOWETiTvOOahbyKA5fllscjdV27AiClfMvnbHni/eanMb3fYURbxu | |
G8/jIyBPd5GR5Ckwedgwlr76IWdrTOu1V7Ya3lnLuNJvvX9s7dCafQAsWlnHPWln | |
RYIPJdzCinGJUA8T9XRBe5V2fBnBt/rkRMIYO/nyhKDr21Avq1RPZMeXlWXIp992 | |
ZJGhw01EZkspvPQYSO7CKK484TYV/wIDAQABo1AwTjAdBgNVHQ4EFgQUsyHaKrzA | |
dX9oUtEuHPoJ6G0zEOQwHwYDVR0jBBgwFoAUsyHaKrzAdX9oUtEuHPoJ6G0zEOQw | |
DAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAQEACl60MWPoidPCJusDagmq | |
ZA2uhiQsblY42WhLuiah9kloQKYdgoNFsz/6kPi3US8InzjE3xl1ZsIDrRhALbne | |
Npwnd2FvuCR0oB5QauZxyroqlxPlPSQj10e2GOqq2q1xRpwhmwhIuJE1mP3f365t | |
c5yg/w+YJEZgBmTaohS59PeSGEF8Qm+5sadOJD8nLQ5dECstUz8fyXfCW7cp2Adn | |
dG2VKlPBmYepRWlrm8aUVr7bh0H4jvLXN4X0sTUgimbhm/BRzketh5pBG3EfslPH | |
jSo7AfHwbH/JPnRbYhqgxPTI/+y5V5X6oLjwggkGsbKXp4zczrR0QwD/dqT8s4IG | |
iw== | |
-----END CERTIFICATE----- | |
Installing global configuration: {'zimbraCertAuthorityKeySelfSigned': '-----BEGIN RSA PRIVATE KEY-----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\nQWwSrdKx1cXSgIn1fP60wqJM69w27Azecfm25Vm8h4ahn4YD55Dd\n-----END RSA PRIVATE KEY-----'} | |
execute_as_zimbra: /opt/zimbra/bin/zmprov -r -m -l mcf zimbraCertAuthorityKeySelfSigned -----BEGIN RSA PRIVATE KEY----- | |
MIIEowIBAAKCAQEAu1JTN84cPHsOO4ZEySeLzAwlP9iKd+NU0kREpCOQk0Iacu+s | |
0BmZR3l5qLfpsOfz+eSQBf5RssPve0CU9k0XVgDFT4lc2d6ic0shss9RCh8dUCn6 | |
wW4Rxf90gep1VjuL0IPuOWETiTvOOahbyKA5fllscjdV27AiClfMvnbHni/eanMb | |
3fYURbxuG8/jIyBPd5GR5Ckwedgwlr76IWdrTOu1V7Ya3lnLuNJvvX9s7dCafQAs | |
WlnHPWlnRYIPJdzCinGJUA8T9XRBe5V2fBnBt/rkRMIYO/nyhKDr21Avq1RPZMeX | |
lWXIp992ZJGhw01EZkspvPQYSO7CKK484TYV/wIDAQABAoIBABhaM4dlvDYAqXED | |
m52rDnmQeqc6N4Yuf7B2P5Y3KWx7g4S9s/G54jtwh2hvwGnHPeiW1kJxNZ3P6ypS | |
0wrSKt57aytT6EZKs0PZ2J+uZBK0yNLLIlZTQOxEsZjSKj7zrtGE1UuQW0HUDJNi | |
V8xVSCQs6/RNTVQqKcK+d1eriXf++CWvAn0dnvh3iYyA5yuiTvje0SQspjXo/wPZ | |
EvO/az8V+4K2MwE4NGsJcDzt/XCEoXTyO3eC17uA0YsLD1En97G5AT9qDhPQ2Hqu | |
z2YCh0cdQfTrXlnGq6UfzNiFX2ruqkT+tFosRqDWcq1GYvEYjy5T5sQGArHuo0B8 | |
N8PaW8ECgYEA5Ji15fx1QpWxppLvvER0Xja8BFjYYTHOKEkVRD3KmvnbNVUpPbLJ | |
+dOknyNHSPY59bGQenEnEk/P8SQ2AQF7tKm0ISeT5t0/2kBWsd9gX9lwvdo3uLeR | |
QDNDY4JXspzKCjq8b0Wjdn1y/Ugygd1B454RyhH+gb0CAPEEK6CPizsCgYEA0cby | |
kZSUaDhhQQsV4rUKz/xkwZ2mjVdycqTqpeEjNsT3Lr396LnEiHu37rLKdUJIdlrU | |
ZmFvyO3SwnQWnvY/nc/kf7PMvSS8kTDuLf4Es4wx5mktuvIcGB+BDItiA+X5aGO0 | |
V2YYWfHIbmwk8nuxeCHKpdwXwol7JEdN/vtbzA0CgYAFXVgXd59A2sZ6hERABNM+ | |
SsaKy5L4ZPTTmTN4kIKqtGZikAcRvZpj1IWufmNz4ONnUq1zUih6k4jrvc/OojxG | |
9xyVEpqz9klDU/M05WsblLzCl9Zq7VPpT8qrESoBtRBAwTQe4GF/rF4Ad6tHxOuA | |
7fq45Uc1wDvFzeItK+1ydQKBgQDOwjm+xyTm+/rPMu/lPO9lQ6zDMHFCChiham5k | |
BFzC1KuUhGpIASD2LIqDV/E4VZY6IRgLuKmG7vC1+9l339mf35GlVD/NhPHeYM3A | |
wwc7OEjOgogyJAMQu6xkAtUeZoLGIs9S/SuvKyGTxD8+SDAI6bVkeGNquDqI7Uaw | |
tGor2QKBgHR9Tl+1ydXkZrBqzqvJQwOGRKtMEZa8xxAAsEbvAS/R7TWjEI+PaLeR | |
pelTuF5C13JTxL8h3jVvrHi+jDk2OtDisDQEvSqS+sh6hmrB/gZScamlge9lbVih | |
QWwSrdKx1cXSgIn1fP60wqJM69w27Azecfm25Vm8h4ahn4YD55Dd | |
-----END RSA PRIVATE KEY----- | |
execute_as_zimbra: /opt/zimbra/bin/ldap start | |
Failed to start slapd. Attempting debug start to determine error. | |
5bd8ecde daemon: bind(7) failed errno=98 (Address already in use) | |
5bd8ecde slap_open_listener: failed on ldap://zmc-ldap-0.ldap-svc:389 | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This was with clean deployment, including deleting all old PV/PVC's and doing
make clean
andmake initialize
beforemake up
.