Forums

Resolved
0 votes
Hi,

On a fresh install with :
- Flexshare
- Web Server
- FTP server
- Users
- Groups
- Directory server
- Account Manager

No firewall etc...

I can access share from Windows share. I can connect to webgui with the user.
But I've got :
- Error 530 (530 Login incorrect) on FTP either connecting to flexshare port (21) or homeshare (2121) or secured port 990
- Error 403 (You don't have permission to access /flexshare/xxx on this server.) port (80)

I've checked that :
- User as FTP write
- User belongs to the group of the share
- Flexshare is enabled
- FTP is enabled for this flexshare
- HTTP is enabled for this flexshare without SSL required

What did I miss ?

User do not have access to ssh.
Sunday, February 22 2015, 10:33 PM
Share this post:
Responses (7)
  • Accepted Answer

    Thursday, February 26 2015, 09:02 AM - #Permalink
    Resolved
    0 votes
    Yes that my situation.

    It's ok now. Near an old "souvenir"...
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, February 25 2015, 09:03 PM - #Permalink
    Resolved
    0 votes
    Sorry for your troubles

    Seems there was an issue with the app-network which affects those in standalone mode with two network interfaces defined
    http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,68426/limit,10/limitstart,30/#68493
    The reply is currently minimized Show
  • Accepted Answer

    BENSIALI
    BENSIALI
    Offline
    Tuesday, February 24 2015, 10:48 PM - #Permalink
    Resolved
    0 votes
    I have to create a new account because lockout from the original one. See this thread

    Well I reinstall on a new disk (test disk) ClearOS 6.5 and everything was OK.
    So I decided to re-install on the right disk ClearOS 6.6 => Failed after install and reboot no screen.
    I give up.

    I re-install ClearOS 6.5 and flexshare is OK. This was a failure in the LDAP initialisation.
    The reply is currently minimized Show
  • Accepted Answer

    Monday, February 23 2015, 07:07 PM - #Permalink
    Resolved
    0 votes
    I think it could be a network problem so :
    [ol]I remove firewall (before opening this thread)[/ol]
    [ol]I removed 2nd ethernet card[/ol]

    here is my network config :
    Network Mode 	Standalone - No Firewall
    Hostname linux.lan
    Internet Hostname home.bensiali.net
    Default Domain bensiali.net


    By the way do understand the différence between hsotname, internet hostname and defualt domaine name.
    I fisrt set all to hom.bensiali.net.

    Here are DNS :
    DNS Server #1 	10.0.0.138
    DNS Server #2 109.0.66.10 ISP DNS Primary
    DNS Server #3 109.0.66.20 ISP DNS Secondary


    And IP Config
    eth0 	External 	Static 	10.0.0.91

    But I see some communication in FTP and HTTP.
    When I install COS it was on 20th Feb few hours after release of 6.6
    Getting Access to market place was very painfull...
    Install of "Directory SErvice" has to be retryed some many times...
    After LDAP Activation (with the wait screen on webgui) has displayed many many times before providing the final screen :
    Mode 	Standalone
    Base Domain bensiali.lan

    Policies
    Publish Policy Local Network
    Accounts Access Password Access

    Directory Information
    Capabilities
    Mode Standalone
    Connection Information
    Base DN dc=bensiali,dc=lan
    Bind DN cn=manager,ou=Internal,dc=bensiali,dc=lan
    Bind Password xxxxxxx
    Accounts Access
    Accounts DN cn=accounts,ou=Internal,dc=bensiali,dc=lan
    Containers
    Users ou=Users,ou=Accounts,dc=bensiali,dc=lan
    Groups ou=Groups,ou=Accounts,dc=bensiali,dc=lan
    Computers ou=Computers,ou=Accounts,dc=bensiali,dc=lan
    The reply is currently minimized Show
  • Accepted Answer

    Monday, February 23 2015, 06:58 PM - #Permalink
    Resolved
    0 votes
    ClearOS users are stored in LDAP not like system users (which are kept in /etc/passwd)

    OK. But user are present as owner of their home directory...

    Is LDAP running 'service slapd status'?

    [root@linux ~]# service slapd status
    slapd (pid 4772) is running...


    What's the output of 'id toto' from the command line?

    [root@linux ~]# id toto
    uid=1003(toto) gid=63000(allusers) groups=63000(allusers),1000513(domain_users),60000(ftp_plugin),60001(util_maison),60003(famille),60004(moi)



    If the user can login via the webconfig then probably all OK, try restarting the proftpd and httpd services?

    [root@linux ~]# service proftpd restart
    Shutting down proftpd: [ OK ]
    Starting proftpd: [ OK ]
    [root@linux ~]# service proftpd restart
    Shutting down proftpd: [ OK ]
    Starting proftpd: [ OK ]


    I've mde reboot also. no change
    Here are Filezilla log :
    Statut :	Connexion à 10.0.0.193:21...
    Statut : Connexion établie, attente du message d'accueil...
    Réponse : 220 ProFTPD 1.3.4a Server (FTP) [::ffff:10.0.0.193]
    Commande : USER toto
    Réponse : 331 Password required for toto
    Commande : PASS ****
    Réponse : 530 Login incorrect.
    Erreur : Erreur critique
    Erreur : Impossible d'établir une connexion au serveur
    Statut : Connexion à 10.0.0.193:2121...
    Statut : Connexion établie, attente du message d'accueil...
    Réponse : 220 ProFTPD 1.3.4a Server (FTP) [::ffff:10.0.0.193]
    Commande : USER toto
    Réponse : 331 Password required for toto
    Commande : PASS ****
    Réponse : 530 Login incorrect.
    Erreur : Erreur critique
    Erreur : Impossible d'établir une connexion au serveur
    Statut : Résolution de l'adresse de home.bensiali.net
    Statut : Connexion à 10.0.0.193:2121...
    Statut : Connexion établie, attente du message d'accueil...
    Réponse : 220 ProFTPD 1.3.4a Server (FTP) [::ffff:10.0.0.193]
    Commande : AUTH TLS
    Réponse : 500 AUTH not understood
    Commande : AUTH SSL
    Réponse : 500 AUTH not understood
    Erreur : Erreur critique
    Erreur : Impossible d'établir une connexion au serveur


    And secure log :
    Feb 23 19:51:13 home unix_chkpwd[17374]: password check failed for user (toto)
    Feb 23 19:51:13 home pwauth: pam_unix(pwauth:auth): authentication failure; logname= uid=48 euid=0 tty= ruser= rhost= user=toto
    Feb 23 19:51:41 home unix_chkpwd[17380]: password check failed for user (toto)
    Feb 23 19:51:41 home app-passwd: pam_unix(system-auth-ac:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=toto
    Feb 23 19:52:48 home unix_chkpwd[17418]: password check failed for user (toto)
    Feb 23 19:52:48 home proftpd: pam_unix(proftpd:auth): authentication failure; logname= uid=0 euid=0 tty=/dev/ftpd17416 ruser=toto rhost=10.0.0.253 user=toto
    Feb 23 19:52:50 home proftpd[17416]: 10.0.0.193 (10.0.0.253[10.0.0.253]) - USER toto (Login failed): Incorrect password.
    Feb 23 19:52:54 home unix_chkpwd[17421]: password check failed for user (toto)
    Feb 23 19:52:54 home proftpd: pam_unix(proftpd:auth): authentication failure; logname= uid=0 euid=0 tty=/dev/ftpd17419 ruser=toto rhost=10.0.0.253 user=toto
    Feb 23 19:52:56 home proftpd[17419]: 127.0.0.1 (10.0.0.253[10.0.0.253]) - USER toto (Login failed): Incorrect password.
    The reply is currently minimized Show
  • Accepted Answer

    Monday, February 23 2015, 12:00 AM - #Permalink
    Resolved
    0 votes
    ClearOS users are stored in LDAP not like system users (which are kept in /etc/passwd)

    Is LDAP running 'service slapd status'?

    What's the output of 'id toto' from the command line?

    If the user can login via the webconfig then probably all OK, try restarting the proftpd and httpd services?
    The reply is currently minimized Show
  • Accepted Answer

    Sunday, February 22 2015, 11:07 PM - #Permalink
    Resolved
    0 votes
    This is what I've found in "secure" log :
    Feb 22 23:55:14 home unix_chkpwd[14267]: password check failed for user (toto)
    Feb 22 23:55:14 home pwauth: pam_unix(pwauth:auth): authentication failure; logname= uid=48 euid=0 tty= ruser= rhost= user=toto
    Feb 22 23:56:48 home unix_chkpwd[14435]: password check failed for user (toto)
    Feb 22 23:56:48 home proftpd: pam_unix(proftpd:auth): authentication failure; logname= uid=0 euid=0 tty=/dev/ftpd14433 ruser=toto rhost=10.0.0.226 user=toto
    Feb 22 23:56:51 home proftpd[14433]: 10.0.0.193 (10.0.0.226[10.0.0.226]) - USER toto (Login failed): Incorrect password.


    Despite user as been granded to use ssh login failed : Access denied

    Yes password is ok on webgui authentification.
    Yes I try to reset and change password....

    When I try on ssh to force user's password change I've got an error :
    [root@home log]# passwd toto
    Changing password for user toto.
    passwd: Authentication token manipulation error


    Executing pwconv doesn't change anything.
    Note that user does not exists in /etc/passwd and /etc/shadow
    The reply is currently minimized Show
Your Reply