PXE Installation via Depotserver -> Unauthorized

Antworten
Dirk Uebe
Beiträge: 8
Registriert: 25 Jan 2024, 11:53

Re: PXE Installation via Depotserver -> Unauthorized

Beitrag von Dirk Uebe »

Ich glaube, ich konnte den Fehler identifizieren.

Auf dem Configserver steht in dem Log folgender Block:

Traceback (most recent call last):
File "opsiconfd/session.py", line 350, in __call__
File "opsiconfd/session.py", line 213, in handle_request
File "opsiconfd/session.py", line 1245, in check_access
File "opsiconfd/session.py", line 1065, in authenticate
File "opsiconfd/session.py", line 1107, in _authenticate
File "opsiconfd/session.py", line 990, in authenticate_host
opsicommon.exceptions.OpsiServiceAuthenticationError: Opsi service authentication error: Authentication of host 'gco-s-nb38.ggsd-pn.local' failed
[4] [2024-01-30 09:28:39.578] [10.16.0.114 ] Opsi service authentication error: Authentication of host 'gco-s-nb38.ggsd-pn.local' failed (session.py:264)
[7] [2024-01-30 09:28:39.578] [10.16.0.114 ] Returning jsonrpc response because path startswith /rpc (session.py:321)
[6] [2024-01-30 09:28:39.578] [10.16.0.114 ] 10.16.0.114:60776 - "HEAD /rpc HTTP/1.1" 401 (h11_impl.py:478)
[6] [2024-01-30 09:28:39.578] [10.16.0.114 ] Server-Timing HEAD /rpc: request_processing=205.0ms, total=205.0ms (statistics.py:224)
[7] [2024-01-30 09:28:41.591] [10.16.0.114 ] Version b2028cd4-db4c-4663-84e5-06cd6d47b89e unchanged, cache up-to-date (session.py:841)
[6] [2024-01-30 09:28:41.591] [10.16.0.114 ] Accepting session lifetime 150 from client (session.py:494)
[6] [2024-01-30 09:28:41.591] [10.16.0.114 ] Checking if client '10.16.0.114' is blocked (session.py:1180)
[7] [2024-01-30 09:28:41.591] [10.16.0.114 ] ts.range opsiconfd:stats:client:failed_auth:10.16.0.114 1706603202000 1706603322000 aggregation count 120000 (session.py:1192)
[7] [2024-01-30 09:28:41.591] [10.16.0.114 ] num_failed_auth: 2 (session.py:1196)
[6] [2024-01-30 09:28:41.591] [10.16.0.114 ] Start authentication of client 10.16.0.114 (session.py:1095)
[7] [2024-01-30 09:28:41.591] [10.16.0.114 ] Trying to authenticate host by host id and opsi host key (session.py:961)
[7] [2024-01-30 09:28:41.795] [10.16.0.114 ] Handle request exception OpsiServiceAuthenticationError: Opsi service authentication error: Authentication of host 'gco-s-nb38.ggsd-pn.local' failed (session.py:241)


Das komische hieran ist, dass die angegebene IP Adresse 10.16.0.114 die IP des Depotservers ist, der Client ist an dem Depotserver an einer zweiten NIC in einem anderen Subnet angeschlossen (192.168.10.0/24) mit interner ipv4 Weiterleitung und MASQUERADE.

Nun meine Frage:
Kann ich diese Authentifizierung am Configserver deaktivieren?
Nach oben
Antworten

Zurück zu „Freier Support“