Cannot write /certs when saving a certificate

Dan_F_DXC · Post by **Dan_F_DXC** » Fri Jul 24, 2020 3:40 pm

Okay I bumped it did a capture and included the logs.

Same thing.

Post by **cdienger** » Mon Jul 27, 2020 11:31 am

Edit the AD definition in NLS - it currently uses @oobmgmt.mgmt.sabre.com in the Base DN field. This field should be formatted to look something like:

Code: Select all

cn=users,dc=sabre,dc=local

The above is an example. Confirm with the AD config the location of the users in the LDAP setup.

Dan_F_DXC · Post by **Dan_F_DXC** » Mon Jul 27, 2020 1:30 pm

So I looked at what we had in base dn on our nagios xi servers and corrected nls to match. I have attached the screen shot of that config. However looked at the logs I got something new. The last line of the error log may help us:

[Mon Jul 27 13:23:44.647850 2020] [autoindex:error] [pid 119261] [client 10.198.5.105:53149] AH01276: Cannot serve directory /var/www/html/: No matching DirectoryIndex (index.html,index.php) found, and server-generated directory index forbidden by Options directive

ssax · Post by **ssax** » Tue Jul 28, 2020 9:15 am

The permissions of the directories need to be adjusted:

Code: Select all

chmod 0775 /etc/openldap/certs
chmod 0775 /etc/openldap/cacerts

That should fix the directory being writable issue.

Enable debugging if you haven't:

https://support.nagios.com/kb/article/a ... n-600.html

Run this command as root (and leave it running):

Code: Select all

tail -Fn0 /var/log/httpd/error_log /var/log/httpd/ssl_error_log

Then try it again and send us the full output of the tail command.

Thank you!

Dan_F_DXC · Post by **Dan_F_DXC** » Tue Jul 28, 2020 2:29 pm

well I think we got the permissions right early on. I did however enable that enhanced debugging option you mentioned and I get the same result. Nothing in the error log but this is what shows up in the access_log.

root@hpsatvld5352:/var/log/httpd # tail -Fn0 access_log error_log
==> access_log <==

==> error_log <==

==> access_log <==
10.198.5.105 - - [28/Jul/2020:14:27:46 -0500] "POST /nagioslogserver/admin/users/import HTTP/1.1" 500 - "http://hpsatvld5352.mgmt.sabre.com/nagi ... ers/import" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
10.198.5.105 - - [28/Jul/2020:14:27:47 -0500] "GET /favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"

I still get a blank page in my web browser.

ssax · Post by **ssax** » Wed Jul 29, 2020 5:09 pm

Do you have this file? If so, what does it contain?

Code: Select all

/var/log/httpd/ssl_error_log

Dan_F_DXC · Post by **Dan_F_DXC** » Thu Jul 30, 2020 7:22 am

That error log doesn't exist:

root@hpsatvld5352:/var/log/httpd # ls
access_log access_log-20200726 error_log error_log-20200726

ssax · Post by **ssax** » Thu Jul 30, 2020 6:56 pm

Please create a ticket for this and include a link back to this forum thread so we can get a remote session setup:

https://support.nagios.com/tickets/

Thank you!

Nagios Support Forum

Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate

Re: Cannot write /certs when saving a certificate