Univention Bugzilla – Bug 39196
Docker App join
Last modified: 2015-11-17 12:12:14 CET
During the App installation, the Docker App joins into the UCS domain. Therefore, an account for the Docker container is created in the UCS management system. The account type can be chosen by the App. By default a member server is used but also a domain controller slave account is possible. A setup script will be executed during the domain join. The script gets the credentials of the user who is logged in. The script is executed inside the container via docker exec.
Works. In the ini file: DockerServerRole=[memberserver]/domaincontroller_slave DockerScriptSetup=[/usr/share/univention-docker-container-mode/setup] See univention-docker-container-mode for the default setup script
I've added a test case for the variable DockerServerRole: 80_docker/52_app_install_dc_slave. Currently, it doesn't work: ----------------------------------------------------------------------------- Setting up sxyv4jm60f (5.5.4) ... Calling app join scripts... Search LDAP binddn ************************************************************************** * Running join scripts failed! * ************************************************************************** * Message: Invalid credentials ************************************************************************** Something went wrong while installing the app Something went wrong while installing the app Setup script failed! Aborting... Going to remove xm0e9639pd (2.0.5) ----------------------------------------------------------------------------- Do I need to define a different container or a different setup script?
The ldap/server/name is set to the local container: root@sqhcogtadn-1443485649167907:/# ucr search --brief ldap/server/name ldap/server/name: sqhcogtadn-1443485649167907.deadlock41.intranet The memberserver container doesn't contain an LDAP server.
Setting DockerServerRole=domaincontroller_slave should be carefully. If you do this but do not adjust DockerImage to a slave image, you need to be aware of the fact that univention-join sets some variables according to the server/role domaincontroller_slave. One way out could be to install an LDAP server like a real Slave does. This done by overwriting the setup script and calling univention-install in it.
It works and I've added test scripts for this: 51_app_install 52_app_install_dc_slave For the DC Slave installation, I've added a simple setup script: univention-install --yes --no-install-recommends univention-server-slave univention-server-member- /usr/share/univention-docker-container-mode/setup "$@"
UCS 4.1 has been released: https://docs.software-univention.de/release-notes-4.1-0-en.html https://docs.software-univention.de/release-notes-4.1-0-de.html If this error occurs again, please use "Clone This Bug".