Univention Bugzilla – Bug 54084
admember.py rename_well_known_sid_objects: Datei oder Verzeichnis nicht gefunden
Last modified: 2024-02-22 15:15:13 CET
5.0-0 errata131 Remark: Microsoft AD mit Forest an welchen initial gejoined werden soll. Error:· Traceback (most recent call last): File "%PY2.7%/univention/management/console/modules/setup/setup_script.py", line 312, in run success = self.inner_run() File "/usr/lib/univention-system-setup/scripts/90_postjoin/10admember", line 113, in inner_run admember.rename_well_known_sid_objects(username, password) File "%PY2.7%/univention/lib/admember.py", line 1092, in rename_well_known_sid_objects stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True) File "/usr/lib/python2.7/subprocess.py", line 394, in __init__ errread, errwrite) File "/usr/lib/python2.7/subprocess.py", line 1047, in _execute_child raise child_exception OSError: [Errno 2] Datei oder Verzeichnis nicht gefunden File: '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename'
Configuring Active Directory connection: Traceback (most recent call last): Configuring Active Directory connection: File "%PY3%/univention/management/console/modules/setup/setup_script.py", line 334, in run Configuring Active Directory connection: success = self.inner_run() Configuring Active Directory connection: File "/usr/lib/univention-system-setup/scripts/90_postjoin/10admember", line 114, in inner_run Configuring Active Directory connection: admember.rename_well_known_sid_objects(username, password) Configuring Active Directory connection: File "%PY3%/univention/lib/admember.py", line 1115, in rename_well_known_sid_objects Configuring Active Directory connection: stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True) Configuring Active Directory connection: File "/usr/lib/python3.7/subprocess.py", line 775, in __init__ Configuring Active Directory connection: restore_signals, start_new_session) Configuring Active Directory connection: File "/usr/lib/python3.7/subprocess.py", line 1522, in _execute_child Configuring Active Directory connection: raise child_exception_type(errno_num, err_msg, err_filename) Configuring Active Directory connection: FileNotFoundError: [Errno 2] No such file or directory: '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename': '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename'
2023073121000454 5.0-4 errata753 Remark: Configuring Active Directory connection: Traceback (most recent call last): Configuring Active Directory connection: File "%PY3%/univention/management/console/modules/setup/setup_script.py", line 334, in run Configuring Active Directory connection: success = self.inner_run() Configuring Active Directory connection: File "/usr/lib/univention-system-setup/scripts/90_postjoin/10admember", line 114, in inner_run Configuring Active Directory connection: admember.rename_well_known_sid_objects(username, password) Configuring Active Directory connection: File "%PY3%/univention/lib/admember.py", line 1115, in rename_well_known_sid_objects Configuring Active Directory connection: stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True) Configuring Active Directory connection: File "/usr/lib/python3.7/subprocess.py", line 775, in __init__ Configuring Active Directory connection: restore_signals, start_new_session) Configuring Active Directory connection: File "/usr/lib/python3.7/subprocess.py", line 1522, in _execute_child Configuring Active Directory connection: raise child_exception_type(errno_num, err_msg, err_filename) Configuring Active Directory connection: FileNotFoundError: [Errno 2] No such file or directory: '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename': '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename'
Common in these cases is that univention-system-setup file /usr/lib/univention-system-setup/scripts/90_postjoin/10admember attempts to call a script from the package univention-ad-connector. The error message states that the file is not there, so I assume that the package has not been installed for some reason during system setup.
Juan Pedro was able to reproduce this when installing from iso: "Sometimes" the setup dialog allowed him to AD-join *and* select the UCS server roles as managed node (before joining a UCS Primary Directory Node). join.log shows this: ============================================================================ === domain-join (2023-10-24 11:36:50) === __NAME__:domain-join Domain setup (this might take a while) __STEPS__:30 __MSG__:Preparing domain join __STEP__:0 univention-join: joins a computer to an ucs domain copyright (c) 2001-2023 Univention GmbH, Germany Search Primary Directory Node: ************************************************************************** * Join failed! * * Contact your system administrator * ************************************************************************** __JOINERR__:Please visit https://help.univention.com/t/8842 for common problems during the join and how to fix them -- missing dns service record for _domaincontroller_master._tcp.w2k12addomain.net ************************************************************************** __STEP__:30 ============================================================================ This is what the UCS system had set in UCR at that point: ============================================================================ root@unassigned-hostname:~# ucr search role server/role: memberserver root@unassigned-hostname:~# cat /var/cache/univention-system-setup/profile server/role="memberserver" components="" ad/address="WIN-CLG0OBRUMR7.w2k12addomain.net" ad/username="Administrator" ad/password="Univention.6" hostname="ucs-6492" update/system/after/setup="False" ad/member="True" nameserver1="10.200.8.200" domainname="w2k12addomain.net" windows/domain="W2K12ADDOMAIN" locale=" en_US.UTF-8:UTF-8 de_DE.UTF-8:UTF-8" ============================================================================
So, this is some setup issue and I think we need to improve two things here: 1. The setup dialog should not allow this (we are still trying to document how Juanpe managed to do this) 2. System setup (or whatever) in the backend should provide a better error message and not continue trying to run some script of a not-yet-installed package.
2024010821000033 5.0-6 errata908 Remark: I tried to join existing Samba (non-Windows, non-UCS) domain. This UCS was installed in VM from fresh downloaded ISO. 023123021000053 5.0-6 errata906 Remark: Just freshly installed UCS and tried to join an exiistaing AD domain hosted onk12R2 server running as primary domain controller 023122721000194 5.0-6 errata904 Remark: join ADS Windows Core Server019 023121821000406 023121821000399 023112121000018 5.0-5 errata880 Remark: With version 4.4, It is works. With version 5.05, fresh domain, It failed. 023112021000261 5.0-5 errata880 Remark: USC Install auf einer bestehenden AD-Testumgebung 023103021000486 5.0-5 errata798 Remark: Install UCS and attempt to join it to an existing AD domain. 023102421000158 5.0-5 errata852 023092721000075 5.0-5 errata798 Configuring software components: univention-ad-connector: No such package Configuring Active Directory connection: univention-samba: No such package Configuring Active Directory connection: Traceback (most recent call last): Configuring Active Directory connection: File "%PY3%/univention/management/console/modules/setup/setup_script.py", line 334, in run Configuring Active Directory connection: success = self.inner_run() Configuring Active Directory connection: File "/usr/lib/univention-system-setup/scripts/90_postjoin/10admember", line 114, in inner_run Configuring Active Directory connection: admember.rename_well_known_sid_objects(username, password) Configuring Active Directory connection: File "%PY3%/univention/lib/admember.py", line 1115, in rename_well_known_sid_objects Configuring Active Directory connection: stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True) Configuring Active Directory connection: File "/usr/lib/python3.7/subprocess.py", line 775, in __init__ Configuring Active Directory connection: restore_signals, start_new_session) Configuring Active Directory connection: File "/usr/lib/python3.7/subprocess.py", line 1522, in _execute_child Configuring Active Directory connection: raise child_exception_type(errno_num, err_msg, err_filename) Configuring Active Directory connection: FileNotFoundError: [Errno 2] No such file or directory: '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename': '/usr/share/univention-ad-connector/scripts/well-known-sid-object-rename'
We were not able to reproduce: We try to join in admember mode We try to join as admember after a domaincontroller was already joined Both worked.