Da es nach etlichen Versuchen, die in den Anleitungen stehen und die nicht sehr zielführend waren, hier meine „Anleitung“ wie man zu einer hoffentlich funktionierenden Konfiguration kommt (sorry ist etwas länglich)
- lmn7-opnsense xva importieren
- lmn7-opnsense starten und root anmelden (root/Muster!)
- updates installieren und netzwerk konfigurieren
- lmn7-server xva importieren
- lmn7-server starten
- Anmelden über ssh (root/Muster!)
- wget -O - https://archive.linuxmuster.net/archive.linuxmuster.net.key | apt-key add -
- apt-get update
- reboot (um Sperre /var/lib/dpkg/lock-frontend loszuwerden)
- apt-get dist-upgrade
- reboot
- lmn7-opsi starten
- Anmelden über ssh (root/Muster!)
- wget -O - https://archive.linuxmuster.net/archive.linuxmuster.net.key | apt-key add -
- apt-key remove D1F933E6D8361F81
- wget -O - http://download.opensuse.org/repositories/home:/uibmz:/opsi:/4.1:/stable/xUbuntu_18.04/Release.key | apt-key add -
- reboot (um Sperre /var/lib/dpkg/lock-frontend loszuwerden)
- apt-get dist-upgrade
- Daten der Schule eingeben auf Anfrage
- reboot
- wenn lmn7-opsi wieder oben ist, mit ssh auf lmn7-server anmelden
- linuxmuste-setup ohne parameter starten
log:
#### Writing input to setup ini file ........................... Success! ####
#### Setting root password ..................................... Success! ####
------------------------------------------------------------------------------
#### templates ####
#### Reading setup data ........................................ Success! ####
#### Processing config templates: ####
#### * subnets.csv ............................................. Success! ####
#### * dhcpd.conf .............................................. Success! ####
#### * devices.csv ............................................. Success! ####
#### * dhcpd.devices.conf ...................................... Success! ####
#### * timesyncd.conf .......................................... Success! ####
#### * linux-login.script ...................................... Success! ####
#### * ntp.conf ................................................ Success! ####
#### * smb.conf.admin .......................................... Success! ####
#### * dhcpd.subnets.conf ...................................... Success! ####
#### * rsyncd.conf ............................................. Success! ####
#### * nsswitch.conf ........................................... Success! ####
#### * smb.conf ................................................ Success! ####
#### * cupsd.conf .............................................. Success! ####
#### * dhcpd.custom.conf ....................................... Success! ####
#### Network setup ............................................. Success! ####
#### Adjusting server time .......................... 2020-01-06 10:33:03 ####
------------------------------------------------------------------------------
#### fstab ####
#### Modifying mount options for / ............................. Success! ####
#### Remounting / .............................................. Success! ####
------------------------------------------------------------------------------
#### ssl ####
#### Reading setup data ........................................ Success! ####
#### Creating private CA key & certificate ..................... Success! ####
#### Creating private gsn1 key & certificate ....................Success! ####
#### Creating private firewall key & certificate ................Success! ####
#### Creating private mail key & certificate ....................Success! ####
#### Creating private docker key & certificate ..................Success! ####
#### Creating private opsi key & certificate ....................Success! ####
#### Ensure key and certificate permissions .................... Success! ####
------------------------------------------------------------------------------
#### ssh ####
#### Reading setup data ........................................ Success! ####
#### Creating ssh keys: ####
#### * dsa host key ............................................ Success! ####
#### * dsa root key ............................................ Success! ####
#### * ecdsa host key .......................................... Success! ####
#### * ecdsa root key .......................................... Success! ####
#### * ed25519 host key ........................................ Success! ####
#### * ed25519 root key ........................................ Success! ####
#### * rsa host key ............................................ Success! ####
#### * rsa root key ............................................ Success! ####
#### Restarting ssh service .................................... Success! ####
#### * Processing ssh link to host 10.0.0.2 on port 22: ####
#### > Testing ssh connection ................................... Open! ####
#### > Establishing ssh connection ........................... Success! ####
#### > Deploying public key .................................. Success! ####
#### > Deploying ssl certs & key ............................. Success! ####
#### > Preparing opsi ........................................ Success! ####
------------------------------------------------------------------------------
#### samba-provisioning ####
#### Stopping samba services ................................... Success! ####
#### Reading setup data ........................................ Success! ####
#### Generating AD admin password .............................. Success! ####
#### Provisioning samba ........................................ Success! ####
#### Provisioning krb5 ......................................... Success! ####
#### Enabling samba services ................................... Success! ####
#### Backing up samba .......................................... Success! ####
#### Provisioning sophomorix samba schema ...................... Success! ####
#### Fixing resolv.conf ........................................ Success! ####
#### Exchanging smb.conf ....................................... Success! ####
#### Starting samba ad dc service .............................. Success! ####
------------------------------------------------------------------------------
#### samba-users ####
#### Reading setup data ........................................ Success! ####
#### Calculating random passwords .............................. Success! ####
#### Backing up samba .......................................... Success! ####
#### Creating share for default-school.......................... Success! ####
#### Creating samba account for global-admin ................... Success! ####
#### Creating samba account for global-binduser ................ Success! ####
#### No expiry for administrative passwords .................... Success! ####
#### Creating ou for default-school............................. Success! ####
#### Add firewall as dns forwarder ............................. Success! ####
------------------------------------------------------------------------------
#### add-server ####
#### Reading setup data ........................................ Success! ####
#### Creating device entries for: ####
#### * gsn1 .................................. 10.0.0.1 b2:40:0b:96:89:ed ####
#### * firewall ............................ 10.0.0.254 2E:F1:CC:2D:8F:2D ####
#### * opsi .................................. 10.0.0.2 42:E6:9D:9F:CF:63 ####
------------------------------------------------------------------------------
#### firewall ####
#### Reading setup data ........................................ Success! ####
#### Calculating radius secret ................................. Success! ####
#### Downloading firewall configuration: ####
#### * Download finished successfully. ####
#### * Backing up .............................................. Success! ####
#### * Reading current config .................................. Success! ####
#### * Reading certificates & ssh key .......................... Success! ####
#### * Creating xml configuration file ......................... Success! ####
#### * Saving api credentials .................................. Success! ####
#### Uploading firewall configuration: ####
#### * Upload finished successfully. ####
#### Executing ssh command on 10.0.0.254: ####
#### * -> "/bin/sh /tmp/fwsetup.sh" ####
#### * SSH connection successfully established. ####
#### * Execution finished successfully. ####
------------------------------------------------------------------------------
#### linbo ####
#### Reading setup data ........................................ Success! ####
#### Creating rsync secrets file ............................... Success! ####
#### Providing server ip to linbo start.conf files ............. Success! ####
#### Activating bittorrent tracker ............................. Success! ####
#### Activating linbo-bittorrent service ....................... Success! ####
#### Reconfiguring linbo (may take a while)
------------------------------------------------------------------------------
#### opsi ####
#### Reading setup data ........................................ Success! ####
#### * Creating helper files ................................... Success! ####
#### * Establishing ssh connection to opsiserver ............... Success! ####
#### * Uploading files to opsiserver ........................... Success! ####
#### * Starting opsiserver setup ............................... Success! ####
------------------------------------------------------------------------------
#### mail ####
#### Reading setup data ........................................ Success! ####
Bundle certificate for webui
Run Sophomorix-UI to add permissions
* WebUI Setup Success!
------------------------------------------------------------------------------
#### final ####
#### Disabling service iscsid .................................. Success! ####
#### Disabling service dropbear ................................ Success! ####
#### Disabling service lxcfs ................................... Success! ####
#### Starting device import .................................... Success! ####
#### Starting subnets import ................................... Success! ####
------------------------------------------------------------------------------
#### linuxmuster-setup finished at 2020-01-06 10:36:57 ####
------------------------------------------------------------------------------
- reboot
- http://10.0.0.1 geht
Nun meine Frage: wie wird der Server und opsi weiter konfiguriert?
Der opsi-Rechner hat z.B. noch ein webinterface. Geht das alles über den lmn-server???
Danke im voraus
Eberhard