FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS

 
 
LinkBack Thread Tools
 
Old 12-18-2010, 02:56 PM
bluethundr
 
Default cobbler fails to recognize semanage rules

I am having a bit of trouble setting up cobbler on this machine.



cobbler check points out a few things to correct:

[root@VIRTCENT04:~]#cobbler check
The following are potential configuration items that you may want to fix:

1 : you need to set some SELinux content rules to ensure cobbler
serves content correctly in your SELinux environment, run the
following: /usr/sbin/semanage fcontext -a -t public_content_t
"/tftpboot/.*" && /usr/sbin/semanage fcontext -a -t public_content_t
"/var/www/cobbler/images/.*"
2 : you need to set some SELinux rules if you want to use cobbler-web
(an optional package), run the following: /usr/sbin/semanage fcontext
-a -t httpd_sys_content_rw_t "/var/lib/cobbler/webui_sessions/.*"
3 : some network boot-loaders are missing from
/var/lib/cobbler/loaders, you may run 'cobbler get-loaders' to
download them, or, if you only want to handle x86/x86_64 netbooting,
you may ensure that you have installed a *recent* version of the
syslinux package installed and can ignore this message entirely.
Files in this directory, should you want to support all architectures,
should include pxelinux.0, menu.c32, elilo.efi, and yaboot. The
'cobbler get-loaders' command is the easiest way to resolve these
requirements.
4 : since iptables may be running, ensure 69, 80, and 25151 are unblocked
5 : debmirror package is not installed, it will be required to manage
debian deployments and repositories
6 : The default password used by the sample templates for newly
installed machines (default_password_crypted in /etc/cobbler/settings)
is still set to 'cobbler' and should be changed, try: "openssl passwd
-1 -salt 'random-phrase-here' 'your-password-here'" to generate new
one

Restart cobblerd and then run 'cobbler sync' to apply changes.





I try to apply the first suggestion:

[root@VIRTCENT04:~]#/usr/sbin/semanage fcontext -a -t public_content_t
"/tftpboot/.*" && /usr/sbin/semanage fcontext -a -t public_content_t
"/var/www/cobbler/images/.*"
/usr/sbin/semanage: File context for /tftpboot/.* already defined

And the system points out that the rules are already defined by semanage.


the cobbler service restarts:

[root@VIRTCENT04:~]#service cobblerd restart
Stopping cobbler daemon: [ OK ]
Starting cobbler daemon: [ OK ]
[root@VIRTCENT04:~]#SERVING!


sync is fine


[root@VIRTCENT04:~]#cobbler sync
task started: 2010-12-18_105137_sync
task started (id=Sync, time=Sat Dec 18 10:51:37 2010)
running pre-sync triggers
cleaning trees
removing: /tftpboot/pxelinux.cfg/default
removing: /tftpboot/s390x/profile_list
copying bootloaders
copying: /usr/lib/syslinux/pxelinux.0 -> /tftpboot/pxelinux.0
copying: /usr/lib/syslinux/menu.c32 -> /tftpboot/menu.c32
copying: /boot/memtest86+-1.65 -> /tftpboot/memtest86+-1.65
copying: /usr/lib/syslinux/memdisk -> /tftpboot/memdisk
copying distros
copying images
generating PXE configuration files
rendering Rsync files
generating PXE menu structure
running post-sync triggers
*** TASK COMPLETE ***


run cobbler check again:

[root@VIRTCENT04:~]#cobbler check
The following are potential configuration items that you may want to fix:

1 : you need to set some SELinux content rules to ensure cobbler
serves content correctly in your SELinux environment, run the
following: /usr/sbin/semanage fcontext -a -t public_content_t
"/tftpboot/.*" && /usr/sbin/semanage fcontext -a -t public_content_t
"/var/www/cobbler/images/.*"
2 : you need to set some SELinux rules if you want to use cobbler-web
(an optional package), run the following: /usr/sbin/semanage fcontext
-a -t httpd_sys_content_rw_t "/var/lib/cobbler/webui_sessions/.*"
3 : some network boot-loaders are missing from
/var/lib/cobbler/loaders, you may run 'cobbler get-loaders' to
download them, or, if you only want to handle x86/x86_64 netbooting,
you may ensure that you have installed a *recent* version of the
syslinux package installed and can ignore this message entirely.
Files in this directory, should you want to support all architectures,
should include pxelinux.0, menu.c32, elilo.efi, and yaboot. The
'cobbler get-loaders' command is the easiest way to resolve these
requirements.
4 : since iptables may be running, ensure 69, 80, and 25151 are unblocked
5 : debmirror package is not installed, it will be required to manage
debian deployments and repositories
6 : The default password used by the sample templates for newly
installed machines (default_password_crypted in /etc/cobbler/settings)
is still set to 'cobbler' and should be changed, try: "openssl passwd
-1 -salt 'random-phrase-here' 'your-password-here'" to generate new
one

Restart cobblerd and then run 'cobbler sync' to apply changes.

same thing... what can I do to get beyond this infinite loop?
--
GPG me!!

gpg --keyserver pgp.mit.edu --recv-keys F186197B
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 

Thread Tools




All times are GMT. The time now is 02:54 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org