Dell OMSA 8.3 + Ubuntu 14.04.1 LTS - Can't Login To Web GUI dsm_om_connsvc - Dell Systems Management General Forum - Systems Management - Dell Community
Systems Management Forums

Dell OMSA 8.3 + Ubuntu 14.04.1 LTS - Can't Login To Web GUI dsm_om_connsvc

Systems Management

Systems Management
Dell Systems Management Solutions: Dell OpenManage, iDRAC, Repository Manager, Microsoft SCCM, Chassis Managment Controller, and more

Dell OMSA 8.3 + Ubuntu 14.04.1 LTS - Can't Login To Web GUI dsm_om_connsvc

  • Hello DELL,

    I'm trying to use the DELL OMSA 8.3 as shown on the http://linux.dell.com/repo/community/ubuntu/
    and was able to successfully install using the information posted on the webpage. I am running the following:

    OS: Ubuntu 14.04.1 LTS (GNU/Linux 3.13.0-101-generic x86_64)
    Server Hardware: PowerEdge R320

    I am able to use the CLI commands OK. The server in question is on a Domain Network but isn't logged into the Active Directory nor do I use an Active Directory login to access this server. In CLI, it shows the pc machine hostname and $: dnsdomainname returns nothing.

    Here is the status after I login:

    $ sudo service dsm_om_connsvc status
    dsm_om_connsvcd (pid 6843) is running

    sudo useradd dellomsa
    sudo usermod -g root dellomsa
    sudo passwd dellomsa

    Even with this added, I still couldn't login to the GUI!

    I ran the following to see if this would work:

    sudo nano /opt/dell/srvadmin/etc/omarolemap

    # Following are the defualt entries specified to enable users with OS level$
    root    *       Administrator
    +root   *       Poweruser
    *       *       User               
    dellomsa     *     Administrator

    I get the following after I login using the correct user/passwd:
    https://ip:1311/LoginServlet?flag=true&managedws=true - CORRECT LOGIN
    https://ip:1311/OMSALogin?msgStatus=false&PasswordEmpty=false - LOGIN FAILED

    If I login correctly..
    It just takes me to a blank page and I can't bring back up the login page nor can I access it from another browser. I'd had this happen in Firefox/Microsoft Edge/Microsoft IE11.


    Google Chrome says the following:

    The myhostname page isn’t working

    myhostname didn’t send any data.

    ERR_EMPTY_RESPONSE
    UPDATE:
    I couldn't use OMCONFIG and found out I needed to run "sudo /opt/dell/srvadmin/sbin//omconfig"
    to use the command from CLI
    How do I give this user rights like root so I can login to the WEB GUI? I think the WEB GUI isn't allowing my user into because of permissions.
    _______________________________________________________________
    Please review and let me know what other options I have that I can try or if this will even let me login.
    I've recorded the problem in action and can provide a URL from YouTube if need be.
    Thanks!

     

     

  • Hello, Thanks for your post here.

     

    Could I know what component was installed? Was it srvadmin-all?

     

    If yes, then I please check if all required services were started. This can be checked by running the command

    sudo /opt/dell/srvadmin/sbin/srvadmin-services.sh status

     

    Ideally there would 4 services running namely dsm_sa_datamgrd, dsm_sa_eventmgrd, dsm_sa_snmpd and dsm_om_connsvcd

     

    All Server Administrator services' state can be handled using the /opt/dell/srvadmin/sbin/srvadmin-services.sh script using one of the following arguments

    start, status, restart, stop

     

    Please try the following and let us know if this issue gets resolved.

    1.  Start services

    sudo /opt/dell/srvadmin/sbin/srvadmin-services.sh start

     

    2. Check if all services are started.

    sudo /opt/dell/srvadmin/sbin/srvadmin-services.sh status

    Note that there would be 2 instances of dsm_sa_datamgrd and dsm_om_connsvcd.

     

    3. Login to GUI

    https://<ip>:1311

     

    4. Since dellomsa is added to omarolemap file, you can use it to login using that id in the web GUI.

     

    Thanks,

    Sahil

     

  • Dell-Sahil J,


    Thank you for your prompt reply!

    sudo apt-get install srvadmin-all is what I used to install the DELL OMSA.

    I've removed dellomsa user and added kentc as new user for WEB GUI access to sudo nano /opt/dell/srvadmin/etc/omarolemap in place of dellomsa:

    kentc   *       Administrator
    +kentc  *       Poweruser

    kentc@:~$ groups
    kentc root sudo

    *added to visudo as well*

    # User privilege specification
    root    ALL=(ALL:ALL) ALL
    kentc ALL=(ALL:ALL) ALL


    Here is the output as needed:

    kentc@:~$ sudo service dsm_om_connsvc start
    Starting DSM SA Connection Service:  *

    kentc@:~$ sudo /opt/dell/srvadmin/sbin/srvadmin-services.sh status
    dsm_sa_datamgrd (pid 2245 1881) is running
    dsm_sa_eventmgrd (pid 2220) is running
    dsm_sa_snmpd (pid 2250) is running
    dsm_om_connsvcd (pid 9374 9373) is running

    kentc@:~$ netstat -nl | grep -E "(Local|1311)"
    Proto Recv-Q Send-Q Local Address           Foreign Address         State     
    tcp6       0      0 :::1311                 :::*                    LISTEN

    Here is a YouTube video of the problem: Browser=Google Chrome Browser: Version 54.0.2840.87 m (64-bit)
    https://youtu.be/IObGVa7FSUU

    Please details what steps I should try next.

    Thanks!

  • Hello,

    Is there any update from anyone that can address this issue?

  • Hello,

    Can you try logging into the OMSA after clearing your web browser's cache and let us know ?

    If cache clearing doesn't work, then please share apache-tomcat logs from the OMSA installation for us to proceed further.

    Thanks,

    Sahil

     

  • Sahil,

    I've cleared my browser cache/history and retried as suggested. No luck.

    I'm attaching my Apache-Tomcat logs as requested for further review to see if this something we can fix:
    /opt/dell/srvadmin/lib64/openmanage/apache-tomcat/logs$ [path I took logs from]

    localhost_access_log.2016-11-21

    You can download it from address: http://s000.tinyupload.com/?file_id=39625888691863480214

    You can delete file from address: http://s000.tinyupload.com/?del_id=80805288928770524253

    catalina.2016-11-21

    You can download it from address: http://s000.tinyupload.com/?file_id=54129331901524993463

    You can delete file from address: http://s000.tinyupload.com/?del_id=45282492893647924676

    These logs were empty:
    host-manager.2016-11-21
    manager.2016-11-21
    localhost.2016-11-21

    sudo /opt/dell/srvadmin/sbin/omreport preferences webserver attribute=getjre

    JRE Information

    Version : 1.7.0_79 (Bundled)
    Path    : /opt/dell/srvadmin//lib64/openmanage/jre

    Please let me know if you see anything that I can do to resolve this issue.

    Thanks!

     

  • Hello,

    Thank you for sharing the logs. As per logs, the HTTPS POST calls are not reaching to server (Tomcat) from your client (Browser).

    It could be one of the following reasons:

    1. Browser is not sending POST request due to some script error

    2. POST is sent, but reaching to different IP address

     

    Also, please check whether POST requests are working for other websites from that web browser. Make sure your firewall or proxy is not blocking the POST calls.

     

    You can enable the developer tools and goto network tab on your client (web browser) to see the behavior of POST calls

    Regards

    Chandra

  • Chandra/Sahil,

    Thank you for reviewing the logs. I will investigate what I can regarding your finding and see what the next step for us to resolve this would require. I will post back with my findings.


    EDIT:

    I noticed this in Google Chrome:
    Obsolete Connection Settings
    The connection to this site uses a strong protocol (TLS 1.2), a strong key exchange (ECDHE_RSA), and an obsolete cipher (AES_128_CBC with HMAC-SHA1).


    I am able to use GET and POST HTTP on other sites without issue in Google Chrome, as well as IE11 on my machine. I do have Windows Firewall to allow my LAN IP Range /24 on port 1311 and the server itself doesn't have any F/W up:

    sudo ufw status
    status : inactive

    I just wanted to make special note after correct user/password attempt, the DSM SA Service is still running but no matter if from localhost or remote machine I try to access the IP:1311 in any type of browser, the URL will say "This page can't be displayed".

    I've tried from numerous browsers, and https://IP:1311 types like https://localhost:1311,https://hostname:1311,https://websitename:1311

  • Chandra/Sahil,

    Here is another YouTube video of the issue using the F12 Developer Tool to show you what happens. I tested this in Firefox 50 locally using the hostname and localhost also with same results. This didn't work on IE11 as well on Windows 10 Pro either

    YouTube URL: https://youtu.be/mlGIXoo-ZJc

    Here is a Wireshark Screenshot from the TCP Stream:


    Please review and share your thoughts on what you think else could be done?

    Thanks!

  • DELL Support,

    Have you had any type of luck seeing what might be missing from the setup that would be blocking this GUI login from being used?

    I couldn't get the older version on the DELL repository for this version of Ubuntu to even load the GUI web login URL at all:

    More stats to help troubleshoot:
    ~$ lsb_release -a
    No LSB modules are available.
    Distributor ID: Ubuntu
    Description:    Ubuntu 14.04.1 LTS
    Release:        14.04
    Codename:       trusty

    ~$ java -version
    java version "1.7.0_121"
    OpenJDK Runtime Environment (IcedTea 2.6.8) (7u121-2.6.8-1ubuntu0.14.04.1)
    OpenJDK 64-Bit Server VM (build 24.121-b00, mixed mode)

    At the working GUI OMSA Web Login Page: taken from F12 [Network Tab] Google Chrome Chrome/54.0.2840.99 64bit
    Request URL:MyHostname:1311/OMSALogin
    Request Method:GET
    Status Code:200 OK
    Remote Address:IP:1311
    Response Headers
    view source
    Cache-Control:no-store
    Content-Encoding:gzip
    Content-Type:text/html;charset=UTF-8
    Date:Wed, 30 Nov 2016 19:37:05 GMT
    Expires:-1
    Pragma:no-cache
    Server:Apache-Coyote/1.1
    Transfer-Encoding:chunked
    Vary:Accept-Encoding
    Request Headers
    view source
    Accept:text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
    Accept-Encoding:gzip, deflate, sdch, br
    Accept-Language:en-US,en;q=0.8
    Connection:keep-alive
    Cookie:SSESSa1b7a387fc212c9974a4559778890d32=7-kdMgsYDIAp_QB1Dluy420HpNCujrwS7xTv-A2ZSuY; has_js=1
    Host:MyHostname:1311
    Referer:https://MyHostname:1311/
    Upgrade-Insecure-Requests:1
    User-Agent:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2840.99 Safari/537.36
    Query String Parameters
    view source
    view URL encoded
    msgStatus:null

    After the failed login attempt:
    Request Request URL:data:image/png;base64,
    Request Method:GET
    Status Code:200 OK (from memory cache)
    Provisional headers are shown

    Request URL:data:image/png;base64
    Request Method:GET
    Status Code:200 OK (from memory cache)
    Request Headers
    Provisional headers are shown

    Response tab:
    Shows no response date available

  • I meet exactly the same issue as you with OMSA 8.4 on Ubuntu 14.04.5 on R620.

    I can access the login page with https like: https://192.168.1.101:1311, but it always can't login with user and password inputed.

    Google Chrome is Version 52.0.2743.82m, it says:

    This site can't be reached.

    192.168.1.101 refused to connect.

    Have you fixed this issue?

    In this page: https://gopukrish.wordpress.com/2012/10/16/installing-omsa-in-an-ubuntu-machine/, it says "If unable to login to the webconsole using the users, check /etc/pam.d/ directory and rename omauth file", but I don't know where/how to get such omauth file.

    Could someone help to take a look? Thanks in advance.

  • In this page: stackoverflow.com/.../installing-openmanage-on-ubuntu-login-failed

    It also suggest to remove omauth file under /etc/pam.d/, but I can't find such file there. 

  • ROCKY.GU.2015,

    Thank you for your suggestion. I will try to do such and see if this removes the GUI from allowing login attempts.

    Here is where I found those files on Ubuntu 14.04.1:
    $ locate omauth
    /opt/dell/srvadmin/etc/omauth
    /opt/dell/srvadmin/etc/omauth/omauth.el6
    /opt/dell/srvadmin/etc/omauth/omauth.el7
    /opt/dell/srvadmin/etc/omauth/omauth.sles11
    /opt/dell/srvadmin/etc/omauth/omauth.sles12
    /opt/dell/srvadmin/etc/omauth/omauth.vmw40
    /opt/dell/srvadmin/etc/omauth/omauth.vmw41

    $ cd /opt/dell/srvadmin/etc/omauth
    opt/dell/srvadmin/etc/omauth $ ls
    omauth.el6  omauth.sles11  omauth.vmw40
    omauth.el7  omauth.sles12  omauth.vmw41

  • All,

    I tried the rename of the omauth directory and nothing changed. Those are SUSE/RHEL/VMWARE files anyways which didn't do anything once renamed and services stopped/restarted.

    I see both of us aren't the only people to have this issue:

    Here is another individual who had a similar issue.

  • I have another server R410 with Ubunt 14.04.5 desktop version, OMSA works well.

    But on the Ubuntu 14.04.5 server version, it meets this "connection refused" error, it should be something with pam settings since we can reach the login page, and if you try to login with wrong username/password, it will show you login failed. But if you use the correct username/password, it returns "connection refused".

    Try to search in google, most of the solution is to remove omauth from /etc/pam.d/ directory, but I don't find omauth under /etc/pam.d/