Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect Multi-Server » Installation stalls
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
I'm trying to deploy 8.5.0 multi-server in my VMWare 5.5 test environment. I get the link from the downloads page, start the 'deploy OVF template' process in VMWare. That part all goes pretty well. When I power up the virtual machine for the first time, I see messages go by on the console, include one about a script line missing, and another about the puppet config is missing.

The I see the configuration wizard screen, telling me about the various kinds of servers, and that's where is stops. No amount of pleading or button pressing will get it to go any farther.

I'm sure there's a simple step that I missed. I also have one other question -- The installation guide (http://kb.kerio.com/1775) gives advice about memory, CPU and Disk configs. Yet the template is a plain 1 CPU, 1GB ram, 10GB disk deployment. Changing the CPU and Ram is easy, but what about the disk? Do I just add an additional disk to the VM and it will auto-discover, or do I have to resize the original disk allocation> If the latter, what steps do I take to make the extra space visible to the VM?
  •  
Jakub Schwarzmeier, Kerio

Messages: 67
Karma: 1
Send a private message to this user
Can you post a screenshot to clarify where exactly the configuration wizard get stuck?
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
Screen shot from VMWare client attached. At this point, the virtual machine console is unresponsive. I can shut the VM down by using the vCenter manager.

  • Attachment: Stalled.PNG
    (Size: 84.48KB, Downloaded 278 times)
  •  
Jakub Schwarzmeier, Kerio

Messages: 67
Karma: 1
Send a private message to this user
Have you tried to press Tab key so that the focus gets to <Ok> button? Once the button is highlighted, Enter should allow you to proceed to next steps.
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
Probably about the only key I didn't hit. That's embarrassing.
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
According to the setup guide (KB1775), the puppet master needs about 100GB of disk space. Adding a second hard drive to the Vm is easy enough, but where should it be mounted in the file system.
  •  
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
Brian -- it does, except that this is the 'puppet master' server, so I suspect it doesn't need a 'store' folder, so the question is which of the existing directory / mount points do I move to the new storage?
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
Well, I got a little closer. I see the attached when I try to set up the directory server.

  • Attachment: CertFail.PNG
    (Size: 63.71KB, Downloaded 241 times)
  •  
nate.keegan

Messages: 46
Karma: 0
Send a private message to this user
A couple of things I have run into so far, none of which are deal breakers but are handy to know the first time out maybe.

Underpowering the VMs as far as memory or CPU (but mostly memory) causes the installer to do some weird things. Example, I tried to run the Directory Server VMDK this morning with 384 Mb of virtual memory and it barfed when trying to start services during the installation.

With VMDK one needs an unintialized/unbooted copy of a VMDK before pointing a VM at the VMDK. Basically I run 'vmkfstools -i <source vmdk> kerio-<role>.vmdk' for each role in case I have to re-do a role installation.

Having said that, if an installation fails I stop the problem VM, remove it from vSphere/VMWare, create a new VMDK copy, clear the Puppet SSL certificate (on Puppet - 'puppet cert clean <fqhn of failed vm>') and remove the DHCP lease for the problem VM if I will be reusing the hostname.

The Multi-Server roles need/want FTP/HTTP/HTTPS access to ftp.debian.org, keyserver.ubuntu.com, and security.debian.org during the initial setup. I don't know that this is mandatory but to err on the side of caution I allowed this for our VMs in our firewall.

Depending on your setup this may or may not trip you up - when prompted during the Puppet installation the internet hostname is akin to the VIP name for a load balancer (i.e. the service name that hosts will use to hit Kerio MS) and the 'domain name' is the DNS domain for the hosts. In our environment the DNS domain is say 'foo.com' and our email is '<_at_>bar.com' so for 'domain name' we put in 'foo.com' and then I went ahead and added an A record for each role in our DNS.

For example, 192.168.1.1 is kerio-dhcp, 192.168.1.2 is kerio-puppet, 192.168.1.3 is kerio-directory, 192.168.1.4 is kerio-backend1, etc. This way the installation and Kerio Puppet are able to figure out that a given host is kerio-directory.foo.com.
  •  
nate.keegan

Messages: 46
Karma: 0
Send a private message to this user
I think your certificate error/message is due to your local DNS and Puppet not meshing so that Puppet can figure out the name of the new role.dnsDomain (i.e. kerio-directory.foo.com is 192.168.x.y or whatever it actually is).
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
I applied the "clean slate" protocol.


  • I recreated all the VM's I need (KC-PuppetMaster, KC-Directory, KC-BackEnd, KC-FrontEnd)
  • I created reservations in my DHCP server so they would obtain an IP address that's allowed out of my net work.
  • I created DNS entries for the machines (*.MyDOmain.net). The dhcp server will also register *.myActiveDirectory.local.


I can install the puppet master without issue. The Directory server and the backend server both fail with an error as in the attached file. Basically, it gives a message that is is creating a new SSL key, then 'could not request certificate', and 'name or service not found'.

  • Attachment: CertFail2.PNG
    (Size: 50.47KB, Downloaded 241 times)
  •  
nate.keegan

Messages: 46
Karma: 0
Send a private message to this user
Can Puppet resolve kc-backend.mold-rite.local in DNS? Anything in the Puppet logs on Directory Server?
  •  
Bud Durland

Messages: 390
Karma: 43
Send a private message to this user
The PuppetMaster and the Directory server can resolve each other's names (all variants) and pings are successful. The 'puppet-install-*' file in /var/log/puppet on the Directory server contains the three lines shown in the screen shot.
Bhardwaj

Messages: 8

Karma: 0
Send a private message to this user
I'm trying to setup 8.5.1 Kerio multi-server on vmware esxi 5.5. when i setup puppet master in the end of setup puppet master show some errorr please open attachment.

  • Attachment: Puppet.jpg
    (Size: 189.76KB, Downloaded 293 times)

Vinod Bhardwaj
Previous Topic: Puppet Master Setup Error
Next Topic: Planning what we are in for
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Fri Sep 22 13:45:22 CEST 2017

Total time taken to generate the page: 0.00547 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.