Hey all,

My server is close to production ready and I'm just figuring out the scripting backend of Zimbra 8.0 (multi-server install - ldap/mailbox/mta, no proxy/replica). I'm attempting to use the admin authenticated zmmailbox (ie. zmmailbox -z) for things like backing up individual mailboxes.

Here's where the problem starts

Code:
[zimbra@mailbox ~]$ /opt/zimbra/bin/zmmailbox -z -m odd@test.example.com getRestURL "//?fmt=tgz" > /tmp/odd.tgz
ERROR: remote.NOROUTE (https://mailbox.example.com:7071/service/admin/soap/) (cause: java.net.NoRouteToHostException No route to host)
Which seems odd because I've run something like

Code:
[zimbra@mailbox ~]$ zmmailbox -m odd@test.example.com -p passw0rd12#
mailbox: odd@test.example.com, size: 64.79 KB, messages: 43, unread: 0
authenticated as odd@test.example.com
mbox odd@test.example.com>
So this is certainly something to do with admin auth'ed operations. For example:

Code:
[zimbra@mailbox ~]$ zmmailbox
mbox> aa mb-admin@test.example.com passw0rd12#
mbox>sm odd@test.example.com
ERROR: remote.NOROUTE (https://mailbox.example.com:7071/service/admin/soap/) (cause: java.net.NoRouteToHostException No route to host)
So authentication through zmmailbox is working for both admin and users, but operations with zmmailbox are only working on user accounts and not through admin accounts.
FWIW this install is still running with self signed certificates, none of which have been added into certificate bundles on any machine. I've read that this may be part of the issue, but nothing solid has come out of it. I've also tried reverting back to http (su - zimbra -c zmprov -ms mailbox.example.com zimbraMailMode http), but the URL used for zmmailbox didn't change, I may have to also restart the zldap and mta servers to get this setting to propogate properly, but I'm still working out the exact procedure there - any more information on that theory would be welcomed.

Extra information:

/etc/hosts
Code:
192.168.0.7     mailbox.example.com mailbox
127.0.0.1   localhost.localdomain   localhost
/etc/resolv.conf
Code:
search example.com
nameserver 192.168.1.11
nslookup
Code:
Server:	192.168.1.11
Address:	192.168.1.11#53

Name:	mailbox.example.com
Address: 192.168.0.9
Debug from a admin auth'ed zmmailbox
Code:
[zimbra@mailbox ~]$ zmmailbox -z -m odd@test.example.com -d
========== SOAP SEND ==========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra">
      <nosession/>
      <userAgent name="zmmailbox" version="8.0.0_GA_5434"/>
    </context>
  </soap:Header>
  <soap:Body>
    <AuthRequest xmlns="urn:zimbraAdmin">
      <name>zimbra</name>
      <password>passw0rd12#</password>
    </AuthRequest>
  </soap:Body>
</soap:Envelope>
===============================
======== SOAP RECEIVE =========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra"/>
  </soap:Header>
  <soap:Body>
    <AuthResponse xmlns="urn:zimbraAdmin">
      <authToken>0_8d7aec23cdab321a012690bfd64d77fbd33b14cf_69643d33363a65306661666438392d313336302d313164392d383636312d3030306139356439386566323b6578703d31333a313335313736313231323135353b61646d696e3d313a313b747970653d363a7a696d6272613b</authToken>
      <lifetime>43199999</lifetime>
    </AuthResponse>
  </soap:Body>
</soap:Envelope>
=============================== (276 msecs)
========== SOAP SEND ==========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra">
      <authToken>0_8d7aec23cdab321a012690bfd64d77fbd33b14cf_69643d33363a65306661666438392d313336302d313164392d383636312d3030306139356439386566323b6578703d31333a313335313736313231323135353b61646d696e3d313a313b747970653d363a7a696d6272613b</authToken>
      <nosession/>
      <userAgent name="zmmailbox" version="8.0.0_GA_5434"/>
    </context>
  </soap:Header>
  <soap:Body>
    <GetAccountInfoRequest xmlns="urn:zimbraAdmin">
      <account by="name">odd@test.example.com</account>
    </GetAccountInfoRequest>
  </soap:Body>
</soap:Envelope>
===============================
======== SOAP RECEIVE =========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra"/>
  </soap:Header>
  <soap:Body>
    <GetAccountInfoResponse xmlns="urn:zimbraAdmin">
      <name>odd@test.example.com</name>
      <a n="zimbraId">1acdc909-0b20-49d2-a1af-e000f9955267</a>
      <a n="zimbraMailHost">mailbox.example.com</a>
      <cos id="5e8adf16-8d95-4d7c-a6cd-9db5ed8c669e" name="some-cos"/>
      <soapURL>http://mailbox.example.com:80/service/soap/</soapURL>
      <soapURL>https://mailbox.example.com:443/service/soap/</soapURL>
      <adminSoapURL>https://mailbox.example.com:7071/service/admin/soap/</adminSoapURL>
      <publicMailURL>https://mailbox.example.com:443</publicMailURL>
    </GetAccountInfoResponse>
  </soap:Body>
</soap:Envelope>
=============================== (53 msecs)
========== SOAP SEND ==========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra">
      <authToken>0_8d7aec23cdab321a012690bfd64d77fbd33b14cf_69643d33363a65306661666438392d313336302d313164392d383636312d3030306139356439386566323b6578703d31333a313335313736313231323135353b61646d696e3d313a313b747970653d363a7a696d6272613b</authToken>
      <nosession/>
      <userAgent name="zmmailbox" version="8.0.0_GA_5434"/>
    </context>
  </soap:Header>
  <soap:Body>
    <DelegateAuthRequest duration="86400" xmlns="urn:zimbraAdmin">
      <account by="name">odd@test.example.com</account>
    </DelegateAuthRequest>
  </soap:Body>
</soap:Envelope>
===============================
======== SOAP RECEIVE =========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra"/>
  </soap:Header>
  <soap:Body>
    <DelegateAuthResponse xmlns="urn:zimbraAdmin">
      <authToken>0_10ccb3de57278f3a9d070810abf2673d67e2e890_69643d33363a31616364633830382d306232302d343964322d613161662d6530303066393935353236373b6578703d31333a313335313830343431373739313b6169643d33363a65306661666493992d313336302d313164392d383636312d3030306139356439386566323b747970653d363a7a696d6272613b</authToken>
      <lifetime>86400000</lifetime>
    </DelegateAuthResponse>
  </soap:Body>
</soap:Envelope>
=============================== (47 msecs)
========== SOAP SEND ==========
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
  <soap:Header>
    <context xmlns="urn:zimbra">
      <authToken>0_10ccb3de57278f3a9d070810abf2673d67e2e890_69643d33363a31616364633830382d306232302d343964322d613161662d6530303066393935353236373b6578703d31333a313335313830343431373739313b6169643d33363a65306661666438392d313336302d313164392d383636312d3030306139356439386566323b747970653d363a7a696d6272613b</authToken>
      <session/>
      <account by="name">odd@test.example.com</account>
      <userAgent name="zclient" version="8.0.0_GA_5434"/>
    </context>
  </soap:Header>
  <soap:Body>
    <NoOpRequest xmlns="urn:zimbraMail"/>
  </soap:Body>
</soap:Envelope>
===============================
ERROR: remote.NOROUTE (https://mailbox.example.com:7071/service/admin/soap/) (cause: java.net.NoRouteToHostException No route to host)
Any help would be greatly appreciated!

Thanks!