upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Ask questions about your setup or get help installing ZCS server (ZD section below).
aderumier
Posts: 2
Joined: Tue Aug 02, 2016 3:00 pm

upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Postby aderumier » Tue Aug 02, 2016 3:20 pm

Hi,

I had upgrade failure when upgrading to 8.7,

because installer remove %zimbra lines from /etc/sudoers

and include them in /etc/sudoers.d/...

My problem was that /etc/sudoers.d was not read, because my
/etc/sudoers don't have
#includedir /etc/sudoers.d

I have added this line, and after that it's working fine.

It could be great if the installer check if "#includedir /etc/sudoers.d" exist (or add it)


domi007
Posts: 1
Joined: Wed Aug 03, 2016 9:52 pm

Re: upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Postby domi007 » Wed Aug 03, 2016 9:54 pm

I just registered to say thank you so much, you saved me a lot of time of investigation!
rado08
Posts: 1
Joined: Fri Aug 12, 2016 11:57 am

Re: upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Postby rado08 » Fri Aug 12, 2016 12:10 pm

aderumier wrote:Hi,

I had upgrade failure when upgrading to 8.7,

because installer remove %zimbra lines from /etc/sudoers

and include them in /etc/sudoers.d/...

My problem was that /etc/sudoers.d was not read, because my
/etc/sudoers don't have
#includedir /etc/sudoers.d

I have added this line, and after that it's working fine.

It could be great if the installer check if "#includedir /etc/sudoers.d" exist (or add it)


Same here! Just registered to the forum to say THANK YOU VERY MUCH
Saved me hours of reaserch!
:D :D :D :D :D :D :D
User avatar
jorgedlcruz
Zimbra Alumni
Zimbra Alumni
Posts: 2773
Joined: Thu May 22, 2014 4:47 pm

Re: upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Postby jorgedlcruz » Sun Aug 14, 2016 2:55 pm

Hi guys,
Would you mind to let us know the ZCS version you came from, including Patch level (and if it was installed like P1, P2, P3, or just the P6 or P7, etc.) plus your OS too?

I'm asking internally to see if we have a filled bug already.

Thank you
Jorge de la Cruz https://jorgedelacruz.es
Systems Engineer at Veeam Software https://www.veeam.com/
aderumier
Posts: 2
Joined: Tue Aug 02, 2016 3:00 pm

Re: upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Postby aderumier » Wed Aug 17, 2016 12:23 pm

Hi,

I was upgrade from zimbra 8.6 P6 to 8.7, on ubuntu 14.04.

But the server was upgraded from initial install some years ago (don't remember exactly ubuntu version, but I was zimbra5 or 6 on ubuntu Ubuntu 8.04), without the support of the include sudoer.d.
bhwong
Advanced member
Advanced member
Posts: 151
Joined: Thu Feb 27, 2014 8:40 pm

Re: upgrade to 8.7 ldap start failure because of /etc/sudoers.d

Postby bhwong » Fri Dec 02, 2016 9:26 am

Does it matter where you add that in the file?

This link: https://wiki.zimbra.com/wiki/Sudoers suggest adding NOPASSWD to plenty of zimbra folders:

Code: Select all

%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmstat-fd *
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmslapd
%zimbra ALL=NOPASSWD:/opt/zimbra/postfix/sbin/postfix, /opt/zimbra/postfix/sbin/postalias, /opt/zimbra/postfix/sbin/qshape.pl, /opt/zimbra/postfix/sbin/postconf,/opt/zimbra/postfix/sbin/postsuper
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmqstat,/opt/zimbra/libexec/zmmtastatus
%zimbra ALL=NOPASSWD:/opt/zimbra/amavisd/sbin/amavis-mc
%zimbra ALL=NOPASSWD:/opt/zimbra/libexec/zmmailboxdmgr
%zimbra ALL=NOPASSWD:/opt/zimbra/bin/zmcertmgr


and change Defaults from env_reset to requiretty.

Return to “Installation and Upgrade”

Who is online

Users browsing this forum: No registered users and 6 guests