Unable to login to zimbraAdmin

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
bwest
Posts: 4
Joined: Tue May 28, 2019 9:41 am

Unable to login to zimbraAdmin

Postby bwest » Tue May 28, 2019 10:23 am

Having been affected by CVE-2019-9670 we cleaned the system and applied patch 14:

Code: Select all

Release 8.6.0.GA.1153.UBUNTU14.64 UBUNTU14_64 FOSS edition, Patch 8.6.0_P14.

After fixing file- and folderpermissions, running zmfixperms and applying KB22039 we were able to login to the normal Webinterface as user again.
Login to the admin console however does not work. mailbox.log shows:

Code: Select all

 WARN  [qtp509886383-5836:https://XXXX:7071/service/admin/soap/GetInfoRequest] [ip=XXXX;] SoapEngine - no valid authtoken present: cannot dispatch request

Any help appreciated.


dachat
Posts: 2
Joined: Tue May 28, 2019 4:21 pm

Re: Unable to login to zimbraAdmin

Postby dachat » Tue May 28, 2019 4:29 pm

I cannot login to the admin console after applied Patch 8.6.0.
Please help me fix this problem.
Tks
phoenix
Ambassador
Ambassador
Posts: 26516
Joined: Fri Sep 12, 2014 9:56 pm
Location: Liverpool, England

Re: Unable to login to zimbraAdmin

Postby phoenix » Tue May 28, 2019 4:31 pm

dachat wrote:I cannot login to the admin console after applied Patch 8.6.0.
Please help me fix this problem.
Tks
A quick search of the forums would have given you the answer to this question, go to the wiki and read the article on how to reset the admin password.
Regards

Bill

Rspamd: A high performance spamassassin replacement

Per ardua ad astra
dachat
Posts: 2
Joined: Tue May 28, 2019 4:21 pm

Re: Unable to login to zimbraAdmin

Postby dachat » Tue May 28, 2019 4:42 pm

I try reset :zmprov sp adminname@domain.com <password>. But The admin console does not working.
Log: WARN [qtp509886383-5836:https://XXXX:7071/service/admin/soap/GetInfoRequest] [ip=XXXX;] SoapEngine - no valid authtoken present: cannot dispatch request
How to fix?
phoenix
Ambassador
Ambassador
Posts: 26516
Joined: Fri Sep 12, 2014 9:56 pm
Location: Liverpool, England

Re: Unable to login to zimbraAdmin

Postby phoenix » Tue May 28, 2019 5:18 pm

dachat wrote:How to fix?
How about doing some research first with something like an internet search?

https://www.startpage.com/do/dsearch?query=%2B%22no+valid+authtoken+present%3A+cannot+dispatch+request%22&cat=web&pl=opensearch&language=english
Regards

Bill

Rspamd: A high performance spamassassin replacement

Per ardua ad astra
bwest
Posts: 4
Joined: Tue May 28, 2019 9:41 am

Re: Unable to login to zimbraAdmin

Postby bwest » Wed May 29, 2019 12:46 pm

As said in the original question by me we already have:
    * fixed file- and folderpermissions
    * run zmfixperms
    * applied KB22039 (zmprov mcf zimbraCsrfTokenCheckEnabled FALSE)
    * compared md5sums for mailbox/webapps with a freshly installed and patched system
We still cannot login to the admin conole (zimbraAdmin)

By the way, the exploit also created a new administration account on our system so it's probably a good idea for other infected systems to check their admin accounts running "zmprov gaaa".

Any help appreciated

Best
Bernhard

Return to “Administrators”

Who is online

Users browsing this forum: No registered users and 7 guests