Centurion
Cadet
Cadet
  • 887 Views

Scripts for RedHat Administration I

The Netlab for the RedHat Academy seems to be missing some scripts like lab process that creates services for students to kill in lab 8.  Also so far the script to create users in Lab 6

If anyone has some where to point me that would be appreciated.

Labels (1)
0 Kudos
3 Replies
ralii
Starfighter Starfighter
Starfighter
  • 876 Views

Re: Scripts for RedHat Administration I

You may want to reach out to Netlab. There was a certificate expiration that hit the environment in early January 2019. Netlab has apparently updated their environments but there may be something that you need to do to activate.

FYI, the problem broke the the Apache process on the classroom VM. That process *serves* the lab scripts to the student systems. An inability to run lab scripts is a symptom of this problem.

--Rob
Highlander of UCF (the classroom environment)

0 Kudos
Reply
Loading...
Centurion
Cadet
Cadet
  • 825 Views

Re: Scripts for RedHat Administration I

Thanks.  Rob

Do you know if a copy of the scripts are available?

0 Kudos
Reply
Loading...
ralii
Starfighter Starfighter
Starfighter
  • 803 Views

Re: Scripts for RedHat Administration I

There are two workarounds for already deployed classroom VMs.
 
1) On the classroom VM, authenticate as root (instructors should know
the password), and edit the /etc/httpd/conf.d/nss.conf file and append
a line "NSSEnforceValidCerts Off" which is likely to be functional and
simply ignore the expired certificates which we do not believe we ever
use. You should then be able to start the web server and have
rht-verify-classroom report happy!
2) On the classroom VM, you can replace the certs by executing the
following sequence of commands as root on the classroom VM:
classroom# sed -i -e 's/VALIDITY=.*/VALIDITY=120/g' /usr/sbin/gencert
classroom# mkdir /etc/httpd/alias/old
classroom# mv /etc/httpd/alias/*.db /etc/httpd/alias/old
classroom# /usr/sbin/gencert /etc/httpd/alias >
/etc/httpd/alias/install.log 2>&1
classroom# chgrp apache /etc/httpd/alias/*.db
classroom# chmod g+r /etc/httpd/alias/*.db
You can view the expiration date with:
classroom# certutil -L -n Server-Cert -d /etc/httpd/alias
They should then be able to start the web server and have
rht-verify-classroom report happy!
classroom# systemctl restart httpd
classroom# rht-verify-classroom
 
Hope that helps!
 
--Rob
0 Kudos
Reply
Loading...
Join the discussion
You must log in to join this conversation.