LDAP server unavailable: SERVER_DOWN

Marcel Bischoff marcel at herrbischoff.com
Mon Jan 8 15:00:35 CET 2018 

Hi all,

I have recently set up a Kolab 16 installation, following this guide: https://docs.kolab.org/installation-guide/ubuntu-16.04.html

Initially everything worked alright until users started connecting continually. Now, from time to time, without immediate apparent reason, the LDAP service becomes unreachable (according to the log messages). This can only be solved by manually restarting the service with "systemctl restart dirsrv at mx.service". Even restarting the server does nothing to recitify this, although the service is started at that time.

The only deviation from the installation instructions is the TLS setup as that appears not to be covered anywhere, which has caused me great frustration, especially with regard to GUAM.

Below is a relevant excerpt from /var/log/kolab/pykolab.log. Any ideas what the problem is here? I keep getting user complaints of not being able to log in, neither web nor email clients, which put me on the scent of the LDAP server being the central authentication instance.

2018-01-08 14:01:10,922 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:04:05,940 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:10:24,674 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:15:49,913 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:17:15,092 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:17:18,222 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:20:34,028 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:39:08,989 pykolab.auth ERROR LDAP-Server nicht erreichbar: SERVER_DOWN({'desc': "Can't contact LDAP server"},)
2018-01-08 14:39:08,991 pykolab.auth ERROR Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/ldap/__init__.py", line 3065, in _search
    secondary_domains
  File "<string>", line 10, in <module>
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/ldap/__init__.py", line 2963, in _regular_search
    (_result_type, _result) = self.ldap.result(_search, False, 0)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 503, in result
    resp_type, resp_data, resp_msgid = self.result2(msgid,all,timeout)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 507, in result2
    resp_type, resp_data, resp_msgid, resp_ctrls = self.result3(msgid,all,timeout)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 514, in result3
    resp_ctrl_classes=resp_ctrl_classes
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 521, in result4
    ldap_result = self._ldap_call(self._l.result4,msgid,all,timeout,add_ctrls,add_intermediates,add_extop)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 106, in _ldap_call
    result = func(*args,**kwargs)
SERVER_DOWN: {'desc': "Can't contact LDAP server"}

2018-01-08 14:39:08,991 pykolab.auth ERROR -- erneuter Verbindungsaufbau in 10 Sekunden.
2018-01-08 14:39:08,992 pykolab.auth ERROR LDAP server unavailable: SERVER_DOWN({'desc': "Can't contact LDAP server"},)
2018-01-08 14:39:08,993 pykolab.auth ERROR Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/ldap/__init__.py", line 3065, in _search
    secondary_domains
  File "<string>", line 10, in <module>
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/ldap/__init__.py", line 2744, in _persistent_search
    resp_ctrl_classes={ecnc.controlType:ecnc}
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 521, in result4
    ldap_result = self._ldap_call(self._l.result4,msgid,all,timeout,add_ctrls,add_intermediates,add_extop)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 106, in _ldap_call
    result = func(*args,**kwargs)
SERVER_DOWN: {'desc': "Can't contact LDAP server"}

2018-01-08 14:39:08,993 pykolab.auth ERROR -- reconnecting in 10 seconds.
2018-01-08 14:39:12,009 pykolab.wallace ERROR Module resources.heartbeat() failed with error: Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/wallace/__init__.py", line 89, in modules_heartbeat
    modules.heartbeat(module, lastrun)
  File "/usr/lib/python2.7/dist-packages/wallace/modules.py", line 128, in heartbeat
    return modules[name]['heartbeat'](*args, **kw)
  File "/usr/lib/python2.7/dist-packages/wallace/module_resources.py", line 433, in heartbeat
    resource_dns = auth.find_resource('*')
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/__init__.py", line 220, in find_resource
    result = self._auth.find_resource(address)
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/ldap/__init__.py", line 769, in find_resource
    self._bind()
  File "/usr/lib/python2.7/dist-packages/pykolab/auth/ldap/__init__.py", line 1441, in _bind
    self.ldap.simple_bind_s(bind_dn, bind_pw)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 919, in simple_bind_s
    res = self._apply_method_s(SimpleLDAPObject.simple_bind_s,*args,**kwargs)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 905, in _apply_method_s
    self.reconnect(self._uri,retry_max=self._retry_max,retry_delay=self._retry_delay)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 871, in reconnect
    self._apply_last_bind()
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 844, in _apply_last_bind
    SimpleLDAPObject.simple_bind_s(self,'','')
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 223, in simple_bind_s
    resp_type, resp_data, resp_msgid, resp_ctrls = self.result3(msgid,all=1,timeout=self.timeout)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 514, in result3
    resp_ctrl_classes=resp_ctrl_classes
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 521, in result4
    ldap_result = self._ldap_call(self._l.result4,msgid,all,timeout,add_ctrls,add_intermediates,add_extop)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 106, in _ldap_call
    result = func(*args,**kwargs)
INAPPROPRIATE_AUTH: {'info': 'Anonymous access is not allowed', 'desc': 'Inappropriate authentication'}

2018-01-08 14:39:17,986 pykolab.auth ERROR Invalid DN, username and/or password.
2018-01-08 14:39:31,749 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:39:32,067 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:39:32,341 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:39:32,916 pykolab.wallace WARNING No contents configured for footer module
2018-01-08 14:39:38,655 pykolab.wallace WARNING No contents configured for footer module

Thank you for any and all ideas how to make this more stable.

Best regards,
Marcel Bischoff

More information about the users mailing list