Ask Your Question
2

Fedora 26: sorry, that didn't work, please try again (Enterprise Login)

asked 2017-10-12 14:38:05 -0500

flobbadob gravatar image

updated 2017-10-13 15:06:01 -0500

Having restored a 'broken' Domain Controller (Zentyal) from a snapshot, I had to rejoin all the windows devices to the domain. My Fedora workstation has proved somewhat more difficult.

I have been able to successfully rejoin my Fedora workstation to the domain, but I am unable to login to the workstation using any domain user (whether one that has previously logged on, or a new account).

When I try to login with a domain account I get an error of "sorry, that didn't work, please try again".

However, when I take the workstation offline (i.e. disconnect from the network), I can login with an old (cached) password. Whilst logged in, I can reconnect to the network and access all my resources that are not Windows orientated.

I have found a few references to similar issues, and I have attempted to resolve my issue following their solutions but to no avail. Help, would be gratefully received.

Other information: -

  • Not surprisingly, the cached password stays the same when I change the domain users password.
  • On one account, I get notification that the password is about to expire (which it is) before I get the error message "sorry, that didn't work, please try again".
  • The problem persists regardless of whether I use the GUI or text mode.
  • If I try to reconnect via the Enterprise Login (Kerberos) Account (in Online Accounts) the error message reads "Error connecting to the Enterprise identity server: Timeout was reached".
  • The domain controller is Zentyal 4.2.11

Thanks in advance.

Update 2017-10-13 19:40

Thank you sideburns for pulling me out of the rabbit hole. Logs are as follows, from pre login attempt to the time I pull the network cable out of my machine so I can login: -


Oct 12 17:35:07 kernel: r8169 0000:07:00.0 exp6s0: link down

Oct 12 17:35:05 kernel: SERVICESTOP pid=1 uid=0 auid=xoxoxoxoxo ses=xoxoxoxoxo subj=systemu:systemr:initt:s0 msg='unit=systemd-localed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'

Oct 12 17:35:05 kernel: SERVICESTOP pid=1 uid=0 auid=xoxoxoxoxo ses=xoxoxoxoxo subj=systemu:systemr:initt:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'

Oct 12 17:35:04 kernel: SERVICESTOP pid=1 uid=0 auid=xoxoxoxoxo ses=xoxoxoxoxo subj=systemu:systemr:initt:s0 msg='unit=fprintd comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'

Oct 12 17:34:54 kernel: USERLOGIN pid=1870 uid=0 auid=xoxoxoxoxo ses=xoxoxoxoxo subj=systemu:systemr:xdmt:s0-s0:c0.c1023 msg='uid=0083990098 exe="/usr/libexec/gdm-session-worker" hostname=? addr=? terminal=? res=failed'

Oct 12 17:34:52 gdm-session-wor: pam_sss(gdm-password:auth): received for user numpty@wdomain.local : 17 (Failure setting user credentials)

Oct 12 17:34:52 gdm-session-wor: pam_sss(gdm-password:auth): authentication failure; logname= uid=0 euid=0 ...

(more)
edit retag flag offensive close merge delete

Comments

I'm not familiar with the software, but I do have two suggestions. First, does Zentyal keep logs, and if so, have you examined them? Second, are you able to connect to the machine with ssh?

sideburns gravatar imagesideburns ( 2017-10-12 15:20:59 -0500 )edit

Zentyal is basically a Ubuntu based home/small business server for a windows based environment (Similar in function to ClearOS or Nethserver), and it does keep logs. I can connect to the Zentyal server with SSH using one of the domain accounts using the current (correct password).

flobbadob gravatar imageflobbadob ( 2017-10-13 01:53:04 -0500 )edit

OK, we now know for sure that there's not a connectivity issue. Have you examined those logs?

sideburns gravatar imagesideburns ( 2017-10-13 02:31:00 -0500 )edit

Two things: first, I asked you to examine the logs, not post them here for me to grovel over and second, if you're using an Ubuntu based server, why are you asking here, not on the Ubuntu help forum? This is an issue on your server, not your workstation!

sideburns gravatar imagesideburns ( 2017-10-14 02:40:12 -0500 )edit

1 Answer

Sort by ยป oldest newest most voted
0

answered 2017-12-09 07:10:20 -0500

Huwmungous gravatar image

I am facing a very similar problem on Fedora 27, I think.

I my case I can login from a windows machine with any AD account but on the Fedora workstation I get the 'Sorry that didn't work' message. Also I can 'su' to any of the domain accounts once logged in as a unix user. I think this rules out the server as a cause.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

Stats

Asked: 2017-10-12 14:38:05 -0500

Seen: 679 times

Last updated: Oct 13 '17