Remy | 5 Sep 20:07 2014
Picon

ldap authentication: unexpected behaviour

Hi cacti-user <at> ,

I'm using cacti with LDAP authentication configured to authenticate with 
an OpenLDAP server.
My ldap user has no right except to bind and search for my own 
attributes in the ldap schema, so no ldap compare works with my own 
user.

In cacti I have set up the "specific DN search" option and provided a 
service account which has more privileges so it can be used to search, 
compare, etc.

The problem i'm facing is that if I check the "require group membership" 
option, cacti is trying to ldap_compare() using a ldap_bind() previously 
done with my credentials instead of the specific DN provided, which in 
my setup fails because my account can't see group attributes in the ldap 
schema.

I would have expected it to use the specific DN to ldap_compare().

Is this done on purpose ? If so, could you help me understand in which 
situation this is usefull ?
I think this can only works with a ldap server who allows your user to 
read group attributes like Microsoft Active Directory.

This patch in Authenticate() from ldap.php works for me:

[remy <at> cactiserver lib]# diff -u ldap.php.backup_original ldap.php
--- ldap.php.backup_original 2014-08-06 15:27:52.000000000 -0400
+++ ldap.php 2014-08-07 20:21:20.000000000 -0400
(Continue reading)

Mark Haney | 22 Aug 20:07 2014

Cacti on CentOS 7

I've got Cacti setup on CentOS 7, but I'm encountering a problem getting 
any graph data. I get graphs, just nothing in them, including the 
localhost graphs. I've setup the file permissions on the rra/ and log/ 
directories to the 'cacti' user and the poller creates and appears to 
update the RRD files, but still no data in the graphs.

I've disabled SELinux, but that hasn't done anything to fix it. Anyone 
got any ideas on where I look next?

--

-- 
Mark Haney::: Sr. Systems Engineer

VIF International Education
P.O. Box 3566 ::: Chapel Hill, N.C. 27515 ::: USA
919-265-5007 office

Make Learning Global.
www.vifprogram.com

Recognized as a ‘Best for the World’ B Corp!

------------------------------------------------------------------------------
Slashdot TV.  
Video for Nerds.  Stuff that matters.
http://tv.slashdot.org/
Jaap Winius | 15 Aug 02:15 2014
Picon

Kerberos authentication

Hi folks,

My site uses Apache web servers that support authentication via MIT 
Kerberos (mod-auth-krb). If my admin users have Cacti login names that 
match their Kerberos principal names, is it possible to set up Kerberos 
authentication for their Cacti accounts?

Thanks,

Jaap

------------------------------------------------------------------------------
Matthew Newton | 25 Jul 19:37 2014
Picon
Picon

Spine "is_numeric" incorrectly returns TRUE for some hexadecimal values

Hi,

[Ref cacti spine v0.8.8a, same as latest HEAD.]

We're polling a Brocade fibre channel switch, which returns its
64-bit data in an octet-string format (rather than the more
sensible plain 64-bit integer).

It looks like spine should have code to handle this already with
the is_hexadecimal tests at e.g. poller.c:1107, but the values are
not getting converted to decimal. The returned values look like
"00 01 66 D7 44 4E 17 34".

It turns out that the is_numeric test (poller.c:1105) is returning
true for the above value, which means that it never falls through
- of course, it never parses as a decimal number, either... :)

The code in is_numeric tests as follows:

  is it a long (strtol) - check return code and matched length
  is it a double (strtod) - ditto return code and length
  some other test for a space, if no errno set.

The final bit of the code doesn't seem to make sense -
util.c:839-847.

It says that if there was an error (this will be from strtod
only), then return false - OK.

However, if there _wasn't_ an error then it should test to see if
(Continue reading)

Turbo Fredriksson | 20 Jul 21:59 2014

Simplify creating templates etc

I've created a SNMP module for ZFS (I previously had made Bind9, Bacula
and some other minor modules) that uses pass_persist and 'tablified'
data.

If anyone is interested - https://github.com/FransUrbo/snmp-modules.

It's been three-four years since I wrote the last one and I remember that
writing the module and the XML file(s) was _easy_ compared to configuring
Cacti to output graphs from this...

Eventually I succeeded and if I remember correctly, the exported template(s)
couldn't be imported into another machine/installation. Something about some
UUID/hash mismatching or something like that - https://github.com/FransUrbo/snmp-modules/blob/master/bacula/cacti_data_query_snmp_local_bacula_statistics_query.xml

I've googled and looked at the documentation on cacti.net, but the part
about indexed SNMP data is very sparse. And every single one I found is
almost word-by-word identical! And even worse, they're almost word-by-word
identical to the 'postit info documentation' I wrote for my self at the
time - https://github.com/FransUrbo/snmp-modules/blob/master/bacula/README.txt :).

So what's the simplest/fastest way to go from a number of SNMP tables
to actual graphs?
--
You know, boys, a nuclear reactor is a lot like a woman.
You just have to read the manual and press the right buttons
- Homer Simpson

------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
(Continue reading)

Lukasz Sokol | 10 Jul 15:14 2014
Picon

Current Graph Values dump / grid / plugin?

Hi Cacti-Users,

How can I get to the current values of the RRD's (max,min,avg), if possible,
select the period I'm interested in (e.g. weekly/30min avg),
possibly on one large grid/text file (one line per host) for further analysis in external program ?

Kind Regards
lukasz

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
裴斐 | 11 Jun 09:22 2014
Picon

All the graphs are display correctly except one graph

Hi,
    The problem is that all the graphs are display correctly except one
graph.
    Graph A and Graph B display correctly.
    Graph C contains all the items in Graph A and Graph B, but Graph C
cannot display. I've checked all the 329 items in Graph C. It seems nothing
wrong here. Where could be the problem?

    Another question. This Cacti have run for several years, but the
cacti.log is blank. How to set the cacti to write log info into cacti.log?

    System infomation:

Cacti Version0.8.7bPlugin Architecture2.1Poller TypeCactid vServer InfoLinux
2.6.18-348.12.1.el5Web ServerApache/2.2.3 (CentOS)PHP Version5.1.6PHP
Extensionslibxml, xml, wddx, tokenizer, sysvshm, sysvsem, sysvmsg,
standard, SimpleXML, sockets, SPL, shmop, session, Reflection, pspell,
posix, mime_magic, iconv, hash, gmp, gettext, ftp, exif, date, curl, ctype,
calendar, bz2, zlib, pcre, openssl, apache2handler, dbase, gd, ldap, mysql,
mysqli, PDO, pdo_mysql, pdo_sqlite, snmpMySQL Version5.0.95RRDTool Version
1.3.4SNMP Version5.3.2.2

--

-- 
Cheers,

Pei Fei
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
(Continue reading)

Anant Tickoo | 10 Jun 19:36 2014
Picon

Re: cacti 0.8.8b +thold 0.5

guys any one know below error

Fatal error: Call to undefined function settings_version() in
/var/www/html/plugins/thold/setup.php on line 120

this happens as soon as i click the thold tab.

i have upgraded from 0.8.7f to 0.8.8b

i am using cacti 0.8.8b with thold 0.5

 PHP Fatal error:  Call to undefined function settings_version() in
/var/www/html/plugins/thold/setup.php on line 120, referer:
http://xxx.xxx.xx.xx/index.php

i am not sure what is wrong.

regards
anant
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
Sylvain Busson | 24 Apr 09:05 2014
Picon

Graph problem with 64-bit

Hello,
I have a problem with traffic graph. When I use 64-bit, the value of 
outbound traffic is the same as the inbound on graphs.
In 32-bit, the two values ​​are different and good.
Have you ever see this problem?
SBU

------------------------------------------------------------------------------
Start Your Social Network Today - Download eXo Platform
Build your Enterprise Intranet with eXo Platform Software
Java Based Open Source Intranet - Social, Extensible, Cloud Ready
Get Started Now And Turn Your Intranet Into A Collaboration Platform
http://p.sf.net/sfu/ExoPlatform
_______________________________________________
cacti-user mailing list
cacti-user <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/cacti-user
Alexandre Vilarinho | 23 Apr 16:02 2014
Picon

RES: Problems with OpenLDAP x Cacti 0.8.8a

Hello all

I have a problem authenticating via LDAP where Cacti displays the following message:

"LDAP Search Error: Unable to find users DN"

This problem happened after updating Debian 6.0.5 to 7.4, meaning that packages php5, apache2, cacti from
0.8.7g to 0.8.8a, php5-ldap.

Is there any reported bug regarding the authentication between cacti´s new version the Radius 2.0.4 and
OpenLDAP version 2.4.11

Server - ldap.server

Port Standard - 389

Port SSL - 636

Protocol Version - Version 3

Encryption - None

Referrals - Disable

Mode - Specific Searching

Distinguished Name (DN) - cn=<username>,ou=usuarios,dc=empresa,dc=net,dc=br

Require Group Membership

(Continue reading)

Alexandre Vilarinho | 22 Apr 21:50 2014
Picon

Problems with OpenLDAP x Cacti 0.8.8a

I have a problem authenticating via LDAP where Cacti displays the following message: 

"LDAP Search Error: Unable to find users DN" 

This problem happened after updating Debian 6.0.5 to 7.4, meaning that packages php5, apache2, cacti from
0.8.7g to 0.8.8a, php5-ldap. 
Is there any reported bug regarding the authentication between cacti´s new version the Radius 2.0.4 and
OpenLDAP version 2.4.11

Server - ldap.server
Port Standard - 389
Port SSL - 636
Protocol Version - Version 3
Encryption - None
Referrals - Disable
Mode - Specific Searching
Distinguished Name (DN) - cn=<username>,ou=usuarios,dc=empresa,dc=net,dc=br
Require Group Membership
Group Distingished Name (DN) - ou=usuarios,dc=empresa,dc=net,dc=br
Search Filter - (&(objectclass=account)(cn=<username>*))
Search Distingished Name (DN) - cn=admin,dc=empresa,dc=net,dc=br
Search Password - ********


Regards

Alexandre Vilarinho
Gerente de Engenharia e NOC
Tel.: (55 11) 3017-4683
Cel.: (55 11) 97295-9239
(Continue reading)


Gmane