Upgrade to Zentyal 7.0

Fonte: ARDITI - WIKI
Saltar para a navegação Saltar para a pesquisa

Before upgrade

  1. close email ports (25, 587, etc) on the firewall and maybe also the access to samba shares
  2. disable Nextcloud
  3. do a snapshot
  4. make a copy of the stubs 
     cp -ra /usr/share/zentyal/stubs /usr/share/zentyal/stubs.beforeupgrade-7
  5. make a copy of the zentyal config 
     cp -ra /etc/zentyal /etc/zentyal.beforeupgrade-7
  6. make sure all system updates have been installed (i.e. there are no system updates)
  7. some cleanup of previous updates: Ubuntu clean packages after update

Upgrade

  1. click on the upgrade button in the web ui
  2. wait until in the console it's written that the upgrade is done
  3. reboot

Post upgrade

Integrate new package conf files

zentyal conf files maintained from v6.2

dns.conf
samba.conf

Integrate new stubs

stubs maintained from v6.2

dns/named.conf.mas -
dns/named.conf.option.mas -
mail/archivemail.mas - sort a logging problem
mail/dovecot.conf.mas - for mail certificate purposes
mail/main.cf.mas - for mail certificate purposes, encryption and DKIM
samba/shares.conf.mas - solve access permission issue on shares
samba/smb.conf.mas - solve access issue of Nextcloud server
sogo/sogo.conf.mas - enable vacation setting
sogo/SOGo.conf-apache.mas - http access problem

stubs changes

NONE

REBOOT

Post boot fixes

Zentyal webadmin not working

Work around: Replaced nginx / Zentyal ssl certificates for letsencrypt on the configuration file. 

sudo mkdir /etc/zentyal/stubs/core
sudo cp -a /usr/share/zentyal/stubs/core/nginx.conf.mas /etc/zentyal/stubs/core
sudo vi /etc/zentyal/stubs/core/nginx.conf.mas

change: 

# ssl_certificate <% $zentyalconfdir %>ssl/ssl.pem;
# ssl_certificate_key <% $zentyalconfdir %>ssl/ssl.pem;
  ssl_certificate /etc/letsencrypt/live/mail.arditi.pt/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/mail.arditi.pt/privkey.pem;

CA not working

When clicking on the Certification Authority tab, the following error is shown: 

Unknown error. Given the OpenSSL output: Using configuration from /var/lib/zentyal/conf/openssl.cnf Can't load /var/lib/zentyal/.rnd into RNG 140258285417792:error:2406F079:random number generator:RAND_load_file:Cannot open file:../crypto/rand/randfile.c:98:Filename=/var/lib/zentyal/.rnd Cannot write random bytes: 140258285417792:error:24070079:random number generator:RAND_write_file:Cannot open file:../crypto/rand/randfile.c:233:Filename=/var/lib/zentyal/.rnd

The .rnd file has the following permissions: 

# ll /var/lib/zentyal/.rnd
-rw------- 1 root root 1024 Apr  3 11:18 /var/lib/zentyal/.rnd

Work around: from https://forum.zentyal.org/index.php?topic=35170.0 

sudo rm /var/lib/zentyal/.rnd
sudo apt-get --reinstall install zentyal-ca

IMAPS not working

Apr  3 15:57:24 hera dovecot: imap-login: Error: Failed to initialize SSL server context: Can't load DH parameters: error:1408518A:SSL routines:ssl3_ctx_ctrl:dh key too small: user=<>, rip=89.180.170.25, lip=192.168.6.230, session=<DgaprhK/IApZtKoZ>

Work around: from https://github.com/zentyal/zentyal/issues/2043 

sudo openssl dhparam -out /etc/dovecot/dh.pem 4096
sudo vi /etc/zentyal/stubs/mail/dovecot/dovecot.conf.mas

add the line: 

ssl_dh =</etc/dovecot/dh.pem

Restart services. 

sudo zs mail restart
sudo zs sogo restart

MYSQL not working after package clean up

After running package cleanup (post upgrade): 

sudo apt autoclean
sudo apt autoremove
sudo apt-get remove --purge $(sudo dpkg -l | grep "^rc" | awk '{print $2}' | tr '\n' ' ')

MYSQL did not work.

Solution: reinstall the new version of mysql-server. 

sudo apt-get install --reinstall mysql-server-8.0

REBOOT

Obtida de "https://wiki.arditi.pt/index.php?title=Upgrade_to_Zentyal_7.0&oldid=450"