[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

cfservd configuration question

From: Stan Norton
Subject: cfservd configuration question
Date: Mon, 22 Dec 2003 16:50:54 -0500
User-agent: Mutt/1.4.1i

I've been attempting to get cfengine 2.1.0p1 running on freebsd 5.1-RELEASE.
Ipv6 was not working, so I rebuilt kernels on two machines, to test in ipv4

cfagent work fine. I am experiencing problems attempting to connect via
cfrun from another host (on which cfagent works) to cfservd.

I'm concerned about two lines from -d2 output:


/var is symlinked from /usr/var. Is the symlink creating a problem with

This is the entry in cfservd.conf:

cfrunCommand = ( "/var/cfengine/bin/cfagent" )



I have also tried these as:

cfrunCommand = ( "/usr/var/cfengine/bin/cfagent" ) with an appropriate grant
change. No effect.

Thanks for any help. I'm looking forward to getting this going.


Edited -d2 output: 

ACCESS GRANTED ----------------------:

Path: /var/cfengine/bin/cfagent (encrypt=0)
   Admit: root=
Path: /var/cfengine/inputs (encrypt=0)
   Admit: root=
ACCESS DENIAL ------------------------ :

Host IPs allowed connection access :

Host IPs denied connection access :

Host IPs allowed multiple connection access :

Host IPs from whom we shall accept public keys on trust :



Connecting host identifies itself as
root 0
cfservd: Allowing to connect without (re)checking ID
Non-verified Host ID is (Using skipverify)
Non-verified User ID seems to be root (Using skipverify)


Loaded /var/cfengine/ppkeys/


A public key was already known from -
no trust required
Adding IP to SkipVerify - no need to check this if we have a key
The public key identity was confirmed as address@hidden


cfservd: Strongly authentication of client


User root granted connection privileges
encrypt request=0
cfservd: Host denied access to
cfservd: Host authorization/authentication failed or access denied

reply via email to

[Prev in Thread] Current Thread [Next in Thread]