ejabberd - Comments for "Initial Administrator not working"

Two weeks into this - about

sternfan — Wed, 07 Feb 2007 20:57:19 +0000

Two weeks into this - about to give up...

- Reinstalled ejabberd AGAIN
- Used the ejabberd.cfg file above - added a host called {hosts, ["jabber"]}. Added the user jabbermin just like before.
- Went into my DNS server & created a host record for jabber. I can now ping it from anywhere.
- When I start the ejabberd service, I get a "node ejabberd@myhost is starting. Status: started. Ejabberd is not running" No clue what this means. Yesterday (before the reinsall) I did not get this error - everything started.
- When I logon to the webpage - I get "page not found" - I used to get a logon, not anymore.

Thanks,
Rob

here's my config file -

sternfan — Tue, 06 Feb 2007 16:01:41 +0000

here's my config file - maybe this will shed some light on why I can't logon...

% $Id: ejabberd.cfg.example 577 2006-06-07 08:38:37Z mremond $

override_acls.

% Users that have admin access. Add line like one of the following after you
% will be successfully registered on server to get admin access:
%{acl, admin, {user, "aleksey"}}.
{acl, admin, {user, "jabbermin"}}.
{acl, admin, {user, "ejabberd"}}.

% Blocked users:
%{acl, blocked, {user, "test"}}.

% Local users:
{acl, local, {user_regexp, ""}}.

% Another examples of ACLs:
%{acl, jabberorg, {server, "jabber.org"}}.
%{acl, aleksey, {user, "aleksey", "jabber.ru"}}.
%{acl, test, {user_regexp, "^test"}}.
%{acl, test, {user_glob, "test*"}}.

% Everybody can create pubsub nodes
{access, pubsub_createnode, [{allow, all}]}.

% Only admins can use configuration interface:
{access, configure, [{allow, jabbermin}]}.
{access, configure, [{allow, ejabberd}]}.

% Every username can be registered via in-band registration:
% You could replace {allow, all} with {deny, all} to prevent user from using
% in-band registration
{access, register, [{allow, all}]}.

% After successful registration user will get message with following subject
% and body:
{welcome_message,
{"Welcome!",
"Welcome to Jabber Service. "
"For information about Jabber visit http://jabber.org"}}.
% Replace them with 'none' if you don't want to send such message:
%{welcome_message, none}.

% List of people who will get notifications about registered users
%{registration_watchers, ["admin1@localhost",
% "admin2@localhost"]}.

% Only admins can send announcement messages:
{access, announce, [{allow, admin}]}.

% Only non-blocked users can use c2s connections:
{access, c2s, [{deny, blocked},
{allow, all}]}.

% Set shaper with name "normal" to limit traffic speed to 1000B/s
{shaper, normal, {maxrate, 1000}}.

% Set shaper with name "fast" to limit traffic speed to 50000B/s
{shaper, fast, {maxrate, 50000}}.

% For all users except admins used "normal" shaper
{access, c2s_shaper, [{none, admin},
{normal, all}]}.

% For all S2S connections used "fast" shaper
{access, s2s_shaper, [{fast, all}]}.

% Admins of this server are also admins of MUC service:
{access, muc_admin, [{allow, admin}]}.

% All users are allowed to use MUC service:
{access, muc, [{allow, all}]}.

% This rule allows access only for local users:
{access, local, [{allow, local}]}.

% Authentication method. If you want to use internal user base, then use
% this line:
{auth_method, internal}.

% For LDAP authentication use these lines instead of above one:
%{auth_method, ldap}.
%{ldap_servers, ["localhost"]}. % List of LDAP servers
%{ldap_uidattr, "uid"}. % LDAP attribute that holds user ID
%{ldap_base, "dc=example,dc=com"}. % Search base of LDAP directory
%{ldap_rootdn, "dc=example,dc=com"}. % LDAP manager
%{ldap_password, "******"}. % Password to LDAP manager

% For authentication via external script use the following:
%{auth_method, external}.
%{extauth_program, "/path/to/authentication/script"}.

% For authentication via ODBC use the following:
%{auth_method, odbc}.
%{odbc_server, "DSN=ejabberd;UID=ejabberd;PWD=ejabberd"}.

% Host name:
{hosts, ["localhost"]}.

%% Define the maximum number of time a single user is allowed to connect:
{max_user_sessions, 10}.

%% Anonymous login support:
%% auth_method: anonymous
%% anonymous_protocol: sasl_anon|login_anon|both
%% allow_multiple_connections: true|false
%%{host_config, "public.example.org", [{auth_method, anonymous},
%% {allow_multiple_connections, false},
%% {anonymous_protocol, sasl_anon}]}.
%% To use both anonymous and internal authentication:
%%{host_config, "public.example.org", [{auth_method, [anonymous, internal]}]}.

% Default language for server messages
{language, "en"}.

% Listened ports:
{listen,
[{5222, ejabberd_c2s, [{access, c2s}, {shaper, c2s_shaper},
{max_stanza_size, 65536},
starttls, {certfile, "/etc/ejabberd/ejabberd.pem"}]},
{5223, ejabberd_c2s, [{access, c2s},
{max_stanza_size, 65536},
tls, {certfile, "/etc/ejabberd/ejabberd.pem"}]},
% Use these two lines instead if TLS support is not compiled
%{5222, ejabberd_c2s, [{access, c2s}, {shaper, c2s_shaper}]},
%{5223, ejabberd_c2s, [{access, c2s}, ssl, {certfile, "/etc/ejabberd/ejabberd.pem"}]},
{5269, ejabberd_s2s_in, [{shaper, s2s_shaper},
{max_stanza_size, 131072}
]},
{5280, ejabberd_http, [http_poll, web_admin]},
{8888, ejabberd_service, [{access, all},
{hosts, ["icq.localhost", "sms.localhost"],
[{password, "secret"}]}]}
]}.

% Use STARTTLS+Dialback for S2S connections
{s2s_use_starttls, true}.
{s2s_certfile, "/etc/ejabberd/ejabberd.pem"}.
%{domain_certfile, "example.org", "./example_org.pem"}.
%{domain_certfile, "example.com", "./example_com.pem"}.

% If SRV lookup fails, then port 5269 is used to communicate with remote server
{outgoing_s2s_port, 5269}.

% Used modules:
{modules,
[
{mod_register, [{access, register}]},
{mod_roster, []},
{mod_privacy, []},
{mod_adhoc, []},
{mod_configure, []}, % Depends on mod_adhoc
{mod_configure2, []},
{mod_disco, []},
{mod_stats, []},
{mod_vcard, []},
{mod_offline, []},
{mod_announce, [{access, announce}]}, % Depends on mod_adhoc
{mod_echo, [{host, "echo.localhost"}]},
{mod_private, []},
{mod_irc, []},
% Default options for mod_muc:
% host: "conference." ++ ?MYNAME
% access: all
% access_create: all
% access_admin: none (only room creator has owner privileges)
{mod_muc, [{access, muc},
{access_create, muc},
{access_admin, muc_admin}]},
% {mod_muc_log, []},
% {mod_shared_roster, []},
{mod_pubsub, [{access_createnode, pubsub_createnode}]},
{mod_time, []},
{mod_last, []},
{mod_version, []}
]}.

% Local Variables:
% mode: erlang
% End:

Anybody see anything wrong?

Thanks,
Rob

You do not need to create a

sander — Fri, 02 Feb 2007 11:14:41 +0000

You do not need to create a system user to log in to ejabberd's web interface.

--
sander

initial admin

sander — Fri, 02 Feb 2007 11:13:24 +0000

sternfan wrote:

I did check the two sections - one on ejabberdctl - which I tried to run (I am assuming it should be run in a terminal) - and get a "command not found."

Try to locate the script using

find / | grep ejabberdctl

. Also not that you should start the script with the same sytem user you used to start ejabberd. Btw: if you installed ejabberd from source, you can use this enhanced ejabberdctl script (PS: feedback about that patch is welcome).

sternfan wrote:

I then tried the second option - to use Exodus - and it did not work either.

Can you try with Coccinella? This client has an account registration wizard, and I know this client which makes debugging your issue easier.

Also, can you try to telnet to your server?:

telnet example.org 5222

If you get a message such as "host unknown", you'll know why you can't register with Exodus.

sternfan wrote:

However, when I try to logon into the web admin - it asks for a user/pwd (which tells me something is working on the server) but I do not have a user!

You indeed should register first a user and give it administrator privileges, as described in the guide.

sternfan wrote:

(just for testing purposes).

If it is for testing, I propose to use either the binary installer, or ejabberd source + the ejabberdctl patch I mentioned above. Both are easier for ejabberd newbies to get running.

--
sander

Still not working

sternfan — Thu, 01 Feb 2007 22:03:53 +0000

What I did today:

- resinstalled ejabberd
- created a new user in Fedora named jabbermin.
- went into the ejabberd.cfg, created a {acl,admin, (user, "jabbermin")}

Try to logon to http://servername:5280/admin

I get a LOGON prompt. I put in jabbermin@servername.domain.local and the password.

And it is still not working. Just tried every variation of jabbermin (plain jabbermin, jabbermin@servername ; etc etc).

Nothing is working....

Thanks for any help,
Rob

I did check the two sections

sternfan — Wed, 31 Jan 2007 16:50:54 +0000

I did check the two sections - one on ejabberdctl - which I tried to run (I am assuming it should be run in a terminal) - and get a "command not found."

I then tried the second option - to use Exodus - and it did not work either.

However, when I try to logon into the web admin - it asks for a user/pwd (which tells me something is working on the server) but I do not have a user!

Anyways, this is driving me nuts - I'm convinced that if I could just get a User Account it would work.

Rob

PS - I am not running SELinux or a Firewall on this box at the moment (just for testing purposes).

check the guide

sander — Wed, 31 Jan 2007 13:47:58 +0000

sternfan wrote:

I telnet into the server - it opens (like it is connected) but there is no title or anything...

I try logging on to the admin webpage - it DOES let me try to logon - but no matter what I try - even ROOT - nothing works...

I try exodus again - user@servername.domain.local - try to setup a new account - just hangs there at "trying to connect..."

What is the easiest way to setup a user for this?

The guide contains a section about entering the web interface and another one about creating an initial administrator user. Can you check these two sections first?

--
sander

I telnet into the server -

sternfan — Tue, 30 Jan 2007 20:32:10 +0000

I telnet into the server - it opens (like it is connected) but there is no title or anything...

I try logging on to the admin webpage - it DOES let me try to logon - but no matter what I try - even ROOT - nothing works...

I try exodus again - user@servername.domain.local - try to setup a new account - just hangs there at "trying to connect..."

What is the easiest way to setup a user for this?

Thanks,
Rob

Creating an account with a

mfoss — Tue, 30 Jan 2007 18:44:47 +0000

Creating an account with a Jabber client should work. If it isn't, maybe ejabberd is not correctly started. To make sure, check ejabberd log files for ERROR or CRASH reports.

Also, try to connect to ejabberd using a plain connection. On this example I try if jabber.org works. You should try your host 'localhost', or whatever is specified on your ejabberd.cfg's 'hosts' option:

$ telnet jabber.org 5222
Trying 208.245.212.98...
aaaaaa
Connected to jabber.org.
Escape character is '^]'.
...
Connection closed by foreign host.