Can't install on Windows 2003 Server

15 posts / 0 new
Last post
on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
Can't install on Windows 2003 Server

When I attempt to install on a Windows 2003 server, I get the error message that UAC is enabled. There is no UAC on Windows 2003.

itefix
Offline
Last seen: 14 hours 39 min ago
Joined: 01.05.2008 - 21:33
Your system seems to have a

Your system seems to have a non-Windows 2003 setting via a group policy. You need to remove registry key HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA for a proper operation.

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
Got a bit further. Now upon

Got a bit further. Now upon trying to launch the control panel I get an error:

Passwd init backup: The system cannot find the file specified.

itefix
Offline
Last seen: 14 hours 39 min ago
Joined: 01.05.2008 - 21:33
The message indicates that

The message indicates that file etc\passwd is missing. A successful installation should have created that file. Can you list contents of the etc directory ?

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
also the service does not

also the service does not seem to have been created (assuming it's still called "openssh ..." (don't remember full name) as it was in ver 4.0)

here's the list:

C:\Program Files\ICW\etc\fstab

C:\Program Files\ICW\etc\gtk-2.0

C:\Program Files\ICW\etc\moduli

C:\Program Files\ICW\etc\profile

C:\Program Files\ICW\etc\skel

C:\Program Files\ICW\etc\sshd_config

C:\Program Files\ICW\etc\ssh_config

C:\Program Files\ICW\etc\ssh_host_dsa_key

C:\Program Files\ICW\etc\ssh_host_dsa_key.pub

C:\Program Files\ICW\etc\ssh_host_ecdsa_key

C:\Program Files\ICW\etc\ssh_host_ecdsa_key.pub

C:\Program Files\ICW\etc\ssh_host_rsa_key

C:\Program Files\ICW\etc\ssh_host_rsa_key.pub

C:\Program Files\ICW\etc\terminfo

C:\Program Files\ICW\etc\gtk-2.0\gdk-pixbuf.loaders

C:\Program Files\ICW\etc\skel\.bashrc

C:\Program Files\ICW\etc\skel\.bash_profile

C:\Program Files\ICW\etc\skel\.inputrc

C:\Program Files\ICW\etc\terminfo\c

C:\Program Files\ICW\etc\terminfo\c\cygwin

itefix
Offline
Last seen: 14 hours 39 min ago
Joined: 01.05.2008 - 21:33
I can't see files passwd and

I can't see files passwd and group in the directory. Please remove the existing installation and reinstall Copssh. A manual removal of the service account and the installation directory may be necessary. Copssh is known to work on windows 2003 (I have also a test system!).

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
I've tried several times

I've tried several times already and I've verified (again) that the service account and folder were deleted (the folder I've had to delete manually). It is still behaving in the same way, not creating passwd or group files (or the service).

I tried watching the ICW OpenSSHServer part of the install service, and I did see some errors. Is the install saved in a log somewhere? because it goes by rather fast and at the end just says "ICW OpenSSHServer 3.1.0 is installed as a service"... etc etc. Then as soon as i click on that the window and it's logs go away.

It also seems to create a copSSH folder under program files even if I accept the default of c:\program files\ICW\.

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
I think I managed to grab it

I think I managed to grab it all, and typed in the last couple of lines I missed (this is with a domain user as the service account, but it does the same thing whether domain or local):

Output folder: C:\Program Files\ICW\bin
Extract: copsshadm.exe
Extract: scp.exe
Extract: sftp-server.exe
Extract: sftp.exe
Extract: sftponly
Extract: ssh-add.exe
Extract: ssh-agent.exe
Extract: ssh-keygen.exe
Extract: ssh-keygen.exe.manifest
Extract: ssh-keyscan.exe
Extract: ssh-keysign.exe
Extract: ssh.exe
Extract: sshd.exe
Output folder: C:\Program Files\ICW\etc
Extract: moduli
Extract: profile
Output folder: C:\Program Files\ICW\etc\skel
Extract: .bash_profile
Extract: .bashrc
Extract: .inputrc
Output folder: C:\Program Files\ICW\etc
Output folder: C:\Program Files\ICW\etc
Extract: sshd_config
Extract: ssh_config
Initialize passwd and group files
Trouble during opening passwd file: No such file or directory
Create directory structure
Generate host keys - RSA
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
Generate host keys - DSA
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
Generate host keys - ECDSA
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
Generate sshd account
Trouble during opening passwd file: No such file or directory
Creating service
Trouble during opening passwd file: No such file or directory

Basic parameters:
  Installation directory: C:\Program Files\copSSH
  Service name: OpenSSHServer
  Service account: EVPOD\SvcCOPSSH
  Privilege separation user: sshd
  Administrators group: Administrators
  Users group: Users
Service account password is aBefgMkAG64259
Set permissions
SetNamedSecurityInfo: The system cannot find the file specified. at /<C:\Program Files\ICW\Bin\copsshadm.exe>Win32/Security/NamedObject.pm line 542 at /<C:\Program Files\ICW\Bin\copsshadm.exe>Win32/Security/NamedObject.pm line 545
         main::__ANON__('Win32::Security::NamedObject::SE_FILE_OBJECT=HASH(0x18f55e0)', 'Win32::Security::ACL::SE_FILE_OBJECT=REF(0x19134b0)') called at copsshadm.pl line 628
         main::SetSecurity('C:\Program Files\copSSH/var/empty', 'undef', 'EVPOD\SvcCOPSSH', 'Win32::Security::ACL::SE_FILE_OBJECT=REF(0x19134b0)') called at copsshadm.pl line 355
         main::copssh_SetPermissions() called at copsshadm.pl line 103
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
/Bin/chown: invalid user: `EVPOD\\SvcCOPSSH'
Grant service account necessary rights and permissions
Start sshd service
Trouble during service start: Error code is 1060

 

The specified service does not exist as an installed service.

itefix
Offline
Last seen: 14 hours 39 min ago
Joined: 01.05.2008 - 21:33
Thanks for your findings. I

Thanks for your findings. I have now checked the part of the installer which tries to create etc/passwd file. It perfoms a simple file creation operation at installation directory/etc/passwd. It seems to me like a permission problem. Can you try to create etc/passwd file manually in the installation directory ?

 

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
Ok I managed to get a

Ok I managed to get a succesful install. In order for it to work I had to both change the install directory to "c:\program files\copSSH" (which is not the default) and not use a domain account.

I believe I need to run it under a domain account in order to be able to access network shares and impersonate domain user accounts, correct? Now that I have set it up with a local account, what is the proper procedure to change the service account and set up the appropriate rights on the new service account.

Can i just run "copsshadm --command grantrights" after creating the domain account and changing the service to run under that account? Or does it need to be handled manually?

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
I think it has something to

I think it has something to do with there being two directories created during install "ICW" and "copSSH" under program files, maybe it's trying to create it under the wrong one? I'm not sure why it is creating the "copSSH" one if i select "ICW" as the install location (the default).

itefix
Offline
Last seen: 14 hours 39 min ago
Joined: 01.05.2008 - 21:33
It is something weird here.

It is something weird here. Service setup with a domain user should work out of the box. The installer operates only on the directory specified during the installation. In the case you have remnants of a previous installation, I recommend to uninstall everything again and remove also contents of the registry key HKLM\Software\Itefix.

on-demand
Offline
Last seen: 9 years 4 months ago
Joined: 29.05.2012 - 16:55
Okay, removing the registry

Okay, removing the registry keys helped with the extra directory that was being created, and it will now work properly if installed in c:\program files\ICW.

However it still won't work if i specify a domain account during install. It looks like the domain account is not being created. (It is able to create a local account just fine. The install is being run as a domain administrator, which should definitely have rights to create an account.

Here is the info from the Opsn SSHServer 3.1.0 Setup portion:

Output folder: C:\Program Files\ICW\bin
Extract: copsshadm.exe
Extract: scp.exe
Extract: sftp-server.exe
Extract: sftp.exe
Extract: sftponly
Extract: ssh-add.exe
Extract: ssh-agent.exe
Extract: ssh-keygen.exe
Extract: ssh-keygen.exe.manifest
Extract: ssh-keyscan.exe
Extract: ssh-keysign.exe
Extract: ssh.exe
Extract: sshd.exe
Output folder: C:\Program Files\ICW\etc
Extract: moduli
Extract: profile
Output folder: C:\Program Files\ICW\etc\skel
Extract: .bash_profile
Extract: .bashrc
Extract: .inputrc
Output folder: C:\Program Files\ICW\etc
Output folder: C:\Program Files\ICW\etc
Extract: sshd_config
Extract: ssh_config
Initialize passwd and group files
Create directory structure
Generate host keys - RSA
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
Generate host keys - DSA
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
Generate host keys - ECDSA
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
Generate sshd account
Creating service

Basic parameters:
  Installation directory: C:\Program Files\ICW
  Service name: OpenSSHServer
  Service account: EVPOD\SvcCOPSSH
  Privilege separation user: sshd
  Administrators group: Administrators
  Users group: Users
Service account password is HxYqbM2gr71C74
Trouble during update passwd file : Error code is 1332

No mapping between account names and security IDs was done.

Set permissions
Unable to parse Trustee/SID value 'EVPOD\SvcCOPSSH'. at /<C:\Program Files\ICW\Bin\copsshadm.exe>Win32/Security/ACE.pm line 794, <DATA> line 164.
"tty" option detected in CYGWIN environment variable.
CYGWIN=tty is no longer supported.  Please remove it from your
CYGWIN environment variable and use a terminal emulator like mintty,
xterm, or rxvt.
/Bin/chown: invalid user: `EVPOD\\SvcCOPSSH'
Grant service account necessary rights and permissions
Trouble during grant rights lookup : Error code is 1332

No mapping between account names and security IDs was done.

Start sshd service
Trouble during service start : Error code is 1060

The specified service does not exist as an installed service

itefix
Offline
Last seen: 14 hours 39 min ago
Joined: 01.05.2008 - 21:33
Copssh installer is not

Copssh installer is not capable of creating a domain account. Your domain service account must exist before installation starts.

thierry
Offline
Last seen: 8 years 2 months ago
Joined: 02.08.2013 - 13:07
I have the same issue on both

I have the same issue on both servers 2003 and 2008.
I created file passwd, install goes ok but

doesn't allow to launch control panel