Zulu UC down, webserver misconfiguration? [SOLVED]

SterlingPkg · March 20, 2020, 4:17pm

As of this morning none of my Zulu clients can connect

Clients report “Internal Server Error”
Poking around logs I see a ton of
[authz_core:error] [pid 22156] [client 192.168.1.161:53590] AH01630: client denied by server configuration: /invalid

I reset the httpd service as an off the cuff attempt to further diagnose
and I notice a handful of
AH00112: Warning: DocumentRoot [/invalid/folder/name] does not exist

Inside one of the httpd configs I see an entry that seems very wrong
/etc/httpd/conf.d/schmoozecom.conf
# Starting leport
# Warning - The directory '/invalid/folder/name' doesn't exist
# leport
Listen 80
<VirtualHost *:80>
Alias /.well-known /var/www/html/.well-known
Alias /.freepbx-known /var/www/html/.freepbx-known
RewriteEngine on
RewriteRule ^/\.(well-known|freepbx-known)/ - [H=text/plain,L]
RewriteRule (^\.|/\.) - [F]
DocumentRoot /invalid/folder/name
</VirtualHost>

Thoughts?

SterlingPkg · March 20, 2020, 4:37pm

Updated the LetsEncrypt certificate and it fixed the erroneous virtualhost entry, no change in behaviour. That was a red herring.

Turns out it was LDAP integration. The service account became locked, and user’s couldn’t authenticate!
Wow, what a chase to find that.

system · March 27, 2020, 4:37pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.