Admins eHow SysAdmin Tips & Tricks

February 18, 2015

snmpd: error on subcontainer ‘ia_addr’ insert (-1)

Filed under: Debian — Tags: , , , — admin @ 11:07 am

If you get many errors like the following in syslog:

snmpd[xxxx]: error on subcontainer 'ia_addr' insert (-1)

It’s because of a bug in Debian, Run the following commands to resolve the issue:

sed -i 's/Lsd/LS6d/g' /etc/default/snmpd
service snmpd restart

September 28, 2010

XEN – Unable to load SELinux Policy. Machine is in enforcing mode. Halting now.

Filed under: linux,XEN — Tags: , , , — admin @ 8:30 am

If you are getting the following error on a XEN domU :

Unable to load SELinux Policy. Machine is in enforcing mode. Halting now.
Kernel panic - not syncing: Attempted to kill init!

add the following line to domU config file :

extra = "selinux=0 ro"

May 11, 2010

“ASN1 bad tag value met” error when processing a certificate request in IIS 7

Filed under: IIS,Windows — Tags: , , , , , — admin @ 12:48 pm

We’ve seen a few instances of the following error message on 64 bit servers when IIS 7.0 is attempting to process a pending certificate request:

Complete Certificate Request
There was an error while performing this operation.
Details:
CertEnroll::CX509Enrollment::p_InstallResponse: ASN1 bad tag value met. 0x8009310b (ASN: 267)

This error seems to mean that the private key (created when the certificate request was made) does not match the public key (the .crt file). The keypair is not successfully joined into a working SSL certificate.
So far this behavior seems most common with .crt files (instead of the .cer files many of us are more used to) issued by one specific Certification Authority—which will remain nameless here.
The error shows up after reaching the point in the process where you ‘specify certificate authority response’ and guide the wizard to the ‘File name containing the certification authority’s response…’ (the .crt file).

Solution :
Begin by importing the .crt file into the Personal certificate store for the local computer. (Start button > Run: MMC > File Menu > Add/Remove Snap-in > highlight Certificates snap-in and click the ADD button > select Computer Account and click Finish > Click OK > drill into Personal > Certificates > right-click and select All Tasks > select Import > guide to the .crt file.) At this point your certificate is basically a half-certificate. It is still missing its private key.
Second, double-click the crt certificate file you just imported, select the Details tab, scroll all the way down to Thumbprint and highlight Thumbprint. In the lower pane, block and copy all the letters of the thumbprint. Paste the thumbprint characters into notepad. Open the command prompt and run this command: Certutil /?
The command you’ll want to run is:

certutil -repairstore my "{insert all of the thumbprint characters here}"

When you see the response: “CertUtil: -repairstore command completed successfully” you should have a private key associated with the .crt file in the personal store. There should no longer be any need to run through the “Complete Certificate Request…” wizard. The certificate should show up in the IIS Manager’s list of server certificates at this point. It should also be available in the SSL Certificates drop-down list when attempting to edit the https binding for a website.

Source

April 25, 2010

Excellent windows dump file analyzer

Filed under: General — Tags: , , , , , , , , , — admin @ 8:53 am

Today I had a BSOD ( Blue Screen Of Death ) on one of my windows servers and after searching the net , I found an invaluable tool which can simplify analyzing the dump file generated by windows after the crash to find out the root cause of crash.
This tool is a must have for every windows system administrator , for more information visit the following link :
WhoCrashed Comprehensible Crash Dump Analyzer

August 9, 2009

OPENVPN : read UDPv4 [EHOSTUNREACH]: No route to host (code=113)

Filed under: General — Tags: , , , — admin @ 9:11 pm

I was getting this error on my openvpn server : read UDPv4 [EHOSTUNREACH]: No route to host (code=113)
it seemed to be a network problem , but after a lot of work I found out it is because the time and date of the client side was out dated !
if you are having the same problem please read this post : http://www.adminsehow.com/2009/06/how-to-synchronize-linux-time-daily/

June 1, 2009

Turn on displaying all PHP errors

Filed under: PHP — Tags: , , , — admin @ 4:46 pm

Add the Following code at the top of your php script :

error_reporting(E_ALL);
ini_set('display_errors', '1');

Powered by WordPress