Hello, I just updated to ISPConfig 3.0.5.4p3 (previous version I had been using was 3.0.5.4p1). I am now unable to access "Server Config" and "Main Config" (both under the "System" tab). When I click either of the two, I get the following error: Code: Error Check for security permission: admin_allow_server_config failed. The reason I'd like to access "Server Config" is because after updating, I can no longer access the SSL version of PhpMyAdmin (but I can access the non-SSL version). The way I originally enabled SSL access was by doing the following: Now when I try going to https://domain.com:8081/phpmyadmin/, I get the following: Code: Secure Connection Failed An error occurred during a connection to domain.com:8081. SSL received a record that exceeded the maximum permissible length. (Error code: ssl_error_rx_record_too_long) The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. Alternatively, use the command found in the help menu to report this broken site. Two things to note: When updating using ispconfig_update.sh, for "Reconfigure Services" I mistakenly selected "yes" rather than "no". I successfully protected the ISPConfig Interface with .htaccess by running the following command: Code: php /usr/local/ispconfig/server/scripts/ispconfig_htaccess.php ...and editing the file /etc/nginx/sites-available/ispconfig.vhost, adding the following lines right after line 35's "fastcgi_temp_file_write_size 256k;": Code: auth_basic "Members Only"; auth_basic_user_file /usr/local/ispconfig/interface/.htpasswd; My server is running Nginx 1.4.6 under Ubuntu 14.04.1 LTS. I'd appreciate any help with this. Thanks, and ISPConfig is simply awesome!
Thanks for the speedy reply. No, I am not logged in as admin (userid 1). I have long since disabled admin (userid 1) and instead have an alternate admin name with a different user id. I just now tried re-enabling admin (userid1) (I didn't previously delete this user, but rather disabled it); however, I get the following error: Code: Error Check for security permission: admin_allow_new_admin failed. I will try to re-enable admin (userid 1) in the actual database and see if it works.
Please seee relaese notes about new security settings: http://www.howtoforge.com/forums/showthread.php?t=66655 by default, sib admins dont have the permission to alter many settings anymore to make the system more secure. you can change that in the security_settings.ini.
Thanks! I can now access "Server Config". In the file /usr/local/ispconfig/security/security_settings.ini, I changed "admin_allow_server_config=superadmin" to "admin_allow_server_config=yes" I noticed I had to re-enter the "Apps-vhost Domain" value within System -> Server Config -> Web -> Apps Vhost Settings, and now I can once again access the SSL version of PhpMyAdmin. Thanks again!
Likewise, I have also long since disabled userid 1, since it is far too easy to guess. It would be nice if the available options were superuser/yes/no/[username] where username was the username of the real superuser... thanks, Ian
Hi. I have encountered this problem after upgrading, I can not change any settings. I go through the administrator account (userid 1, sys_userid 1, sys_groupid 0, username admin). In the configuration file, I tried to change the values on everything possible, it had no effect.
Check that mod_fcgi is installed and enabled in apache and that php-cgi is installed as well. suexec should be enabled in apache as well.
Hi till, sorry to bring up this again, but i can't open the server config part. i didn't use "userid 1", but "userid 0" to administrating from the first time i installed. and now, not only superadmin, i can't open as admin too. all ok i got this error after upgrade to 3.1.13 FYI: i have other server using 3.1.11, and that's ok, only superadmin (userid 0) can open that part. This is my permission as suggested on http://www.howtoforge.com/forums/showthread.php?t=66655 Code: [permissions] allow_shell_user=yes admin_allow_server_config=yes admin_allow_server_services=superadmin admin_allow_server_ip=superadmin admin_allow_remote_users=superadmin admin_allow_system_config=superadmin admin_allow_server_php=superadmin admin_allow_langedit=superadmin admin_allow_new_admin=superadmin admin_allow_del_cpuser=superadmin admin_allow_cpuser_group=superadmin admin_allow_firewall_config=superadmin admin_allow_osupdate=superadmin admin_allow_software_packages=superadmin admin_allow_software_repo=superadmin remote_api_allowed=no password_reset_allowed=yes session_regenerate_id=yes any idea what can be wrong?
Check that the server record in the 'server' table in dbispconfig exists and that the config field is not empty, compare it e.g. with the one of your other server.
yes, everything looks good. i just browse bugs and reports, and find this: PHP error in server config edit form when old PHP versions are used. I used centos 6.x and have posted the problem here, but forgot to put a reference link. Thanks for the response, till ... any other suggestion / info on this?
