Tried to add this to the “migrations” forum - no permissions
We are migrating from our on-prem octopus instance an an Azure VM and have followed the steps here:
This fails on the new server because the old server had AD authentication but the new server will not. We get an error on the install script:
Error: ===============================================================================
Error: The server could not be contacted.
Error: System.DirectoryServices.AccountManagement.PrincipalServerDownException
Error: at System.DirectoryServices.AccountManagement.PrincipalContext.ReadServerConfig(String serverName, ServerProperties& properties)
Error: at System.DirectoryServices.AccountManagement.PrincipalContext.DoServerVerifyAndPropRetrieval()
Error: at System.DirectoryServices.AccountManagement.PrincipalContext…ctor(ContextType contextType, String name, String container, ContextOptions options, String userName, String password)
Error: at System.DirectoryServices.AccountManagement.PrincipalContext…ctor(ContextType contextType, String name, String container)
Error: at Octopus.Node.Extensibility.Authentication.DirectoryServices.DirectoryServices.DirectoryServicesContextProvider.GetContext(String domain)
Error: at Octopus.Node.Extensibility.Authentication.DirectoryServices.DirectoryServices.UserMatcher.Match(String name, CancellationToken cancellationToken)
Error: at System.Linq.Enumerable.WhereSelectArrayIterator2.MoveNext() Error: at System.Linq.Enumerable.FirstOrDefault[TSource](IEnumerable
1 source, Func2 predicate) Error: at Octopus.Server.Commands.AdminCommand.AddAdminUser(IRelationalTransaction transaction, CancellationToken cancellationToken) Error: at Octopus.Server.Commands.AdminCommand.Start() Error: at Octopus.Shared.Startup.AbstractCommand.Start(String[] commandLineArguments, ICommandRuntime commandRuntime, OptionSet commonOptions) Error: at Octopus.Shared.Startup.ConsoleHost.Run(Action
1 start, Action shutdown)
Error: at Octopus.Shared.Startup.OctopusProgram.Run()
Error:
Error: --Inner Exception–
Error: The LDAP server is unavailable.
Error: System.DirectoryServices.Protocols.LdapException
Error: at System.DirectoryServices.Protocols.LdapConnection.Connect()
Error: at System.DirectoryServices.Protocols.LdapConnection.SendRequestHelper(DirectoryRequest request, Int32& messageID)
Error: at System.DirectoryServices.Protocols.LdapConnection.SendRequest(DirectoryRequest request, TimeSpan requestTimeout)
Error: at System.DirectoryServices.AccountManagement.PrincipalContext.ReadServerConfig(String serverName, ServerProperties& properties)
Error: -------------------------------------------------------------------------------
I guess this is because the new server cannot see the on-prem AD controller.
What’s the recommended way to work around this? Remove AD authentication first? We’re a little unsure of the implications of this and the impact on our current octopus AD backed users. Since this is our live system we don’t want to mess up any security credentials that we cannot revert if the migration goes wrong.
Is there a way to remove LDAP authentication during the migration step?
Octopus Deploy version 2018.6.12