[Satellite 6] Unable to import manifest: "Error importing manifest, katello::Resources::Candlepin::Owner: Server broke connection (POST /candlepin/owners/ABC/imports)"

Solution Verified - Updated

Environment

Satellite 6

Issue

Importing a new manifest failed with:

Error importing manifest. Katello::Resources::Candlepin::Owner: Server broke connection (POST /candlepin/owners/ABC/imports)

Resolution

Correct the file permissions on all the files that are related to Candlepin.

# find / -uid ABC -ls &> /root/files-owned-by-ad-tomcat-user.out
# find / -uid ABC -exec chown tomcat '{}' \;

Note: 43625 is the incorrect tomcat id defined in Active Directory.

For more KB articles/solutions related to Red Hat Satellite 6.x Manifest Issues, please refer to the Consolidated Troubleshooting Article for Red Hat Satellite 6.x Manifest Issues

Root Cause

There is a user account for tomcat in Active Directory that changed the default file permissions.

Diagnostic Steps

  • /var/log/candlepin/candlepin.log shows that candlepin doesn't have write permission:
37086:    MESSAGE=20:51:37,224 |-INFO in ch.qos.logback.core.FileAppender[CandlepinAppender] - File property is set to [/var/log/candlepin/candlepin.log]
37106:    MESSAGE=20:51:37,226 |-ERROR in ch.qos.logback.core.FileAppender[CandlepinAppender] - openFile(/var/log/candlepin/candlepin.log,true) call failed. java.io.FileNotFoundException: /var/log/candlepin/candlepin.log (Permission denied)
37126:    MESSAGE=at java.io.FileNotFoundException: /var/log/candlepin/candlepin.log (Permission denied)
  • Below shows another tomcat user changed the default file permissions:
rpm -Va tomcat
S.5...GT.  c /etc/tomcat/server.xml
S.5....T.  c /etc/tomcat/tomcat.conf
warning: Duplicate username or UID for user tomcat
[root@psav001 ~]# rpm -Va candlepin
S.5....T.  c /etc/candlepin/candlepin.conf
....L.G..  c /etc/tomcat/keystore
warning: Duplicate username or UID for user tomcat
SBR
Product(s)
Components
Category
Tags

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.