Hi BR,

We will try our best to help you out.
Can you please let us know answers to following questions?

1.
When you click on "Launch Cloud Console" , a new window opens, and there you are seeing a white window.
In that window what is the link in the address bar?
It should look like FQDN/client.

2.
Did you run the integration with CloudStack on all the CloudStack management servers?
For this you need to copy the CPBM tarball to the CloudStack servers, untar it, run the "install.sh" and choose option "C) Integrate with CloudStack"

Thanks,
Manish

Hallo Manish,

sorry for the delay.

see my answser to your questions below:

1. There is only the hostname of the second CPBM Host in the url, no fqdn. i will check where the problem is

2. Sure, i done the integration with the install.sh script

The question is, will the netscaler work as LB host for CS and CPBM?

As i said, the netscalers makes content redirection for the DNS Host A which resolves to the VIP for the loadbalancer.

best regards

Hi Marcelcpx,

To answer your question, yes NetScaler can work as LB for CS and CPBM.

And, if you are seeing the CPBM host in the URL of "launch cloud console" then the issue would be with the value of the following property in cloud.properties file.
################################################################################
# Proxy Server information #
################################################################################
vmops.mgmt.server.publicHost=<FQDN>
vmops.mgmt.server.publicPort=8080
vmops.mgmt.server.publicProtocol=http

Property "vmops.mgmt.server.publicHost" should have the FQDN as value.

Can you please confirm if you have the above properties set correctly on both the CPBM nodes?
(cloud.properties file is available at /usr/share/cloud/portal/conf/ )

To verify that your LB setting is correct, can you please check following:-
1. Hit the URL - http://<FQDN>/portal/portal/
You should see the login page of CPBM.
2. Hit the URL - http://<FQDN>/client?direct=true
You should see the login page pf CloudStack

Thanks,
Manish

Hey Manish,

thats strange. I have a look at my cloud.properties file on the CPBM Nodes and can find no proxy section. I has not configured the apache for proxy, because i want that the netscaler do the lb... Must i add manually the proxy section?

Thx

Hi Marcelcpx,

The section should have been there, but if it is not please add it and restart the CPBM nodes.
It is used to SSO into CS.

Please let me know if the issue is resolved after adding this.

Thanks,
Manish

Hey Manish,

thank you for your support. My conf file already includes the right values, but the section is not named proxy, its the section for "Cloudstack Server Informations".

So from my side it makes no sense to add the proxy section.

So that i make sure to do the right modifications below is my cloud.properties:

I have some questions about the following values:

1.
vmops.mgmt.server.publicHost= which host should configured here? From my site the FQDN of the systems (CPBM and CSMGMT), or?

2.
vmops.mgmt.server.publicPort=443 is it possible to use HTTP? Does the CPBM connect over this port to the CSmgmt servers? My Cloudstack servers currently have no listener for 443 configured.
vmops.mgmt.server.publicProtocol=https

4. Can you provide me the Target hosts and Ports which i have to configure in the Netscalers for Loadbalancing?

################################################################################
#
# Default CloudPortal runtime properties
#
# The system looks at the following places in order for properties
# user.home/cloud.properties
# catalina.home/conf/cloud.properties
# catalina.home/cloud.properties
# classpath:cloud.properties
#
################################################################################

################################################################################
# Database configuration
################################################################################
profile.jdbc.url=jdbc:mysql://10.158.8.75/cloud_portal?useUnicode=true&characterEncoding=utf8
profile.jdbc.username=cloud2
profile.jdbc.password=****
profile.jdbc.database.schemaname=cloud_portal

report.jdbc.url=jdbc:mysql://10.158.8.75/cloud_reports?useUnicode=true&characterEncoding=utf8
report.jdbc.username=cloud2
report.jdbc.password=*******
report.jdbc.database.schemaname=cloud_reports

# Liquibase context, default is 'basedata' - db created without demo data. To create demo data as well, set this to 'demo'
liquibase.default.context=basedata

# To run custom migration at sever startup, see applicationContext-custom-liquibase.xml and applicationContext-custom.xml
#liquibase.custom.context=customContext1,customContext2
# The custom migration file.
#liquibase.custom.migration.file=
################################################################################
# CloudStack Usage Database configuration
################################################################################
usage.jdbc.url=jdbc:mysql://10.158.8.75/cloud_usage?useUnicode=true&characterEncoding=utf8
usage.jdbc.username=cloud2
usage.jdbc.password=*******
usage.jdbc.database.schemaname=cloud_usage

#
# Cloud Stack core Database Configuration
cloud.jdbc.url=jdbc:mysql://10.158.8.75/cloud?useUnicode=true&characterEncoding=utf8
cloud.jdbc.username=cloud2
cloud.jdbc.password=******
cloud.jdbc.database.schemaname=cloud

################################################################################
# Mail sender (SMTP/SMTPS) configuration
################################################################################
vmops.mail.protocol=smtp
vmops.mail.host=10.1.11.191
vmops.mail.port=25
vmops.mail.username=cloudportal@tus.de
vmops.mail.password=

################################################################################
# JMS Configuration
################################################################################

# JDBC URL for the MQ database
vmops.mq.jdbc.url=jdbc:mysql://10.158.8.75/cloud_portalmq?relaxAutoCommit=true
vmops.mq.jdbc.username=cloud2
vmops.mq.jdbc.password=******
mq.jdbc.database.schemaname=cloud_portalmq

# Client url for message broker clients to connect to. This is of the form
# failover:(tcp://host1:9125,tcp://host2:9125,tcp://host3:9125)
# List all message brokers in the same
# order so that all clients connect to the same broker. This list
# has to use the actual host/port of the servers running the Admin application. localhost
# will work only when there is only one server.
vmops.jms.client.url=failover:(tcp://localhost:9125)

# Queue name
vmops.queue.name=vmops.notification.queue

################################################################################
# CloudStack Server information
################################################################################
vmops.mgmt.server.publicHost= CPBM1
vmops.mgmt.server.publicPort=443
vmops.mgmt.server.publicProtocol=https

# Semicolon separated list of host:port pairs of management server instances
# Setting below normally uses the port 8096
#vmops.mgmt.server.serverList=CSMGMT1:8096;CSMGMT2:8096
vmops.mgmt.server.serverList=CSMGMT1:8096;CSMGMT2:8096
# Setting below normally uses the port 8080
vmops.mgmt.server.nonAdminServerList=CSMGMT1:8080;CSMGMT2:8080

################################################################################
# LDAP configuration
################################################################################
ldap.url=ldap://10.158.8.1:389
ldap.base=dc=test,dc=test,dc=test
ldap.userdn=CN=TEST,OU=Application,OU=Citrix,OU=testou,DC=cloud,DC=tc,DC=internal
ldap.password=secretpassword

Best Regards

Hey,

i attached a short explanation. Can you have a look at the picture?

1. User Access https://cloud.test.com/client
? User will be redirected over Netscaler Loadbalancing to the CPBM Servers over Port 8080

2. User Access https://cloud.test.com
? User will be redirected over Netscaler Loadbalancing to the CSMGMT Servers over Port 80

Hi Marcelcpx,

I checked your cloud.properites file and based on that below is answers to your questions:
+1.+
+vmops.mgmt.server.publicHost= which host should configured here? From my site the FQDN of the systems (CPBM and CSMGMT), or?+
It should be the FQDN :
vmops.mgmt.server.publicHost=cloud.test.com

+2.+
+vmops.mgmt.server.publicPort=443 is it possible to use HTTP? Does the CPBM connect over this port to the CSmgmt servers? My Cloudstack servers currently have no listener for 443 configured.+
+vmops.mgmt.server.publicProtocol=https+
This is the public port of your proxy server. If you are using HTTP then it will be 80, or if it is HTTPS it will be 443.

+4. Can you provide me the Target hosts and Ports which i have to configure in the Netscalers for Loadbalancing?+
In load balancer, you have to redirect all /portal calls to CPBM1 and CPBM2 over port 8080, (if your CPBM server is running on 8080)
and redirect all /client calls to CSMGMT1 and CSMGMT2 over port 8080 (if your CS servers are running on 8080), or redirect /client call to the CSMGMT load balancer on port 80 (if load balancer is running on 80 and fronting the CS servers)

I hope this will help.

Thanks,
Manish

Hey manish,

thank you.

There is another strange problem. Iam able to access the CPBM over http://PortalIP:8080/portal.

Iam able to logon to the ui, but it looks like the that the CPBM cannot commuicate with the csmgmt servers.

The admin API port ist set as 8096 in the global config, the CS mgmt servers are listed in the cloud.properties file with this port. Iptables are off.

But on the CSMgmt servers, there runs no listener on 8096. this port is not opened....

Are there any additional tasks to do?

BR

Can you confirm whether you've restarted the cloud-management process on CS mgmt servers?

also Please refer to: http://support.citrix.com/proddocs/topic/cloudportalbusiness-14/ccpb-troubleshoot.html for CPBM/CS SSO tips.

Hey,

after recreate the api keys and updating the mysql databases with the right keys, i can see in the cpbm logs that the communication between CS and CPBM works.

The problem is, iam not able to access the ui. I see only a white page when i access the portal.

I can found no error in the log files.

Anybody know whats the problem?

Hi Marcelcpx ,

You are seeing white screen and no logs, it means request is not reaching the CPBM server.
Can you please try to login directly to the CPBM server and not through the LB/proxy server?

I suspect the issue could be with LB/proxy.

Thanks,
Manish

Hey Manish :),

i getting closer to solve the problem.

After i change in the LB the port 8080 of the /portal redirect to 20410 - The portal page will displayed.

But iam unable to logon with default root user. CAS is currently switched off.

When i sign on, a page with an error message that i should contact technical support is displaye.d

The url of this page is:

http://FQDN-OF-MY-PROXY/portal/j_spring_security_check?OWASP_CSRFTOKEN=1FZ2-XI65-XKKL-FHJ5-XKKL-FHJ5-B4GL-DSR0-BU13-DSR0-BU13-OPI6

Hi Marcel,

As we discussed over GTM, the issue was that one CPBM node was upgraded to 1.4.2 which upgraded the CPBM DB also, but another CPBM node was not upgraded and was on 1.4.1. And when requests are redirected to second CPBM node (1.4.1) then it fails to login.

Also we were able to SSO into the CloudStack.

I hope we have resolved all the issues. Can you please confirm and mark the thread as answered?

Thanks,
Manish

Hey Manish,

Thanks for the excellent support! I confirm that your provided steps solved my problem!

Best Regards