MacOS Server 5.6.3 certificate auto renewal cause collaboration services disruption
Hello, on Friday September 4th 2020, in the heat of the office work, we started to get authentication errors for the email accounts, calendars, the wikis and the web services became unaccessible on http and https, internally and externally.
It seems that on that day, the Server application v5.6.3 auto renewed it's self created certificate at 3:52PM on a MacPro 2013 running MacOS X High Sierra 10.13.6.
With Recovery I was able to reinstalled the same day's morning Time Machine backup and after initial settings procedures the MacOS Server was back functioning normally with its previous self created certificate expiring on Nov 30th 2020.
For my great misery, the Server app redid a certificate update and the collaboration services disrupted again. After a three levels escalation with Apple phone support, I've been kindly informed that this version of the software isn't supported anymore and Apple couldn't provide anymore help for this issue, except to rebuild the server, upgrade MacOs and the reference to the 2018 “MacOS Server
Service Migration Guide v1.2”.
The tech representative wasn't aware of anyone else with a similar issue and suggested to get a third party certificate to possibly solve this issue!
The disruption of the services is a major blow to the activities of our small company. My short term goals are :
1 - Secure the users' data from the wikis, imap mailboxes, calendars and contacts.
2 - Having a Web service back on, mostly for http, https is used only for the wikis.
3 - Having a Mail service back on, most probably PostFix.
4 - Having a Calendar service back on, ideally being able to import the .ics or .icbu data from the previous one.
5- I hopefully wish that the datas for the wikis can be put back to users' accesses.
The short term actions, I am planning:
1- Try to get a third party certificate, probably from LesEncrypt, the problem I am seeing is; to have CertBot to create a certificate, port 80 should be functional and its actually not functioning because of the disruption to the web service. I wonder what would be the workaround for this?
2 - Try to figure out if the actual MacOS X High Sierra 10.13.6 and Server 5.6.3 can be put back in a functional state as it's doing just fine normally.
3 - Maybe downgrading Server to a previous 5.3.1 version and maybe also MacOS to Sierra 10.12?
4 - Migrating all collaboration services following the guidelines of the “Service Migration Guide”.
-------
This disruption is happening at a very bad moment, any help will be welcome as I am in a state of emergency to solve this. Professional help is welcome!
André
Many thanks in advance.
==============
Terminal reports:
apachectl configtest
[Sun Sep 06 08:28:30.877240 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_ADDR} is not defined
[Sun Sep 06 08:28:30.877586 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_PORT} is not defined
[Sun Sep 06 08:28:30.877596 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_ADDR} is not defined
[Sun Sep 06 08:28:30.877600 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_PORT} is not defined
[Sun Sep 06 08:28:30.885353 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_NAME} is not defined
[Sun Sep 06 08:28:30.885371 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_PORT} is not defined
[Sun Sep 06 08:28:30.887101 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_ACCESS_GROUP} is not defined
[Sun Sep 06 08:28:30.887119 2020] [core:warn] [pid 26222] AH00111: Config variable ${WFS_SERVER_NAME} is not defined
AH00526: Syntax error on line 23 of /private/etc/apache2/other/httpd_webdavsharing.conf:
Port must be specified
============
sudo postfix check
-> returns <empty>
[Personal Information Edited by Moderator]
Mac Pro