[cups.general] lpadmin and lprm will not work without a password

Michael Sweet msweet at apple.com
Tue Dec 13 12:05:58 PST 2011 

You are connecting to the cupsd on your test system remotely; the local certificate/peer credential stuff only works over domain sockets.


On Dec 13, 2011, at 11:19 AM, Rob Parenti wrote:

> I feel I’ve tried everything, and don’t see anything relevant in the forums.  I have two separate CUPS/1.4.6 servers, SLES 11.1, one Production and one Testing.  The CUPS configurations are virtually identical in every way I can see.  The Production server always works great.  The Testing server always requires me to enter the root password for every lpadmin command.  Otherwise I get “lpadmin: Unauthorized”.  I use scripts, as root, to submit batches of lpadmin commands, so the password really interferes with a large batch.  But more importantly, it needs to work exactly like the Production machine.
> 
> I’m including access_log, error_log, and cupsd.conf.  Everything on the web interface works just fine.  I’m trying to use lpadmin, as root, connected with ssh.  Could it be file permissions I missed somewhere?
> 
> Regards
> RobP
> 
> Access_log
> 147.70.10.205 - - [13/Dec/2011:14:06:17 -0500] POST /admin/ HTTP/1.1 401 0 - -
> 
> Error_log
> D [13/Dec/2011:14:06:17 -0500] cupsdAcceptClient: 9 from 147.70.10.205:631 (IPv4)
> D [13/Dec/2011:14:06:17 -0500] cupsdReadClient: 9 POST /admin/ HTTP/1.1
> D [13/Dec/2011:14:06:17 -0500] cupsdSetBusyState: Active clients
> D [13/Dec/2011:14:06:17 -0500] cupsdAuthorize: No authentication data provided.
> D [13/Dec/2011:14:06:17 -0500] cupsdIsAuthorized: username=
> D [13/Dec/2011:14:06:17 -0500] cupsdSendHeader: 9 WWW-Authenticate: Basic realm=CUPS
> D [13/Dec/2011:14:06:17 -0500] cupsdCloseClient: 9
> D [13/Dec/2011:14:06:17 -0500] cupsdSetBusyState: Not busy
> 
> LogLevel debug
> ErrorLog /var/log/cups/error_log
> ServerAdmin a at b.com
> MaxLogSize 0
> AccessLog /var/log/cups/access_log
> AccessLogLevel all
> PageLog /var/log/cups/page_log
> PageLogFormat %p %j %P %u %T %{job-name} Printcap MaxJobs 0 MaxPrinterHistory 0 PreserveJobFiles Yes
> 
> SystemGroup root operators
> User lp
> Group lp
> RemoteRoot remote
> Port 631
> 
> Browsing On
> BrowseOrder Allow,Deny
> BrowseAllow 999.99.13.*
> 
> DefaultAuthType None
> DefaultEncryption Never
> 
> <Location />
>  Order Allow,Deny
>  Allow From 127.0.0.1
>  Allow From 999.99.4.*
>  Allow From 999.99.8.*
>  Allow From 999.99.10.*
>  Allow From 999.99.11.*
>  Allow From 999.99.13.*
> </Location>
> 
> <Location /admin>
>  AuthType Basic
>  AuthClass System
>  Order Allow,Deny
>  Allow From 127.0.0.1
>  Allow From 999.99.10.*
>  Allow From 999.99.13.*
> </Location>
> 
> <Location /admin/conf>
>  AuthType Basic
>  Require user @SYSTEM
>  Order Allow,Deny
>  Allow From 127.0.0.1
>  Allow From 999.99.10.*
>  Allow From 999.99.13.*
> </Location>
> 
> <Location /jobs>
>  Order Allow,Deny
>  Allow From 127.0.0.1
>  Allow From 999.99.13.*
> </Location>
> 
> <Location /printers>
>  Order Allow,Deny
>  Allow From 127.0.0.1
>  Allow From 999.99.13.*
> </Location>
> 
> 
> 
> _______________________________________________
> cups mailing list
> cups at easysw.com
> http://lists.easysw.com/mailman/listinfo/cups

_________________________________________________________
Michael Sweet, Senior Printing System Engineer, PWG Chair

More information about the cups mailing list