When I try to disable SSL (in inetd.conf and when I run the client side command) I got the following :
CHECK_NRPE: Received 0 bytes from daemon. Check the remote server logs for error messages.
when you’re running the standalone daemon, you’re starting it as root i assume, and its working. so the problem lies in inetd. I see it’s trying to run nrpe as the user “nagios”. does the nagios user exist? is the nagios user allowed to run /usr/local/nagios/bin/nrpe ?
you probably already know this, but remember to restart inetd after config changes.
can you do a netstat -pantu and see if inetd is listening on 5666 (nrpe’s default port)? not sure if you have to do this with solaris, but on RHEL you should add “nrpe 5666/tcp” to /etc/services…
Yes, on standalone mode I launch the process from root account but the configuration file (/usr/local/nagios/etc/nrpe.cfg) tells to run it as nagios user and it works fine : when I check with ps the process is running with nagios account.
I’ve made a lot of testing and I’ve never forget to restart inetd. I think its configuration is good because I receive a “connection refused” when it is not yet configured. As soon as the inetd.conf and services files are setup I have this handshake error. It means the nrpe process answers but something is wrong and I don’t know what.
The nrpe binary is dynamically linked with SSL libs, it may have trouble to find them when launched by inetd !??
I’ll give it a new try on monday as I’m on we right now
I’ve made a new try with a shell encapsulating the call to nrpe binary. It allows me to define the LD_LIBRARY_PATH just in case the nrpe binary was not able to find the SSL libs. But it didn’t change anything.