Hello,
1/ Since migrating to version 2.6, I no longer have access to our WAPT server page, even though the nginx configuration went smoothly.
2/ Following the update of our WAPT Enterprise server from version 2.6.0.16613 to the latest version, I can no longer connect to the console because it asks for a TOTP code that I don't know.
Can you help me?
Thank you in advance,
Best regards,
Céline
NB: Enterprise version running on Debian 12
Web access problem + TOTP
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
-
dcardon
- WAPT Expert
- Messages: 1932
- Registration: June 18, 2014 - 09:58
- Location: Saint Sébastien sur Loire
- Contact :
Hello Céline,
the server reconfiguration was apparently done in strict CSPN mode by mistake. You can compare the version saved during the upgrade of the file /opt/wapt/conf/waptserver.ini.bck_2025-09-xx.... with the configuration in /opt/wapt/conf/waptserver.ini.
If you can still log in with your admin account (after correcting the configuration above), you can go to user management to remove the totp entries (otherwise, it's also possible with a command line on the database /opt/wapt/conf/security.sqlite).
Regards,
Denis
the server reconfiguration was apparently done in strict CSPN mode by mistake. You can compare the version saved during the upgrade of the file /opt/wapt/conf/waptserver.ini.bck_2025-09-xx.... with the configuration in /opt/wapt/conf/waptserver.ini.
If you can still log in with your admin account (after correcting the configuration above), you can go to user management to remove the totp entries (otherwise, it's also possible with a command line on the database /opt/wapt/conf/security.sqlite).
Regards,
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
-
dcardon
- WAPT Expert
- Messages: 1932
- Registration: June 18, 2014 - 09:58
- Location: Saint Sébastien sur Loire
- Contact :
Hi Céline,
I think there was a bug during the upgrade. During the 2.6 CSPN installation, the TOTP is displayed on the screen so the admin can authenticate on the console. But apparently, it wasn't offered to you during the upgrade. We'll look into that.
In the meantime, could you try setting cspn_toe=False and restarting the server, then setting a TOTP on your account (see [1]), then setting the value back to True and restarting the server?
If that doesn't work, you can call the office so we can look into it together.
Best regards,
Denis
I think there was a bug during the upgrade. During the 2.6 CSPN installation, the TOTP is displayed on the screen so the admin can authenticate on the console. But apparently, it wasn't offered to you during the upgrade. We'll look into that.
In the meantime, could you try setting cspn_toe=False and restarting the server, then setting a TOTP on your account (see [1]), then setting the value back to True and restarting the server?
If that doesn't work, you can call the office so we can look into it together.
Best regards,
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Hi Denis,
It's working now, I've regained control of the console.
Thank you for your help.
Regarding access to the webpage, do you have any idea what the problem might be?
I'm getting a message saying the site is inaccessible.
Sincerely,
Céline
It's working now, I've regained control of the console.
Thank you for your help.
Regarding access to the webpage, do you have any idea what the problem might be?
I'm getting a message saying the site is inaccessible.
Sincerely,
Céline
-
dcardon
- WAPT Expert
- Messages: 1932
- Registration: June 18, 2014 - 09:58
- Location: Saint Sébastien sur Loire
- Contact :
Hello Céline,
Thanks for the feedback
Regarding the homepage, within the framework of the Wapt 2.6 CSPN TOE, we have removed it by default; otherwise, there are many additional constraints to comply with. Since the homepage serves little purpose other than downloading the setup or agent, which can be distributed through a third-party channel, we have simply disabled it. To re-enable it, you can modify the following parameter in waptserver.ini [1]:
Sincerely,
Denis
https://www.wapt.fr/fr/doc/wapt-server- ... server-ini
Thanks for the feedback
Regarding the homepage, within the framework of the Wapt 2.6 CSPN TOE, we have removed it by default; otherwise, there are many additional constraints to comply with. Since the homepage serves little purpose other than downloading the setup or agent, which can be distributed through a third-party channel, we have simply disabled it. To re-enable it, you can modify the following parameter in waptserver.ini [1]:
Code: Select all
homepage_enable = TrueDenis
https://www.wapt.fr/fr/doc/wapt-server- ... server-ini
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
-
dcardon
- WAPT Expert
- Messages: 1932
- Registration: June 18, 2014 - 09:58
- Location: Saint Sébastien sur Loire
- Contact :
Hi again Céline,
ah yes, indeed, you need to restart the postconf for the nginx configuration to be modified. That said, if you restart the postconf in cspn-toe mode, it will remove it again... Okay, so that's not the right way to do it; there's a better way. You can delete the parameter and restart the waptserver service.
If it's the waptsetup.exe file you need to update the admin console, you can retrieve it directly from the server via SSH (in the /var/www/html/wapt/waptagent folder) or from our release folder at https://wapt.tranquil.it/releases/ (you can verify the Authenticode signatures of the files before execution).
If it's the waptagent.exe file you want to retrieve, it's available on the admin's machine when the agent is created (an explorer.exe window opens when the agent is uploaded to the server), or you can retrieve it via SSH from the server (in the /var/www/html/wapt/waptagent folder), or you can retrieve it from the generated xyz-waptupgrade.wapt package (a Wapt package is a simple zip file, so it can be opened on a Windows machine to retrieve the file it contains).
We'll add a menu to the console to perform these two actions, and in the meantime, I'll update the documentation. It's true that it's not very intuitive when you're in cspn-toe mode... Thanks for the feedback,
Denis
ah yes, indeed, you need to restart the postconf for the nginx configuration to be modified. That said, if you restart the postconf in cspn-toe mode, it will remove it again... Okay, so that's not the right way to do it; there's a better way. You can delete the parameter and restart the waptserver service.
If it's the waptsetup.exe file you need to update the admin console, you can retrieve it directly from the server via SSH (in the /var/www/html/wapt/waptagent folder) or from our release folder at https://wapt.tranquil.it/releases/ (you can verify the Authenticode signatures of the files before execution).
If it's the waptagent.exe file you want to retrieve, it's available on the admin's machine when the agent is created (an explorer.exe window opens when the agent is uploaded to the server), or you can retrieve it via SSH from the server (in the /var/www/html/wapt/waptagent folder), or you can retrieve it from the generated xyz-waptupgrade.wapt package (a Wapt package is a simple zip file, so it can be opened on a Windows machine to retrieve the file it contains).
We'll add a menu to the console to perform these two actions, and in the meantime, I'll update the documentation. It's true that it's not very intuitive when you're in cspn-toe mode... Thanks for the feedback,
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
