Differences between revisions 82 and 84 (spanning 2 versions)
Revision 82 as of 2021-07-20 10:22:40
Size: 8092
Editor: ?WolfgangSchweer
Comment: add information about isc-dhcp-server workaround
Revision 84 as of 2021-08-03 03:45:47
Size: 8213
Editor: PaulWise
Comment: grammar
Deletions are marked like this. Additions are marked like this.
Line 77: Line 77:
 * isc-dhcp-server-ldap: fails to activate the service, see DebianBug:971275. This seems to happen randomly.<<BR>>In case the DHCP server doesn't work reliably, use the DHCP server packages from Debian 10 (buster).  * isc-dhcp-server-ldap: fails to activate the service, see DebianBug:971275.<<BR>>After (re)booting the main server, it might take some minutes for the DHCP service to become available. This seems to happen randomly.<<BR>>In case the DHCP server doesn't work reliably, consider using the DHCP server packages from Debian 10 (buster).

Debian Edu Installer Logo

Status of Debian Edu "Bullseye"

(development started in July 2019)



  • At first boot of a combined server the SquashFS image for diskless workstation support is generated. This will take quite some time.
  • In case of a separate or an additional LTSP server required information for setting up the LTSP client environment isn't complete during installation. Setup can be done once the system has been added with GOsa².


  • Instead of the default xfce desktop environment, mate, gnome, lxde, lxqt, cinnamon or kde can be used by editing the kernel desktop parameter (default: desktop=xfce).

  • Dropping the modules= and desktop= items from the kernel command line completely allows one to use all ISO images for stock Debian installations.

    See the Bullseye manual installation chapter how to edit kernel command line parameters.

Installation media

Debian Edu ISOs for 64-bit and 32-bit PCs (both AMD and Intel processors) are available from the usual Debian places.

(Replace amd64 with i386 if an image is needed for very old 32-bit PCs.)

Download using HTTPS

Weekly builds using d-i from bullseye:

Daily iso-cd builds using d-i from unstable (iso-bd images are not built daily):

Download using rsync

Also recommended to update an already existing image.

  • rsync -v --progress cdimage.debian.org::cdimage/weekly-builds/amd64/iso-cd/debian-edu-testing-amd64-netinst.iso debian-edu-testing-amd64-netinst.iso

    rsync -v --progress cdimage.debian.org::cdimage/weekly-builds/i386/iso-cd/debian-edu-testing-i386-netinst.iso debian-edu-testing-i386-netinst.iso

    rsync -v --progress cdimage.debian.org::cdimage/weekly-builds/amd64/iso-bd/debian-edu-testing-amd64-BD-1.iso debian-edu-testing-amd64-BD-1.iso

    rsync -v --progress cdimage.debian.org::cdimage/weekly-builds/i386/iso-bd/debian-edu-testing-i386-BD-1.iso debian-edu-testing-i386-BD-1.iso

Verify the downloaded image file

Detailed instructions for verifying these images are part of the Debian-CD FAQ.

Known problems that need to be fixed elsewhere

  • isc-dhcp-server-ldap: fails to activate the service, see 971275.
    After (re)booting the main server, it might take some minutes for the DHCP service to become available. This seems to happen randomly.
    In case the DHCP server doesn't work reliably, consider using the DHCP server packages from Debian 10 (buster).

    1. Create the file /etc/apt/sources.list.d/buster.sources.list with the following content:

        deb http://deb.debian.org/debian buster main
        deb http://deb.debian.org/debian-security buster/updates main
      • and run:
        apt update
        apt install isc-dhcp-server/buster isc-dhcp-server-ldap/buster
    2. To make DHCP downgrading permanent and to ensure security upgrades, create two files to pin the DHCP server packages to the Debian 10 (buster) version.

      File /etc/apt/apt.conf.d/99-edu-default-release; content:

        APT::Default-Release "bullseye";

      File /etc/apt/preferences.d/99-downgrade-dhcp-server; content:

        Package: isc-dhcp-server-ldap isc-dhcp-server
        Pin: version 4.4.1-2+deb10*
        Pin-Priority: 1001
    3. Once the bug has been fixed, remove the three created files and run apt update && apt upgrade.

  • libpam-python: porting to python3 needed, see 937234.

  • X2Go doesn't register users with utmp/wtmp, see 890517.

  • ldapvi sorts entries alphabetically which can break specific modifications where the order of the definitions is important, see 820790.


  • Our documentation could further be improved: eg by proof-reading and improving language+grammar used, by updating outdated entries, etc

Fixed and done

  • Sending system emails from machines inside the internal network is broken, see 989338.

  • DHCP configuration is broken, see 989340.

  • The debian-edu-ltsp-install script fails to setup thin client support if used outside d-i, see 989342.

  • Automatic partitioning fails on UEFI systems, see 988396.

  • The first user doesn't have a Samba account, see 987632.

    • As a workaround, run smbpasswd -a <firstusername> as root on the main server.

  • Thin client support is broken if a combined server is installed in offline mode, see 987633.

    • As a workaround, run as root on the main server once Internet connection is available:

      rm -rf /srv/ltsp/thin
      debian-edu-ltsp-install --diskless_workstation no --thin_type bare

  • Diskless workstation support is broken in case of a 32-bit combined server installation, see 987634.

    • As a workaround, run mv /srv/tftp/ltsp/ltsp.img /srv/tftp/ltsp/x86_32/ltsp.img as root on the main server.
      Choose x86_32 from the iPXE menu to start a diskless workstation.

  • major manual update due to LTSP and Samba changes, minor one for CUPS; also document the (optional) freeRADIUS setup.
  • add Bullseye artwork Homeworld.
  • GOSa²: deprecated implode() function usage with PHP 7.4 messes up GUI items, see 964600.

  • GOsa²: Fatal error when opening user list, see 941165 (also for a possible workaround).

  • GOSa²: password encryption/decryption broken with PHP 7.4, see 964318.

  • Mail server configuration is broken after Exim upgrade to exim4 4.94
  • major LTSP update in bullseye, see https://lists.debian.org/debian-edu/2019/11/msg00037.html

  • LTSP 19.x: 'ltsp image /' fails to generate usable image, see 946946. For a workaround see the bugreport. [The command stills fails but LTSP 20.x now provides a way to generate the image in case of advanced partitioning.]

  • integrate icingaweb2
  • Xfce is missing a volume control in the panel, see 913610. [Unlikely to be fixed in Buster.]

  • fetch-ldap-cert should have independent conditions for host and LTSP chroot, see 934380.

  • Fix fetch-ldap-cert to improve security, see 931413.

  • Drop obsolete code in d-i/finish-install, see 923675.

  • Fix sudo-ldap configuration, see 929964.

  • Fix LTSP related PXE configuration, see 928756.

  • Fix Firefox NFS related issue, see 930122.

  • Fix krb5 related logging configuration, see 931366.

  • Set LTSP chroot path in /etc/exports file if LTSP server has i386 arch, see 931680.

  • Include the LDAP server certificate in initial LTSP chroot image, see 932828.

  • Provide Debian Edu RootCA certificate for download, see 933183.

  • Fix loss of dynamically allocated v4 IP address, see 933580.