[Freeipa-devel] Entropy aka ipa-server-install failed
Petr Spacek
pspacek at redhat.com
Fri Feb 28 10:59:57 UTC 2014
On 28.2.2014 11:53, Sumit Bose wrote:
> Hi,
>
> I just tried to install FreeIPA on a fresh F20 VM and
> 'ipa-server-install --setup-dns' failed to start FreeIPA finally after
> everything was configured.
>
> The reason was that starting named timed out because
> generate-rndc-key.sh was basically blocking because there was no entropy
> for /dev/random left to generate a proper key. I wonder if it would make
> sense to call generate-rndc-key.sh during ipa-server-install if
> --setup-dns is given to avoid this.
We can do it but it will only shift the problem to different place. In the
past the key was generated in RPM posttrans but it was removed from there
because sometimes it blocked RPM for very very long time.
--
Petr^2 Spacek
More information about the Freeipa-devel
mailing list