<html><body><div style="color:#000; background-color:#fff; font-family:times new roman, new york, times, serif;font-size:12pt"><div>Hi all,</div><div><br></div><div> I accidentally removed one of my IPA replica host on IPA web UI by mistake, on the host list I planed to remove ipaclient02.example.com, but accidentally the mouse moved to ipareplica02.example.com and the latter got removed without a prompt.</div><div><br></div><div>I realized the mistake and tried to recover from this disaster but it was already too late, the change propagated to all the replicas and the poor ipareplica02 now stops functioning.</div><div><br></div><div><div>[root@ipareplica02 slapd-EXAMPLE-COM]# ipa service-find</div><div>ipa: ERROR: cannot connect to u'https://ipareplica02.qe9.jigsaw.com/ipa/xml': Internal Server Error</div><div>[root@ipareplica02 slapd-EXAMPLE-COM]# ipa user-find</div><div>ipa: ERROR: cannot connect to u'https://ipareplica02.qe9.jigsaw.com/ipa/xml':
 Internal Server Error</div><div>[root@ipareplica02 slapd-EXAMPLE-COM]# ipa host-find</div><div>ipa: ERROR: cannot connect to u'https://ipareplica02.qe9.jigsaw.com/ipa/xml': Internal Server Error</div><div>[root@ipareplica02 slapd-EXAMPLE-COM]# </div><div><br></div><div>On the IPA master, It was found that ipareplica02 didn't show up in 'host-find' list or 'service-find' list. Though it still showed in the master list reported by 'ipa-replica-manage' and 'ipa-csreplica-manage', the real command 'ipa-replica-manage list ipareplica02' fails with LDAP could't reach error.</div><div><br></div><div>What should I do now? Is there are any other ways to recover besides uninstall and reinstall of IPA replica ipareplica02?</div><div><br></div><div> BTW, it will be more than appreciated if the web UI could pop up a warning prompt when removing host/services entries associated with IPA masters and IPA
 replicas.</div></div><div> </div><div>Thanks.</div><div><br></div><div>--David</div>  <div style="font-size: 12pt; font-family: 'times new roman', 'new york', times, serif; "> <div style="font-size: 12pt; font-family: 'times new roman', 'new york', times, serif; "> <div dir="ltr"> <font size="2" face="Arial"> <hr size="1">  <b><span style="font-weight:bold;">From:</span></b> Rich Megginson <rmeggins@redhat.com><br> <b><span style="font-weight: bold;">To:</span></b> Ben Ho <ben13ho@hotmail.com> <br><b><span style="font-weight: bold;">Cc:</span></b> freeipa-users@redhat.com <br> <b><span style="font-weight: bold;">Sent:</span></b> Tuesday, May 15, 2012 5:33 PM<br> <b><span style="font-weight: bold;">Subject:</span></b> Re: [Freeipa-users] Help with ipa-replica-manage<br> </font> </div> <br>
<div id="yiv441369669">
  

    
  
  <div>
    On 05/15/2012 02:49 PM, Ben Ho wrote:
    <blockquote type="cite">
      <style><!--
#yiv441369669 .yiv441369669hmmessage P
{
margin:0px;padding:0px;}
#yiv441369669 body.yiv441369669hmmessage
{
font-size:10pt;font-family:Tahoma;}
--></style>
      <div dir="ltr">
        <div>This is the information I retrieved about my server.</div>
        <div><br>
        </div>
        <div><b>ipa-server-selinux-2.1.3-9.el6.x86_64</b></div>
        <div>
          <div><b>ipa-client-2.1.3-9.el6.x86_64</b></div>
          <div><b>ipa-server-2.1.3-9.el6.x86_64</b></div>
        </div>
        <div><b>CentOS release 6.2</b></div>
        <div><b>389-ds-base-1.2.9.14-1.el6_2.2.x86_64</b></div>
        <div><br>
        </div>
        <div>Thanks again.</div>
      </div>
    </blockquote>
    <br>
    Is replication otherwise working?<br>
    <br>
    <blockquote type="cite">
      <div dir="ltr">
        <div><br>
        </div>
        <div>-Ben</div>
        <br>
        <div>
          <hr id="yiv441369669stopSpelling">Date: Tue, 15 May 2012 13:15:46 -0600<br>
          From: <a rel="nofollow" class="yiv441369669moz-txt-link-abbreviated" ymailto="mailto:rmeggins@redhat.com" target="_blank" href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a><br>
          To: <a rel="nofollow" class="yiv441369669moz-txt-link-abbreviated" ymailto="mailto:ben13ho@hotmail.com" target="_blank" href="mailto:ben13ho@hotmail.com">ben13ho@hotmail.com</a><br>
          CC: <a rel="nofollow" class="yiv441369669moz-txt-link-abbreviated" ymailto="mailto:freeipa-users@redhat.com" target="_blank" href="mailto:freeipa-users@redhat.com">freeipa-users@redhat.com</a><br>
          Subject: Re: [Freeipa-users] Help with ipa-replica-manage<br>
          <br>
          On 05/15/2012 01:00 PM, Ben Ho wrote:
          <blockquote>
            <style><!--
#yiv441369669 .yiv441369669ExternalClass .yiv441369669ecxhmmessage P
{padding:0px;}
#yiv441369669 .yiv441369669ExternalClass body.yiv441369669ecxhmmessage
{font-size:10pt;font-family:Tahoma;}

--></style>
            <div dir="ltr">
              <div>Hello,</div>
              <div>  I am pretty new to IPA.  Right now I have three
                servers that are running IPA.  I am trying to replicate
                one server to two other servers.  I use this command:</div>
              <div><br>
              </div>
              <div>ipa-replica-manage re-initialize --from example2.edu</div>
              <div><br>
              </div>
              <div>  On the first server I need to replicate, it works
                fine.  However, on the second server I get this message
                in my log files.  The errors get printed out once every
                1 to 5 minutes.</div>
              <div><br>
              </div>
              <div>[15/May/2012:14:22:43 -0400] NSMMReplicationPlugin -
                agmt="cn=meToexample1.edu" (example1:389): Schema
                replication update failed: Type or value exists</div>
              <div>[15/May/2012:14:22:43 -0400] NSMMReplicationPlugin -
                agmt="cn=meToexample1.edu" (example1:389): Warning:
                unable to replicate schema: rc=1</div>
              <div>[15/May/2012:14:22:47 -0400] NSMMReplicationPlugin -
                agmt="cn=meToexample2.edu" (example2:389): Schema
                replication update failed: Type or value exists</div>
              <div>[15/May/2012:14:22:47 -0400] NSMMReplicationPlugin -
                agmt="cn=meToexample2.edu" (example2:389): Warning:
                unable to replicate schema: rc=1</div>
              <div><br>
              </div>
              <div><br>
              </div>
              <div>  Again, I am pretty new to this, so any help or tips
                would be appreciated.</div>
            </div>
          </blockquote>
          <br>
          What platform and what version of 389-ds-base and ipa-server
          for all of your servers?<br>
          <br>
          <blockquote>
            <div dir="ltr">
              <div><br>
              </div>
              <div>  Thanks!</div>
              <div><br>
              </div>
              <div>-Ben</div>
              <div><br>
              </div>
            </div>
            <br>
            <fieldset class="yiv441369669ecxmimeAttachmentHeader"></fieldset>
            <br>
            <pre>_______________________________________________
Freeipa-users mailing list
<a rel="nofollow" class="yiv441369669ecxmoz-txt-link-abbreviated" ymailto="mailto:Freeipa-users@redhat.com" target="_blank" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a>
<a rel="nofollow" class="yiv441369669ecxmoz-txt-link-freetext" target="_blank" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
          </blockquote>
          <br>
        </div>
      </div>
    </blockquote>
    <br>
  </div>

</div><br>_______________________________________________<br>Freeipa-users mailing list<br><a ymailto="mailto:Freeipa-users@redhat.com" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a><br><a href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a><br><br> </div> </div>  </div></body></html>