<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    On 10/11/2012 04:16 PM, Steven Jones wrote:
    <blockquote
cite="mid:833D8E48405E064EBC54C84EC6B36E40546E6F2C@STAWINCOX10MBX1.staff.vuw.ac.nz"
      type="cite">
      <pre wrap="">Even after running,

==========
[root@vuwunicoipam002 ~]# kinit ipajonesst1
Password for <a class="moz-txt-link-abbreviated" href="mailto:ipajonesst1@ODS.VUW.AC.NZ:">ipajonesst1@ODS.VUW.AC.NZ:</a> 
[root@vuwunicoipam002 ~]# ldapdelete -Y GSSAPI "idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac ,dc=nz"
SASL/GSSAPI authentication started
SASL username: <a class="moz-txt-link-abbreviated" href="mailto:ipajonesst1@ODS.VUW.AC.NZ">ipajonesst1@ODS.VUW.AC.NZ</a>
SASL SSF: 56
SASL data security layer installed.
ldap_delete: No such object (32)
        matched DN: idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac,dc=nz
[root@vuwunicoipam002 ~]# ldapdelete -Y GSSAPI "idnsName=vuwunicosldedt1,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac ,dc=nz"
SASL/GSSAPI authentication started
SASL username: <a class="moz-txt-link-abbreviated" href="mailto:ipajonesst1@ODS.VUW.AC.NZ">ipajonesst1@ODS.VUW.AC.NZ</a>
SASL SSF: 56
SASL data security layer installed.
ldap_delete: No such object (32)
        matched DN: idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac,dc=nz
[root@vuwunicoipam002 ~]# 
==========</pre>
    </blockquote>
    Ok, then I'm not sure why the RH support guy told you to delete an
    entry that doesn't exist.<br>
    <blockquote
cite="mid:833D8E48405E064EBC54C84EC6B36E40546E6F2C@STAWINCOX10MBX1.staff.vuw.ac.nz"
      type="cite">
      <pre wrap="">

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users-bounces@redhat.com">freeipa-users-bounces@redhat.com</a> [<a class="moz-txt-link-abbreviated" href="mailto:freeipa-users-bounces@redhat.com">freeipa-users-bounces@redhat.com</a>] on behalf of Steven Jones [<a class="moz-txt-link-abbreviated" href="mailto:Steven.Jones@vuw.ac.nz">Steven.Jones@vuw.ac.nz</a>]
Sent: Friday, 12 October 2012 11:10 a.m.
To: Rich Megginson
Cc: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com">freeipa-users@redhat.com</a>
Subject: Re: [Freeipa-users] Cleaning a host that is both present & not found

The web ui is still failing....

:(

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: Rich Megginson [<a class="moz-txt-link-abbreviated" href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a>]
Sent: Friday, 12 October 2012 10:13 a.m.
To: Steven Jones
Cc: Matthew Barr; <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com">freeipa-users@redhat.com</a>
Subject: Re: [Freeipa-users] Cleaning a host that is both present & not found

On 10/11/2012 03:07 PM, Steven Jones wrote:
</pre>
      <blockquote type="cite">
        <pre wrap="">Hi,

yes I have xplorer, maybe I'll do it that way as I cant figure out the ldapdelete command...
</pre>
      </blockquote>
      <pre wrap="">man ldapdelete

ldapdelete -x -D "cn=directory manager" -W
"idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac
,dc=nz"

or, to use your kerberos credentials

ldapdelete -Y GSSAPI
"idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac
,dc=nz"

</pre>
      <blockquote type="cite">
        <pre wrap="">
regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: Matthew Barr [<a class="moz-txt-link-abbreviated" href="mailto:mbarr@snap-interactive.com">mbarr@snap-interactive.com</a>]
Sent: Friday, 12 October 2012 9:25 a.m.
To: Steven Jones
Cc: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com">freeipa-users@redhat.com</a>
Subject: Re: [Freeipa-users] Cleaning a host that is both present&  not found

On Oct 11, 2012, at 3:50 PM, Steven Jones<a class="moz-txt-link-rfc2396E" href="mailto:Steven.Jones@vuw.ac.nz"><Steven.Jones@vuw.ac.nz></a>  wrote:

</pre>
        <blockquote type="cite">
          <pre wrap="">HI,

Looks like I have this at present as well.

The advice off RH support is to run an ldapdelete but Im waiting on the complete syntax off them and why its happened.

Meantime I have 2 machines in this state, no one can login.

:/

So what they have said is,

==========
Hello Steven, I am still going through all the data available in this case, but it looks like you should be able to fix this problem by deleting the following two entries using ldapdelete: dn: nsuniqueid=fdda5001-0cf511e2-8bfdc792-b25c661e,cn=computers,cn=accounts,dc =ods,dc=vuw,dc=ac,dc=nz dn: idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac ,dc=nz
=========
</pre>
        </blockquote>
        <pre wrap="">
ldapdelete would have worked, but I ended up using jxplorer to do it.  Much easier for me at the time :)

(i'm on a VPN link into the DC, and had access to the ldap port directly, so I could do that.     Their advise does look correct, though, and matches where I found the problem.)

Matthew




_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a>
</pre>
      </blockquote>
      <pre wrap="">



_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a>

</pre>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
    </blockquote>
    <br>
  </body>
</html>