<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<br>
<br>
<div class="moz-cite-prefix">On 30.10.2015 11:54, Yogesh Sharma
wrote:<br>
</div>
<blockquote
cite="mid:CAE2-OsqKXc4DDkxN8peuWcifjGhpVCwJqDe6b5G9g+jZN-A-GA@mail.gmail.com"
type="cite">
<div dir="ltr">
<div class="gmail_default"
style="font-family:verdana,sans-serif">Additionally, On
Replica UI, I am getting below Error Message:</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif">
<div class="">
<h4 class="">IPA Error 4301: CertificateOperationError</h4>
</div>
<div class="">
<p>Certificate operation cannot be completed: Unable to
communicate with CMS (Not Found)</p>
</div>
</div>
</div>
</blockquote>
Hello, can you check /var/log/httpd/error_log if there is a detailed
info?<br>
<br>
Martin<br>
<blockquote
cite="mid:CAE2-OsqKXc4DDkxN8peuWcifjGhpVCwJqDe6b5G9g+jZN-A-GA@mail.gmail.com"
type="cite">
<div class="gmail_extra"><br clear="all">
<div>
<div class="gmail_signature">
<div dir="ltr">
<div>
<div dir="ltr">
<div dir="ltr">
<div dir="ltr">
<div dir="ltr">
<div dir="ltr"><i
style="font-size:12.8000001907349px"><span
style="font-family:verdana,sans-serif">Best
Regards,</span></i><br>
</div>
<div dir="ltr">
<div style="font-size:12.8000001907349px">
<div><i><span
style="font-family:verdana,sans-serif">__________________________________________<br>
</span></i></div>
<i><span
style="font-family:verdana,sans-serif">Yogesh
Sharma<br>
</span></i></div>
<span
style="font-size:12.8000001907349px;font-family:verdana,sans-serif"><i>Email: <a
moz-do-not-send="true"
href="mailto:yks0000@gmail.com"
target="_blank"><a class="moz-txt-link-abbreviated" href="mailto:yks0000@gmail.com">yks0000@gmail.com</a></a> |
Web: <span style="color:rgb(0,0,0)"><a
moz-do-not-send="true"
href="http://www.initd.in/"
target="_blank"><a class="moz-txt-link-abbreviated" href="http://www.initd.in">www.initd.in</a></a> </span></i></span><br>
</div>
<div dir="ltr"><span
style="font-size:12.8000001907349px;font-family:verdana,sans-serif"><i><span
style="color:rgb(0,0,0)"><br>
</span></i></span></div>
<div><span
style="font-size:12.8000001907349px;font-family:verdana,sans-serif"><i><span
style="color:rgb(0,0,0)">RHCE, VCE-CIA,
RACKSPACE CLOUD U Certified</span></i></span></div>
<div dir="ltr"><br>
</div>
<div dir="ltr"><a moz-do-not-send="true"
href="https://www.fb.com/yks0000"
target="_blank"><img moz-do-not-send="true"
src="http://i.imgbox.com/ojTDSuw0.gif"
alt=""></a> <a moz-do-not-send="true"
href="http://in.linkedin.com/in/yks0000"
target="_blank"><img moz-do-not-send="true"
src="http://i.imgbox.com/fHLDBlyz.gif"></a> <a
moz-do-not-send="true"
href="https://twitter.com/checkwithyogesh"
target="_blank"><img moz-do-not-send="true"
src="http://i.imgbox.com/vTX3eOJ5.gif"></a> <a
moz-do-not-send="true"
href="http://google.com/+YogeshSharmaOnGooglePlus"
target="_blank"><img moz-do-not-send="true"
src="http://i.imgbox.com/W2bQouRN.gif"></a></div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<br>
<div class="gmail_quote">On Fri, Oct 30, 2015 at 4:16 PM, Yogesh
Sharma <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:yks0000@gmail.com" target="_blank">yks0000@gmail.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">
<div class="gmail_default"
style="font-family:verdana,sans-serif">Team,</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif">Noticed that user
created on IPA Master are not replicating on Replica.</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif">Also, we create a
new Zone in Master, However we do not see the same in
replica server.</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif">Below is the
information:</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif">From Master:</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default">
<div class="gmail_default"><font face="verdana,
sans-serif">[root@ipa-inf-prd-ng2-01 ~]#
ipa-replica-manage list -v <a
moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-01.klikpay.int"
target="_blank">ipa-inf-prd-ng2-01.klikpay.int</a></font></div>
<div class="gmail_default"><font face="verdana,
sans-serif">Directory Manager password: </font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><a moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-02.klikpay.int"
target="_blank">ipa-inf-prd-ng2-02.klikpay.int</a>:
replica</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"> last init status: None</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"> last init ended: None</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"> last update status: -1 Unable to
acquire replicaLDAP error: Can't contact LDAP server</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"> last update ended: None</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif">[root@ipa-inf-prd-ng2-01 ~]# </font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif">From Replica:</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif">
<div class="gmail_default">[root@ipa-inf-prd-ng2-02
~]# ipa-replica-manage list -v <a
moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-02.klikpay.int"
target="_blank">ipa-inf-prd-ng2-02.klikpay.int</a></div>
<div class="gmail_default">Directory Manager
password: </div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default"><a moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-01.klikpay.int"
target="_blank">ipa-inf-prd-ng2-01.klikpay.int</a>:
replica</div>
<div class="gmail_default"> last init status: None</div>
<div class="gmail_default"> last init ended: None</div>
<div class="gmail_default"> last update status: 0
Replica acquired successfully: Incremental update
succeeded</div>
<div class="gmail_default"> last update ended:
2015-10-30 10:36:25+00:00</div>
<div class="gmail_default">[root@ipa-inf-prd-ng2-02
~]# </div>
<div><br>
</div>
<div><br>
</div>
<div>Though it says it is replicated (last update
ended), We are not seeing new users and the new
DNS Zone which we created</div>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif">I also tried force replication, though I
can not see the new Changes:</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif"><br>
</font></div>
<div class="gmail_default"><font face="verdana,
sans-serif">
<div class="gmail_default">[root@ipa-inf-prd-ng2-02
~]# ipa-replica-manage force-sync --from <a
moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-01.klikpay.int"
target="_blank">ipa-inf-prd-ng2-01.klikpay.int</a></div>
<div class="gmail_default">Directory Manager
password: </div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default">ipa: INFO: Setting
agreement cn=<a moz-do-not-send="true"
href="http://meToipa-inf-prd-ng2-02.klikpay.int"
target="_blank">meToipa-inf-prd-ng2-02.klikpay.int</a>,cn=replica,cn=dc\=klikpay\,dc\=int,cn=mapping
tree,cn=config schedule to 2358-2359 0 to force
synch</div>
<div class="gmail_default">ipa: INFO: Deleting
schedule 2358-2359 0 from agreement cn=<a
moz-do-not-send="true"
href="http://meToipa-inf-prd-ng2-02.klikpay.int"
target="_blank">meToipa-inf-prd-ng2-02.klikpay.int</a>,cn=replica,cn=dc\=klikpay\,dc\=int,cn=mapping
tree,cn=config</div>
<div class="gmail_default">[root@ipa-inf-prd-ng2-02
~]# </div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default">Once I do
re-initialization, it gives "<font color="#ff0000">Can't
Contact LDAP Server"</font></div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default">
<div class="gmail_default">[root@ipa-inf-prd-ng2-02
~]# ipa-replica-manage re-initialize --from <a
moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-01.klikpay.int"
target="_blank">ipa-inf-prd-ng2-01.klikpay.int</a></div>
<div class="gmail_default">Directory Manager
password: </div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default">ipa: INFO: Setting
agreement cn=<a moz-do-not-send="true"
href="http://meToipa-inf-prd-ng2-02.klikpay.int"
target="_blank">meToipa-inf-prd-ng2-02.klikpay.int</a>,cn=replica,cn=dc\=klikpay\,dc\=int,cn=mapping
tree,cn=config schedule to 2358-2359 0 to force
synch</div>
<div class="gmail_default">ipa: INFO: Deleting
schedule 2358-2359 0 from agreement cn=<a
moz-do-not-send="true"
href="http://meToipa-inf-prd-ng2-02.klikpay.int"
target="_blank">meToipa-inf-prd-ng2-02.klikpay.int</a>,cn=replica,cn=dc\=klikpay\,dc\=int,cn=mapping
tree,cn=config</div>
<div class="gmail_default"><br>
</div>
<div class="gmail_default">[<a
moz-do-not-send="true"
href="http://ipa-inf-prd-ng2-01.klikpay.int"
target="_blank">ipa-inf-prd-ng2-01.klikpay.int</a>]
reports: Update failed! Status: [-1 - LDAP
error: Can't contact LDAP server]</div>
<div><br>
</div>
</div>
</font></div>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div class="gmail_default"
style="font-family:verdana,sans-serif"><br>
</div>
<div>
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div dir="ltr">
<div dir="ltr">
<div dir="ltr">
<div dir="ltr"><i style="font-size:12.8px"><span
style="font-family:verdana,sans-serif">Best Regards,</span></i><br>
</div>
<div dir="ltr">
<div style="font-size:12.8px">
<div><i><span
style="font-family:verdana,sans-serif">__________________________________________<br>
</span></i></div>
<i><span
style="font-family:verdana,sans-serif">Yogesh
Sharma<br>
</span></i></div>
<span
style="font-size:12.8px;font-family:verdana,sans-serif"><i>Email: <a
moz-do-not-send="true"
href="mailto:yks0000@gmail.com"
target="_blank"><a class="moz-txt-link-abbreviated" href="mailto:yks0000@gmail.com">yks0000@gmail.com</a></a> |
Web: <span style="color:rgb(0,0,0)"><a
moz-do-not-send="true"
href="http://www.initd.in/"
target="_blank"><a class="moz-txt-link-abbreviated" href="http://www.initd.in">www.initd.in</a></a> </span></i></span><br>
</div>
<div dir="ltr"><span
style="font-size:12.8px;font-family:verdana,sans-serif"><i><span
style="color:rgb(0,0,0)"><br>
</span></i></span></div>
<div><span
style="font-size:12.8px;font-family:verdana,sans-serif"><i><span
style="color:rgb(0,0,0)">RHCE,
VCE-CIA, RACKSPACE CLOUD U
Certified</span></i></span></div>
<div dir="ltr"><br>
</div>
<div dir="ltr"><a moz-do-not-send="true"
href="https://www.fb.com/yks0000"
target="_blank"><img
moz-do-not-send="true"
src="http://i.imgbox.com/ojTDSuw0.gif"
alt=""></a> <a
moz-do-not-send="true"
href="http://in.linkedin.com/in/yks0000"
target="_blank"><img
moz-do-not-send="true"
src="http://i.imgbox.com/fHLDBlyz.gif"></a> <a
moz-do-not-send="true"
href="https://twitter.com/checkwithyogesh"
target="_blank"><img
moz-do-not-send="true"
src="http://i.imgbox.com/vTX3eOJ5.gif"></a> <a
moz-do-not-send="true"
href="http://google.com/+YogeshSharmaOnGooglePlus"
target="_blank"><img
moz-do-not-send="true"
src="http://i.imgbox.com/W2bQouRN.gif"></a></div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
</blockquote>
<br>
</body>
</html>