[389-users] Proper upgrading procedure and the use of setup-ds-admin.pl -u
Anthony Joseph Messina
amessina at messinet.com
Fri Aug 28 15:56:36 UTC 2009
On Friday 28 August 2009 10:25:20 Rich Megginson wrote:
> > 2) I noticed that while using SSL, the setup-ds-admin.pl requires me to
> > delete the CA cert that was previously installed and re-import it
> > (crazy).
>
> Yes, this is a bug. https://bugzilla.redhat.com/show_bug.cgi?id=501846
>
> > I'd like to make sure don't have these servers crap out again.
> >
>
> Due to the rename issue, your servers will be stopped and restarted, but
> you should not lose your run level configuration. In what other way(s)
> did they "crap out"?
well, since i had SSL in the server, the admin server and the console
communication between both, and when the servers were stopped, the setup-ds-
admin.pl couldn't connect to anything to do the upgrade and once i manually
re-added (chkconfig --add dirsrv...) and restarted, the SSL issue with setup-
ds-admin.pl became a problem as i had to then uninstall certs just to
reinstall them... yuk!
but i'm not worried about the change between fedora-ds* and 389-ds* now as i
removed all of fedora-ds* and installed fresh 389-ds* rpms and just simply
started over. -- i had just moved from OpenLDAP so that wasn't a big deal.
i also noticed last time that the setup-ds-admin.pl created duplicate
instances of my servers in the console -- and i wasn't sure how to get rid of
those which is also part of why i just "started over."
since i'm already using the renamed packages (the first round of them), i want
to be sure i'm ok with a yum upgrade and that the proper procedure is to
always run a setup-ds-admin.pl -u
due to https://bugzilla.redhat.com/show_bug.cgi?id=501846, i now have standard
ldap:// (instead of ldaps://) between the admin server and the ds so i should
be able to avoid that issue.
i'm still learning this 389-ds, coming from OpenLDAP where i simply did an yum
update and didn't need to do anything else :)
i guess, basically... what does one do if the server stops and they are not
able to run setup-ds-admin.pl? is it safe to restart the server services and
then try it again?
--
Anthony - http://messinet.com - http://messinet.com/~amessina/gallery
8F89 5E72 8DF0 BCF0 10BE 9967 92DC 35DC B001 4A4E
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20090828/9f8f3649/attachment.sig>
More information about the Fedora-directory-users
mailing list