[Freeipa-devel] Unable to acquire replicaLDAP during replica installation
Oleg Fayans
ofayans at redhat.com
Wed Jul 15 09:07:29 UTC 2015
Hi everybody,
The following error was encountered during installation of one of
repicas using the packages built from the latest upstream code:
[error] RuntimeError: One of the ldap service principals is missing.
Replication agreement cannot be converted.
Replication error message: Unable to acquire replicaLDAP error: No such
object
The second replica however was installed successfully.
Installation log and dirsrv errors log are attached
--
Oleg Fayans
Quality Engineer
FreeIPA team
RedHat.
-------------- next part --------------
389-Directory/1.3.4.1 B2015.181.1428
f22replica2.pesen.net:389 (/etc/dirsrv/slapd-PESEN-NET)
[15/Jul/2015:04:44:43 -0400] - WARNING: Import is running with nsslapd-db-private-import-mem on; No other process is allowed to access the database
[15/Jul/2015:04:44:43 -0400] - check_and_set_import_cache: pagesize: 4096, pages: 428393, procpages: 56944
[15/Jul/2015:04:44:43 -0400] - WARNING: After allocating import cache 685428KB, the available memory is 1028144KB, which is less than the soft limit 1048576KB. You may want to decrease the import cache size and rerun import.
[15/Jul/2015:04:44:43 -0400] - Import allocates 685428KB import cache.
[15/Jul/2015:04:44:43 -0400] - import userRoot: Beginning import job...
[15/Jul/2015:04:44:43 -0400] - import userRoot: Index buffering enabled with bucket size 100
[15/Jul/2015:04:44:43 -0400] - import userRoot: Processing file "/var/lib/dirsrv/boot.ldif"
[15/Jul/2015:04:44:43 -0400] - import userRoot: Finished scanning file "/var/lib/dirsrv/boot.ldif" (1 entries)
[15/Jul/2015:04:44:44 -0400] - import userRoot: Workers finished; cleaning up...
[15/Jul/2015:04:44:44 -0400] - import userRoot: Workers cleaned up.
[15/Jul/2015:04:44:44 -0400] - import userRoot: Cleaning up producer thread...
[15/Jul/2015:04:44:44 -0400] - import userRoot: Indexing complete. Post-processing...
[15/Jul/2015:04:44:44 -0400] - import userRoot: Generating numsubordinates (this may take several minutes to complete)...
[15/Jul/2015:04:44:44 -0400] - import userRoot: Generating numSubordinates complete.
[15/Jul/2015:04:44:44 -0400] - import userRoot: Gathering ancestorid non-leaf IDs...
[15/Jul/2015:04:44:44 -0400] - import userRoot: Finished gathering ancestorid non-leaf IDs.
[15/Jul/2015:04:44:44 -0400] - Nothing to do to build ancestorid index
[15/Jul/2015:04:44:44 -0400] - import userRoot: Created ancestorid index (new idl).
[15/Jul/2015:04:44:44 -0400] - import userRoot: Flushing caches...
[15/Jul/2015:04:44:44 -0400] - import userRoot: Closing files...
[15/Jul/2015:04:44:44 -0400] - All database threads now stopped
[15/Jul/2015:04:44:44 -0400] - import userRoot: Import complete. Processed 1 entries in 1 seconds. (1.00 entries/sec)
[15/Jul/2015:04:44:45 -0400] - 389-Directory/1.3.4.1 B2015.181.1428 starting up
[15/Jul/2015:04:44:45 -0400] - Db home directory is not set. Possibly nsslapd-directory (optionally nsslapd-db-home-directory) is missing in the config file.
[15/Jul/2015:04:44:45 -0400] - resizing db cache size: 701878272 -> 10000000
[15/Jul/2015:04:44:46 -0400] - convert_pbe_des_to_aes: Converting DES passwords to AES...
[15/Jul/2015:04:44:46 -0400] - convert_pbe_des_to_aes: Successfully disabled DES plugin (cn=DES,cn=Password Storage Schemes,cn=plugins,cn=config)
[15/Jul/2015:04:44:46 -0400] - convert_pbe_des_to_aes: Finished - no DES passwords to convert.
[15/Jul/2015:04:44:46 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests
[15/Jul/2015:04:44:47 -0400] - slapd shutting down - signaling operation threads - op stack size 0 max work q size 0 max work q stack size 0
[15/Jul/2015:04:44:47 -0400] - slapd shutting down - closing down internal subsystems and plugins
[15/Jul/2015:04:44:47 -0400] - Waiting for 4 database threads to stop
[15/Jul/2015:04:44:48 -0400] - All database threads now stopped
[15/Jul/2015:04:44:48 -0400] - slapd shutting down - freed 0 work q stack objects - freed 0 op stack objects
[15/Jul/2015:04:44:48 -0400] - slapd stopped.
[15/Jul/2015:04:44:49 -0400] - 389-Directory/1.3.4.1 B2015.181.1428 starting up
[15/Jul/2015:04:44:49 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests
[15/Jul/2015:04:44:50 -0400] - The change of nsslapd-ldapilisten will not take effect until the server is restarted
[15/Jul/2015:04:44:50 -0400] - Warning: Adding configuration attribute "nsslapd-security"
[15/Jul/2015:04:44:51 -0400] - slapd shutting down - signaling operation threads - op stack size 2 max work q size 1 max work q stack size 1
[15/Jul/2015:04:44:51 -0400] - slapd shutting down - waiting for 1 thread to terminate
[15/Jul/2015:04:44:51 -0400] - slapd shutting down - closing down internal subsystems and plugins
[15/Jul/2015:04:44:51 -0400] - Waiting for 4 database threads to stop
[15/Jul/2015:04:44:51 -0400] - All database threads now stopped
[15/Jul/2015:04:44:51 -0400] - slapd shutting down - freed 1 work q stack objects - freed 2 op stack objects
[15/Jul/2015:04:44:51 -0400] - slapd stopped.
[15/Jul/2015:04:44:52 -0400] - SSL alert: Configured NSS Ciphers
[15/Jul/2015:04:44:52 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:52 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:52 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] - SSL alert: TLS_RSA_WITH_SEED_CBC_SHA: enabled
[15/Jul/2015:04:44:53 -0400] SSL Initialization - Configured SSL version range: min: TLS1.0, max: TLS1.2
[15/Jul/2015:04:44:53 -0400] - 389-Directory/1.3.4.1 B2015.181.1428 starting up
[15/Jul/2015:04:44:53 -0400] attrcrypt - No symmetric key found for cipher AES in backend userRoot, attempting to create one...
[15/Jul/2015:04:44:53 -0400] attrcrypt - Key for cipher AES successfully generated and stored
[15/Jul/2015:04:44:53 -0400] attrcrypt - No symmetric key found for cipher 3DES in backend userRoot, attempting to create one...
[15/Jul/2015:04:44:54 -0400] attrcrypt - Key for cipher 3DES successfully generated and stored
[15/Jul/2015:04:44:54 -0400] ipalockout_get_global_config - [file ipa_lockout.c, line 185]: Failed to get default realm (-1765328160)
[15/Jul/2015:04:44:54 -0400] ipaenrollment_start - [file ipa_enrollment.c, line 393]: Failed to get default realm?!
[15/Jul/2015:04:44:54 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests
[15/Jul/2015:04:44:54 -0400] - Listening on All Interfaces port 636 for LDAPS requests
[15/Jul/2015:04:44:54 -0400] - Listening on /var/run/slapd-PESEN-NET.socket for LDAPI requests
[15/Jul/2015:04:44:55 -0400] - slapd shutting down - signaling operation threads - op stack size 2 max work q size 1 max work q stack size 1
[15/Jul/2015:04:44:55 -0400] - slapd shutting down - waiting for 1 thread to terminate
[15/Jul/2015:04:44:55 -0400] - slapd shutting down - closing down internal subsystems and plugins
[15/Jul/2015:04:44:55 -0400] - Waiting for 4 database threads to stop
[15/Jul/2015:04:44:55 -0400] - All database threads now stopped
[15/Jul/2015:04:44:55 -0400] - slapd shutting down - freed 1 work q stack objects - freed 2 op stack objects
[15/Jul/2015:04:44:55 -0400] - slapd stopped.
[15/Jul/2015:04:44:56 -0400] - SSL alert: Configured NSS Ciphers
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:56 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:44:57 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] - SSL alert: TLS_RSA_WITH_SEED_CBC_SHA: enabled
[15/Jul/2015:04:44:58 -0400] SSL Initialization - Configured SSL version range: min: TLS1.0, max: TLS1.2
[15/Jul/2015:04:44:58 -0400] - 389-Directory/1.3.4.1 B2015.181.1428 starting up
[15/Jul/2015:04:44:58 -0400] ipalockout_get_global_config - [file ipa_lockout.c, line 185]: Failed to get default realm (-1765328160)
[15/Jul/2015:04:44:58 -0400] ipaenrollment_start - [file ipa_enrollment.c, line 393]: Failed to get default realm?!
[15/Jul/2015:04:44:58 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests
[15/Jul/2015:04:44:58 -0400] - Listening on All Interfaces port 636 for LDAPS requests
[15/Jul/2015:04:44:58 -0400] - Listening on /var/run/slapd-PESEN-NET.socket for LDAPI requests
[15/Jul/2015:04:45:01 -0400] ipa-topology-plugin - ipa_topo_be_state_changebackend userRoot is going offline; inactivate plugin
[15/Jul/2015:04:45:01 -0400] NSMMReplicationPlugin - multimaster_be_state_change: replica dc=pesen,dc=net is going offline; disabling replication
[15/Jul/2015:04:45:01 -0400] - WARNING: Import is running with nsslapd-db-private-import-mem on; No other process is allowed to access the database
[15/Jul/2015:04:45:05 -0400] - import userRoot: Workers finished; cleaning up...
[15/Jul/2015:04:45:05 -0400] - import userRoot: Workers cleaned up.
[15/Jul/2015:04:45:05 -0400] - import userRoot: Indexing complete. Post-processing...
[15/Jul/2015:04:45:05 -0400] - import userRoot: Generating numsubordinates (this may take several minutes to complete)...
[15/Jul/2015:04:45:05 -0400] - import userRoot: Generating numSubordinates complete.
[15/Jul/2015:04:45:05 -0400] - import userRoot: Gathering ancestorid non-leaf IDs...
[15/Jul/2015:04:45:05 -0400] - import userRoot: Finished gathering ancestorid non-leaf IDs.
[15/Jul/2015:04:45:05 -0400] - import userRoot: Creating ancestorid index (new idl)...
[15/Jul/2015:04:45:06 -0400] - import userRoot: Created ancestorid index (new idl).
[15/Jul/2015:04:45:06 -0400] - import userRoot: Flushing caches...
[15/Jul/2015:04:45:06 -0400] - import userRoot: Closing files...
[15/Jul/2015:04:45:08 -0400] - import userRoot: Import complete. Processed 405 entries in 6 seconds. (67.50 entries/sec)
[15/Jul/2015:04:45:08 -0400] ipa-topology-plugin - ipa_topo_be_state_change - backend userRoot is coming online; checking domain level and init shared topology
[15/Jul/2015:04:45:08 -0400] NSMMReplicationPlugin - multimaster_be_state_change: replica dc=pesen,dc=net is coming online; enabling replication
[15/Jul/2015:04:45:08 -0400] - Skipping CoS Definition cn=Password Policy,cn=accounts,dc=pesen,dc=net--no CoS Templates found, which should be added before the CoS Definition.
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=groups,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=computers,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=ng,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target ou=sudoers,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=users,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=ad,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=casigningcert cert-pki-ca,cn=ca_renewal,cn=ipa,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:08 -0400] NSACLPlugin - The ACL target cn=casigningcert cert-pki-ca,cn=ca_renewal,cn=ipa,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:13 -0400] - slapd shutting down - signaling operation threads - op stack size 3 max work q size 2 max work q stack size 2
[15/Jul/2015:04:45:13 -0400] - slapd shutting down - waiting for 1 thread to terminate
[15/Jul/2015:04:45:13 -0400] - slapd shutting down - closing down internal subsystems and plugins
[15/Jul/2015:04:45:14 -0400] - Waiting for 4 database threads to stop
[15/Jul/2015:04:45:14 -0400] - All database threads now stopped
[15/Jul/2015:04:45:14 -0400] - slapd shutting down - freed 2 work q stack objects - freed 3 op stack objects
[15/Jul/2015:04:45:14 -0400] - slapd stopped.
[15/Jul/2015:04:45:15 -0400] - SSL alert: Configured NSS Ciphers
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:45:15 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] - SSL alert: TLS_RSA_WITH_SEED_CBC_SHA: enabled
[15/Jul/2015:04:45:16 -0400] SSL Initialization - Configured SSL version range: min: TLS1.0, max: TLS1.2
[15/Jul/2015:04:45:16 -0400] - 389-Directory/1.3.4.1 B2015.181.1428 starting up
[15/Jul/2015:04:45:16 -0400] - resizing db cache size: 20000000 -> 10000000
[15/Jul/2015:04:45:16 -0400] schema-compat-plugin - warning: no entries set up under cn=computers, cn=compat,dc=pesen,dc=net
[15/Jul/2015:04:45:16 -0400] schema-compat-plugin - warning: no entries set up under cn=ng, cn=compat,dc=pesen,dc=net
[15/Jul/2015:04:45:16 -0400] schema-compat-plugin - warning: no entries set up under ou=sudoers,dc=pesen,dc=net
[15/Jul/2015:04:45:16 -0400] NSACLPlugin - The ACL target cn=groups,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:16 -0400] NSACLPlugin - The ACL target cn=computers,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:16 -0400] NSACLPlugin - The ACL target cn=ng,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:16 -0400] NSACLPlugin - The ACL target ou=sudoers,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:17 -0400] NSACLPlugin - The ACL target cn=users,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:17 -0400] NSACLPlugin - The ACL target cn=ad,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:17 -0400] NSACLPlugin - The ACL target cn=casigningcert cert-pki-ca,cn=ca_renewal,cn=ipa,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:17 -0400] NSACLPlugin - The ACL target cn=casigningcert cert-pki-ca,cn=ca_renewal,cn=ipa,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:45:17 -0400] - Skipping CoS Definition cn=Password Policy,cn=accounts,dc=pesen,dc=net--no CoS Templates found, which should be added before the CoS Definition.
[15/Jul/2015:04:45:17 -0400] ipalockout_get_global_config - [file ipa_lockout.c, line 185]: Failed to get default realm (-1765328160)
[15/Jul/2015:04:45:17 -0400] ipaenrollment_start - [file ipa_enrollment.c, line 393]: Failed to get default realm?!
[15/Jul/2015:04:45:17 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests
[15/Jul/2015:04:45:17 -0400] - Listening on All Interfaces port 636 for LDAPS requests
[15/Jul/2015:04:45:17 -0400] - Listening on /var/run/slapd-PESEN-NET.socket for LDAPI requests
[15/Jul/2015:04:45:46 -0400] attrcrypt - No symmetric key found for cipher AES in backend ipaca, attempting to create one...
[15/Jul/2015:04:45:46 -0400] attrcrypt - Key for cipher AES successfully generated and stored
[15/Jul/2015:04:45:46 -0400] attrcrypt - No symmetric key found for cipher 3DES in backend ipaca, attempting to create one...
[15/Jul/2015:04:45:46 -0400] attrcrypt - Key for cipher 3DES successfully generated and stored
[15/Jul/2015:04:45:47 -0400] - Skipping CoS Definition cn=Password Policy,cn=accounts,dc=pesen,dc=net--no CoS Templates found, which should be added before the CoS Definition.
[15/Jul/2015:04:46:38 -0400] NSMMReplicationPlugin - multimaster_be_state_change: replica o=ipaca is going offline; disabling replication
[15/Jul/2015:04:46:39 -0400] NSMMReplicationPlugin - agmt="cn=cloneAgreement1-f22replica2.pesen.net-pki-tomcat" (f22master:389): The remote replica has a different database generation ID than the local database. You may have to reinitialize the remote replica, or the local replica.
[15/Jul/2015:04:46:39 -0400] - Skipping CoS Definition cn=Password Policy,cn=accounts,dc=pesen,dc=net--no CoS Templates found, which should be added before the CoS Definition.
[15/Jul/2015:04:46:40 -0400] - WARNING: Import is running with nsslapd-db-private-import-mem on; No other process is allowed to access the database
[15/Jul/2015:04:46:43 -0400] - import ipaca: Workers finished; cleaning up...
[15/Jul/2015:04:46:43 -0400] - import ipaca: Workers cleaned up.
[15/Jul/2015:04:46:43 -0400] - import ipaca: Indexing complete. Post-processing...
[15/Jul/2015:04:46:43 -0400] - import ipaca: Generating numsubordinates (this may take several minutes to complete)...
[15/Jul/2015:04:46:43 -0400] - import ipaca: Generating numSubordinates complete.
[15/Jul/2015:04:46:44 -0400] - import ipaca: Gathering ancestorid non-leaf IDs...
[15/Jul/2015:04:46:44 -0400] - import ipaca: Finished gathering ancestorid non-leaf IDs.
[15/Jul/2015:04:46:44 -0400] - import ipaca: Creating ancestorid index (new idl)...
[15/Jul/2015:04:46:44 -0400] - import ipaca: Created ancestorid index (new idl).
[15/Jul/2015:04:46:44 -0400] - import ipaca: Flushing caches...
[15/Jul/2015:04:46:44 -0400] - import ipaca: Closing files...
[15/Jul/2015:04:46:45 -0400] - import ipaca: Import complete. Processed 143 entries in 6 seconds. (23.83 entries/sec)
[15/Jul/2015:04:46:45 -0400] NSMMReplicationPlugin - multimaster_be_state_change: replica o=ipaca is coming online; enabling replication
[15/Jul/2015:04:46:45 -0400] - Skipping CoS Definition cn=Password Policy,cn=accounts,dc=pesen,dc=net--no CoS Templates found, which should be added before the CoS Definition.
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allExpiredCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allInvalidCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allInValidCertsNotBefore-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allNonRevokedCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allRevokedCaCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allRevokedCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allRevokedCertsNotAfter-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allRevokedExpiredCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allRevokedOrRevokedExpiredCaCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allRevokedOrRevokedExpiredCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allValidCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allValidCertsNotAfter-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: allValidOrRevokedCerts-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: caAll-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: caCanceled-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: caCanceledEnrollment-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: caCanceledRenewal-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: caCanceledRevocation-pki-tomcatIndex
[15/Jul/2015:04:46:48 -0400] - ipaca: Indexing VLV: caComplete-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caCompleteEnrollment-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caCompleteRenewal-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caCompleteRevocation-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caEnrollment-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caPending-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caPendingEnrollment-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caPendingRenewal-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caPendingRevocation-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caRejected-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caRejectedEnrollment-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caRejectedRenewal-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caRejectedRevocation-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caRenewal-pki-tomcatIndex
[15/Jul/2015:04:46:49 -0400] - ipaca: Indexing VLV: caRevocation-pki-tomcatIndex
[15/Jul/2015:04:46:55 -0400] - ipaca: Finished indexing.
[15/Jul/2015:04:47:23 -0400] - slapd shutting down - signaling operation threads - op stack size 3 max work q size 2 max work q stack size 2
[15/Jul/2015:04:47:23 -0400] - slapd shutting down - waiting for 12 threads to terminate
[15/Jul/2015:04:47:23 -0400] - slapd shutting down - closing down internal subsystems and plugins
[15/Jul/2015:04:47:23 -0400] - Waiting for 4 database threads to stop
[15/Jul/2015:04:47:24 -0400] - All database threads now stopped
[15/Jul/2015:04:47:24 -0400] - slapd shutting down - freed 2 work q stack objects - freed 3 op stack objects
[15/Jul/2015:04:47:24 -0400] - slapd stopped.
[15/Jul/2015:04:47:26 -0400] - SSL alert: Configured NSS Ciphers
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:47:26 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_DHE_DSS_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_RSA_WITH_AES_128_GCM_SHA256: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_RSA_WITH_AES_128_CBC_SHA256: enabled
[15/Jul/2015:04:47:27 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_128_CBC_SHA: enabled
[15/Jul/2015:04:47:28 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA: enabled
[15/Jul/2015:04:47:28 -0400] - SSL alert: TLS_RSA_WITH_AES_256_CBC_SHA256: enabled
[15/Jul/2015:04:47:28 -0400] - SSL alert: TLS_RSA_WITH_CAMELLIA_256_CBC_SHA: enabled
[15/Jul/2015:04:47:28 -0400] - SSL alert: TLS_RSA_WITH_SEED_CBC_SHA: enabled
[15/Jul/2015:04:47:28 -0400] SSL Initialization - Configured SSL version range: min: TLS1.0, max: TLS1.2
[15/Jul/2015:04:47:28 -0400] - 389-Directory/1.3.4.1 B2015.181.1428 starting up
[15/Jul/2015:04:47:28 -0400] - resizing db cache size: 20000000 -> 10000000
[15/Jul/2015:04:47:29 -0400] schema-compat-plugin - warning: no entries set up under cn=computers, cn=compat,dc=pesen,dc=net
[15/Jul/2015:04:47:29 -0400] schema-compat-plugin - warning: no entries set up under cn=ng, cn=compat,dc=pesen,dc=net
[15/Jul/2015:04:47:29 -0400] schema-compat-plugin - warning: no entries set up under ou=sudoers,dc=pesen,dc=net
[15/Jul/2015:04:47:29 -0400] NSACLPlugin - The ACL target cn=groups,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:29 -0400] NSACLPlugin - The ACL target cn=computers,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:29 -0400] NSACLPlugin - The ACL target cn=ng,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:29 -0400] NSACLPlugin - The ACL target ou=sudoers,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:29 -0400] NSACLPlugin - The ACL target cn=users,cn=compat,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:30 -0400] NSACLPlugin - The ACL target cn=ad,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:30 -0400] NSACLPlugin - The ACL target cn=casigningcert cert-pki-ca,cn=ca_renewal,cn=ipa,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:30 -0400] NSACLPlugin - The ACL target cn=casigningcert cert-pki-ca,cn=ca_renewal,cn=ipa,cn=etc,dc=pesen,dc=net does not exist
[15/Jul/2015:04:47:30 -0400] - Skipping CoS Definition cn=Password Policy,cn=accounts,dc=pesen,dc=net--no CoS Templates found, which should be added before the CoS Definition.
[15/Jul/2015:04:47:30 -0400] ipalockout_get_global_config - [file ipa_lockout.c, line 185]: Failed to get default realm (-1765328160)
[15/Jul/2015:04:47:30 -0400] ipaenrollment_start - [file ipa_enrollment.c, line 393]: Failed to get default realm?!
[15/Jul/2015:04:47:30 -0400] NSMMReplicationPlugin - ruv_compare_ruv: RUV [changelog max RUV] does not contain element [{replica 97 ldap://f22replica1.pesen.net:389} 55a61dd5000000610000 55a61dd6000200610000] which is present in RUV [database RUV]
[15/Jul/2015:04:47:31 -0400] NSMMReplicationPlugin - replica_check_for_data_reload: Warning: for replica o=ipaca there were some differences between the changelog max RUV and the database RUV. If there are obsolete elements in the database RUV, you should remove them using the CLEANALLRUV task. If they are not obsolete, you should check their status to see why there are no changes from those servers in the changelog.
[15/Jul/2015:04:47:31 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:47:31 -0400] NSMMReplicationPlugin - agmt="cn=meTof22master.pesen.net" (f22master:389): Replication bind with SIMPLE auth failed: LDAP error 32 (No such object) ()
[15/Jul/2015:04:47:31 -0400] NSMMReplicationPlugin - agmt="cn=cloneAgreement1-f22replica2.pesen.net-pki-tomcat" (f22master:389): Unable to acquire replica: the replica instructed us to go into backoff mode. Will retry later.
[15/Jul/2015:04:47:31 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests
[15/Jul/2015:04:47:31 -0400] - Listening on All Interfaces port 636 for LDAPS requests
[15/Jul/2015:04:47:31 -0400] - Listening on /var/run/slapd-PESEN-NET.socket for LDAPI requests
[15/Jul/2015:04:47:34 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:47:40 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:47:52 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:08 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:11 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:12 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:14 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:17 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:19 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:21 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:23 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:25 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:27 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:29 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:31 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:33 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:35 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:37 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:39 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:41 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:43 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:45 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:47 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:49 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:52 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:54 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:56 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:48:58 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:00 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:02 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:04 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:06 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:08 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:11 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:14 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:15 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:17 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:19 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:21 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:23 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:25 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:27 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:29 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:31 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:33 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:35 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:38 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:40 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:42 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:44 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:46 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:48 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:50 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:52 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:54 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:56 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:49:58 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:00 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:02 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:05 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:07 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:09 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:11 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:13 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:15 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:18 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:20 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:22 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:24 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:26 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:29 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:31 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:33 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:35 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:37 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:39 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:41 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:43 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:45 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:47 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:49 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:51 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:53 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:55 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:50:58 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:00 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:02 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:04 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:06 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:08 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:10 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:12 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:14 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:16 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:18 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:20 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:22 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:24 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:26 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:29 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:30 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:33 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:35 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:37 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:39 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:42 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:51:48 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:52:00 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:52:24 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:53:12 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:54:48 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
[15/Jul/2015:04:58:00 -0400] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipareplica-install.log
Type: text/x-log
Size: 303681 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20150715/6136efac/attachment.bin>
-------------- next part --------------
root at f22replica2:/home/ofayans]$ ipa-replica-install --setup-ca --setup-dns /var/lib/ipa/replica-info-f22replica2.pesen.net.gpg --forwarder 10.38.5.26 -p 'password' -w 'password' --unattended
Checking DNS forwarders, please wait ...
Using reverse zone(s) 122.168.192.in-addr.arpa.
Run connection check to master
Check connection from replica to remote master 'f22master.pesen.net':
Directory Service: Unsecure port (389): OK
Directory Service: Secure port (636): OK
Kerberos KDC: TCP (88): OK
Kerberos Kpasswd: TCP (464): OK
HTTP Server: Unsecure port (80): OK
HTTP Server: Secure port (443): OK
The following list of ports use UDP protocol and would need to be
checked manually:
Kerberos KDC: UDP (88): SKIPPED
Kerberos Kpasswd: UDP (464): SKIPPED
Connection from replica to master is OK.
Start listening on required ports for remote master check
Get credentials to log in to remote master
Check SSH connection to remote master
Execute check on remote master
Check connection from master to remote replica 'f22replica2.pesen.net':
Directory Service: Unsecure port (389): OK
Directory Service: Secure port (636): OK
Kerberos KDC: TCP (88): OK
Kerberos KDC: UDP (88): OK
Kerberos Kpasswd: TCP (464): OK
Kerberos Kpasswd: UDP (464): OK
HTTP Server: Unsecure port (80): OK
HTTP Server: Secure port (443): OK
Connection from master to replica is OK.
Connection check OK
Configuring NTP daemon (ntpd)
[1/4]: stopping ntpd
[2/4]: writing configuration
[3/4]: configuring ntpd to start on boot
[4/4]: starting ntpd
Done configuring NTP daemon (ntpd).
Configuring directory server (dirsrv). Estimated time: 1 minute
[1/39]: creating directory server user
[2/39]: creating directory server instance
[3/39]: adding default schema
[4/39]: enabling memberof plugin
[5/39]: enabling winsync plugin
[6/39]: configuring replication version plugin
[7/39]: enabling IPA enrollment plugin
[8/39]: enabling ldapi
[9/39]: configuring uniqueness plugin
[10/39]: configuring uuid plugin
[11/39]: configuring modrdn plugin
[12/39]: configuring DNS plugin
[13/39]: enabling entryUSN plugin
[14/39]: configuring lockout plugin
[15/39]: configuring topology plugin
[16/39]: creating indices
[17/39]: enabling referential integrity plugin
[18/39]: configuring ssl for ds instance
[19/39]: configuring certmap.conf
[20/39]: configure autobind for root
[21/39]: configure new location for managed entries
[22/39]: configure dirsrv ccache
[23/39]: enable SASL mapping fallback
[24/39]: restarting directory server
[25/39]: setting up initial replication
Starting replication, please wait until this has completed.
Update in progress, 7 seconds elapsed
Update succeeded
[26/39]: updating schema
[27/39]: setting Auto Member configuration
[28/39]: enabling S4U2Proxy delegation
[29/39]: importing CA certificates from LDAP
[30/39]: initializing group membership
[31/39]: adding master entry
[32/39]: initializing domain level
[33/39]: configuring Posix uid/gid generation
[34/39]: adding replication acis
[35/39]: enabling compatibility plugin
[36/39]: activating sidgen plugin
[37/39]: activating extdom plugin
[38/39]: tuning directory server
ipa : CRITICAL Failed to load ds-nfiles.ldif: Command ''/usr/bin/ldapmodify' '-v' '-f' '/tmp/tmpEt3d2V' '-H' 'ldap://f22replica2.pesen.net:389' '-x' '-D' 'cn=Directory Manager' '-y' '/tmp/tmp7BKlwl'' returned non-zero exit status 53
[39/39]: configuring directory to start on boot
Done configuring directory server (dirsrv).
Configuring certificate server (pki-tomcatd). Estimated time: 3 minutes 30 seconds
[1/17]: creating certificate server user
[2/17]: configuring certificate server instance
[3/17]: stopping certificate server instance to update CS.cfg
[4/17]: backing up CS.cfg
[5/17]: disabling nonces
[6/17]: set up CRL publishing
[7/17]: enable PKIX certificate path discovery and validation
[8/17]: starting certificate server instance
[9/17]: creating RA agent certificate database
[10/17]: importing CA chain to RA certificate database
[11/17]: fixing RA database permissions
[12/17]: setting up signing cert profile
[13/17]: setting audit signing renewal to 2 years
[14/17]: configure certmonger for renewals
[15/17]: configure certificate renewals
[16/17]: configure Server-Cert certificate renewal
[17/17]: Configure HTTP to proxy connections
Done configuring certificate server (pki-tomcatd).
Restarting the directory and certificate servers
Configuring Kerberos KDC (krb5kdc). Estimated time: 30 seconds
[1/8]: adding sasl mappings to the directory
[2/8]: configuring KDC
[3/8]: creating a keytab for the directory
[4/8]: creating a keytab for the machine
[5/8]: adding the password extension to the directory
[6/8]: enable GSSAPI for replication
[error] RuntimeError: One of the ldap service principals is missing. Replication agreement cannot be converted.
Replication error message: Unable to acquire replicaLDAP error: No such object
Your system may be partly configured.
Run /usr/sbin/ipa-server-install --uninstall to clean up.
ipa.ipapython.install.cli.install_tool(Replica): ERROR One of the ldap service principals is missing. Replication agreement cannot be converted.
Replication error message: Unable to acquire replicaLDAP error: No such object
More information about the Freeipa-devel
mailing list