[Freeipa-devel] [freeipa PR#205][comment] Support DAL version 5 and version 6
simo5
freeipa-github-notification at redhat.com
Mon Nov 7 16:16:09 UTC 2016
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
simo5 commented:
"""
On Mon, 2016-11-07 at 08:11 -0800, Tomas Krizek wrote:
> NACK
>
> `ipa-server-install` will fail at:
> ```
> Configuring kadmin
> [1/2]: starting kadmin
> [2/2]: configuring kadmin to start on boot
> Done configuring kadmin.
> ipa.ipapython.install.cli.install_tool(Server): ERROR CA did not start in 300.0s
> ipa.ipapython.install.cli.install_tool(Server): ERROR The ipa-server-install command failed
> ```
> From `/var/log/pki/pki-tomcat/ca/debug`, it seems PKI can't authenticate towards LDAP:
> ```
> [07/Nov/2016:16:42:11][localhost-startStop-1]: SSL handshake happened
> Could not connect to LDAP server host vm-059.abc.idm.lab.eng.brq.redhat.com port 636 Error netscape.ldap.LDAPException: Authentication failed (48)
> ```
>
I've seen this error recently too, but it is unrelated, re-installed on
F25 and it went away.
I think there is some issue with dogtag in some conditions when you
re-install, although I could not figure what it is.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
"""
See the full comment at https://github.com/freeipa/freeipa/pull/205#issuecomment-258880929
More information about the Freeipa-devel
mailing list