[Freeipa-users] RHEL client to IPA

Rich Megginson rmeggins at redhat.com
Wed May 18 20:55:22 UTC 2011 

On 05/18/2011 02:35 PM, Steven Jones wrote:
> [jonesst1 at vuwunicoipamt01 ipa]$ service dirsrv status
> /etc/sysconfig/dirsrv: line 50: ulimit: open files: cannot modify limit: Operation not permitted
What is /etc/sysconfig/dirsrv line 50 i.e. what is the value ulimit -n 
is attempting to use?

Maybe the ulimit -n 8192 isn't needed in /etc/sysconfig/dirsrv if it is 
set per user in /etc/security/limits.conf ?  Can you try this, as root:
su dirsrv -c "ulimit -n 8192"
?
> dirsrv UNIX-VUW-AC-NZ is stopped
> [jonesst1 at vuwunicoipamt01 ipa]$ service krb5kdc status
> krb5kdc (pid  4686) is running...
> [jonesst1 at vuwunicoipamt01 ipa]$ grep file-max /etc/sysctl.conf
> [jonesst1 at vuwunicoipamt01 ipa]$ grep nofile /etc/security/limits.conf
> #        - nofile - max number of open files
> dirsrv		-	nofile		8192
> [jonesst1 at vuwunicoipamt01 ipa]$ cat /proc/sys/fs/file-max
> 97190
> [jonesst1 at vuwunicoipamt01 ipa]$
> ________________________________________
> From: Rich Megginson [rmeggins at redhat.com]
> Sent: Thursday, 19 May 2011 1:22 a.m.
> To: Steven Jones
> Cc: freeipa-users at redhat.com
> Subject: Re: [Freeipa-users] RHEL client to IPA
>
> On 05/17/2011 09:36 PM, Steven Jones wrote:
>> the dirsrv isnt running...
>>
>> its giving me " line 50: ulimit: open files: cannot modify limit: operation not permitted  dirsrv unix-vuw-ac-nz is stopped...
> What is the number of files that ulimit is attempting to use?
> What does
> grep file-max /etc/sysctl.conf
> say?
> what about
> grep nofile /etc/security/limits.conf
> ?
> what about
> cat /proc/sys/fs/file-max
> ?
>> krb5kdc is running.
>>
>> regards
>> ________________________________________
>> From: JR Aquino [JR.Aquino at citrix.com]
>> Sent: Wednesday, 18 May 2011 3:31 p.m.
>> To: Steven Jones
>> Cc: freeipa-users at redhat.com
>> Subject: Re: [Freeipa-users] RHEL client to IPA
>>
>> Is ns-ldap / kdc running on vuwunicoipamt01.unix.vuw.ac.nz?
>> service dirsrv status
>> service krb5kdc status
>>
>>
>> And are you running the command on vuwunicoipamt01.unix.vuw.ac.nz?
>>
>> On May 17, 2011, at 8:23 PM, "Steven Jones"<Steven.Jones at vuw.ac.nz<mailto:Steven.Jones at vuw.ac.nz>>   wrote:
>>
>> Im getting,
>>
>> "SASL bind failed!"
>>
>> 8><----
>>
>> Steven Jones wrote:
>> So what should the command be?
>>
>> # kinit admin
>> # ipa-getkeytab -k /tmp/vuwnicologint2.keytab -p
>> host/vuwunicologint2.unix.vuw.ac.nz -s vuwunicoipamt01.unix.vuw.ac.nz
>>
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com<mailto:Freeipa-users at redhat.com>
>> https://www.redhat.com/mailman/listinfo/freeipa-users
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-users

More information about the Freeipa-users mailing list