[Freeipa-users] Re-run install script?

Thu Aug 2 15:22:06 UTC 2012

Copied from below:
 I get the same error if I try to use ipa host-del although again this works fine for other entries.

I have tried everything that the documentation suggested to try and have searched Google pretty extensively. I am not finding a way to clear this error, and I am not finding anyone else who has this particular error either.
People taking systems down without notifying us happens more frequently than I care to admit so this could potentially come up in our production environment. I just want to make sure that there is a way to remove the entries...by force if necessary. Or if I need to do a manual configuration to get it to work then I will do that. Just need some guidance on if there is a tool that will remove the bad entry or if it will just be a manual setup now.

Thanks,
Sara Kline

-----Original Message-----
From: Simo Sorce [mailto:simo at redhat.com]
Sent: Thursday, August 02, 2012 8:18 AM
To: Kline, Sara
Cc: Sigbjorn Lie; freeipa-users at redhat.com
Subject: Re: [Freeipa-users] Re-run install script?

ipa host-del ?

On Thu, 2012-08-02 at 08:08 -0700, Kline, Sara wrote:
> It isn't an IPA server it is just a host within DNS. When I try to remove the entry from DNS I get that error.
>
> Thanks,
> Sara Kline
>
>
> -----Original Message-----
> From: Sigbjorn Lie [mailto:sigbjorn at nixtra.com]
> Sent: Thursday, August 02, 2012 6:07 AM
> To: Kline, Sara
> Cc: freeipa-users at redhat.com
> Subject: Re: [Freeipa-users] Re-run install script?
>
> Did you try using the "ipa-replica-manage" command to remove the IPA server?
>
> There is a force option to removal of an inactive IPA server when using that command.
>
> Rgds,
> Siggi
>
>
>
> On Thu, August 2, 2012 01:56, Kline, Sara wrote:
> > One of the other admins that I work with re-installed one of our
> > test boxes without telling me so the record is still in our FreeIPA server.
> > As you would expect if you run the install script, it fails because
> > it is already joined. I tried to remove the box from DNS but I get
> > the following
> > error: "Certificate operation cannot be completed: EXCEPTION
> > (Invalid Credential.)" I can remove the other test boxes with no
> > issue. I get the same error if I try to use ipa host-del although
> > again this works fine for other entries. Is there a way to
> > forcefully remove this entry, or do I need to manually configure this client? It's a test box but if this happens in Production I need to know what to do.
> >
> >
> > Sara Kline
> > System Administrator
> > Transaction Network Services, Inc
> > 4501 Intelco Loop, Lacey WA 98503
> > Wk: (360) 493-6736
> > Cell: (360) 280-2495
> >
> >
> >
> > ________________________________
> > This e-mail message is for the sole use of the intended
> > recipient(s)and may contain confidential and privileged information
> > of Transaction Network Services. Any unauthorised review, use,
> > disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.
> >
> > _______________________________________________
> > Freeipa-users mailing list
> > Freeipa-users at redhat.com
> > https://www.redhat.com/mailman/listinfo/freeipa-users
>
>
>
> This e-mail message is for the sole use of the intended
> recipient(s)and may contain confidential and privileged information of Transaction Network Services.
> Any unauthorised review, use, disclosure or distribution is
> prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users

--
Simo Sorce * Red Hat, Inc * New York

This e-mail message is for the sole use of the intended recipient(s)and may
contain confidential and privileged information of Transaction Network Services.
Any unauthorised review, use, disclosure or distribution is prohibited. If you
are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.