[Freeipa-users] running ipa-server-install --uninstall hangs

Rob Crittenden rcritten at redhat.com
Fri Jun 8 15:45:15 UTC 2012 

Steven Jones wrote:
> Hi,
>
> The replica server no long exists, I bare metal kick-started it...so I need to get it to rejoin the domain which it wont.
>
> Given all the other issues Im wondering if a totally clean start isnt a plan now...

You can leave the DNS entries. The others you'll need to use ldapmodify 
to remove the entry from defaultServerList and ldapdelete to remove the 
entries from cn=masters.

rob

>
> regards
>
> Steven Jones
>
> Technical Specialist - Linux RHCE
>
> Victoria University, Wellington, NZ
>
> 0064 4 463 6272
>
> ________________________________________
> From: Rob Crittenden [rcritten at redhat.com]
> Sent: Friday, 8 June 2012 3:02 p.m.
> To: Steven Jones
> Cc: freeipa-users at redhat.com
> Subject: Re: [Freeipa-users] running ipa-server-install --uninstall hangs
>
> Steven Jones wrote:
>> Hi,
>>
>> Im must not be getting it,
>>
>> If I am un-installing and the dirsrv has been stopped as part of that process? why does it need to restart?  if Im uninstalling?
>
> Because it needs to stop all the IPA services. The list of services is
> stored in LDAP.
>
>> If I run a host del shouldnt that remove all residual info for the ex-replica in the db?
>
> No. It does not remove DNS records or replication agreements.
>
>> Alternatively how do I clean up so I can get the replica to rejoin the domain?
>
> Your best bet is to figure out why the dirsrv instance won't start.
>
> Trying to remove and restore everything manually can be a lot of work.
> Figuring out why dirsrv won't start is likely the path of least resistence.
>
> rob
>
>> From: Rob Crittenden [rcritten at redhat.com]
>> Sent: Friday, 8 June 2012 10:04 a.m.
>> To: Steven Jones
>> Cc: freeipa-users at redhat.com
>> Subject: Re: [Freeipa-users] running ipa-server-install --uninstall hangs
>>
>> It is hanging because the dirsrv instance isn't starting. Check for
>> AVCs, /var/log/messages, dmesg,
>> /var/log/dirsrv/slapd-YOURINSTANCE/errors to see if any errors are being
>> reported.
>>
>> Steven Jones wrote:
>>> NB ipam005 is the renamed ipam002, which despite trying to remove seems to have residual info in the ldif output eg.,
>>>
>>> ==========
>>> [root at vuwunicoipam005 slapd-ODS-VUW-AC-NZ]# grep ipam002 userroot.ldif
>>> defaultServerList: vuwunicoipam001.ods.vuw.ac.nz vuwunicoipam002.ods.vuw.ac.nz
>>> dn: cn=vuwunicoipam002.ods.vuw.ac.nz,cn=masters,cn=ipa,cn=etc,dc=ods,dc=vuw,dc
>>> cn: vuwunicoipam002.ods.vuw.ac.nz
>>> dn: cn=KDC,cn=vuwunicoipam002.ods.vuw.ac.nz,cn=masters,cn=ipa,cn=etc,dc=ods,dc
>>> dn: cn=KPASSWD,cn=vuwunicoipam002.ods.vuw.ac.nz,cn=masters,cn=ipa,cn=etc,dc=od
>>> dn: cn=HTTP,cn=vuwunicoipam002.ods.vuw.ac.nz,cn=masters,cn=ipa,cn=etc,dc=ods,d
>>> dn: cn=DNS,cn=vuwunicoipam002.ods.vuw.ac.nz,cn=masters,cn=ipa,cn=etc,dc=ods,dc
>>> dn: dnaHostname=vuwunicoipam002.ods.vuw.ac.nz+dnaPortNum=389,cn=posix-ids,cn=d
>>> dnahostname: vuwunicoipam002.ods.vuw.ac.nz
>>> nSRecord: vuwunicoipam002.ods.vuw.ac.nz.
>>> pTRRecord: vuwunicoipam002.ods.vuw.ac.nz.
>>
>> The server wasn't uninstalled, right? Why wouldn't these still be there.
>>
>> rob
>>
>>> [root at vuwunicoipam005 slapd-ODS-VUW-AC-NZ]#
>>> ==========
>>>
>>> I expected a zero return?
>>>
>>> regards
>>>
>>> Steven Jones
>>>
>>> Technical Specialist - Linux RHCE
>>>
>>> Victoria University, Wellington, NZ
>>>
>>> 0064 4 463 6272
>>>
>>> ________________________________________
>>> From: freeipa-users-bounces at redhat.com [freeipa-users-bounces at redhat.com] on behalf of Steven Jones [Steven.Jones at vuw.ac.nz]
>>> Sent: Friday, 8 June 2012 8:47 a.m.
>>> Cc: freeipa-users at redhat.com
>>> Subject: [Freeipa-users] running ipa-server-install --uninstall hangs
>>>
>>> Hi,
>>>
>>> I am trying to fix an ongoing problem with IPA and find that I cannot remove a replica from the domain...
>>>
>>> Screenshot attached...
>>>
>>> I also find that running a host del doesnt work and there is residual info in an ldif output of that replica...this then stops a bare metal rebuild of the replica being rejoined to the domain.  If I change the name and IP however it can be a replica....
>>>
>>> ideas please?
>>>
>>> regards
>>>
>>> Steven Jones
>>>
>>> Technical Specialist - Linux RHCE
>>>
>>> Victoria University, Wellington, NZ
>>>
>>> 0064 4 463 6272
>>>
>>> _______________________________________________
>>> Freeipa-users mailing list
>>> Freeipa-users at redhat.com
>>> https://www.redhat.com/mailman/listinfo/freeipa-users
>>
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-users
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users

More information about the Freeipa-users mailing list