[Freeipa-users] Removing a replica fails everytime

Steven Jones Steven.Jones at vuw.ac.nz
Wed Jun 13 21:54:15 UTC 2012 

any idea on this GSSAPI error?


[root at vuwunicoipam001 ~]# ipa-replica-manage list 
vuwunicoipam002.ods.vuw.ac.nz: master 
vuwunicoipam005.ods.vuw.ac.nz: master 
vuwunicoipam003.ods.vuw.ac.nz: master 
vuwunicoipam004.ods.vuw.ac.nz: master 
vuwunicoipam001.ods.vuw.ac.nz: master 
[root at vuwunicoipam001 ~]# ipa-replica-manage del vuwunicoipam003.ods.vuw.ac.nz Unable to delete replica vuwunicoipam003.ods.vuw.ac.nz: {'info': 'SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Cannot contact any KDC for requested realm)', 'desc': 'Local error'} 
[root at vuwunicoipam001 ~]#

I'd like to delete 4 and 5 as well as they are not masters....

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: freeipa-users-bounces at redhat.com [freeipa-users-bounces at redhat.com] on behalf of Steven Jones [Steven.Jones at vuw.ac.nz]
Sent: Thursday, 14 June 2012 9:00 a.m.
Cc: freeipa-users at redhat.com
Subject: [Freeipa-users] Removing a replica fails everytime

Hi,

Seems the un-install option for ipa-server hangs at un-configuring/stopping the web server every time....the result is the master thinks it has a replication agreement but the replica doesnt......its then not possible to re-add the replica to the master....its starts to work but fails when it tries to sync the data...that bit doesnt seem to occur..

Now the assumption seems to be the dirsrv on the server being removed is running...in effect you can only un-install if the system is working...which isnt why you want to --uninstall. DSo if you lose a server and it has no dirsrv you cannot remove it from the master's "memory" so a bare metal restore cannot be added....

Simple solution there needs to be a script or procedure that cleans the master properly.


regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

_______________________________________________
Freeipa-users mailing list
Freeipa-users at redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

More information about the Freeipa-users mailing list