[Freeipa-users] is not an IPA v2 Server.
george he
george_he7 at yahoo.com
Mon Jun 18 15:03:37 UTC 2012
Hi Petr,
Yes, I still get the "failed: No route to host" error.
and I cannot connect to the webUI from the client, but I can open the web UI on myserver.
Thanks,
George
>________________________________
> From: Petr Viktorin <pviktori at redhat.com>
>To: george he <george_he7 at yahoo.com>
>Cc: "freeipa-users at redhat.com" <freeipa-users at redhat.com>
>Sent: Monday, June 18, 2012 10:47 AM
>Subject: Re: [Freeipa-users] is not an IPA v2 Server.
>
>Hi,
>If you run the wget manually (downloading to an existing directory
>instead of /tmp/tmpjibrhe), do you get the same error?
>
>Can you connect to the web UI from the client?
>
>
>On 06/18/2012 04:12 PM, george he wrote:
>> Hello Petr,
>> I can ping or ssh to myserver with no problem.
>> btw, here are the ports I opened:
>> iptables -A INPUT -p tcp --dport 80 -j ACCEPT
>> iptables -A INPUT -p tcp --dport 443 -j ACCEPT
>> iptables -A INPUT -p tcp --dport 389 -j ACCEPT
>> iptables -A INPUT -p tcp --dport 636 -j ACCEPT
>> iptables -A INPUT -p tcp --dport 88 -j ACCEPT
>> iptables -A INPUT -p udp --dport 88 -j ACCEPT
>> iptables -A INPUT -p tcp --dport 464 -j ACCEPT
>> iptables -A INPUT -p udp --dport 464 -j ACCEPT
>> iptables -A INPUT -p tcp --dport 53 -j ACCEPT
>> iptables -A INPUT -p udp --dport 53 -j ACCEPT
>> iptables -A INPUT -p udp --dport 123 -j ACCEPT
>> Thanks,
>> George
>>
>> ------------------------------------------------------------------------
>> *From:* Petr Viktorin <pviktori at redhat.com>
>> *To:* "freeipa-users at redhat.com" <freeipa-users at redhat.com>
>> *Cc:* george he <george_he7 at yahoo.com>
>> *Sent:* Monday, June 18, 2012 10:06 AM
>> *Subject:* Re: [Freeipa-users] is not an IPA v2 Server.
>>
>> On 06/18/2012 03:44 PM, george he wrote:
>> > Hello all,
>> >
>> > here is the error message from /var/log/ipaclient-install.log on the
>> > client machine:
>> >
>> > Connecting to myserver|myserver ip|:80... failed: No route to host.
>> > Retrieving CA from myserver failed.
>> > Command '/usr/bin/wget -O /tmp/tmpjibrhe/ca.crt -T 15 -t 2
>> > http://myserver/ipa/config/ca.crt'
>> <http://myserver/ipa/config/ca.crt%27> returned non-zero exit status 4
>>
>> Seems like a routing issue. Can you ping myserver from the client
>> machine?
>>
>>
>> > but httpd seems running on myserver and port 80 is open.
>> > # systemctl status httpd.service
>> > httpd.service - The Apache HTTP Server (prefork MPM)
>> > Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled)
>> > Active: active (running) since Sun, 17 Jun 2012 11:17:07 -0400;
>> 22h ago
>> > Process: 16225 ExecStop=/usr/sbin/httpd $OPTIONS -k stop
>> (code=exited,
>> > status=0/SUCCESS)
>> > Process: 16230 ExecStart=/usr/sbin/httpd $OPTIONS -k start
>> (code=exited,
>> > status=0/SUCCESS)
>> > Main PID: 16233 (httpd)
>> > CGroup: name=systemd:/system/httpd.service
>> > ├ 16231 /usr/sbin/nss_pcache 1212421 off /etc/httpd/alias
>> > ├ 16233 /usr/sbin/httpd -k start
>> > ├ 16236 /usr/sbin/httpd -k start
>> > ├ 16237 /usr/sbin/httpd -k start
>> > ├ 16238 /usr/sbin/httpd -k start
>> > ├ 16239 /usr/sbin/httpd -k start
>> > ├ 16240 /usr/sbin/httpd -k start
>> > ├ 16241 /usr/sbin/httpd -k start
>> > ├ 16242 /usr/sbin/httpd -k start
>> > ├ 16243 /usr/sbin/httpd -k start
>> > ├ 16244 /usr/sbin/httpd -k start
>> > └ 16245 /usr/sbin/httpd -k start
>> > I have been working on this for days to set this thing up. Any
>> help will
>> > be very appreciated.
>> > George
>> >
>> >
>> ------------------------------------------------------------------------
>> > *From:* george he <george_he7 at yahoo.com
>> <mailto:george_he7 at yahoo.com>>
>> > *To:* "freeipa-users at redhat.com
>> <mailto:freeipa-users at redhat.com>" <freeipa-users at redhat.com
>> <mailto:freeipa-users at redhat.com>>
>> > *Sent:* Saturday, June 16, 2012 4:02 PM
>> > *Subject:* is not an IPA v2 Server.
>> >
>> > Hello all,
>> >
>> > I'm trying to install freeipa for a small lab with <10 computers,
>> > all running fedora 17.
>> > I seemed to have installed ipa server (without DNS) successfully,
>> >
>> > # ipactl status
>> > Directory Service: RUNNING
>> > KDC Service: RUNNING
>> > KPASSWD Service: RUNNING
>> > MEMCACHE Service: RUNNING
>> > HTTP Service: RUNNING
>> > CA Service: RUNNING
>> >
>> > but when I try to run ipa-client-install on a client machine, I get
>> > this error message:
>> >
>> > <server.my.edu <http://server.my.edu/> <http://server.my.edu/>>
>> is not an IPA v2 Server.
>> > Installation failed. Rolling back changes.
>> > IPA client is not configured on this system.
>> >
>> > what am I missing?
>> > ps, I'm following the instructions here:
>> >
>> https://docs.fedoraproject.org/en-US/Fedora/16/html/FreeIPA_Guide/Installing_the_IPA_Client_on_Linux.html
>> > Thanks,
>> > George
>> >
>> >
>> >
>> >
>> >
>> > _______________________________________________
>> > Freeipa-users mailing list
>> > Freeipa-users at redhat.com <mailto:Freeipa-users at redhat.com>
>> > https://www.redhat.com/mailman/listinfo/freeipa-users
>>
>>
>> --
>> Petr³
>>
>>
>
>
>--
>Petr³
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120618/ab700f39/attachment.htm>
More information about the Freeipa-users
mailing list