[Freeipa-users] Upgrade to 3.1.2: web UI no longer works

Thomas Sailer sailer at sailer.dynip.lugs.ch
Tue Feb 5 19:22:39 UTC 2013 

On 02/05/2013 08:02 PM, Rob Crittenden wrote:
> Can you see if you have 60basev3.ldif in 
> /etc/dirsrv/slapd-YOUR-REALM/schema ?

That was indeed not there (only 60basev2.ldif).

I've copied it, restarted dirsrv.

ipa user-show admin works (it did work before though).

> You'll want to look at /var/log/ipaupgrade.log as well (it may be huge).

I reran ipa-upgradeconfig, there are a few errors; see the attachment.

Seems to be mostly ldap errors; I don't know why named and pki-cad 
didn't restart, when I do that manually, they start fine.

Thanks,
Tom


-------------- next part --------------
2012-02-24 14:48:01,062 ERROR Update failed: Type or value exists: 
2012-02-24 14:48:01,240 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:01,382 ERROR Add failure cn=anonymous-limits,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,392 ERROR Add failure cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,447 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:01,510 ERROR Add failure cn=replication,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,515 ERROR Add failure cn=automember,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,544 ERROR Add failure cn=Templates,cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,550 ERROR Add failure cn=Definitions,cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,555 ERROR Add failure cn=replicas,cn=ipa,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,561 ERROR Add failure cn=Hostgroup,cn=automember,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,566 ERROR Add failure cn=Group,cn=automember,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,571 ERROR Add failure cn=Write IPA Configuration,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,577 ERROR Add failure cn=Write IPA Configuration,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,582 ERROR Add failure cn=Add HBAC rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,586 ERROR Add failure cn=Delete HBAC rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,592 ERROR Add failure cn=Modify HBAC rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,597 ERROR Add failure cn=Manage HBAC rule membership,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,602 ERROR Add failure cn=Add HBAC services,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,607 ERROR Add failure cn=Delete HBAC services,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,613 ERROR Add failure cn=Add HBAC service groups,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,618 ERROR Add failure cn=Delete HBAC service groups,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,623 ERROR Add failure cn=Manage HBAC service group membership,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,628 ERROR Add failure cn=HBAC Administrator,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,634 ERROR Add failure cn=Add Sudo rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,638 ERROR Add failure cn=Delete Sudo rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,643 ERROR Add failure cn=Modify Sudo rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,648 ERROR Add failure cn=Add Sudo command,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,654 ERROR Add failure cn=Delete Sudo command,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,659 ERROR Add failure cn=Modify Sudo command,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,664 ERROR Add failure cn=Add Sudo command group,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,669 ERROR Add failure cn=Delete Sudo command group,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,674 ERROR Add failure cn=Manage Sudo command group membership,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,679 ERROR Add failure cn=Sudo Administrator,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,684 ERROR Add failure cn=Add Group Password Policy costemplate,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,689 ERROR Add failure cn=Delete Group Password Policy costemplate,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,694 ERROR Add failure cn=Modify Group Password Policy costemplate,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,699 ERROR Add failure cn=Add Group Password Policy,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,704 ERROR Add failure cn=Delete Group Password Policy,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,710 ERROR Add failure cn=Modify Group Password Policy,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,715 ERROR Add failure cn=Password Policy Administrator,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,721 ERROR Add failure cn=Add krbPrincipalName to a host,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,813 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:01,825 ERROR Add failure cn=Modify Users and Reset passwords,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,874 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:01,919 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:01,925 ERROR Add failure cn=Modify Group membership,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,930 ERROR Add failure cn=User Administrator,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:01,978 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,016 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,021 ERROR Add failure cn=IT Specialist,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:02,066 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,111 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,144 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,178 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,183 ERROR Add failure cn=IT Security Specialist,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:02,219 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,255 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,260 ERROR Add failure cn=Security Architect,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:02,292 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,330 ERROR Add failure Object class violation: missing required attribute "objectclass"
2012-02-24 14:48:02,475 ERROR Add failure Object class violation: attribute "cn" not allowed
2012-02-24 14:48:02,517 ERROR Add failure Object class violation: attribute "cn" not allowed
2012-02-24 14:48:02,558 ERROR Add failure Object class violation: attribute "cn" not allowed
2012-02-24 14:48:02,569 ERROR Add failure cn=vsftpd,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,580 ERROR Add failure cn=proftpd,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,590 ERROR Add failure cn=pure-ftpd,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,601 ERROR Add failure cn=gssftp,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,612 ERROR Add failure cn=ftp,cn=hbacservicegroups,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,620 ERROR Add failure cn=NGP HGP Template,cn=Templates,cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:02,657 ERROR Add failure Server is unwilling to perform: Not a valid managed entries configuration entry.
2012-02-24 14:48:34,830 ERROR Add failure cn=UPG Template,cn=Templates,cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:34,916 ERROR Add failure Server is unwilling to perform: Not a valid managed entries configuration entry.
2012-05-30 13:53:32,873 ERROR Update failed: Type or value exists: 
2013-02-04T14:51:29Z ERROR Upgrade failed with Unable to connect to LDAP server ldapi://%2fvar%2frun%2fslapd-XXXX-COM.socket
2013-02-04T22:21:18Z ERROR Cannot connect to LDAP to add DNS records: cannot connect to u'ldapi://%2fvar%2frun%2fslapd-XXXX-COM.socket': LDAP Server Down
2013-02-04T22:21:18Z ERROR Failed to restart named: Command '/bin/systemctl restart named.service' returned non-zero exit status 1
2013-02-04T22:21:19Z ERROR Failed to restart pki-cad: Command '/bin/systemctl restart pki-cad at pki-ca.service' returned non-zero exit status 1

More information about the Freeipa-users mailing list