[Freeipa-users] Upgrading to 6.4
Rob Crittenden
rcritten at redhat.com
Thu Feb 21 16:07:21 UTC 2013
Erinn Looney-Triggs wrote:
> For the fool hearty amongst us, as in me, I upgraded to RHEL 6.4 today.
>
> So far the Web UI portion of IPA is broken. I receive the following
> error via the UI: IPA Error 903 an internal error has occurred.
>
> Other things appear to be working fine, though my testing hasn't been
> all that thorough at this point.
>
> From the error logs:
> [Thu Feb 21 15:55:59 2013] [error] ipa: ERROR: non-public: KeyError:
> 'ipaExternalGroup'
> [Thu Feb 21 15:55:59 2013] [error] Traceback (most recent call last):
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipaserver/rpcserver.py", line 334, in
> wsgi_execute
> [Thu Feb 21 15:55:59 2013] [error] result =
> self.Command[name](*args, **options)
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipalib/frontend.py", line 435, in __call__
> [Thu Feb 21 15:55:59 2013] [error] ret = self.run(*args, **options)
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipalib/frontend.py", line 747, in run
> [Thu Feb 21 15:55:59 2013] [error] return self.execute(*args, **options)
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipalib/plugins/internal.py", line 119,
> in execute
> [Thu Feb 21 15:55:59 2013] [error] (o.name, json_serialize(o)) for o
> in self.api.Object()
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipalib/plugins/internal.py", line 119,
> in <genexpr>
> [Thu Feb 21 15:55:59 2013] [error] (o.name, json_serialize(o)) for o
> in self.api.Object()
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipalib/util.py", line 55, in
> json_serialize
> [Thu Feb 21 15:55:59 2013] [error] return json_serialize(obj.__json__())
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib/python2.6/site-packages/ipalib/plugins/baseldap.py", line 644,
> in __json__
> [Thu Feb 21 15:55:59 2013] [error] attrs =
> self.api.Backend.ldap2.schema.attribute_types(objectclasses)
> [Thu Feb 21 15:55:59 2013] [error] File
> "/usr/lib64/python2.6/site-packages/ldap/schema/subentry.py", line 277,
> in attribute_types
> [Thu Feb 21 15:55:59 2013] [error] object_class =
> self.sed[ObjectClass][object_class_oid]
> [Thu Feb 21 15:55:59 2013] [error] KeyError: 'ipaExternalGroup'
> [Thu Feb 21 15:55:59 2013] [error] ipa: INFO: erinn at EXAMPLE.COM:
> json_metadata(None, None, object=u'all'): KeyError
>
Hmm, this sounds like https://fedorahosted.org/freeipa/ticket/3398
Try this. Create an update file, say schema.update that contains:
add:attributeTypes: (2.16.840.1.113730.3.8.11.1 NAME 'ipaExternalMember'
DESC 'External Group Member Identifier' EQUALITY caseIgnoreMatch
ORDERING caseIgnoreOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
X-ORIGIN 'IPA v3' )
add:objectClasses: (2.16.840.1.113730.3.8.12.1 NAME 'ipaExternalGroup'
SUP top STRUCTURAL MUST ( cn ) MAY ( ipaExternalMember $$ memberOf $$
description $$ owner) X-ORIGIN 'IPA v3' )
Then run: ipa-ldap-updater /path/to/schema.update
Restart httpd and things should work.
rob
More information about the Freeipa-users
mailing list