[Freeipa-users] Unable to start replica server after setting up replication

freeipa at stormcloud9.net freeipa at stormcloud9.net
Wed Jan 30 01:05:17 UTC 2013 

On 01/29/2013 07:49 PM, Dmitri Pal wrote:
> On 01/29/2013 07:26 PM, freeipa at stormcloud9.net wrote:
>> Using ipa-server 2.2.0-17 on Amazon linux (RHEL6 clone), and after
>> using the `ipa-replica-install` script to configure the replica
>> server, the service will not start. Whenever I try it throws
>> "SASL(-4): no mechanism available" during start.
>>
>> Any ideas?
>>
>> Full output:
>>
>> # /etc/init.d/ipa start
>> Starting Directory Service
>> Starting dirsrv:
>>     CLIFF-CLOUDBURRITO-COM...                              [  OK  ]
>>     PKI-IPA...                                             [  OK  ]
>> Failed to read data from Directory Service: Unknown error when
>> retrieving list of services from LDAP: {'info': 'SASL(-4): no
>> mechanism available: ', 'desc': 'Unknown authentication method'}
>> Shutting down
>> Shutting down dirsrv:
>>     CLIFF-CLOUDBURRITO-COM...                              [  OK  ]
>>     PKI-IPA...                                             [  OK  ]
>
> Sounds like DS did not start under the CA. Please check the DS logs in
> the PKI instance.

ns-slapd appears to be starting fine. I can even start it manually, but
`ipactl status` still shows the error:
Below is the result of me starting it manually (directly running ns-slapd):

# ps ax|grep slapd
15540 ?        Sl     0:00 /usr/sbin/ns-slapd -D
/etc/dirsrv/slapd-PKI-IPA -i /var/run/dirsrv/slapd-PKI-IPA.pid -w
/var/run/dirsrv/slapd-PKI-IPA.startpid
15586 ?        Sl     0:00 /usr/sbin/ns-slapd -D
/etc/dirsrv/slapd-CLIFF-CLOUDBURRITO-COM -i
/var/run/dirsrv/slapd-CLIFF-CLOUDBURRITO-COM.pid -w
/var/run/dirsrv/slapd-CLIFF-CLOUDBURRITO-COM.startpid
# netstat -tpnl | grep slapd
tcp        0      0 :::636                     
:::*                        LISTEN      15586/ns-slapd     
tcp        0      0 :::7389                    
:::*                        LISTEN      15540/ns-slapd     
tcp        0      0 :::7390                    
:::*                        LISTEN      15540/ns-slapd     
tcp        0      0 :::389                     
:::*                        LISTEN      15586/ns-slapd     
# ipactl status
Directory Service: RUNNING
Unknown error when retrieving list of services from LDAP: {'info':
'SASL(-4): no mechanism available: ', 'desc': 'Unknown authentication
method'}


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130129/afcdd283/attachment.htm>

More information about the Freeipa-users mailing list