[Freeipa-users] Fwd: FreeIPA on Fedora 19 won't work

Steve Dickson SteveD at redhat.com
Fri Jun 14 20:13:37 UTC 2013 

The $subject says it all... Any ideas what is going on here?

steved.

-------- Original Message --------

So yum install works, but 'ipa-server-install' fails every time - I've tried debugging but i think i've gone as far as i can down the pki tomcat rabbit hole:

Configuring certificate server (pki-tomcatd): Estimated time 3 minutes 30 seconds
  [1/20]: creating certificate server user
  [2/20]: configuring certificate server instance
ipa         : CRITICAL failed to configure ca instance Command '/usr/sbin/pkispawn -s CA -f /tmp/tmpO2lDxI' returned non-zero exit status 1
Configuration of CA failed

>From the install log:

2013-06-14T16:54:45Z DEBUG Starting external process
2013-06-14T16:54:45Z DEBUG args=/usr/sbin/pkispawn -s CA -f /tmp/tmpO2lDxI
2013-06-14T16:54:51Z DEBUG Process finished, return code=1
2013-06-14T16:54:51Z DEBUG stdout=Loading deployment configuration from /tmp/tmpO2lDxI.
Installing CA into /var/lib/pki/pki-tomcat.
Storing deployment configuration into /etc/sysconfig/pki/tomcat/pki-tomcat/ca/deployment.cfg.
Installation failed.


2013-06-14T16:54:51Z DEBUG stderr=
2013-06-14T16:54:51Z CRITICAL failed to configure ca instance Command '/usr/sbin/pkispawn -s CA -f /tmp/tmpO2lDxI' returned non-zero exit status 1
2013-06-14T16:54:51Z INFO   File "/usr/lib/python2.7/site-packages/ipaserver/install/installutils.py", line 616, in run_script
    return_value = main_function()

  File "/usr/sbin/ipa-server-install", line 1025, in main
    dm_password, subject_base=options.subject)

  File "/usr/lib/python2.7/site-packages/ipaserver/install/cainstance.py", line 617, in configure_instance
    self.start_creation(runtime=210)

  File "/usr/lib/python2.7/site-packages/ipaserver/install/service.py", line 363, in start_creation
    method()

  File "/usr/lib/python2.7/site-packages/ipaserver/install/cainstance.py", line 736, in __spawn_instance
    raise RuntimeError('Configuration of CA failed')

2013-06-14T16:54:51Z INFO The ipa-server-install command failed, exception: RuntimeError: Configuration of CA failed

Running that command by hand exposes a different bug:

/usr/sbin/pkispawn -s CA -f /tmp/tmpO2lDxI
ERROR:  File '/tmp/tmpO2lDxI' is either missing or is NOT a regular file!

Traceback (most recent call last):
  File "/usr/sbin/pkispawn", line 424, in <module>
    main(sys.argv)
  File "/usr/sbin/pkispawn", line 122, in main
    parser.validate()
  File "/usr/lib/python2.7/site-packages/pki/deployment/pkiparser.py", line 153, in validate
    parser.arg_parser.print_help()
NameError: global name 'parser' is not defined

the fix is two places where "parser." needs to be changed to "self." but that is just an error in an error path…


-dros

More information about the Freeipa-users mailing list