[Freeipa-users] Upgrade/Migration steps
Joshua J. Kugler
joshua at azariah.com
Thu Jun 20 01:09:09 UTC 2013
On Wednesday, June 19, 2013 16:34:31 Joshua J. Kugler wrote:
> Check SSH connection to remote master
> Execute check on remote master
>
> Remote master check failed with following error message(s):
> bash: /usr/sbin/ipa-replica-conncheck: No such file or directory
>
> Connection check failed!
> Please fix your network settings according to error messages above.
> If the check results are not valid it can be skipped with --skip-conncheck
> parameter.
OK, so it didn't click that it was trying to run ipa-replica-conncheck on the
other machine, and that the error message was on the other machine.
But, skipping the connection check, I'm still getting this:
# ipa-replica-install --setup-ca -N replica-info-ipan.lab.whamcloud.com.gpg --
skip-conncheck
Directory Manager (existing master) password:
ipa : CRITICAL CA DS schema check failed. Make sure the PKI service on
the remote master is operational.
Your system may be partly configured.
Run /usr/sbin/ipa-server-install --uninstall to clean up.
LDAP error: PROTOCOL_ERROR
unsupported extended operation
I even brought over /etc/ipa/ca.crt file and did this:
export LDAPTLS_CACERT=/etc/ipa/ca.crt; ipa-replica-install --setup-ca -N
replica-info-ipan.lab.whamcloud.com.gpg --skip-conncheck
Same error message.
I'm lost. Help?
j
--
Joshua J. Kugler - Fairbanks, Alaska
Azariah Enterprises - Programming and Website Design
joshua at azariah.com - Jabber: pedahzur at gmail.com
PGP Key: http://pgp.mit.edu/ ID 0x73B13B6A
More information about the Freeipa-users
mailing list