[Freeipa-users] Whit only krb5-workstation and oddjob-mkhomedir
Axel Berlin
acke.89 at gmail.com
Thu May 2 08:55:40 UTC 2013
Here is the logs output when I do
id username
sssd_d1.gameop.net.log
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sbus_dispatch] (9):
dbus conn: 10142E0
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sbus_dispatch] (9):
Dispatching.
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sbus_message_handler]
(9): Received SBUS method [getAccountInfo]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [be_get_account_info]
(4): Got request for [4097][1][name=acke]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [be_get_account_info]
(4): Request processed. Returned 1,11,Fast reply - offline
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_step] (9): beginning to connect
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipareplica' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipareplica' is 'not working'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (4):
Reseting the status of port 389 for server 'ipareplica'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [resolve_srv_send]
(6): The status of SRV lookup is resolved
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipareplica' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[be_resolve_server_done] (4): Found address for server ipareplica:
[192.168.235.181]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_rootdse_send] (9): Getting rootdse
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (6): calling ldap_search_ext with
[(objectclass=*)][].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [*]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [altServer]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [namingContexts]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedControl]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedExtension]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedFeatures]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedLDAPVersion]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedSASLMechanisms]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [defaultNamingContext]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [lastUSN]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [highestCommittedUSN]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_ldap_connect_callback_add] (9): New LDAP connection to [ldap://
192.168.235.181:389] with fd [27].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (8): ldap_search_ext called, msgid = 1
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x102d070], connected[1], ops[0x10265c0], ldap[0x102c620]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_parse_entry]
(9): OriginalDN: [].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x102d070], connected[1], ops[0x10265c0], ldap[0x102c620]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_done] (6): Search result: Success(0), (null)
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_rootdse_done] (9): Got rootdse
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_kinit_send] (6):
Attempting kinit ((null), host/seadv-237-100.d1.gameop.net, D1.GAMEOP.NET,
86400)
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_kinit_next_kdc]
(7): Resolving next KDC for service IPA
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipaserver' is 'not working'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (4):
Reseting the status of port 389 for server 'ipaserver'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [resolve_srv_send]
(6): The status of SRV lookup is resolved
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[be_resolve_server_done] (4): Found address for server ipaserver:
[192.168.232.41]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_kinit_kdc_resolved] (7): KDC resolved, attempting to get TGT...
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[create_tgt_req_send_buffer] (7): buffer size: 61
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [child_handler_setup]
(8): Setting up signal handler up for pid [20277]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [child_handler_setup]
(8): Signal handler set up for pid [20277]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[set_tgt_child_timeout] (6): Setting 6 seconds timeout for tgt child
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x102d070], connected[1], ops[(nil)], ldap[0x102c620]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: ldap_result found nothing!
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [write_pipe_handler]
(6): All data has been sent!
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [read_pipe_handler]
(6): EOF received, client finished
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_get_tgt_recv]
(6): Child responded: 0 [FILE:/var/lib/sss/db/ccache_D1.GAMEOP.NET],
expired on [1367570699]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sasl_bind_send] (4):
Executing sasl bind mech: GSSAPI, user: host/seadv-237-100.d1.gameop.net
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sasl_bind_send] (1):
ldap_sasl_bind failed (-2)[Local error]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [child_sig_handler]
(7): Waiting for child [20277].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [child_sig_handler]
(4): child [20277] finished successfully.
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [fo_set_port_status]
(4): Marking port 389 of server 'ipareplica' as 'not working'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_handle_release]
(8): Trace: sh[0x102d070], connected[1], ops[(nil)], ldap[0x102c620],
destructor_lock[0], release_memory[0]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[remove_connection_callback] (9): Successfully removed connection callback.
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_done] (9): attempting failover retry on op #1
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_step] (9): beginning to connect
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver.d1.gameop.net' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 0 for server 'ipaserver.d1.gameop.net' is 'not working'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (4):
Reseting the status of port 0 for server 'ipaserver.d1.gameop.net'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver.d1.gameop.net' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_release_conn_data] (9): releasing unused connection
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[be_resolve_server_done] (4): Found address for server
ipaserver.d1.gameop.net: [192.168.232.41]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_rootdse_send] (9): Getting rootdse
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (6): calling ldap_search_ext with
[(objectclass=*)][].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [*]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [altServer]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [namingContexts]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedControl]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedExtension]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedFeatures]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedLDAPVersion]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedSASLMechanisms]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [defaultNamingContext]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [lastUSN]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [highestCommittedUSN]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_ldap_connect_callback_add] (9): New LDAP connection to [ldap://
192.168.232.41:389] with fd [27].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (8): ldap_search_ext called, msgid = 1
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x102d070], connected[1], ops[0x102d7d0], ldap[0x1018b00]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_parse_entry]
(9): OriginalDN: [].
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x102d070], connected[1], ops[0x102d7d0], ldap[0x1018b00]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_done] (6): Search result: Success(0), (null)
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_rootdse_done] (9): Got rootdse
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_kinit_send] (6):
Attempting kinit ((null), host/seadv-237-100.d1.gameop.net, D1.GAMEOP.NET,
86400)
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_kinit_next_kdc]
(7): Resolving next KDC for service IPA
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipareplica' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipareplica' is 'not working'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipaserver' is 'neutral'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [resolve_srv_send]
(6): The status of SRV lookup is resolved
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[be_resolve_server_done] (4): Found address for server ipaserver:
[192.168.232.41]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[sdap_kinit_kdc_resolved] (7): KDC resolved, attempting to get TGT...
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[create_tgt_req_send_buffer] (7): buffer size: 61
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [child_handler_setup]
(8): Setting up signal handler up for pid [20278]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [child_handler_setup]
(8): Signal handler set up for pid [20278]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]]
[set_tgt_child_timeout] (6): Setting 6 seconds timeout for tgt child
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x102d070], connected[1], ops[(nil)], ldap[0x1018b00]
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: ldap_result found nothing!
(Thu May 2 10:44:59 2013) [sssd[be[d1.gameop.net]]] [write_pipe_handler]
(6): All data has been sent!
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [read_pipe_handler]
(6): EOF received, client finished
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_get_tgt_recv]
(6): Child responded: 0 [FILE:/var/lib/sss/db/ccache_D1.GAMEOP.NET],
expired on [1367570700]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sasl_bind_send] (4):
Executing sasl bind mech: GSSAPI, user: host/seadv-237-100.d1.gameop.net
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sasl_bind_send] (1):
ldap_sasl_bind failed (-2)[Local error]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [child_sig_handler]
(7): Waiting for child [20278].
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [child_sig_handler]
(4): child [20278] finished successfully.
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [fo_set_port_status]
(4): Marking port 0 of server 'ipaserver.d1.gameop.net' as 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_handle_release]
(8): Trace: sh[0x102d070], connected[1], ops[(nil)], ldap[0x1018b00],
destructor_lock[0], release_memory[0]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[remove_connection_callback] (9): Successfully removed connection callback.
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_done] (9): attempting failover retry on op #1
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_step] (9): beginning to connect
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver.d1.gameop.net' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 0 for server 'ipaserver.d1.gameop.net' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipareplica' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipareplica' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipaserver' is 'neutral'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [resolve_srv_send]
(6): The status of SRV lookup is resolved
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_release_conn_data] (9): releasing unused connection
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[be_resolve_server_done] (4): Found address for server ipaserver:
[192.168.232.41]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_rootdse_send] (9): Getting rootdse
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (6): calling ldap_search_ext with
[(objectclass=*)][].
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [*]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [altServer]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [namingContexts]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedControl]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedExtension]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedFeatures]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedLDAPVersion]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [supportedSASLMechanisms]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [defaultNamingContext]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [lastUSN]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (7): Requesting attrs: [highestCommittedUSN]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_ldap_connect_callback_add] (9): New LDAP connection to [ldap://
192.168.232.41:389] with fd [27].
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_send] (8): ldap_search_ext called, msgid = 1
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x1025030], connected[1], ops[0x10168c0], ldap[0x10244e0]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_parse_entry]
(9): OriginalDN: [].
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x1025030], connected[1], ops[0x10168c0], ldap[0x10244e0]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_generic_done] (6): Search result: Success(0), (null)
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_get_rootdse_done] (9): Got rootdse
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_kinit_send] (6):
Attempting kinit ((null), host/seadv-237-100.d1.gameop.net, D1.GAMEOP.NET,
86400)
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_kinit_next_kdc]
(7): Resolving next KDC for service IPA
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver.d1.gameop.net' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 0 for server 'ipaserver.d1.gameop.net' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipareplica' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipareplica' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipaserver' is 'neutral'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [resolve_srv_send]
(6): The status of SRV lookup is resolved
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[be_resolve_server_done] (4): Found address for server ipaserver:
[192.168.232.41]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_kinit_kdc_resolved] (7): KDC resolved, attempting to get TGT...
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[create_tgt_req_send_buffer] (7): buffer size: 61
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [child_handler_setup]
(8): Setting up signal handler up for pid [20279]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [child_handler_setup]
(8): Signal handler set up for pid [20279]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[set_tgt_child_timeout] (6): Setting 6 seconds timeout for tgt child
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: sh[0x1025030], connected[1], ops[(nil)], ldap[0x10244e0]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_process_result]
(8): Trace: ldap_result found nothing!
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [write_pipe_handler]
(6): All data has been sent!
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [read_pipe_handler]
(6): EOF received, client finished
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_get_tgt_recv]
(6): Child responded: 0 [FILE:/var/lib/sss/db/ccache_D1.GAMEOP.NET],
expired on [1367570700]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sasl_bind_send] (4):
Executing sasl bind mech: GSSAPI, user: host/seadv-237-100.d1.gameop.net
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sasl_bind_send] (1):
ldap_sasl_bind failed (-2)[Local error]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [child_sig_handler]
(7): Waiting for child [20279].
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [child_sig_handler]
(4): child [20279] finished successfully.
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [fo_set_port_status]
(4): Marking port 389 of server 'ipaserver' as 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [sdap_handle_release]
(8): Trace: sh[0x1025030], connected[1], ops[(nil)], ldap[0x10244e0],
destructor_lock[0], release_memory[0]
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[remove_connection_callback] (9): Successfully removed connection callback.
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_done] (9): attempting failover retry on op #1
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_step] (9): beginning to connect
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (4): Trying to resolve service 'IPA'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver.d1.gameop.net' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 0 for server 'ipaserver.d1.gameop.net' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipareplica' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipareplica' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_server_status]
(7): Status of server 'ipaserver' is 'name resolved'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [get_port_status] (7):
Port status of port 389 for server 'ipaserver' is 'not working'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[fo_resolve_service_send] (1): No available servers for service 'IPA'
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_release_conn_data] (9): releasing unused connection
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_done] (1): Failed to connect, going offline (5
[Input/output error])
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [be_mark_offline] (8):
Going offline!
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]] [be_run_offline_cb]
(3): Going offline. Running callbacks.
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_op_connect_done] (9): notify offline to op #1
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[sdap_id_release_conn_data] (9): releasing unused connection
(Thu May 2 10:45:00 2013) [sssd[be[d1.gameop.net]]]
[remove_krb5_info_files] (5): Could not remove [/var/lib/sss/pubconf/
kpasswdinfo.D1.GAMEOP.NET], [2][No such file or directory]
sssd_nss.log
(Thu May 2 10:44:59 2013) [sssd[nss]] [get_client_cred] (9): Client creds:
euid[0] egid[0] pid[20276].
(Thu May 2 10:44:59 2013) [sssd[nss]] [accept_fd_handler] (4): Client
connected!
(Thu May 2 10:44:59 2013) [sssd[nss]] [sss_cmd_get_version] (5): Received
client version [1].
(Thu May 2 10:44:59 2013) [sssd[nss]] [sss_cmd_get_version] (5): Offered
version [1].
(Thu May 2 10:44:59 2013) [sssd[nss]] [nss_cmd_getpwnam] (4): Requesting
info for [acke] from [<ALL>]
(Thu May 2 10:44:59 2013) [sssd[nss]] [sss_ncache_check_str] (8): Checking
negative cache for [NCE/USER/d1.gameop.net/acke]
(Thu May 2 10:44:59 2013) [sssd[nss]] [nss_cmd_getpwnam_search] (4):
Requesting info for [acke at d1.gameop.net]
(Thu May 2 10:44:59 2013) [sssd[nss]] [ldb] (9): tevent: Added timed event
"ltdb_callback": 0x2090b00
(Thu May 2 10:44:59 2013) [sssd[nss]] [ldb] (9): tevent: Added timed event
"ltdb_timeout": 0x208d220
(Thu May 2 10:44:59 2013) [sssd[nss]] [ldb] (9): tevent: Destroying timer
event 0x208d220 "ltdb_timeout"
(Thu May 2 10:44:59 2013) [sssd[nss]] [ldb] (9): tevent: Ending timer
event 0x2090b00 "ltdb_callback"
(Thu May 2 10:44:59 2013) [sssd[nss]] [sss_dp_send_acct_req_create] (4):
Sending request for [d1.gameop.net][4097][1][name=acke]
(Thu May 2 10:44:59 2013) [sssd[nss]] [sbus_add_timeout] (8): 0x20923f0
(Thu May 2 10:44:59 2013) [sssd[nss]] [sbus_remove_timeout] (8): 0x20923f0
(Thu May 2 10:44:59 2013) [sssd[nss]] [sbus_dispatch] (9): dbus conn:
2092B50
(Thu May 2 10:44:59 2013) [sssd[nss]] [sbus_dispatch] (9): Dispatching.
(Thu May 2 10:44:59 2013) [sssd[nss]] [sss_dp_get_reply] (4): Got reply
(1, 11, Fast reply - offline) from Data Provider
(Thu May 2 10:44:59 2013) [sssd[nss]] [nss_cmd_getpwnam_dp_callback] (2):
Unable to get information from Data Provider
Error: 1, 11, Fast reply - offline
Will try to return what we have in cache
(Thu May 2 10:44:59 2013) [sssd[nss]] [client_recv] (5): Client
disconnected!
^C
i can login with kinit acke
klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: acke at D1.GAMEOP.NET
Valid starting Expires Service principal
05/02/13 10:48:54 05/03/13 10:48:51 krbtgt/D1.GAMEOP.NET at D1.GAMEOP.NET
in the sssd_d1.game..... logs it complains about port not open but when i
do telnet on them it is working..
telnet ipaserver 389
Trying 192.168.232.41...
Connected to ipaserver.
Escape character is '^]'
2013/4/29 Rob Crittenden <rcritten at redhat.com>
> Axel Berlin wrote:
>
>> Hello.
>>
>> Im trying to set up a redhat 6.1 to ipaserver.
>>
>> What i have done.....
>>
>> On the Ipaserver
>>
>
> [ snip lots of config ]
>
>
>
>> nameserver 192.168.232.41
>>
>> I can id and ssh...
>>
>> So have i missed somthing whit the dns?
>>
>> I have tried to have the SRV records to only _ldap._tcp and
>> _kerberos._tcp but that dont work either.
>>
>
> Did you start/restart sssd after creating the configuration?
>
> You may want to add debug_level = 9 to the domains section and start again
> to bump up the logging. The logs go into /var/log/sssd.
>
> What are the permissions on /etc/krb5.keytab? Should be 0600 root:root.
>
> Is SELinux in enforcing mode? If so I'd check the audit log too.
>
> rob
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130502/716ec2d2/attachment.htm>
More information about the Freeipa-users
mailing list