[Freeipa-users] Unable to establish trust with FreeIPA and Active Directory
Redmond, Stacy
stacy.redmond at blueshieldca.com
Thu Apr 3 20:22:51 UTC 2014
Yes, I did that, here is the log
[Thu Apr 03 13:21:52 2014] [error] [client 10.130.82.68] Credentials for
HTTP/linuxtest1.sbx.local at UNIX have expired or will soon expire - now
1396556512 endtime 1396551629, referer:
https://linuxtest1.sbx.local/ipa/xml
[Thu Apr 03 13:21:52 2014] [error] [client 10.130.82.68] Credentials for
HTTP/linuxtest1.sbx.local at UNIX have expired or will soon expire - now
1396556512 endtime 1396551629, referer:
https://linuxtest1.sbx.local/ipa/xml
[Thu Apr 03 13:21:52 2014] [error] ipa: INFO: admin at UNIX: ping():
SUCCESS
[Thu Apr 03 13:21:55 2014] [error] ipa: INFO: admin at UNIX:
trust_add(u'sbx.local', trust_type=u'ad', realm_admin=u'admsredmo01',
realm_passwd=u'********', range_size=200000, all=False, raw=False,
version=u'2.49'): NotFound
-----Original Message-----
From: Alexander Bokovoy [mailto:abokovoy at redhat.com]
Sent: Thursday, April 03, 2014 12:12 PM
To: Redmond, Stacy
Cc: freeipa-users at redhat.com
Subject: Re: [Freeipa-users] Unable to establish trust with FreeIPA and
Active Directory
On Thu, 03 Apr 2014, Redmond, Stacy wrote:
>I have this same exact issue. I have not only verified that DNS is
>functioning properly, I have also added the AD server to the local
>hosts file as is the reported fix for this issue and it still persists.
add
log level = 100
to [global] section in /usr/share/ipa/smb.conf.empty
and try 'ipa trust-add' again.
You'll get debug output in httpd's error_log.
I'd like to see level 100 logs, they give a bit more details in case of
SMB Python bindings.
--
/ Alexander Bokovoy
More information about the Freeipa-users
mailing list