[Freeipa-users] "admin" user ssh required for replication?
Rob Crittenden
rcritten at redhat.com
Wed Aug 20 14:37:20 UTC 2014
Jim Kinney wrote:
> All,
>
> I'm setting up a new replicated master (CentOS7) from a CentOS 6.5
> original master. I added the patch (to the freeIPA 3.3 on CentOS 7) from
> https://git.fedorahosted.org/cgit/freeipa.git/commit/?id=8c98561c209d0ccaa692a335e3e9a10aec23ee0e
> to handle the 2 replication IDs bug.
>
> The replication fails to complete. If I exclude the connection check, it
> fails. If I leave the connection check in place, it asks for an ssh
> password for the admin@<original master host>. There is no admin user on
> that machine. The admin user is only in freeIPA.
>
> Should there be an admin user account exposed? Did I find a config
> change between 3.0 and 3.3 releases?
The admin user is in freeIPA so therefore the user IS on that original
master.
The connection check is there to confirm that the required ports are
available in both directions. If replication is failing it may be due to
that, but without details it's hard to say.
rob
More information about the Freeipa-users
mailing list