[Freeipa-users] cant create winsync reolication
Dmitri Pal
dpal at redhat.com
Fri Jan 31 18:15:44 UTC 2014
On 01/31/2014 12:59 PM, Todd Maugh wrote:
> please help im stuck trying to finish this winsync agreement
>
> [root at se-idm-01.boingo.com slapd-BOINGO-COM]$ ipa-replica-manage
> connect --winsync --binddn "cn=idm admin, cn=Users, dc=boingoqa,
> dc=local" --bindpw "*******" --passsync "********"
> --cacert=/etc/openldap/cacerts/boingoqaCA.cer qatestdc2.boingoqa.local -v
> Directory Manager password:
>
> Added CA certificate /etc/openldap/cacerts/boingoqaCA.cer to
> certificate database for se-idm-01.boingo.com
> ipa: INFO: AD Suffix is: DC=boingoqa,DC=local
> The user for the Windows PassSync service is
> uid=passsync,cn=sysaccounts,cn=etc,dc=boingo,dc=com
> Windows PassSync entry exists, not resetting password
> ipa: INFO: Added new sync agreement, waiting for it to become ready . . .
> ipa: INFO: Replication Update in progress: FALSE: status: -11 - LDAP
> error: Connect error: start: 0: end: 0
> ipa: INFO: Agreement is ready, starting replication . . .
> Starting replication, please wait until this has completed.
> [se-idm-01.boingo.com] reports: Update failed! Status: [-11 - LDAP
> error: Connect error]
> Failed to start replication
>
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
Some DS level logs might help.
Also may it be a firewall issue? FW resetting connection or something like?
--
Thank you,
Dmitri Pal
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140131/b6118966/attachment.htm>
More information about the Freeipa-users
mailing list