[Freeipa-users] New replica won't accept replication

Bret Wortman bret.wortman at damascusgrp.com
Wed May 21 14:41:48 UTC 2014 

This occurs on our first attempt to join as a replica. I've erased this 
box and rebaselined it but the same thing happens. No network ports 
being blocked that we know of, and another replica I created at the same 
time installed its replica file without issue.

asipa is the new replica, zsipa is the ca and original master on which 
the replica file was created.

   [24/34]: setting up initial replication
Starting replication, please wait until this has completed
Update in progress, 130 seconds elapsed
Update in progress yet not in progress

[ipamaster.foo.net] reports: Update failed! Status: [10 Total update 
abortedLDAP error: Referral]


Your system may be partly configured.
Run /usr/sbin/ipa-server-install --uninstall to clean up.

Failed to start replication
#

/var/log/ipareplica-install.log contains this:

2014-05-21T145:28:56Z DEBUG retrieving schema for SchemaCache 
url=ldaps://asipa.fopo.net:636 conn=<ldap.ldapobject.SimpleLDAPObject 
instance at 0x4faf170>
2014-05-21T14:31:08Z DEBUG   File 
"/usr/lib/python2.7/site-packages/ipaserver/install/installutils.py", 
line 638, in run_script
     return_value = main_function()

   File "/usr/sbin/ipa-replica-install", line 663, in main
     ds = install_replica_ds(config)

   File "/usr/sbin/ipa-replica-install", line 188, in install_replica_ds
     ca_file=config.dir + "/ca.crt",

   File 
"/usr/lib/python2.7/site-packages/ipaserver/install/dsinstance.py", line 
360 in create_replica
     self.start_creation(runtime=60)

   File "/usr/lib/python2.7/site-packages/ipaserver/install/service.py", 
line 364, in start_creation
     method()

   File 
"/usr/lib/python2.7/site-packages/ipaserver/install/dsinstance.py", line 
373, in __setup_replica
     r_bindpw=self.dm_password()

   File 
"/usr/lib/python2.7/site-packages/ipaserver/install/replication.py", 
line 961, in setup_replication
     raise RuntimeError("Failed to start replication")

2014-0521T14:31:08Z DEBUG The ipa-replica-install command failed, 
exception: RuntimeError: Failed to start replication

Any guidance on where to start looking?

-- 
*Bret Wortman*

http://damascusgrp.com/
http://about.me/wortmanbret

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140521/132752c1/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 51f7de33e4b08d2bdb8b4860
Type: image/png
Size: 28526 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140521/132752c1/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3766 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140521/132752c1/attachment.p7s>

More information about the Freeipa-users mailing list