[Freeipa-users] Configuration of client side components failed! on IPA Server
Yogesh Sharma
yks0000 at gmail.com
Wed Mar 25 12:23:40 UTC 2015
I have tried on multiple Platform. Setup the nisdomain and it is resolving,
though it is getting the same error.
Any help would be helpful.
*Best Regards,__________________________________________*
*Yogesh Sharma*
*Email: yks0000 at gmail.com <yks0000 at gmail.com> | Web: www.initd.in
<http://www.initd.in>*
RHCE, VCE-CIA, RackSpace Cloud U
[image: My LinkedIn Profile] <http://in.linkedin.com/in/yks0000>
On Wed, Mar 25, 2015 at 3:42 PM, Yogesh Sharma <yks0000 at gmail.com> wrote:
> Any suggestion Please.
>
>
>
>
> *Best Regards,__________________________________________*
>
> *Yogesh Sharma*
> *Email: yks0000 at gmail.com <yks0000 at gmail.com> | Web: www.initd.in
> <http://www.initd.in>*
>
> RHCE, VCE-CIA, RackSpace Cloud U
> [image: My LinkedIn Profile] <http://in.linkedin.com/in/yks0000>
>
>
> On Wed, Mar 25, 2015 at 1:20 PM, Yogesh Sharma <yks0000 at gmail.com> wrote:
>
>> While restarting using ipactl . It is stopping. Any suggestion.
>>
>> [root at ldap-inf-stg-sg1-01 ys7673]# ipactl stop
>> Starting dirsrv:
>> PKI-IPA... [ OK ]
>> SD-INT... [ OK ]
>> Stopping CA Service
>> pki-tomcatd: unrecognized service
>> Failed to stop CA Service
>> Stopping HTTP Service
>> Stopping httpd: [FAILED]
>> Stopping MEMCACHE Service
>> Stopping KPASSWD Service
>> Stopping Kerberos 5 Admin Server: [FAILED]
>> Stopping KDC Service
>> Stopping Kerberos 5 KDC: [FAILED]
>> Stopping Directory Service
>> Shutting down dirsrv:
>> PKI-IPA... [ OK ]
>> SD-INT... [ OK ]
>> [root at ldap-inf-stg-sg1-01 ys7673]# ipactl start
>> Starting Directory Service
>> Starting dirsrv:
>> PKI-IPA... [ OK ]
>> SD-INT... [ OK ]
>> Starting KDC Service
>> Starting Kerberos 5 KDC: [ OK ]
>> Starting KPASSWD Service
>> Starting Kerberos 5 Admin Server: [ OK ]
>> Starting MEMCACHE Service
>> Starting ipa_memcached: [ OK ]
>> Starting HTTP Service
>> Starting httpd: [ OK ]
>> Starting CA Service
>> pki-tomcatd: unrecognized service
>> Failed to start CA Service
>> *Shutting down*
>> *Stopping Kerberos 5 KDC: [ OK ]*
>> *Stopping Kerberos 5 Admin Server: [ OK ]*
>> *Stopping ipa_memcached: [ OK ]*
>> *Stopping httpd: [ OK ]*
>> *pki-tomcatd: unrecognized service*
>> *Shutting down dirsrv: *
>> * PKI-IPA... [ OK ]*
>> * SD-INT... [ OK ]*
>> *Aborting ipactl*
>> [root at ldap-inf-stg-sg1-01 ys7673]
>>
>>
>>
>>
>> *Best Regards,__________________________________________*
>>
>> *Yogesh Sharma*
>> *Email: yks0000 at gmail.com <yks0000 at gmail.com> | Web: www.initd.in
>> <http://www.initd.in>*
>>
>> RHCE, VCE-CIA, RackSpace Cloud U
>> [image: My LinkedIn Profile] <http://in.linkedin.com/in/yks0000>
>>
>>
>> On Wed, Mar 25, 2015 at 12:29 PM, Yogesh Sharma <yks0000 at gmail.com>
>> wrote:
>>
>>> I have checked , there is no default.conf. Please suggest.
>>>
>>> [root at ldap-inf-stg-sg1-01 ipa]# ls -lrth /etc/ipa/
>>> total 8.0K
>>> drwxr-xr-x 2 root root 4.0K Mar 24 13:29 html
>>> -r--r--r-- 1 root root 1.3K Mar 25 06:36 ca.crt
>>>
>>> [root at ldap-inf-stg-sg1-01 ipa]# ls -lrth /etc/ipa/html/
>>> total 28K
>>> -rw-r--r-- 1 root root 1.4K Oct 16 15:03 unauthorized.html
>>> -rw-r--r-- 1 root root 3.9K Oct 16 15:03 ssbrowser.html
>>> -rw-r--r-- 1 root root 521 Oct 16 15:03 ipa_error.css
>>> -rw-r--r-- 1 root root 4.5K Oct 16 15:03 ffconfig_page.js
>>> -rw-r--r-- 1 root root 2.9K Oct 16 15:03 ffconfig.js
>>> -rw-r--r-- 1 root root 3.9K Oct 16 15:03 browserconfig.html
>>> [root at ldap-inf-stg-sg1-01 ipa]#
>>>
>>>
>>>
>>>
>>>
>>> *Best Regards,__________________________________________*
>>>
>>> *Yogesh Sharma*
>>> *Email: yks0000 at gmail.com <yks0000 at gmail.com> | Web: www.initd.in
>>> <http://www.initd.in>*
>>>
>>> RHCE, VCE-CIA, RackSpace Cloud U
>>> [image: My LinkedIn Profile] <http://in.linkedin.com/in/yks0000>
>>>
>>>
>>> On Wed, Mar 25, 2015 at 12:16 PM, Yogesh Sharma <yks0000 at gmail.com>
>>> wrote:
>>>
>>>> Hi,
>>>>
>>>> We are getting below error while we are installing IPA Server
>>>> (ipa-server-install --no-ntp).
>>>>
>>>>
>>>> *Configuration of client side components failed!*
>>>> *ipa-client-install returned: Command '/usr/sbin/ipa-client-install
>>>> --on-master --unattended --domain sd.int <http://sd.int> --server
>>>> ldap-inf-stg-sg1-01.sd.int <http://ldap-inf-stg-sg1-01.sd.int> --realm
>>>> SD.INT <http://SD.INT> --hostname ldap-inf-stg-sg1-01.sd.int
>>>> <http://ldap-inf-stg-sg1-01.sd.int>' returned non-zero exit status 1*
>>>>
>>>> Logs indicate below errors:
>>>>
>>>> *2015-03-25T06:39:59Z DEBUG args=/usr/bin/ldappasswd -h
>>>> ldap-inf-stg-sg1-01.sd.int <http://ldap-inf-stg-sg1-01.sd.int> -ZZ -x -D
>>>> cn=Directory Manager -y /var/lib/ipa/tmpiI0qCS -T /var/lib/ipa/tmp0iYpzn
>>>> uid=admin,cn=users,cn=accounts,dc=sd,dc=int*
>>>> *2015-03-25T06:39:59Z DEBUG stdout=*
>>>> *2015-03-25T06:39:59Z DEBUG stderr=*
>>>> *2015-03-25T06:39:59Z DEBUG ldappasswd done*
>>>> *2015-03-25T06:40:10Z DEBUG args=/usr/sbin/ipa-client-install
>>>> --on-master --unattended --domain sd.int <http://sd.int> --server
>>>> ldap-inf-stg-sg1-01.sd.int <http://ldap-inf-stg-sg1-01.sd.int> --realm
>>>> SD.INT <http://SD.INT> --hostname ldap-inf-stg-sg1-01.sd.int
>>>> <http://ldap-inf-stg-sg1-01.sd.int>*
>>>> *2015-03-25T06:40:10Z DEBUG stdout=*
>>>> *2015-03-25T06:40:10Z DEBUG stderr=Failed to verify that
>>>> ldap-inf-stg-sg1-01.sd.int <http://ldap-inf-stg-sg1-01.sd.int> is an IPA
>>>> Server.*
>>>> *This may mean that the remote server is not up or is not reachable due
>>>> to network or firewall settings.*
>>>> *Please make sure the following ports are opened in the firewall
>>>> settings:*
>>>> * TCP: 80, 88, 389*
>>>> * UDP: 88 (at least one of TCP/UDP ports 88 has to be open)*
>>>> *Also note that following ports are necessary for ipa-client working
>>>> properly after enrollment:*
>>>> * TCP: 464*
>>>> * UDP: 464, 123 (if NTP enabled)*
>>>> *Installation failed. Rolling back changes.*
>>>> *Unconfigured automount client failed: Command 'ipa-client-automount
>>>> --uninstall --debug' returned non-zero exit status 1*
>>>> *Removing Kerberos service principals from /etc/krb5.keytab*
>>>> *Disabling client Kerberos and LDAP configurations*
>>>> *Redundant SSSD configuration file /etc/sssd/sssd.conf was moved to
>>>> /etc/sssd/sssd.conf.deleted*
>>>> *nscd daemon is not installed, skip configuration*
>>>> *nslcd daemon is not installed, skip configuration*
>>>> *Client uninstall complete.*
>>>>
>>>> *2015-03-25T06:40:10Z INFO File
>>>> "/usr/lib/python2.6/site-packages/ipaserver/install/installutils.py", line
>>>> 614, in run_script*
>>>> * return_value = main_function()*
>>>>
>>>> * File "/usr/sbin/ipa-server-install", line 1103, in main*
>>>> * sys.exit("Configuration of client side components
>>>> failed!\nipa-client-install returned: " + str(e))*
>>>>
>>>> *2015-03-25T06:40:10Z INFO The ipa-server-install command failed,
>>>> exception: SystemExit: Configuration of client side components failed!*
>>>> *ipa-client-install returned: Command '/usr/sbin/ipa-client-install
>>>> --on-master --unattended --domain sd.int <http://sd.int> --server
>>>> ldap-inf-stg-sg1-01.sd.int <http://ldap-inf-stg-sg1-01.sd.int> --realm
>>>> SD.INT <http://SD.INT> --hostname ldap-inf-stg-sg1-01.sd.int
>>>> <http://ldap-inf-stg-sg1-01.sd.int>' returned non-zero exit status 1*
>>>>
>>>>
>>>>
>>>> This server is on AWS and I can confirm that all above ports are
>>>> opened. Also as it is installing on same server where IPA Server is being
>>>> installed, Port should not be an issue.
>>>>
>>>> Am I missing anything here.
>>>>
>>>>
>>>>
>>>>
>>>> *Best Regards,__________________________________________*
>>>>
>>>> *Yogesh Sharma*
>>>>
>>>>
>>>>
>>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150325/44136f6e/attachment.htm>
More information about the Freeipa-users
mailing list