[Freeipa-users] Installation on CentOS 6.6 with DNS

Ricardo Oliveira n3g4s at hotmail.com
Wed May 27 10:13:14 UTC 2015 

Hi,

Thanks for your reply. The host is indeed in the hosts file, 
and even in the DNS server's "mydomain.com" zone and reverse zone, which
 is a local Bind instance which is the one I expect IPA to manage once 
the setup is complete.
In fact, if both DNS and reverse DNS 
resolution are not configured, IPA server setup fails in the beginning 
with something like "Host not found".

Best,
Ricardo.

Date: Wed, 27 May 2015 06:14:34 +0700
Subject: Re: [Freeipa-users] Installation on CentOS 6.6 with DNS
From: dewanggaba at xtremenitro.org
To: n3g4s at hotmail.com
CC: freeipa-users at redhat.com

Have you add your ipa.domain.com ip address on /etc/hosts file? The error seems like your installation can't resolve the ip address.
On Wednesday, May 27, 2015, Ricardo Oliveira <n3g4s at hotmail.com> wrote:









Hi,

I've been trying to setup IPA on CentOS 6.6 with the --setup-dns option on, using the CentOS provided packages:

rpm

My problem is that everything is installed except when I use this flag.
So, when I run:

ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U

The installation finishes successfully.
If I add DNS switches to the installation, it fails almost at the end:

ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U --setup-dns --no-forwarders

Output (clipped):
---------------------------------------------------
...
Configuring the web interface (httpd): Estimated time 1 minute
  [1/13]: setting mod_nss port to 443
  [2/13]: setting mod_nss password file
  [3/13]: enabling mod_nss renegotiate
  [4/13]: adding URL rewriting rules
  [5/13]: configuring httpd
  [6/13]: setting up ssl
  [7/13]: setting up browser autoconfig
  [8/13]: publish CA cert
  [9/13]: creating a keytab for httpd
  [10/13]: clean up any existing httpd ccache
  [11/13]: configuring SELinux for httpd
  [12/13]: restarting httpd
  [13/13]: configuring httpd to start on boot
Done configuring the web interface (httpd).
Applying LDAP updates
Restarting the directory server
Restarting the KDC
Can't contact LDAP server
[root at ipa ~]# 
---------------------------------------------------
The screen output is at http://pastebin.com/HKiUwKq4The end of the error log is at http://pastebin.com/jDUhBCL7 (it's a 29 MB file so I only pasted the end of it).
If anyone has come across anything like this, I would appreciate your help.
Thanks.
Ricardo.


 		 	   		  


-- 
Sent from iDewangga Device
 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150527/c862b703/attachment.htm>

More information about the Freeipa-users mailing list