[Freeipa-users] dirsrv keytab revoked
Christoph Kaminski
christoph.kaminski at biotronik.com
Fri May 29 05:48:25 UTC 2015
Hi
I have had a defect entries in ldap for a replica and deleted them. But
now the dirsrv keytab (/etc/dirsrv/ds.keytab) doesnt work anymore
(revoked). The replica starts but it cant connect other replicas (but
other replicas can connect to it).
I have tried:
kinit -k -t /etc/dirsrv/ds.keytab
ldap/ipa-1.mgmt.testsystem-homemonitoring.int
and got:
kinit: Clients credentials have been revoked while getting initial
credentials
It is possible to 'regenerate' this keytab? If yes how? Simple
ipa-getkeytab (on this replica) doesnt work.
Or it is better to destroy it and do a new install?
MfG
Christoph Kaminski
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150529/42fb6cab/attachment.htm>
More information about the Freeipa-users
mailing list