[Freeipa-users] krb5kdc will not start (kerberos authentication error)
Gronde, Christopher (Contractor)
Christopher.Gronde at fincen.gov
Tue Nov 10 15:18:53 UTC 2015
Thank you! I should have caught that...
I changed the log level and then restarted dirsrv and attempted to start krb5kdc and got the following...
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn=""
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 SRCH base="cn=mapping tree,cn=config" scope=1 filter="(&(objectclass=nsMappingTree)(!(nsslapd-parent-suffix=*)))" attrs=ALL
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 SRCH base="cn=mapping tree,cn=config" scope=1 filter="(&(objectclass=nsMappingTree)(|(nsslapd-parent-suffix="dc=itmodev,dc=gov")(nsslapd-parent-suffix=dc=itmodev,dc=gov)))" attrs=ALL
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="oid=2.16.840.1.113730.3.4.9,cn=features,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=32 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="oid=2.16.840.1.113730.3.5.7,cn=features,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=32 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=options,cn=features,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=32 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=encryption,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=monitor"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=snmp,cn=monitor"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=counters,cn=monitor"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=sasl,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=mapping,cn=sasl,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="cn=SNMP,cn=config"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 ADD dn="ou=Netscape Directory Team,cn=monitor"
[10/Nov/2015:10:09:31 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=SNMP,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=uniqueid generator,cn=config" scope=0 filter="objectclass=*" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 MOD dn="cn=uniqueid generator,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=tasks,cn=config" scope=2 filter="(objectclass=*)" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=15 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=upgradedb,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=syntax validate,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=schema reload task,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=restore,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=index,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=import,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=fixup linked attributes,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=export,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=cleanallruv,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=backup,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=automember rebuild membership,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=automember map updates,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=automember export updates,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 DEL dn="cn=abort cleanallruv,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Binary Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Bit String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Bitwise Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Boolean Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Case Exact String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Case Ignore String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Country String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Delivery Method Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Distinguished Name Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Enhanced Guide Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Facsimile Telephone Number Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Fax Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Generalized Time Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Guide Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Integer Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Internationalization Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=JPEG Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Name And Optional UID Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Numeric String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Octet String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=OID Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Postal Address Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Printable String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Space Insensitive String Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Telephone Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Teletex Terminal Identifier Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Telex Number Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=URI Syntax,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=CLEAR,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=CRYPT,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=DES,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=MD5,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=NS-MTA-MD5,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SHA,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SHA256,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SHA384,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SHA512,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SMD5,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SSHA,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SSHA256,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SSHA384,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=SSHA512,cn=Password Storage Schemes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Account Policy Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=attribute uniqueness,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=chaining database,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Distributed Numeric Assignment Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=ldbm database,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=userRoot,cn=ldbm database,cn=plugins,cn=config" scope=2 filter="(objectclass=vlvsearch)" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=userRoot,cn=ldbm database,cn=plugins,cn=config" scope=2 filter="(objectclass=vlvindex)" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Linked Attributes,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=fixup linked attributes,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Managed Entries,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=MemberOf Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=PAM Pass Through Auth,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Pass Through Authentication,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=referential integrity postoperation,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Retro Changelog Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Schema Reload,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=schema reload task,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=State Change Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Syntax Validation Task,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=syntax validate,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=USN,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Views,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="" scope=0 filter="(objectclass=*)" attrs="namingcontexts"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=config,cn=userRoot,cn=ldbm database,cn=plugins,cn=config" scope=0 filter="objectclass=*" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=32 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 MOD dn="cn=config,cn=userRoot,cn=ldbm database,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=32 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=config,cn=userRoot,cn=ldbm database,cn=plugins,cn=config" scope=1 filter="objectclass=vlvsearch" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=7-bit check,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=ACL Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=config" scope=0 filter="(objectclass=*)" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=ACL Plugin,cn=plugins,cn=config" scope=0 filter="(objectclass=*)" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=config,cn=userRoot,cn=ldbm database,cn=plugins,cn=config" scope=1 filter="objectclass=vlvsearch" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=ACL preoperation,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Auto Membership Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=automember rebuild membership,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=automember export updates,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=automember map updates,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Class of Service,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="" scope=0 filter="(objectclass=*)" attrs="namingcontexts"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=config,cn=userRoot,cn=ldbm database,cn=plugins,cn=config" scope=1 filter="objectclass=vlvsearch" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=deref,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=HTTP Client,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Multimaster Replication Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=cleanallruv,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=abort cleanallruv,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Roles Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=Legacy Replication Plugin,cn=plugins,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=68 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=import,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=export,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=backup,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=restore,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=index,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 ADD dn="cn=upgradedb,cn=tasks,cn=config"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 MOD dn="dc=itmodev,dc=gov"
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=16 tag=48 nentries=0 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=mapping,cn=sasl,cn=config" scope=1 filter="(objectclass=nsSaslMapping)" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=6 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=uid mapping,cn=mapping,cn=sasl,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=rfc 2829 u syntax,cn=mapping,cn=sasl,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=rfc 2829 dn syntax,cn=mapping,cn=sasl,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=Name Only,cn=mapping,cn=sasl,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=Kerberos uid mapping,cn=mapping,cn=sasl,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 SRCH base="cn=Full Principal,cn=mapping,cn=sasl,cn=config" scope=0 filter="(|(objectclass=*)(objectclass=ldapsubentry))" attrs=ALL
[10/Nov/2015:10:09:32 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=1 etime=0
[10/Nov/2015:10:11:43 -0500] conn=1 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:11:43 -0500] conn=1 op=0 UNBIND
[10/Nov/2015:10:11:43 -0500] conn=1 op=0 fd=64 closed - U1
[10/Nov/2015:10:11:45 -0500] conn=2 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:11:45 -0500] conn=2 op=0 UNBIND
[10/Nov/2015:10:11:45 -0500] conn=2 op=0 fd=64 closed - U1
[10/Nov/2015:10:11:53 -0500] conn=3 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:11:53 -0500] conn=3 op=0 UNBIND
[10/Nov/2015:10:11:53 -0500] conn=3 op=0 fd=64 closed - U1
[10/Nov/2015:10:11:55 -0500] conn=4 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:11:55 -0500] conn=4 op=0 UNBIND
[10/Nov/2015:10:11:55 -0500] conn=4 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:02 -0500] conn=5 fd=64 slot=64 connection from 172.16.100.208 to 172.16.100.161
[10/Nov/2015:10:12:02 -0500] conn=5 op=0 BIND dn="" method=sasl version=3 mech=GSSAPI
[10/Nov/2015:10:12:03 -0500] conn=5 op=0 RESULT err=14 tag=97 nentries=0 etime=1, SASL bind in progress
[10/Nov/2015:10:12:03 -0500] conn=5 op=1 BIND dn="" method=sasl version=3 mech=GSSAPI
[10/Nov/2015:10:12:03 -0500] conn=5 op=1 RESULT err=14 tag=97 nentries=0 etime=0, SASL bind in progress
[10/Nov/2015:10:12:03 -0500] conn=5 op=2 BIND dn="" method=sasl version=3 mech=GSSAPI
[10/Nov/2015:10:12:03 -0500] conn=Internal op=-1 SRCH base="dc=itmodev,dc=gov" scope=2 filter="(uid=ldap/comipa01.itmodev.gov)" attrs=ALL
[10/Nov/2015:10:12:03 -0500] conn=Internal op=-1 RESULT err=0 tag=48 nentries=0 etime=0
[10/Nov/2015:10:12:03 -0500] conn=5 op=2 RESULT err=49 tag=97 nentries=0 etime=0
[10/Nov/2015:10:12:03 -0500] conn=5 op=3 UNBIND
[10/Nov/2015:10:12:03 -0500] conn=5 op=3 fd=64 closed - U1
[10/Nov/2015:10:12:13 -0500] conn=6 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:13 -0500] conn=6 op=0 UNBIND
[10/Nov/2015:10:12:13 -0500] conn=6 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:15 -0500] conn=7 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:15 -0500] conn=7 op=0 UNBIND
[10/Nov/2015:10:12:15 -0500] conn=7 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:24 -0500] conn=8 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:24 -0500] conn=8 op=0 UNBIND
[10/Nov/2015:10:12:24 -0500] conn=8 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:25 -0500] conn=9 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:25 -0500] conn=9 op=0 UNBIND
[10/Nov/2015:10:12:25 -0500] conn=9 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:43 -0500] conn=10 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:43 -0500] conn=10 op=0 UNBIND
[10/Nov/2015:10:12:43 -0500] conn=10 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:45 -0500] conn=11 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:45 -0500] conn=11 op=0 UNBIND
[10/Nov/2015:10:12:45 -0500] conn=11 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:54 -0500] conn=12 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:54 -0500] conn=12 op=0 UNBIND
[10/Nov/2015:10:12:54 -0500] conn=12 op=0 fd=64 closed - U1
[10/Nov/2015:10:12:55 -0500] conn=13 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:12:55 -0500] conn=13 op=0 UNBIND
[10/Nov/2015:10:12:55 -0500] conn=13 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:14 -0500] conn=14 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:14 -0500] conn=14 op=0 UNBIND
[10/Nov/2015:10:13:14 -0500] conn=14 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:16 -0500] conn=15 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:16 -0500] conn=15 op=0 UNBIND
[10/Nov/2015:10:13:16 -0500] conn=15 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:24 -0500] conn=16 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:24 -0500] conn=16 op=0 UNBIND
[10/Nov/2015:10:13:24 -0500] conn=16 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:25 -0500] conn=17 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:25 -0500] conn=17 op=0 UNBIND
[10/Nov/2015:10:13:25 -0500] conn=17 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:44 -0500] conn=18 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:44 -0500] conn=18 op=0 UNBIND
[10/Nov/2015:10:13:44 -0500] conn=18 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:46 -0500] conn=19 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:46 -0500] conn=19 op=0 UNBIND
[10/Nov/2015:10:13:46 -0500] conn=19 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:54 -0500] conn=20 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:54 -0500] conn=20 op=0 UNBIND
[10/Nov/2015:10:13:54 -0500] conn=20 op=0 fd=64 closed - U1
[10/Nov/2015:10:13:56 -0500] conn=21 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:13:56 -0500] conn=21 op=0 UNBIND
[10/Nov/2015:10:13:56 -0500] conn=21 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:14 -0500] conn=22 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:14 -0500] conn=22 op=0 UNBIND
[10/Nov/2015:10:14:14 -0500] conn=22 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:16 -0500] conn=23 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:16 -0500] conn=23 op=0 UNBIND
[10/Nov/2015:10:14:16 -0500] conn=23 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:25 -0500] conn=24 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:25 -0500] conn=24 op=0 UNBIND
[10/Nov/2015:10:14:25 -0500] conn=24 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:26 -0500] conn=25 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:26 -0500] conn=25 op=0 UNBIND
[10/Nov/2015:10:14:26 -0500] conn=25 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:45 -0500] conn=26 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:45 -0500] conn=26 op=0 UNBIND
[10/Nov/2015:10:14:45 -0500] conn=26 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:46 -0500] conn=27 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:46 -0500] conn=27 op=0 UNBIND
[10/Nov/2015:10:14:46 -0500] conn=27 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:55 -0500] conn=28 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:55 -0500] conn=28 op=0 UNBIND
[10/Nov/2015:10:14:55 -0500] conn=28 op=0 fd=64 closed - U1
[10/Nov/2015:10:14:56 -0500] conn=29 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:14:56 -0500] conn=29 op=0 UNBIND
[10/Nov/2015:10:14:56 -0500] conn=29 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:15 -0500] conn=30 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:15 -0500] conn=30 op=0 UNBIND
[10/Nov/2015:10:15:15 -0500] conn=30 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:17 -0500] conn=31 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:17 -0500] conn=31 op=0 UNBIND
[10/Nov/2015:10:15:17 -0500] conn=31 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:25 -0500] conn=32 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:25 -0500] conn=32 op=0 UNBIND
[10/Nov/2015:10:15:25 -0500] conn=32 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:26 -0500] conn=33 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:26 -0500] conn=33 op=0 UNBIND
[10/Nov/2015:10:15:26 -0500] conn=33 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:45 -0500] conn=34 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:45 -0500] conn=34 op=0 UNBIND
[10/Nov/2015:10:15:45 -0500] conn=34 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:47 -0500] conn=35 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:47 -0500] conn=35 op=0 UNBIND
[10/Nov/2015:10:15:47 -0500] conn=35 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:55 -0500] conn=36 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:55 -0500] conn=36 op=0 UNBIND
[10/Nov/2015:10:15:55 -0500] conn=36 op=0 fd=64 closed - U1
[10/Nov/2015:10:15:57 -0500] conn=37 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:15:57 -0500] conn=37 op=0 UNBIND
[10/Nov/2015:10:15:57 -0500] conn=37 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:15 -0500] conn=38 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:15 -0500] conn=38 op=0 UNBIND
[10/Nov/2015:10:16:15 -0500] conn=38 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:17 -0500] conn=39 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:17 -0500] conn=39 op=0 UNBIND
[10/Nov/2015:10:16:17 -0500] conn=39 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:26 -0500] conn=40 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:26 -0500] conn=40 op=0 UNBIND
[10/Nov/2015:10:16:26 -0500] conn=40 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:27 -0500] conn=41 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:27 -0500] conn=41 op=0 UNBIND
[10/Nov/2015:10:16:27 -0500] conn=41 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:46 -0500] conn=42 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:46 -0500] conn=42 op=0 UNBIND
[10/Nov/2015:10:16:46 -0500] conn=42 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:47 -0500] conn=43 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:47 -0500] conn=43 op=0 UNBIND
[10/Nov/2015:10:16:47 -0500] conn=43 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:56 -0500] conn=44 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:56 -0500] conn=44 op=0 UNBIND
[10/Nov/2015:10:16:56 -0500] conn=44 op=0 fd=64 closed - U1
[10/Nov/2015:10:16:57 -0500] conn=45 fd=64 slot=64 connection from 172.16.100.161 to 172.16.100.161
[10/Nov/2015:10:16:57 -0500] conn=45 op=0 UNBIND
[10/Nov/2015:10:16:57 -0500] conn=45 op=0 fd=64 closed - U1
-----Original Message-----
From: Ludwig Krispenz [mailto:lkrispen at redhat.com]
Sent: Tuesday, November 10, 2015 10:05 AM
To: Gronde, Christopher (Contractor) <Christopher.Gronde at fincen.gov>
Cc: freeipa-users at redhat.com
Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos authentication error)
it was a typo, try
nsslapd-accesslog-level
On 11/10/2015 03:53 PM, Gronde, Christopher (Contractor) wrote:
> Ran into an error trying to set that
>
> # ldapmodify -a -D "cn=directory manager" -W Enter LDAP Password:
> dn: cn=config
> changetype: modify
> replace: nsslapd-acesslog-level
> : 260
>
> modifying entry "cn=config"
> ldap_modify: Server is unwilling to perform (53)
> additional info: Unknown attribute nsslapd-acesslog-level
> will be ignored
>
> [root at comipa02 ~]# ldapmodify -a -D "cn=config" -W Enter LDAP
> Password:
> ldap_bind: Inappropriate authentication (48)
>
> -----Original Message-----
> From: Ludwig Krispenz [mailto:lkrispen at redhat.com]
> Sent: Tuesday, November 10, 2015 9:48 AM
> To: Gronde, Christopher (Contractor) <Christopher.Gronde at fincen.gov>
> Cc: freeipa-users at redhat.com
> Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos
> authentication error)
>
>
> On 11/10/2015 03:32 PM, Gronde, Christopher (Contractor) wrote:
>> How do I change that log setting? Is that done in LDAP? Using ldapmodify?
> yes,
> ldapmodify ...
> dn: cn=config
> changetype: modify
> replace: nsslapd-acesslog-level
> nsslapd-acesslog-level: 260
>> -----Original Message-----
>> From: freeipa-users-bounces at redhat.com
>> [mailto:freeipa-users-bounces at redhat.com] On Behalf Of Ludwig
>> Krispenz
>> Sent: Tuesday, November 10, 2015 9:03 AM
>> To: freeipa-users at redhat.com
>> Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos
>> authentication error)
>>
>>
>> On 11/10/2015 02:40 PM, Alexander Bokovoy wrote:
>>> On Tue, 10 Nov 2015, Gronde, Christopher (Contractor) wrote:
>>>> Where can I verify or change the credentials it is trying to use?
>>>> Is it my LDAP password?
>>> No, according to your logs, it is your LDAP master trying to
>>> replicate (push changes) to your LDAP replica:
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 fd=64 slot=64 connection from
>>>>> <MASTER_IP> to <REPLICA_IP>
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=0 BIND dn="" method=sasl
>>>>> version=3 mech=GSSAPI
>> err=49 could also be a result if the entry which is mapped from the principal is not found in the directory. A bit more info could be gained by enabling logging of internal searches.
>> Set nsslapd-acesslog-level: 260
>>
>> and then look what internal searches are done during the gssapi
>> authentication
>>> If that is true, it would be ldap/<master> Kerberos principal
>>> talking to ldap/<replica> Kerberos principal. If that fails, it
>>> means master and replica KDCs have different understanding of both
>>> ldap/<master> and ldap/<replica> keys which most likely means keys
>>> were rotated on master and weren't propagated to replica.
>>>
>>> How to solve it? One possibility is to set master's hostname as KDC
>>> address in krb5.conf on replica, forcing LDAP server on replica to
>>> use master's KDC. I'm absolutely not sure this will actually work
>>> but at least it allows to see if we are indeed dealing with
>>> inconsistent state of service principals' keys.
>>>
>>>> -----Original Message-----
>>>> From: Alexander Bokovoy [mailto:abokovoy at redhat.com]
>>>> Sent: Tuesday, November 10, 2015 8:18 AM
>>>> To: Gronde, Christopher (Contractor)
>>>> <Christopher.Gronde at fincen.gov>
>>>> Cc: Rob Crittenden <rcritten at redhat.com>; freeipa-users at redhat.com
>>>> Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos
>>>> authentication error)
>>>>
>>>> On Tue, 10 Nov 2015, Gronde, Christopher (Contractor) wrote:
>>>>> When I tried to start the service again I got no response from
>>>>> tail of the log, but this is a repeating entry I see in the access
>>>>> log
>>>>>
>>>>> [09/Nov/2015:15:01:04 -0500] conn=1 fd=64 slot=64 connection from
>>>>> 127.0.0.1 to 127.0.0.1
>>>>> [09/Nov/2015:15:01:04 -0500] conn=1 op=-1 fd=64 closed - B1
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 fd=64 slot=64 connection from
>>>>> <MASTER_IP> to <REPLICA_IP>
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=0 BIND dn="" method=sasl
>>>>> version=3 mech=GSSAPI
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=0 RESULT err=14 tag=97
>>>>> nentries=0 etime=0, SASL bind in progress
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=1 BIND dn="" method=sasl
>>>>> version=3 mech=GSSAPI
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=1 RESULT err=14 tag=97
>>>>> nentries=0 etime=0, SASL bind in progress
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=2 BIND dn="" method=sasl
>>>>> version=3 mech=GSSAPI
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=2 RESULT err=49 tag=97
>>>>> nentries=0 etime=0
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=3 UNBIND
>>>>> [09/Nov/2015:15:02:01 -0500] conn=2 op=3 fd=64 closed - U1
>>>>>
>>>>> Does anyone know what err=14 or err=49 are?
>>>> err=14 means SASL bind in progress -- i.e. multi-round processing
>>>> is ongoing. This is normal for SASL GSSAPI.
>>>>
>>>> err=49 is wrong password or username, i.e. credentials were incorrect.
>>>> It may also mean that LDAP server side was unable to process
>>>> Kerberos negotiation due to not having a current Kerberos ticket
>>>> for own service
>>>> (LDAP) and trying to request it from the Kerberos KDC but Kerberos
>>>> KDC is down.
>>>>
>>>>> -----Original Message-----
>>>>> From: Rob Crittenden [mailto:rcritten at redhat.com]
>>>>> Sent: Monday, November 09, 2015 3:26 PM
>>>>> To: Gronde, Christopher (Contractor)
>>>>> <Christopher.Gronde at fincen.gov>; Alexander Bokovoy
>>>>> <abokovoy at redhat.com>
>>>>> Cc: freeipa-users at redhat.com
>>>>> Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos
>>>>> authentication error)
>>>>>
>>>>> Gronde, Christopher (Contractor) wrote:
>>>>>> Nothing bad came back and there is definitely data in the tree.
>>>>> Ok, I guess I'd try to start the kdc again and then watch the
>>>>> 389-ds access log (buffered) to:
>>>>>
>>>>> 1. See if it is binding at all
>>>>> 2. See what the search is and what, if any, results were returned
>>>>>
>>>>> This would be in /var/log/dirsrv/slapd-YOUR_REALM/access
>>>>>
>>>>> rob
>>>>>
>>>>>> -----Original Message-----
>>>>>> From: Rob Crittenden [mailto:rcritten at redhat.com]
>>>>>> Sent: Monday, November 09, 2015 11:46 AM
>>>>>> To: Gronde, Christopher (Contractor)
>>>>>> <Christopher.Gronde at fincen.gov>; Alexander Bokovoy
>>>>>> <abokovoy at redhat.com>
>>>>>> Cc: freeipa-users at redhat.com
>>>>>> Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos
>>>>>> authentication error)
>>>>>>
>>>>>> Gronde, Christopher (Contractor) wrote:
>>>>>>> I restarted dirsrv and attempted to start krb5kdc and this is
>>>>>>> what the error log shows
>>>>>>>
>>>>>>> # tail /var/log/dirsrv/slapd-ITMODEV-GOV/errors
>>>>>>> [09/Nov/2015:11:01:02 -0500] - WARNING: userRoot: entry cache
>>>>>>> size 10485760B is less than db size 28016640B; We recommend to
>>>>>>> increase the entry cache size nsslapd-cachememsize.
>>>>>>> [09/Nov/2015:11:01:02 -0500] - slapd started. Listening on All
>>>>>>> Interfaces port 389 for LDAP requests
>>>>>>> [09/Nov/2015:11:06:04 -0500] - slapd shutting down - signaling
>>>>>>> operation threads
>>>>>>> [09/Nov/2015:11:06:04 -0500] - slapd shutting down - closing
>>>>>>> down internal subsystems and plugins
>>>>>>> [09/Nov/2015:11:06:04 -0500] - Waiting for 4 database threads to
>>>>>>> stop
>>>>>>> [09/Nov/2015:11:06:04 -0500] - All database threads now stopped
>>>>>>> [09/Nov/2015:11:06:04 -0500] - slapd stopped.
>>>>>>> [09/Nov/2015:11:14:20 -0500] - 389-Directory/1.2.11.15
>>>>>>> B2015.247.1737 starting up
>>>>>>> [09/Nov/2015:11:14:20 -0500] - WARNING: userRoot: entry cache
>>>>>>> size 10485760B is less than db size 28016640B; We recommend to
>>>>>>> increase the entry cache size nsslapd-cachememsize.
>>>>>>> [09/Nov/2015:11:14:20 -0500] - slapd started. Listening on All
>>>>>>> Interfaces port 389 for LDAP requests
>>>>>> Ok, that's good.
>>>>>>
>>>>>> I'd do something like this to see what is in the db (substitute
>>>>>> example.com with your domain):
>>>>>>
>>>>>> $ ldapsearch -x -D 'cn=Directory Manager' -W -s one -b
>>>>>> cn=kerberos,dc=example,dc=com
>>>>>>
>>>>>> (don't post the output as it would include the kerberos master key).
>>>>>>
>>>>>> If that returns nothing that's bad.
>>>>>>
>>>>>> If it succeeds I'd broaden the search base a bit to see what data
>>>>>> you do
>>>>>> have:
>>>>>>
>>>>>> $ ldapsearch -x -D 'cn=Directory Manager' -W -b
>>>>>> cn=groups,cn=accounts,dc=example,dc=com
>>>>>>
>>>>>> I picked groups because usually groups << users in numbers. This
>>>>>> is just to see if you have data in the tree.
>>>>>>
>>>>>> Let us know if either or both turns up nothing.
>>>>>>
>>>>>> rob
>>>>>>
>>>>>>> -----Original Message-----
>>>>>>> From: Alexander Bokovoy [mailto:abokovoy at redhat.com]
>>>>>>> Sent: Monday, November 09, 2015 10:51 AM
>>>>>>> To: Gronde, Christopher (Contractor)
>>>>>>> <Christopher.Gronde at fincen.gov>
>>>>>>> Cc: freeipa-users at redhat.com
>>>>>>> Subject: Re: [Freeipa-users] krb5kdc will not start (kerberos
>>>>>>> authentication error)
>>>>>>>
>>>>>>> On Mon, 09 Nov 2015, Gronde, Christopher (Contractor) wrote:
>>>>>>>> Hello all!
>>>>>>>>
>>>>>>>> On my replica IPA server after fixing a cert issue that had
>>>>>>>> been going on for sometime, I have all my certs figured out but
>>>>>>>> the krb5kdc service will not start.
>>>>>>>>
>>>>>>>> # service krb5kdc start
>>>>>>>> Starting Kerberos 5 KDC: krb5kdc: cannot initialize realm
>>>>>>>> ITMODEV.GOV - see log file for details [FAILED]
>>>>>>>>
>>>>>>>> # cat /var/log/krb5kdc.log
>>>>>>>> krb5kdc: Server error - while fetching master key K/M for realm
>>>>>>>> ITMODEV.GOV
>>>>>>>> krb5kdc: Server error - while fetching master key K/M for realm
>>>>>>>> ITMODEV.GOV
>>>>>>>> krb5kdc: Server error - while fetching master key K/M for realm
>>>>>>>> ITMODEV.GOV
>>>>>>>>
>>>>>>>> I found this article online:
>>>>>>>> http://research.imb.uq.edu.au/~l.rathbone/ldap/kerberos.shtml
>>>>>>>>
>>>>>>>> Which stated it might be because The slave KDC does not have a
>>>>>>>> stash file (.k5.EXAMPLE.COM). You need to create one. Tried the
>>>>>>>> command
>>>>>>>> listed:
>>>>>>>>
>>>>>>>> # kdb5_util stash
>>>>>>>> kdb5_util: Server error while retrieving master entry
>>>>>>>>
>>>>>>>> No further information found on the proceeding error above for
>>>>>>>> the kdb5_util command.
>>>>>>>>
>>>>>>>> Any thoughts?
>>>>>>> First: don't use instructions which are not related to IPA, please.
>>>>>>>
>>>>>>> FreeIPA has its own LDAP driver for KDC and instructions for
>>>>>>> anything else do not apply here at all.
>>>>>>>
>>>>>>> If you see 'Server error - while fetching master key ..' it
>>>>>>> means KDC LDAP driver was unable to contact LDAP server. Does
>>>>>>> LDAP server work on the replica? What is in its error log
>>>>>>> (/var/log/dirsrv/slapd-ITMODEV-GOV/errors)?
>>>>>>>
>>>>>>> --
>>>>>>> / Alexander Bokovoy
>>>>>>>
>>>>>>>
>>>> --
>>>> / Alexander Bokovoy
>>>>
>> --
>> Manage your subscription for the Freeipa-users mailing list:
>> https://www.redhat.com/mailman/listinfo/freeipa-users
>> Go to http://freeipa.org for more info on the project
>>
>
More information about the Freeipa-users
mailing list