[Freeipa-users] IPA wont start, all services fail
Simpson Lachlan
Lachlan.Simpson at petermac.org
Thu Jan 21 03:03:04 UTC 2016
> -----Original Message-----
> From: Alexander Bokovoy [mailto:abokovoy at redhat.com]
> Sent: Thursday, 21 January 2016 9:22 AM
> >ses=4294967295 subj=kernel pid=18340 comm="httpd" reason="memory
> >violation" sig=11 type=ANOM_ABEND msg=audit(1453325558.988:1245):
> >auid=4294967295 uid=991 gid=987 ses=4294967295 subj=kernel pid=18357
> >comm="httpd" reason="memory violation" sig=11
> Ok, I see two problems above and they may be related to recently fixed issue with
> python-cryptography's use of python-cffi. However, this issue should not affect
> CentOS 7.2 as the broken python-cryptography code is not in RHEL 7.2 at all, so
> I'm a bit puzzled.
I’m sure it's now apparent that I'm a relative FreeIPA/sssd new comer, and tbh, my
involvement with AD has been "enough to not hurt myself or others or production",
samba I last played with seriously for AD related issues way back when 2.x was
around - since then it's been file sharing only.
I would like to test a few things, but I'm finding it hard to find good examples.
How can I test that the one way trust relationship between the FreeIPA server
and the AD DC is still in effect? (FreeIPA trusts AD, AD does not trust FreeIIPA).
I presume there is an ldapsearch or sssd command that should connect directly to
the AD server?
Cheers
L.
This email (including any attachments or links) may contain
confidential and/or legally privileged information and is
intended only to be read or used by the addressee. If you
are not the intended addressee, any use, distribution,
disclosure or copying of this email is strictly
prohibited.
Confidentiality and legal privilege attached to this email
(including any attachments) are not waived or lost by
reason of its mistaken delivery to you.
If you have received this email in error, please delete it
and notify us immediately by telephone or email. Peter
MacCallum Cancer Centre provides no guarantee that this
transmission is free of virus or that it has not been
intercepted or altered and will not be liable for any delay
in its receipt.
More information about the Freeipa-users
mailing list