[Freeipa-users] Master Error with two Master CentOS 7.2
Ludwig Krispenz
lkrispen at redhat.com
Tue Jan 26 16:13:03 UTC 2016
Hi,
you got a replicaid (97) leftover form the previous install for the
o=ipaca backend. The other backend is ok, ipa-replica-manage del did the
cleanup, but ipa-csreplica-manage doesn't. So you have to clean it
manually by an ldap command.
Execute the following mod on one of the servers:
ldapmodify -D "cn=directory manager" -W -a
dn: cn=clean 97, cn=cleanallruv, cn=tasks, cn=config
objectclass: extensibleObject
replica-base-dn: o=ipaca
replica-id: 97
cn: clean 97
Ludwig
On 01/26/2016 04:52 PM, Günther J. Niederwimmer wrote:
> Hello Ludwig,
>
> Am Dienstag, 26. Januar 2016, 14:48:31 CET schrieb Ludwig Krispenz:
>> On 01/26/2016 12:30 PM, Günther J. Niederwimmer wrote:
>>> Am Dienstag, 26. Januar 2016, 11:03:27 CET schrieb Ludwig Krispenz:
>>>> On 01/26/2016 09:45 AM, Günther J. Niederwimmer wrote:
>>>>> I set up a CentOS 7.2 System with two master Server now I found this
>>>>> 1000
>>>>> x
>>>>> Error on my first master?
>>>>>
>>>>> attrlist_replace - attr_replace (nsslapd-referral,
>>>>> ldap://ipa1.xxxxxxx.at:389/ o%3Dipaca) failed.
>>>> did you install and reinstall the replica on the same machine ? The
>>>> message is usually related to removed replicaid, which was not properly
>>>> cleaned.
>>> Yes, I must delete and reinstall the Replica but I have all cleanup I
>>> found in the DOC
>>>
>>> ipa-replica-manage del ipa1.xxxxxxxx.at
>>> ipa-csreplica-manage del ipa1.xxxxxxxx..at
>>>
>>> and create a new
>>>
>>> ipa-replica-prepare ipa1.xxxxxxx.at
>>>
>>> the system for ipa1 is a new installed KVM guest., with the same name
>>> ipa1.xxxxxxxx.at
>>>
>>>> can you do some searches ?. On both masters check which is the replicaID
>>>> in use and which are the known ruvs:
>>>> ldapsearch -b "cn=config" .... "objectclass=nsds5replica" replicaid
>>>> nsds50ruv
>>> Please can you give me the full command I am not a professional for LDAP
>> ldapsearch -LLL -o ldif-wrap=no -x -h <host> -p 389 -D "cn=directory
>> manager" -W -b "cn=config" "objectclass=nsds5replica" nsds5replicaid
>> nsds50ruv
>
>> for host insert your masters
> Thanks for the help.
>
> The original master
>
> dn: cn=replica,cn=dc\3Desslmaier\2Cdc\3Dat,cn=mapping tree,cn=config
> nsds5replicaid: 4
> nsds50ruv: {replicageneration} 562f579c000000040000
> nsds50ruv: {replica 4 ldap://ipa.esslmaier.at:389} 562f57b7000000040000
> 56a79264000000040000
> nsds50ruv: {replica 5 ldap://ipa1.esslmaier.at:389} 568a1fa2000000050000
> 56a5cf73000200050000
>
> dn: cn=replica,cn=o\3Dipaca,cn=mapping tree,cn=config
> nsds5replicaid: 96
> nsds50ruv: {replicageneration} 562f57e3000000600000
> nsds50ruv: {replica 96 ldap://ipa.esslmaier.at:389} 562f5804000000600000
> 56a79021000000600000
> nsds50ruv: {replica 91 ldap://ipa1.esslmaier.at:389} 568a1ff70000005b0000
> 568a20250006005b0000
> nsds50ruv: {replica 97 ldap://ipa1.esslmaier.at:389} 562f5811000000610000
> 5630a9c4000000610000
>
> The first replica master.
>
> nsds5replicaid: 5
> nsds50ruv: {replicageneration} 562f579c000000040000
> nsds50ruv: {replica 5 ldap://ipa1.esslmaier.at:389} 568a1fa2000000050000
> 56a793fc000000050000
> nsds50ruv: {replica 4 ldap://ipa.esslmaier.at:389} 562f57b7000000040000
> 56a79264000000040000
>
> dn: cn=replica,cn=o\3Dipaca,cn=mapping tree,cn=config
> nsds5replicaid: 91
> nsds50ruv: {replicageneration} 562f57e3000000600000
> nsds50ruv: {replica 91 ldap://ipa1.esslmaier.at:389} 568a1ff70000005b0000
> 568a20250006005b0000
> nsds50ruv: {replica 96 ldap://ipa.esslmaier.at:389} 562f5804000000600000
> 56a793a5000000600000
> nsds50ruv: {replica 97 ldap://ipa1.esslmaier.at:389} 562f5811000000610000
> 5630a9c4000000610000
>
>
>>>>> Is this a bad Error ?
>>>>>
>>>>> Can I do anything
>>>>>
>>>>> Thanks for a answer,
>
More information about the Freeipa-users
mailing list