<html dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style id="owaParaStyle" type="text/css">P {margin-top:0;margin-bottom:0;}</style>
</head>
<body ocsi="0" fpstyle="1" bgcolor="#FFFFFF">
<div style="direction: ltr;font-family: Tahoma;color: #000000;font-size: 10pt;">In the gui it does exist....I included an attachment of that as a screenshot<br>
<br>
but I cant delete it from the gui because it doesnt exist.<br>
<br>
:/<br>
<div><br>
<div style="font-family: Tahoma; font-size: 13px;">
<p>regards</p>
<p>Steven Jones</p>
<p>Technical Specialist - Linux RHCE</p>
<p>Victoria University, Wellington, NZ</p>
<p>0064 4 463 6272<br>
</p>
</div>
</div>
<div style="font-family: Times New Roman; color: rgb(0, 0, 0); font-size: 16px;">
<hr tabindex="-1">
<div style="direction: ltr;" id="divRpF126912"><font color="#000000" face="Tahoma" size="2"><b>From:</b> Rich Megginson [rmeggins@redhat.com]<br>
<b>Sent:</b> Friday, 12 October 2012 1:30 p.m.<br>
<b>To:</b> Steven Jones<br>
<b>Cc:</b> freeipa-users@redhat.com<br>
<b>Subject:</b> Re: [Freeipa-users] Cleaning a host that is both present & not found<br>
</font><br>
</div>
<div></div>
<div>On 10/11/2012 04:16 PM, Steven Jones wrote:
<blockquote type="cite">
<pre>Even after running,

==========
[root@vuwunicoipam002 ~]# kinit ipajonesst1
Password for <a class="moz-txt-link-abbreviated" href="mailto:ipajonesst1@ODS.VUW.AC.NZ:" target="_blank">ipajonesst1@ODS.VUW.AC.NZ:</a> 
[root@vuwunicoipam002 ~]# ldapdelete -Y GSSAPI "idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac ,dc=nz"
SASL/GSSAPI authentication started
SASL username: <a class="moz-txt-link-abbreviated" href="mailto:ipajonesst1@ODS.VUW.AC.NZ" target="_blank">ipajonesst1@ODS.VUW.AC.NZ</a>
SASL SSF: 56
SASL data security layer installed.
ldap_delete: No such object (32)
        matched DN: idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac,dc=nz
[root@vuwunicoipam002 ~]# ldapdelete -Y GSSAPI "idnsName=vuwunicosldedt1,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac ,dc=nz"
SASL/GSSAPI authentication started
SASL username: <a class="moz-txt-link-abbreviated" href="mailto:ipajonesst1@ODS.VUW.AC.NZ" target="_blank">ipajonesst1@ODS.VUW.AC.NZ</a>
SASL SSF: 56
SASL data security layer installed.
ldap_delete: No such object (32)
        matched DN: idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac,dc=nz
[root@vuwunicoipam002 ~]# 
==========</pre>
</blockquote>
Ok, then I'm not sure why the RH support guy told you to delete an entry that doesn't exist.<br>
<blockquote type="cite">
<pre>regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users-bounces@redhat.com" target="_blank">freeipa-users-bounces@redhat.com</a> [<a class="moz-txt-link-abbreviated" href="mailto:freeipa-users-bounces@redhat.com" target="_blank">freeipa-users-bounces@redhat.com</a>] on behalf of Steven Jones [<a class="moz-txt-link-abbreviated" href="mailto:Steven.Jones@vuw.ac.nz" target="_blank">Steven.Jones@vuw.ac.nz</a>]
Sent: Friday, 12 October 2012 11:10 a.m.
To: Rich Megginson
Cc: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com" target="_blank">freeipa-users@redhat.com</a>
Subject: Re: [Freeipa-users] Cleaning a host that is both present & not found

The web ui is still failing....

:(

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: Rich Megginson [<a class="moz-txt-link-abbreviated" href="mailto:rmeggins@redhat.com" target="_blank">rmeggins@redhat.com</a>]
Sent: Friday, 12 October 2012 10:13 a.m.
To: Steven Jones
Cc: Matthew Barr; <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com" target="_blank">freeipa-users@redhat.com</a>
Subject: Re: [Freeipa-users] Cleaning a host that is both present & not found

On 10/11/2012 03:07 PM, Steven Jones wrote:
</pre>
<blockquote type="cite">
<pre>Hi,

yes I have xplorer, maybe I'll do it that way as I cant figure out the ldapdelete command...
</pre>
</blockquote>
<pre>man ldapdelete

ldapdelete -x -D "cn=directory manager" -W
"idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac
,dc=nz"

or, to use your kerberos credentials

ldapdelete -Y GSSAPI
"idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac
,dc=nz"

</pre>
<blockquote type="cite">
<pre>regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: Matthew Barr [<a class="moz-txt-link-abbreviated" href="mailto:mbarr@snap-interactive.com" target="_blank">mbarr@snap-interactive.com</a>]
Sent: Friday, 12 October 2012 9:25 a.m.
To: Steven Jones
Cc: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com" target="_blank">freeipa-users@redhat.com</a>
Subject: Re: [Freeipa-users] Cleaning a host that is both present&  not found

On Oct 11, 2012, at 3:50 PM, Steven Jones<a class="moz-txt-link-rfc2396E" href="mailto:Steven.Jones@vuw.ac.nz" target="_blank"><Steven.Jones@vuw.ac.nz></a>  wrote:

</pre>
<blockquote type="cite">
<pre>HI,

Looks like I have this at present as well.

The advice off RH support is to run an ldapdelete but Im waiting on the complete syntax off them and why its happened.

Meantime I have 2 machines in this state, no one can login.

:/

So what they have said is,

==========
Hello Steven, I am still going through all the data available in this case, but it looks like you should be able to fix this problem by deleting the following two entries using ldapdelete: dn: nsuniqueid=fdda5001-0cf511e2-8bfdc792-b25c661e,cn=computers,cn=accounts,dc =ods,dc=vuw,dc=ac,dc=nz dn: idnsName=vuwunicosldedt2,idnsname=ods.vuw.ac.nz,cn=dns,dc=ods,dc=vuw,dc=ac ,dc=nz
=========
</pre>
</blockquote>
<pre>ldapdelete would have worked, but I ended up using jxplorer to do it.  Much easier for me at the time :)

(i'm on a VPN link into the DC, and had access to the ldap port directly, so I could do that.     Their advise does look correct, though, and matches where I found the problem.)

Matthew




_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a>
</pre>
</blockquote>
<pre>
_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a>

</pre>
<br>
<fieldset class="mimeAttachmentHeader" target="_blank"></fieldset> <br>
<pre>_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
</blockquote>
<br>
</div>
</div>
</div>
</body>
</html>