<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">On 04/08/2015 06:54 AM, Ben .T.George
wrote:<br>
</div>
<blockquote
cite="mid:CA+C_GOUOgvyLKp_FBisVu8+r2ouN4ezO9d4yx8e=VKyEe0MYbg@mail.gmail.com"
type="cite">
<div dir="ltr">HI Traino,
<div><br>
</div>
<div>thanks for the info</div>
<div><br>
</div>
<div>i have checked the hots and confirmed that entry was
<ip> <FQDN> <Alias> format</div>
<div><br>
</div>
<div> </div>
<div>And the DNS everything is working </div>
<div><br>
</div>
<div>
<div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# for i in _ldap._tcp
_kerberos._tcp _kerberos._udp _kerberos-master._tcp
_kerberos-master._udp _ntp._udp; do echo ""; dig @mha.local
${i}.SUN.LOCAL srv +nocmd +noquestion +nocomments +nostats
+noaa +noadditional +noauthority; done | egrep -v "^;" |
egrep _</div>
<div><br>
</div>
<div>_ldap._tcp.SUN.LOCAL. 21965 IN SRV 0 100 389
kwtprsolipa01.sun.local.</div>
<div>_kerberos._tcp.SUN.LOCAL. 1957 IN SRV 0 100 88
kwtprsolipa01.sun.local.</div>
<div>_kerberos._udp.SUN.LOCAL. 86400 IN SRV 0 100 88
kwtprsolipa01.sun.local.</div>
<div>_kerberos-master._tcp.SUN.LOCAL. 86400 IN SRV 0 100 88
kwtprsolipa01.sun.local.</div>
<div>_kerberos-master._udp.SUN.LOCAL. 9112 IN SRV 0 100 88
kwtprsolipa01.sun.local.</div>
<div>_ntp._udp.SUN.LOCAL. 86400 IN SRV 0 100 123
kwtprsolipa01.sun.local.</div>
<div><br>
</div>
<div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# for i in _ldap._tcp
_kerberos._tcp _kerberos._udp _kerberos-master._tcp
_kerberos-master._udp _ntp._udp; do echo ""; dig @mha.local
${i}.MHA.LOCAL srv +nocmd +noquestion +nocomments +nostats
+noaa +noadditional +noauthority; done | egrep -v "^;" |
egrep _</div>
<div><br>
</div>
<div>_ldap._tcp.MHA.LOCAL. 600 IN SRV 0 100 389
dxbprdc002.mha.local.</div>
<div>_ldap._tcp.MHA.LOCAL. 600 IN SRV 0 100 389
kwtprdc001.mha.local.</div>
<div>_ldap._tcp.MHA.LOCAL. 600 IN SRV 0 100 389
dxbprdc001.mha.local.</div>
<div>_ldap._tcp.MHA.LOCAL. 600 IN SRV 0 100 389
rusmosprdc002.mha.local.</div>
<div>_ldap._tcp.MHA.LOCAL. 600 IN SRV 0 100 389
kwtprdc002.mha.local.</div>
<div>_kerberos._tcp.MHA.LOCAL. 600 IN SRV 0 100 88
kwtprdc001.mha.local.</div>
<div>_kerberos._tcp.MHA.LOCAL. 600 IN SRV 0 100 88
dxbprdc002.mha.local.</div>
<div>_kerberos._tcp.MHA.LOCAL. 600 IN SRV 0 100 88
dxbprdc001.mha.local.</div>
<div>_kerberos._tcp.MHA.LOCAL. 600 IN SRV 0 100 88
kwtprdc002.mha.local.</div>
<div>_kerberos._udp.MHA.LOCAL. 600 IN SRV 0 100 88
kwtprdc002.mha.local.</div>
<div>_kerberos._udp.MHA.LOCAL. 600 IN SRV 0 100 88
dxbprdc002.mha.local.</div>
<div>_kerberos._udp.MHA.LOCAL. 600 IN SRV 0 100 88
kwtprdc001.mha.local.</div>
<div>_kerberos._udp.MHA.LOCAL. 600 IN SRV 0 100 88
dxbprdc001.mha.local.</div>
<div><br>
</div>
<div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# host 172.16.99.99</div>
<div>99.99.16.172.in-addr.arpa domain name pointer
kwtprsolipa01.sun.local.</div>
<div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# host
kwtprsolipa01.sun.local</div>
<div>kwtprsolipa01.sun.local has address 172.16.99.99</div>
<div><br>
</div>
<div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# host mha.local</div>
<div>mha.local has address 172.16.98.171</div>
<div>mha.local has address 172.16.100.180</div>
<div>mha.local has address 10.10.10.11</div>
<div>mha.local has address 10.10.10.10</div>
<div><br>
</div>
<div><br>
</div>
<div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# dig
kwtprsolipa01.sun.local</div>
<div><br>
</div>
<div>; <<>> DiG 9.9.4-RedHat-9.9.4-18.el7
<<>> kwtprsolipa01.sun.local</div>
<div>;; global options: +cmd</div>
<div>;; Got answer:</div>
<div>;; ->>HEADER<<- opcode: QUERY, status:
NOERROR, id: 23767</div>
<div>;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0,
ADDITIONAL: 1</div>
<div><br>
</div>
<div>;; OPT PSEUDOSECTION:</div>
<div>; EDNS: version: 0, flags:; udp: 4000</div>
<div>;; QUESTION SECTION:</div>
<div>;kwtprsolipa01.sun.local. IN A</div>
<div><br>
</div>
<div>;; ANSWER SECTION:</div>
<div>kwtprsolipa01.sun.local. 38 IN A
172.16.99.99</div>
<div><br>
</div>
<div>;; Query time: 0 msec</div>
<div>;; SERVER: 172.16.100.180#53(172.16.100.180)</div>
<div>;; WHEN: Wed Apr 08 13:54:02 AST 2015</div>
<div>;; MSG SIZE rcvd: 68</div>
<div><br>
</div>
</div>
<div><br>
</div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On Wed, Apr 8, 2015 at 1:27 PM, Traiano
Welcome <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:traiano@gmail.com" target="_blank">traiano@gmail.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Ben<br>
<div>
<div class="h5"><br>
<br>
<br>
On Wed, Apr 8, 2015 at 12:39 PM, Ben .T.George <<a
moz-do-not-send="true"
href="mailto:bentech4you@gmail.com">bentech4you@gmail.com</a>>
wrote:<br>
> HI<br>
><br>
> i am getting krb5kdc: Server error on ligs:<br>
><br>
> krb5kdc: Server error - while fetching master key
K/M for realm SUN.LOCAL<br>
><br>
> and the ipactl status is taking long time. Web
interface is not able to<br>
> athenticate.<br>
><br>
> If i issue ipactl restart, noting is happening<br>
><br>
> to solve this issue currently i am restarting full
server..<br>
><br>
><br>
> How can i fix this?<br>
><br>
<br>
</div>
</div>
Check the tail-end of this thread:<br>
<br>
<a moz-do-not-send="true"
href="https://www.redhat.com/archives/freeipa-users/2015-April/msg00011.html"
target="_blank">https://www.redhat.com/archives/freeipa-users/2015-April/msg00011.html</a><br>
<br>
You may want to begin by checking /etc/hosts for the right
format (<ip<br>
address> <fqdn> <hostname>).<br>
DNS is probably the very next thing you want to check...
thoroughly.<br>
<br>
<br>
<br>
<br>
<br>
<br>
> Regards,<br>
> Ben<br>
<span class="HOEnZb"><font color="#888888">><br>
> --<br>
> Manage your subscription for the Freeipa-users
mailing list:<br>
> <a moz-do-not-send="true"
href="https://www.redhat.com/mailman/listinfo/freeipa-users"
target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a><br>
> Go to <a moz-do-not-send="true"
href="http://freeipa.org" target="_blank">http://freeipa.org</a>
for more info on the project<br>
</font></span></blockquote>
</div>
<br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
</blockquote>
<br>
<br>
Anything in the DS logs?<br>
The DS might not be starting because there is not enough space or
some file corruption.<br>
<br>
<pre class="moz-signature" cols="72">--
Thank you,
Dmitri Pal
Sr. Engineering Manager IdM portfolio
Red Hat, Inc.</pre>
</body>
</html>