<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body text="#000000" bgcolor="#FFFFFF">
    <div class="moz-cite-prefix">On 04/08/2015 06:54 AM, Ben .T.George
      wrote:<br>
    </div>
    <blockquote
cite="mid:CA+C_GOUOgvyLKp_FBisVu8+r2ouN4ezO9d4yx8e=VKyEe0MYbg@mail.gmail.com"
      type="cite">
      <div dir="ltr">HI Traino,
        <div><br>
        </div>
        <div>thanks for the info</div>
        <div><br>
        </div>
        <div>i have checked the hots and confirmed that entry was
          <ip> <FQDN> <Alias> format</div>
        <div><br>
        </div>
        <div> </div>
        <div>And the DNS everything is working </div>
        <div><br>
        </div>
        <div>
          <div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# for i in _ldap._tcp
            _kerberos._tcp _kerberos._udp _kerberos-master._tcp
            _kerberos-master._udp _ntp._udp; do echo ""; dig @mha.local
            ${i}.SUN.LOCAL srv +nocmd +noquestion +nocomments +nostats
            +noaa +noadditional +noauthority; done | egrep -v "^;" |
            egrep _</div>
          <div><br>
          </div>
          <div>_ldap._tcp.SUN.LOCAL.   21965   IN      SRV     0 100 389
            kwtprsolipa01.sun.local.</div>
          <div>_kerberos._tcp.SUN.LOCAL. 1957  IN      SRV     0 100 88
            kwtprsolipa01.sun.local.</div>
          <div>_kerberos._udp.SUN.LOCAL. 86400 IN      SRV     0 100 88
            kwtprsolipa01.sun.local.</div>
          <div>_kerberos-master._tcp.SUN.LOCAL. 86400 IN SRV   0 100 88
            kwtprsolipa01.sun.local.</div>
          <div>_kerberos-master._udp.SUN.LOCAL. 9112 IN SRV    0 100 88
            kwtprsolipa01.sun.local.</div>
          <div>_ntp._udp.SUN.LOCAL.    86400   IN      SRV     0 100 123
            kwtprsolipa01.sun.local.</div>
          <div><br>
          </div>
          <div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# for i in _ldap._tcp
            _kerberos._tcp _kerberos._udp _kerberos-master._tcp
            _kerberos-master._udp _ntp._udp; do echo ""; dig @mha.local
            ${i}.MHA.LOCAL srv +nocmd +noquestion +nocomments +nostats
            +noaa +noadditional +noauthority; done | egrep -v "^;" |
            egrep _</div>
          <div><br>
          </div>
          <div>_ldap._tcp.MHA.LOCAL.   600     IN      SRV     0 100 389
            dxbprdc002.mha.local.</div>
          <div>_ldap._tcp.MHA.LOCAL.   600     IN      SRV     0 100 389
            kwtprdc001.mha.local.</div>
          <div>_ldap._tcp.MHA.LOCAL.   600     IN      SRV     0 100 389
            dxbprdc001.mha.local.</div>
          <div>_ldap._tcp.MHA.LOCAL.   600     IN      SRV     0 100 389
            rusmosprdc002.mha.local.</div>
          <div>_ldap._tcp.MHA.LOCAL.   600     IN      SRV     0 100 389
            kwtprdc002.mha.local.</div>
          <div>_kerberos._tcp.MHA.LOCAL. 600   IN      SRV     0 100 88
            kwtprdc001.mha.local.</div>
          <div>_kerberos._tcp.MHA.LOCAL. 600   IN      SRV     0 100 88
            dxbprdc002.mha.local.</div>
          <div>_kerberos._tcp.MHA.LOCAL. 600   IN      SRV     0 100 88
            dxbprdc001.mha.local.</div>
          <div>_kerberos._tcp.MHA.LOCAL. 600   IN      SRV     0 100 88
            kwtprdc002.mha.local.</div>
          <div>_kerberos._udp.MHA.LOCAL. 600   IN      SRV     0 100 88
            kwtprdc002.mha.local.</div>
          <div>_kerberos._udp.MHA.LOCAL. 600   IN      SRV     0 100 88
            dxbprdc002.mha.local.</div>
          <div>_kerberos._udp.MHA.LOCAL. 600   IN      SRV     0 100 88
            kwtprdc001.mha.local.</div>
          <div>_kerberos._udp.MHA.LOCAL. 600   IN      SRV     0 100 88
            dxbprdc001.mha.local.</div>
          <div><br>
          </div>
          <div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# host 172.16.99.99</div>
          <div>99.99.16.172.in-addr.arpa domain name pointer
            kwtprsolipa01.sun.local.</div>
          <div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# host
            kwtprsolipa01.sun.local</div>
          <div>kwtprsolipa01.sun.local has address 172.16.99.99</div>
          <div><br>
          </div>
          <div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# host mha.local</div>
          <div>mha.local has address 172.16.98.171</div>
          <div>mha.local has address 172.16.100.180</div>
          <div>mha.local has address 10.10.10.11</div>
          <div>mha.local has address 10.10.10.10</div>
          <div><br>
          </div>
          <div><br>
          </div>
          <div>[root@kwtprsolipa01 slapd-SUN-LOCAL]# dig
            kwtprsolipa01.sun.local</div>
          <div><br>
          </div>
          <div>; <<>> DiG 9.9.4-RedHat-9.9.4-18.el7
            <<>> kwtprsolipa01.sun.local</div>
          <div>;; global options: +cmd</div>
          <div>;; Got answer:</div>
          <div>;; ->>HEADER<<- opcode: QUERY, status:
            NOERROR, id: 23767</div>
          <div>;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0,
            ADDITIONAL: 1</div>
          <div><br>
          </div>
          <div>;; OPT PSEUDOSECTION:</div>
          <div>; EDNS: version: 0, flags:; udp: 4000</div>
          <div>;; QUESTION SECTION:</div>
          <div>;kwtprsolipa01.sun.local.       IN      A</div>
          <div><br>
          </div>
          <div>;; ANSWER SECTION:</div>
          <div>kwtprsolipa01.sun.local. 38     IN      A      
            172.16.99.99</div>
          <div><br>
          </div>
          <div>;; Query time: 0 msec</div>
          <div>;; SERVER: 172.16.100.180#53(172.16.100.180)</div>
          <div>;; WHEN: Wed Apr 08 13:54:02 AST 2015</div>
          <div>;; MSG SIZE  rcvd: 68</div>
          <div><br>
          </div>
        </div>
        <div><br>
        </div>
      </div>
      <div class="gmail_extra"><br>
        <div class="gmail_quote">On Wed, Apr 8, 2015 at 1:27 PM, Traiano
          Welcome <span dir="ltr"><<a moz-do-not-send="true"
              href="mailto:traiano@gmail.com" target="_blank">traiano@gmail.com</a>></span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Ben<br>
            <div>
              <div class="h5"><br>
                <br>
                <br>
                On Wed, Apr 8, 2015 at 12:39 PM, Ben .T.George <<a
                  moz-do-not-send="true"
                  href="mailto:bentech4you@gmail.com">bentech4you@gmail.com</a>>
                wrote:<br>
                > HI<br>
                ><br>
                > i am getting krb5kdc: Server error on ligs:<br>
                ><br>
                > krb5kdc: Server error - while fetching master key
                K/M for realm SUN.LOCAL<br>
                ><br>
                > and the ipactl status is taking long time. Web
                interface is not able to<br>
                > athenticate.<br>
                ><br>
                > If i issue ipactl restart, noting is happening<br>
                ><br>
                > to solve this issue currently i am restarting full
                server..<br>
                ><br>
                ><br>
                > How can i fix this?<br>
                ><br>
                <br>
              </div>
            </div>
            Check the tail-end of  this thread:<br>
            <br>
            <a moz-do-not-send="true"
href="https://www.redhat.com/archives/freeipa-users/2015-April/msg00011.html"
              target="_blank">https://www.redhat.com/archives/freeipa-users/2015-April/msg00011.html</a><br>
            <br>
            You may want to begin by checking /etc/hosts for the right
            format (<ip<br>
            address> <fqdn> <hostname>).<br>
            DNS is probably the very next thing you want to check...
            thoroughly.<br>
            <br>
            <br>
            <br>
            <br>
            <br>
            <br>
            > Regards,<br>
            > Ben<br>
            <span class="HOEnZb"><font color="#888888">><br>
                > --<br>
                > Manage your subscription for the Freeipa-users
                mailing list:<br>
                > <a moz-do-not-send="true"
                  href="https://www.redhat.com/mailman/listinfo/freeipa-users"
                  target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a><br>
                > Go to <a moz-do-not-send="true"
                  href="http://freeipa.org" target="_blank">http://freeipa.org</a>
                for more info on the project<br>
              </font></span></blockquote>
        </div>
        <br>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
    </blockquote>
    <br>
    <br>
    Anything in the DS logs?<br>
    The DS might not be starting because there is not enough space or
    some file corruption.<br>
    <br>
    <pre class="moz-signature" cols="72">-- 
Thank you,
Dmitri Pal

Sr. Engineering Manager IdM portfolio
Red Hat, Inc.</pre>
  </body>
</html>