Vinícius Ferrão via FreeIPA-users wrote: > Hello, this is probably to the developers. > > I’m deploying FreeIPA clients in automated fashion and hit an issue on some > ancillary softwares, like ipa-client-automount. > > After a successful manual join of a FreeIPA client, this command specifically > fails, saying that the machine isn’t joined to FreeIPA: "IPA client is not > configured on this system”. > > But if we try to run ipa-client-install, even if I didn’t used it at first > time, it says it’s already joined: "IPA client is already configured on this > system”. > > So it’s probably some issue on the checking routines of those softwares. > > Digging further I was able to nail it down to a specific directory that > ipa-client-automount checks during execution: /var/lib/ipa/sysrestore/ > > This directory is empty when the machine is joined manually. But the > verification method used by ipa-client-automount is to look at this directory > and get the contents, or the size, of it. I ran the command with strace and > there’s a getdents() function called just before the error, so it returns -1 > if the directory does not exists and throw up the error. > > I’ve created the directory. Now getdents() return 0, but it still fails. > > Touched a random file inside the directory, so getdents() can return > something higher than 0. And it worked. Isa-client-automount worked as > expected. > > So, I’m not a Python guy, I tried to read the code for ipa-client-automount > and it was beyond my knowledge. > > The thing is: > > * Is it a bug? > * The check is flawed? > * There’s a way to fix this, or any workaround that I’m missing? > * Should I make ipa-client-automount manually too? > * Should I open some bug fix request?
ipa-client-automount has assumptions on a properly configured client which is provided by ipa-client-install hence the enforcement. The workaround is what you found, add a file to /var/lib/ipa/sysrestore/. Supporting manual installations is not something we'd likely do. I suppose the question is: why are you manually configuring the system instead of using ipa-client-install? rob _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
