Hi all, I would linke to reinstall a replica for my FreeIPA infra that has failed its ipa-server-upgrade after the updat'e of CentOS ipa-server-4.6.5-11.el7.centos.4.x86_64, a few days ago... But everytime I try I get the following error on that machine :
Configuring ipa-custodia [1/4]: Generating ipa-custodia config file [2/4]: Generating ipa-custodia keys [3/4]: starting ipa-custodia [4/4]: configuring ipa-custodia to start on boot Done configuring ipa-custodia. Configuring certificate server (pki-tomcatd). Estimated time: 3 minutes [1/29]: creating certificate server db [2/29]: setting up initial replication Starting replication, please wait until this has completed. Update in progress, 4 seconds elapsed Update succeeded [3/29]: creating ACIs for admin [4/29]: creating installation admin user [5/29]: configuring certificate server instance ipaserver.install.dogtaginstance: CRITICAL Failed to configure CA instance: Command '/usr/sbin/pkispawn -s CA -f /tmp/tmpjRZhjK' returned non-zero exit status 1 ipaserver.install.dogtaginstance: CRITICAL See the installation logs and the following files/directories for more information: ipaserver.install.dogtaginstance: CRITICAL /var/log/pki/pki-tomcat [error] RuntimeError: CA configuration failed. Your system may be partly configured. Run /usr/sbin/ipa-server-install --uninstall to clean up. ipapython.admintool: ERROR CA configuration failed. ipapython.admintool: ERROR The ipa-replica-install command failed. See /var/log/ipareplica-install.log for more information I cannot find any relevant info in the logs to tell me what could be done... Do you have an idea ? --- Bernard Lheureux Linux System Engineer IT Infra [Nethys] Rue Fivé 150, B-4100 Seraing GSM: +32-475-530311 http://www.nethys.be<http://www.nethys.be/> [cid:image014.png@01D5EC9E.85117780]<http://www.resa.be/> [nethys-energy]<http://www.nethys.be/fr> [Voo]<http://www.voo.be/fr/> [Betv]<http://www.betv.be/> [Win]<https://www.win.be/> Ce message transmis par voie électronique ainsi que toutes ses annexes contiennent des informations qui peuvent être confidentielles ou protégées. Ces informations sont uniquement destinées à l'usage des personnes ou des entités précisées dans les champs 'A', 'Cc' et 'Cci'. Si vous n'êtes pas l'un de ces destinataires, soyez conscient que toute forme, partielle ou complète, de divulgation, copie, distribution ou utilisation de ces informations est strictement interdite. Si vous avez reçu ce message par erreur, veuillez nous en informer par téléphone ou par message électronique et détruire les informations immédiatement. Ce message n'engage que son signataire et aucunement son employeur.
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org