Re: [Freeipa-users] ipa-client-install error

Fri, 04 Nov 2011 12:15:24 -0700

CentOS is far behind RHEL. Many of the issues you will find have been fixed in released versions of IPA. This one is due, I think to an earlier issue with directory server that has since been upgraded.
You might want to see if the versions shipped with Scientifix Linux work better for you, but it is going to be quite a few packages. Aside from freeipa* it will be xmlrpc, 38-ds-base and DNS dyndb and possibly others. 






On 11/04/2011 03:04 PM, Jimmy wrote:

I'm running the ipa-client-install on a CentOS 6 client and get this 
error:


[root@kudzu ~]# ipa-client-install
Discovery was successful!
Realm: PDH.CSP
DNS Domain: pdh.csp
IPA Server: csp-idm.pdh.csp
BaseDN: dc=pdh,dc=csp

Continue to configure the system with these values? [no]: yes
Principal: admin
Password for ad...@pdh.csp:
Joining realm failed: Operation failed! unsupported extended operation
child exited with 9
Certificate subject base is: O=PDH.CSP

The only logs I see on the server are here:


Nov 04 18:52:55 csp-idm.pdh.csp krb5kdc[5354](info): AS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: 
NEEDED_PREAUTH: ad...@pdh.csp for krbtgt/pdh....@pdh.csp, Additional 
pre-authentication required
Nov 04 18:53:20 csp-idm.pdh.csp krb5kdc[5354](info): AS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, ad...@pdh.csp for 
krbtgt/pdh....@pdh.csp
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, ad...@pdh.csp for 
HTTP/csp-idm.pdh....@pdh.csp
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (1 etypes 
{18}) 192.168.201.199 <http://192.168.201.199>: ISSUE: authtime 
1320432800, etypes {rep=18 tkt=18 ses=18}, ad...@pdh.csp for 
krbtgt/pdh....@pdh.csp
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.102 <http://192.168.201.102>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, ad...@pdh.csp for 
ldap/csp-idm.pdh....@pdh.csp
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, ad...@pdh.csp for 
ldap/csp-idm.pdh....@pdh.csp




_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users



_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users





















					Reply via email to