Well the Web UI is one part of the IPA server. To debug IPA you might want to
look at the SSSD.conf debug_level
(https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/deployment_guide/sssd-troubleshooting).
Can you elaborate what you see when trying to log in? If you se
So, I created a Red Hat ticket to assist and the support is pretty
non-productive.
I have a RHEL 7 "Workstation" setup as an IPA client that most of the time
works. However, there are occasions when the screen locks out due to inactivity
that I can't log back in. Most of the time it occurs when
The service is up and running. I am able to access it via cli. Apache is also
running. There is not yet firewall installed on the server. This is what I can
now see in the apache access and error logs:
==> apache2/error.log <==
[Thu Jun 20 17:35:14.632329 2019] [wsgi:error] [pid 13793:tid 13986
Start at the beginning:
- Is the install running? (ipactl status)
- Is apache listening (ss -l or netstar -l or systemctl status
apache2/httpd/apache/whatverthenameis)
- Is the firewall letting you in?
- What does /var/log/apache2 or /var/log/httpd or whatever it’s configured to
log to say?
Joh
Hello,
I have just installed the new freeipa on ubuntu18.04 and I am trying to login
as admin in the web ui but I am not able to do it so. I was looking for any
kind of logs but I don’t seam to find a way to debug the problem
Any suggestion where to start looking?
Regards
Peter
That worked. Thanks alot.
> On 21 Jun 2019, at 00:05, Rob Crittenden wrote:
>
> Peter Zoltan Keresztes (zozo) via FreeIPA-users wrote:
>> Hello
>>
>> I have just installed ipa-server on ubuntu 18.04 and I have observed
>> that the kadmin service is not running. While investigating the issue
>>
Peter Zoltan Keresztes (zozo) via FreeIPA-users wrote:
> Hello
>
> I have just installed ipa-server on ubuntu 18.04 and I have observed
> that the kadmin service is not running. While investigating the issue
> I’ve seen that is complaining about the not existance of the
> /etc/krb5kdc/kadm5.acl.
>
Hello
I have just installed ipa-server on ubuntu 18.04 and I have observed that the
kadmin service is not running. While investigating the issue I’ve seen that is
complaining about the not existance of the /etc/krb5kdc/kadm5.acl.
ipactl status
Directory Service: RUNNING
krb5kdc Service: RUNNING
Hello
I need your recommandation about the upgrade/restore from FreeIPA server
actually in V 4.5.0 APIV 2.228 to V4.6.4 API 2.230 or last.
Is better to Backup / Restore from the old to New IPA server, or to start
ipa-server-upgrade from the old server ?
As you know my old IPA version use the bgp
Hello
I have just installed ipa-server on ubuntu 18.04 and I have observed that the
kadmin service is not running. While investigating the issue I’ve seen that is
complaining about the not existance of the /etc/krb5kdc/kadm5.acl.
ipactl status
Directory Service: RUNNING
krb5kdc Service: RUNNING
On 20/06/2019 14:40, Sumit Bose wrote:
>> Ok, the maybe to make it more bizzare, I've had it:
>>
>> includedir /etc/krb5.conf.d/
>> includedir /var/lib/sss/pubconf/krb5.include.d/
>>
>> [libdefaults]
>> default_realm = MINE.PRIVATE
>> dns_lookup_realm = true
>> dns_lookup_kdc = true
>> rd
This is affecting 3 out of 4 our IPA servers. Would you recommend any other
solution for this issue?
We have only one CRL Master IPA server does not have this issue.
Would breaking the replication and recreating replica from one good CRL Master
IPA server could work?
-Original Message-
On Wed, Jun 19, 2019 at 04:58:32PM +0100, lejeczek via FreeIPA-users wrote:
> On 19/06/2019 16:20, Sumit Bose via FreeIPA-users wrote:
> > On Wed, Jun 19, 2019 at 12:34:54PM +0100, lejeczek via FreeIPA-users wrote:
> >> On 19/06/2019 10:09, Sumit Bose via FreeIPA-users wrote:
> >>> On Wed, Jun 19,
On to, 20 kesä 2019, lejeczek via FreeIPA-users wrote:
hi guys,
I'm starting to look more thoroughly into CA and something I'm not sure
is possible, and hoping you could shed more light onto, is - having IPA
deployed with own CA is it possible to then, at a later point,
move/migrate/change IPA t
hi guys,
I'm starting to look more thoroughly into CA and something I'm not sure
is possible, and hoping you could shed more light onto, is - having IPA
deployed with own CA is it possible to then, at a later point,
move/migrate/change IPA to subordinate type of CA with AD's CA as root?
Is such a
hi guys
A Putty ssh off a AD's Win10 client to IPA's client (non-master) works
with gssapi but without it and when need to use password I see:
pam_sss(sshd:auth): received for user myuser@mine.private: 6 (Permission
denied)
To make it more bizarre, that same Win10 client does ssh with
password(a
16 matches
Mail list logo
