Hi Rob,
On 7/23/19 4:01 PM, Rob Crittenden wrote:
It's a red herring. There is a chicken and egg problem here. The KDC
uses LDAP as its backend and 389-ds needs a ticket. 389-ds starts first,
can't get a ticket and then eventually recovers once the KDC is running.
rob
You mean pki-tomcatd d
Hi Rob,
On 7/23/19 5:16 PM, Rob Crittenden wrote:
I keep saying to ignore this. It doesn't work because the CA isn't
running because the certs aren't updated.
When certmonger pulls the cert out of the IPA tree it will update the
NSS database and whatever other configuration needs to be updated
Hi to the good people of FreeIPA!
I'm in the process of removing old servers from my datacentar, and I was
wondering if I can delete/remove (first created) freeipa server?
I have 4 masters:
[root@server] ipa-replica-manage list
freeipa03.lan: master
freeipa04.lan: master
freeipa01.lan: master <--
On 7/24/19 11:59 AM, Jo Domsic via FreeIPA-users wrote:
Hi to the good people of FreeIPA!
I'm in the process of removing old servers from my datacentar, and I was
wondering if I can delete/remove (first created) freeipa server?
I have 4 masters:
[root@server] ipa-replica-manage list
freeipa03.l
Hi Rob,
On 7/17/19 1:55 PM, Rob Crittenden via FreeIPA-users wrote:
Bug in dogtag, https://pagure.io/dogtagpki/issue/3039. Fixed in 10.6.3+
according to git tag.
I applied the patch I found in the dogtag ticket to
/usr/lib/python2.7/site-packages/pki/server/deployment/pkihelper.py
Hi all,
I'm trying to set up a replica on CentOS 7, the master is on CentOS 6.
Eventually, I want to retire the CentOS 6 host. I'm following this migration
guide:
https://www.freeipa.org/page/Howto/Migration#Migrating_existing_FreeIPA_deployment
However, running `ipa-replica-install --setup-ca
Hi,
On Wed, Jul 24, 2019 at 2:13 PM Till Hofmann via FreeIPA-users
wrote:
>
> Hi all,
>
> I'm trying to set up a replica on CentOS 7, the master is on CentOS 6.
> Eventually, I want to retire the CentOS 6 host. I'm following this migration
> guide:
> https://www.freeipa.org/page/Howto/Migratio
Harald Dunkel wrote:
> Hi Rob,
>
> On 7/23/19 4:01 PM, Rob Crittenden wrote:
>>
>> It's a red herring. There is a chicken and egg problem here. The KDC
>> uses LDAP as its backend and 389-ds needs a ticket. 389-ds starts first,
>> can't get a ticket and then eventually recovers once the KDC is run
On 7/24/19 2:12 PM, Till Hofmann via FreeIPA-users wrote:
Hi all,
I'm trying to set up a replica on CentOS 7, the master is on CentOS 6.
Eventually, I want to retire the CentOS 6 host. I'm following this migration
guide:
https://www.freeipa.org/page/Howto/Migration#Migrating_existing_FreeIPA_
Hi François,
Thanks for the reply!
On 7/24/19 2:32 PM, François Cami wrote:
>>
>> Interestingly, during the setup of the replica, the setup is stuck for quite
>> some time (~30 minutes) in the step " [1/28]: configuring certificate
>> server instance". In the ns-slapd log, I can see a lot of
Hi Florence,
Thanks for the pointers!
On 7/24/19 2:59 PM, Florence Blanc-Renaud wrote:
>
> Hi,
>
> a few things to check on the replica:
> - is the ldap server running and listening on port 636?
Yes, the server is running and listening to port 636. I can also query
the server, but only after
On 7/24/19 4:03 PM, Till Hofmann wrote:
> Hi François,
>
> Thanks for the reply!
>
> On 7/24/19 2:32 PM, François Cami wrote:
>
>>>
>>> Interestingly, during the setup of the replica, the setup is stuck for
>>> quite some time (~30 minutes) in the step " [1/28]: configuring
>>> certificate
On Wed, Jul 24, 2019 at 5:48 PM Till Hofmann wrote:
>
>
>
> On 7/24/19 4:03 PM, Till Hofmann wrote:
> > Hi François,
> >
> > Thanks for the reply!
> >
> > On 7/24/19 2:32 PM, François Cami wrote:
> >
> >>>
> >>> Interestingly, during the setup of the replica, the setup is stuck for
> >>> quite so
On Wed, Jul 24, 2019 at 5:52 PM François Cami wrote:
>
> On Wed, Jul 24, 2019 at 5:48 PM Till Hofmann
> wrote:
> >
> >
> >
> > On 7/24/19 4:03 PM, Till Hofmann wrote:
> > > Hi François,
> > >
> > > Thanks for the reply!
> > >
> > > On 7/24/19 2:32 PM, François Cami wrote:
> > >
> > >>>
> > >>> I
On 7/24/19 6:03 PM, François Cami wrote:
> On Wed, Jul 24, 2019 at 5:52 PM François Cami wrote:
>>
>> On Wed, Jul 24, 2019 at 5:48 PM Till Hofmann
>> wrote:
>>>
>>>
>>>
>>> On 7/24/19 4:03 PM, Till Hofmann wrote:
Hi François,
Thanks for the reply!
On 7/24/19 2:32 PM, F
15 matches
Mail list logo
