Can you check the ipaupgrade.log.
I found out when I upgraded ipa-server on Centos 8 last-week that
ipaupgrade script has has wrong path information for the file
"/usr/share/pki/acme/database/ldap/database.conf".
The upgrade script has path as
"/usr/share/pki/acme/database/ds/database.conf" while w
on F32 and tested with recent Dogtag PKI / JSS
> >> packages and can't reproduce.
> >>
> >> Could you rerun PKCS12Export under gdb (modify /usr/bin/PKCS12Export
> >> and change the last execution (${JAVA} ${JAVA_OPTIONS} ...) to start
> >> with
e out of this that
> doesn't require us being able to fully reproduce your environment.
>
>
> -- Alex
>
> On Tue, Oct 6, 2020 at 2:15 PM Uzor Ide via FreeIPA-users
> wrote:
> >
> > Hi All,
> >
> > I have a curious issue where ipa-replica-install fails or rathe
Hi All,
I have a curious issue where ipa-replica-install fails or rather crashes
just as it is about for complete.
Both the master and the replica are Centos 8 Stream. I have also tested a
replica on fedora 32 with the same result.
Just after ipa-custodia setup is complete I get the following erro
Take a look at this implementation. I may be old but could give an idea on
how to proceed
https://github.com/Turgon37/freeipa-plugin-dhcp
On Mon, Jul 6, 2020 at 1:39 PM Charles Hedrick via FreeIPA-users <
freeipa-users@lists.fedorahosted.org> wrote:
> hmmm. so the problem with our integration is
All the files you named are present plus the password file (pwdfile.txt).
- pkcs11.txt
- pwdfile.txt
- key3.db
- key4.db
- cert8.db
- cert9.db
- secmod.db
On Tue, Jan 15, 2019 at 3:12 PM Rob Crittenden wrote:
> Uzor Ide via FreeIPA-users wrote:
> > Am certainly not sure that the orph
certificates stored in "subsystemCert cert-pki-ca"
and " uid=pkidbuser,ou=people,o=ipaca userCertificate".but haven't been
able to detect any difference.
On Mon, Jan 14, 2019 at 10:02 AM Florence Blanc-Renaud
wrote:
> On 1/14/19 5:30 PM, Uzor Ide via FreeIPA-users wro
n Mon, Jan 14, 2019 at 9:59 AM Rob Crittenden wrote:
> Uzor Ide via FreeIPA-users wrote:
> > Hello All,
> >
> > I upgraded our ipa server and after the upgrade ipa won't start again.
> > further investigation shows that components of ipa starts
> > but pki-tom
Hello All,
I upgraded our ipa server and after the upgrade ipa won't start again.
further investigation shows that components of ipa starts
but pki-tomcatd@pki-tomcat.service appears to be where the issue lies.
checking the logs suggested that issue lies in the certificate database. on
checking th
