Hi rob,
Thanks a lot for replying back.
Things I tried
# clean-ruv via ipa-replica-manage
$ ipa-replica-manage clean-ruv 52 -f
Directory Manager password:
Replica ID 52 not found
$
# clean-ruv job via ldapmodify ldif
$ cat cleanruv.ldif
dn: cn=replica,cn=dc\3Ddicomp\2Cdc\3Dnet,cn=mapping t
Harikumar Krishnan via FreeIPA-users wrote:
> Howdy folks,
>
> We also have a similar issue. Some servers in our IPA topology show ghost
> replicas and if comes down to an entry like the following for an old replica
> which no longer exists
>
> $ ldapsearch -xLLL -D "cn=directory manager" -W -
Howdy folks,
We also have a similar issue. Some servers in our IPA topology show ghost
replicas and if comes down to an entry like the following for an old replica
which no longer exists
$ ldapsearch -xLLL -D "cn=directory manager" -W -b dc=DICOMP,dc=NET
'(&(nsuniqueid=--
Howdy folks,
We also have a similar issue. Some servers in our IPA topology show ghost
replicas and if comes down to an entry like the following for an old replica
which no longer exists
$ ldapsearch -xLLL -D "cn=directory manager" -W -b dc=DICOMP,dc=NET
'(&(nsuniqueid=--
Just an update on this.
Came back from the long weekend and 50% of our servers (3) were not responding,
the dirsrv was crashing everytime it had an update from the CA master (we could
not figure out why). If we closed the firewall between replica and CA master
the servers stayed up.
After a f
Nicholas Cross via FreeIPA-users wrote:
> Ah got it! Wonderful.
>
> The trick as to run the topologysegement-del on the same server it was on.
>
> It seems i am moving forward with this now - thanks.
>
>
> #
> # To remove the topology segment, which removed the replica agreement
> #
>
> #
> #
Ah got it! Wonderful.
The trick as to run the topologysegement-del on the same server it was on.
It seems i am moving forward with this now - thanks.
#
# To remove the topology segment, which removed the replica agreement
#
#
# Show the bad replication agreement
#
# ipa-replica-manage list -
Nicholas Cross via FreeIPA-users wrote:
> Tested this again making sure that dirsrv is not running and the replica
> record is back.
>
> I am obviously doing something wrong. My steps are below. I appreciate your
> time on this.
>
>
>
> #
> # check dirsrv is currently running
> #
> [root@ip
Tested this again making sure that dirsrv is not running and the replica record
is back.
I am obviously doing something wrong. My steps are below. I appreciate your
time on this.
#
# check dirsrv is currently running
#
[root@ipa006 ~]# ps aux | grep dirsrv
dirsrv 3221639 31.4 5.4 2418488
Nicholas Cross via FreeIPA-users wrote:
> Shutdown dirsrv
> backed up dse.ldif
> edited the ldif
> restarted dirsrv
>
> replication agreement came back!
>
> Is it being sync'ed from some where else? another file?
It sounds like dirsrv was still running if values in cn=config were
restored. It wr
Shutdown dirsrv
backed up dse.ldif
edited the ldif
restarted dirsrv
replication agreement came back!
Is it being sync'ed from some where else? another file?
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an em
Thanks for the tips. I'll run the trace on Monday.
Also i'll edit the ldif Monday too.
Distro: alma9
# rpm -qa | grep ipa | sort
almalinux-logos-ipa-90.5.1-1.1.el9.noarch
ipa-client-4.10.0-8.el9_1.x86_64
ipa-client-common-4.10.0-8.el9_1.noarch
ipa-common-4.10.0-8.el9_1.noarch
ipa-healthcheck-0.
Nicholas Cross via FreeIPA-users wrote:
> I think i have a handle on this now.
>
> There are a number of issues that i am now aware of.
>
> 1. old replication agreement to oldbox1 on newbox6
>
> 2. corrupt RUVs, giving the impression of Ghost Replicas.
>
> For #1 i normally can delete these fin
I think i have a handle on this now.
There are a number of issues that i am now aware of.
1. old replication agreement to oldbox1 on newbox6
2. corrupt RUVs, giving the impression of Ghost Replicas.
For #1 i normally can delete these fine with a ldap command. BUT! running
this crashes the di
14 matches
Mail list logo
