Kees Bakker <[email protected]> writes: > On 17-12-18 20:44, Robbie Harwood wrote: >> Kees Bakker via FreeIPA-users <[email protected]> >> writes: >> >>> Sure I understand that, but this error in /var/log/krb5kdc.log is basically >>> all I have. >>> krb5kdc: Server error - while fetching master key K/M for realm GHS.NL >> >> What are the permissions on your stash file? Does a checksum match >> the old replica? > > Where do I find the stash file? > > I've copied everything with rsync from the old machine. That should > have made an exact copy. Well, except for the selinux attributes, > which hopefully recovered with the .autorelabel. But I'm not 100% > sure about that. > > From other discussions in the past about this krb5kdc error I get the > impression that the stash file may be stored in LDAP (i.e. dirsrv). If > that is true, then I need to concentrate on why dirsrv isn't started > properly.
Oh right, I'm on the freeipa list. Sorry about that. If dirsrv isn't starting, you need to look at that first. LDAP needs to be working in order for freeipa to bring up the KDC. If dirsrv isn't starting, it's likely that krb5 is having some problem connecting. I'd look at dirsrv's logs to see if anything seems amiss. Thanks, --Robbie
signature.asc
Description: PGP signature
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
