>>>The PKCS#11 error suggests something is up with your token >>>configuration. I don't know why, the message could also be a red herring. I am not sure I understand what steps to take to fix the token.
Do you suggest I work through section 4 ? What to do when named with bind-dyndb-ldap cannot start — bind-dyndb-ldap master documentation (pagure.org)<https://docs.pagure.org/bind-dyndb-ldap/BIND9/NamedCannotStart.html> Some background for you- my system was/is integrated with Windows AD and we reviewed the /etc/named.conf file in an earlier part of this thread. You suggested the file is "ok". I do recall at some point needing to set up a user account that could bind to AD to perform lookups. I don't see any of that account info in my named.conf file. Could that be related in any way to the issue I am having presently? Perhaps I don't understand and the issue is unrelated to named.conf. What next steps do you suggest? ________________________________ From: Rob Crittenden <[email protected]> Sent: Wednesday, September 1, 2021 1:35 PM To: FreeIPA users list <[email protected]> Cc: Jeremy Tourville <[email protected]> Subject: Re: [Freeipa-users] Re: Unable to start directory server after updates Jeremy Tourville via FreeIPA-users wrote: > Are you saying to place the contents of the > 34adeec5-99e9-2bf0-bebf-0f63bee316c4 directory inside the > 2761b6ca-4581-f458-192c-f5f7d43da959 directory and overwrite the contents? > (see below) > > I still don't understand what the p11-kit changes are that I made. It may be that I got threads mixed up. Your posts come with no context from previous ones and the mail UI is also not threading it properly so there is no way to see beyond memory what has already been done without poking at multiple threads in the UI and I just gave up trying it's so bad, sorry. The PKCS#11 error suggests something is up with your token configuration. I don't know why, the message could also be a red herring. rob > > [root@utility /]# find / -name softhsm > /var/lib/softhsm > /usr/lib64/softhsm > /usr/share/doc/softhsm > [root@utility /]# cd /var/lib/sofhsm > -bash: cd: /var/lib/sofhsm: No such file or directory > [root@utility /]# cd /var/lib > [root@utility lib]# ls > alternatives custodia dirsrv httpd kdump NetworkManager > PackageKit private samba softhsm tomcats xfsdump > authselect dav dnf initramfs logrotate nfs pki > rpcbind selinux sss tpm > certmonger dbus games ipa misc opencryptoki > polkit-1 rpm setroubleshoot systemd tuned > chrony dhclient gssproxy ipa-client mlocate os-prober > portables rpm-state smartmontools tomcat unbound > [root@utility lib]# cd softhsm/ > [root@utility softhsm]# ls > tokens > [root@utility softhsm]# ls -la > total 4 > drwxr-x---. 3 ods ods 20 Mar 31 18:39 . > drwxr-xr-x. 47 root root 4096 Aug 28 13:08 .. > drwxrwx--T. 4 ods ods 94 Aug 28 20:14 tokens > [root@utility softhsm]# cd tokens/ > [root@utility tokens]# ls > 2761b6ca-4581-f458-192c-f5f7d43da959 34adeec5-99e9-2bf0-bebf-0f63bee316c4 > [root@utility tokens]# ls -la > total 0 > drwxrwx--T. 4 ods ods 94 Aug 28 20:14 . > drwxr-x---. 3 ods ods 20 Mar 31 18:39 .. > drwx------. 2 ods ods 62 Aug 28 20:14 2761b6ca-4581-f458-192c-f5f7d43da959 > drwx------. 2 ods ods 62 Oct 26 2020 34adeec5-99e9-2bf0-bebf-0f63bee316c4 > [root@utility tokens]# cd 3 > -bash: cd: 3: No such file or directory > [root@utility tokens]# ls > 2761b6ca-4581-f458-192c-f5f7d43da959 34adeec5-99e9-2bf0-bebf-0f63bee316c4 > [root@utility tokens]# cd 34adeec5-99e9-2bf0-bebf-0f63bee316c4/ > [root@utility 34adeec5-99e9-2bf0-bebf-0f63bee316c4]# ls > generation token.lock token.object > [root@utility 34adeec5-99e9-2bf0-bebf-0f63bee316c4]# > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam on the list, report it: > https://pagure.io/fedora-infrastructure >
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
