Hi Gerogiy, If your intention is to run FreeIPA in a container, I suggest you take a look at https://github.com/freeipa/freeipa-container.
They have recipes for running with Rocky 9. Rafael On Fri, Feb 10, 2023 at 11:53 AM Georgiy Odisharia via FreeIPA-users < [email protected]> wrote: > Hi there, > > I am trying to install FreeIPA via Docker container. > > I successfully built image with Rocky Linux 9 as base image. > > Then I created container with following options. > > docker create \ > -it \ > --name ipa.odisharia.ru \ > -v "$(realpath data)":/data:Z \ > -v /sys/fs/cgroup:/sys/fs/cgroup:ro \ > -e IPA_SERVER_IP=<MY_PUBLIC_IP> \ > > > --read-only \ > --tmpfs /run \ > --tmpfs /tmp \ > -h <HOSTNAME> \ > --dns 127.0.0.1 \ > freeipa-server \ > -p 53:53 \ > -p 8080:80 \ > -p 8443:443 \ > -p 389:389 \ > -p 636:636 \ > -p 88:88 \ > -p 464:464 \ > -p 88:88/udp \ > -p 464:464/udp \ > -p 123:123/udp \ > ipa-server-install > > Then I tried to run it but get following error. > > ``` > ❯ docker start -ai ipa.odisharia.ru > systemd 250-12.el9_1.1 running in system mode (+PAM +AUDIT +SELINUX > -APPARMOR +IMA +SMACK +SECCOMP +GCRYPT +GNUTLS +OPENSSL +ACL +BLKID +CURL > +ELFUTILS -FIDO2 +IDN2 -IDN -IPTC +KMOD +LIBCRYPTSETUP +LIBFDISK +PCRE2 > -PWQUALITY +P11KIT -QRENCODE +BZIP2 +LZ4 +XZ +ZLIB +ZSTD -BPF_FRAMEWORK > +XKBCOMMON +UTMP +SYSVINIT default-hierarchy=unified) > Detected virtualization docker. > Detected architecture x86-64. > Queued start job for default target Minimal target for containerized > FreeIPA server. > -.slice: Failed to get cgroup ID on cgroup /sys/fs/cgroup, ignoring: > Operation not permitted > system.slice: Failed to get cgroup ID on cgroup > /sys/fs/cgroup/system.slice, ignoring: Operation not permitted > systemd-journald.service: Failed to get cgroup ID on cgroup > /sys/fs/cgroup/system.slice/systemd-journald.service, ignoring: Operation > not permitted > system.slice: Failed to get cgroup ID on cgroup > /sys/fs/cgroup/system.slice, ignoring: Operation not permitted > -.slice: Failed to get cgroup ID on cgroup /sys/fs/cgroup, ignoring: > Operation not permitted > Fri Feb 10 14:12:04 UTC 2023 /usr/sbin/ipa-server-configure-first > Usage: ipa-server-install [options] > > ipa-server-install: error: Too many arguments provided > File "/usr/lib/python3.9/site-packages/ipapython/admintool.py", line > 177, in execute > self.validate_options() > File "/usr/lib/python3.9/site-packages/ipapython/install/cli.py", line > 282, in validate_options > self.option_parser.error("Too many arguments provided") > File "/usr/lib64/python3.9/optparse.py", line 1569, in error > self.exit(2, "%s: error: %s\n" % (self.get_prog_name(), msg)) > File "/usr/lib64/python3.9/optparse.py", line 1559, in exit > sys.exit(status) > > The ipa-server-install command failed, exception: SystemExit: 2 > The ipa-server-install command failed. > Sending SIGTERM to remaining processes... > Sending SIGKILL to remaining processes... > All filesystems, swaps, loop devices, MD devices and DM devices detached. > Exiting container. > ``` > > How should I create and run container with FreeIPA? > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue > -- Rafael Guterres Jeffman Senior Software Engineer FreeIPA - Red Hat
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
