Tolgay Gul via FreeIPA-users wrote: > Hi, > > I am trying to rebuild "Automember" for host groups and am getting the error > below. > ipa: ERROR: Automember LDAP task timeout, Task DN: 'cn=XYZ,cn=automember > rebuild membership,cn=tasks,cn=config' > > I understand I need to add to "nsslapd-idletimeout: 3600" > > /etc/dirsrv/slapd-zya-abc.comdse.ldif > > So I added and restarted the dirsrv@ service. But it reverted to the original > one.
You should not edit that file while the service is running. Stop the service, edit the file, and restart. > > I tried to change with the below command which is not on the freeipa server. > dsconf -D "cn=Directory Manager" ldap://localhost config replace > nsslapd-idletimeout=3600 > > bash: dsconf: command not found > > > I also tried below method. > > cat /tmp/modify-idletimeout.ldif > dn: cn=config > changetype: modify > replace: nsslapd-idletimeout > nsslapd-idletimeout: 3600 > > > ldapmodify -x -D "cn=Directory Manager" -W -H ldap://localhost -f > modify-idletimeout.ldif > > It requires the LDAP password, which I don't have even though I have an admin > account. The Directory Manager account is separate from IPA. If you do not have this password you should seriously consider resetting the password (on each server, it is not replicated). rob > > > My question is, how can I increase the timeout for the automember rebuild? > > Thanks > -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
