[Freeipa-users] Re: GSSAPI Authentication Failure and Inaccessible Kerberos Credentials (Replication bind with GSSAPI auth failed)

Wed, 02 Oct 2024 07:40:03 -0700 

Thanks for the quick reply!

There does not seem to be an issue, ownership and mode are the same as on the 
other replicas:
```
[root@replica1 ~]#  stat /etc/dirsrv
  File: /etc/dirsrv
  Size: 77              Blocks: 0          IO Block: 4096   directory
Device: fd00h/64768d    Inode: 52432775    Links: 5
Access: (0755/drwxr-xr-x)  Uid: (    0/    root)   Gid: (    0/    root)
Access: 2024-10-02 13:03:35.388075585 +0200
Modify: 2024-09-02 12:11:19.419856764 +0200
Change: 2024-09-02 12:11:19.419856764 +0200
 Birth: 2024-06-20 15:15:23.756876768 +0200
[root@replica1 ~]#  stat /etc/dirsrv/*
  File: /etc/dirsrv/config
  Size: 55              Blocks: 0          IO Block: 4096   directory
Device: fd00h/64768d    Inode: 710281      Links: 2
Access: (0755/drwxr-xr-x)  Uid: (    0/    root)   Gid: (    0/    root)
Access: 2024-10-01 11:23:24.083650236 +0200
Modify: 2024-07-17 13:10:16.000000000 +0200
Change: 2024-08-12 09:58:18.913090871 +0200
 Birth: 2024-06-20 15:15:23.756876768 +0200
  File: /etc/dirsrv/ds.keytab
  Size: 530             Blocks: 8          IO Block: 4096   regular file
Device: fd00h/64768d    Inode: 52429257    Links: 1
Access: (0600/-rw-------)  Uid: (  389/  dirsrv)   Gid: (  389/  dirsrv)
Access: 2024-10-02 12:25:42.580276460 +0200
Modify: 2024-09-02 12:11:19.443856859 +0200
Change: 2024-09-02 12:11:19.448856879 +0200
 Birth: 2024-09-02 12:11:19.419856764 +0200
  File: /etc/dirsrv/schema
  Size: 25              Blocks: 0          IO Block: 4096   directory
Device: fd00h/64768d    Inode: 17981107    Links: 2
Access: (0755/drwxr-xr-x)  Uid: (    0/    root)   Gid: (    0/    root)
Access: 2024-09-02 11:38:24.159400689 +0200
Modify: 2024-07-17 13:10:16.000000000 +0200
Change: 2024-08-12 09:58:18.913090871 +0200
 Birth: 2024-06-20 15:15:23.757876772 +0200
  File: /etc/dirsrv/slapd-EXAMPLE.COM
  Size: 4096            Blocks: 8          IO Block: 4096   directory
Device: fd00h/64768d    Inode: 17359662    Links: 3
Access: (0750/drwxr-x---)  Uid: (  389/  dirsrv)   Gid: (  389/  dirsrv)
Access: 2024-10-02 13:27:12.437529230 +0200
Modify: 2024-10-02 16:27:45.458325614 +0200
Change: 2024-10-02 16:27:45.458325614 +0200
 Birth: 2024-09-02 12:10:55.942929247 +0200
```

And SELinux is disabled. The dirsrv user can read the /etc/dirsrv/ds.keytab no 
problem
-- 
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue

Reply via email to