yes I think you are correct, --binpw is ndded except running this crashed the 
LDAP server....or sends it off to zombie land and I have to reboot it!

ipa-replica-manage add --winsync --binddn 
cn=administrator,cn=users,dc=example,dc=com --bindpw <domain admin password> \
--cacert /path/to/certfile.cer adserver.example.com --passsync<domain admin 
password>    -v

Is there a log somewhere to look for why?


Steven Jones Technical Specialist Linux/Vmware
Tele 64 4 463 6272
Victoria University
New Zealand

-----Original Message-----
From: Rob Crittenden [mailto:rcrit...@redhat.com] 
Sent: Wednesday, 22 September 2010 1:57 p.m.
To: Steven Jones
Cc: Freeipa-users@redhat.com
Subject: Re: [Freeipa-users] probems installin freeipa v2

Steven Jones wrote:
> This time I copied the output from the ldapsearch command
> "dn: cn=ipa_pwd_extop,cn=plugins,cn=config"
> and it worked...

Cosmic rays maybe, those strings look identical to me. Glad its working 
now in any case.

> ?
> So, section 4.4
> ipa-replica-manage add --winsync --binddn 
> cn=administrator,cn=users,dc=example,dc=com \
> --bindpw password --cacert /path/to/certfile.cer adserver.example.com -v
> This appears to be wrong?
> It should be,
> ipa-replica-manage add --winsync --binddn 
> cn=administrator,cn=users,dc=example,dc=com \
> --cacert /path/to/certfile.cer adserver.example.com --passsync<domain admin 
> password>    -v

You're right in that --passsync is required but --bindpw should also be 

I filed https://bugzilla.redhat.com/show_bug.cgi?id=636377 for this.


Freeipa-users mailing list

Reply via email to