Got a bit further.......I was missing "--passsync" [root@fed14-64-ipam001 samba]# ipa-replica-manage connect --winsync --binddn cn=administrator,cn=users,dc=ipa,dc-ac,dc=nz \--bindpw Qsmith51B --cacert /home/jonesst1/domaincert.cer dc0001.ipa.ac.nz -v ipa: ERROR: The arguments --binddn, --bindpw, --passsync and --cacert are required to create a winsync agreement [root@fed14-64-ipam001 samba]# ipa-replica-manage connect --winsync --binddn cn=administrator,cn=users,dc=ipa,dc-ac,dc=nz \--bindpw Qsmith51B --passsync Qsmith51B --cacert /home/jonesst1/domaincert.cer dc0001.ipa.ac.nz -v Added CA certificate /home/jonesst1/domaincert.cer to certificate database for fed14-64-ipam001.ipa.ac.nz ipa: INFO: Failed to connect to AD server dc0001.ipa.ac.nz ipa: INFO: The error was: {'info': 'TLS error -8179:Unknown code ___f 13', 'desc': 'Connect error'} unexpected error: Failed to setup winsync replication [root@fed14-64-ipam001 samba]# host dc0001.ipa.ac.nz dc0001.ipa.ac.nz has address 192.168.101.2 [root@fed14-64-ipam001 samba]#
But still isnt working......... regards ________________________________________ From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on behalf of Steven Jones [steven.jo...@vuw.ac.nz] Sent: Tuesday, 29 March 2011 3:24 p.m. To: freeipa-users@redhat.com Subject: [Freeipa-users] AD setup failure Following the install guide I get, [root@fed14-64-ipam001 samba]# ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=ipa,dc-ac,dc=nz \ > --bindpw Qsmith51B --cacert /home/jonesst1/domaincert.cer dc0001.ipa.ac.nz -v Usage: ipa-replica-manage [options] ipa-replica-manage: error: must provide a command [force-sync | disconnect | list | del | connect | re-initialize] [root@fed14-64-ipam001 samba]# So its connect instead of add.....? Nope connect fails root@fed14-64-ipam001 samba]# ipa-replica-manage connect --winsync --binddn cn=administrator,cn=users,dc=ipa,dc-ac,dc=nz \--bindpw Qsmith51B --cacert /home/jonesst1/domaincert.cer dc0001.ipa.ac.nz -v ipa: ERROR: The arguments --binddn, --bindpw, --passsync and --cacert are required to create a winsync agreement [root@fed14-64-ipam001 samba]# So section 4.4 in the manual needs fixing i think....and what do I actually type pls? regards _______________________________________________ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users _______________________________________________ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users