Re: [Freeipa-users] RHEL client to IPA

Rich Megginson Wed, 18 May 2011 13:57:39 -0700

On 05/18/2011 02:35 PM, Steven Jones wrote:

[jonesst1@vuwunicoipamt01 ipa]$ service dirsrv status
/etc/sysconfig/dirsrv: line 50: ulimit: open files: cannot modify limit: 
Operation not permitted

What is /etc/sysconfig/dirsrv line 50 i.e. what is the value ulimit -nis attempting to use?

Maybe the ulimit -n 8192 isn't needed in /etc/sysconfig/dirsrv if it isset per user in /etc/security/limits.conf ? Can you try this, as root:

su dirsrv -c "ulimit -n 8192"
?

dirsrv UNIX-VUW-AC-NZ is stopped
[jonesst1@vuwunicoipamt01 ipa]$ service krb5kdc status
krb5kdc (pid  4686) is running...
[jonesst1@vuwunicoipamt01 ipa]$ grep file-max /etc/sysctl.conf
[jonesst1@vuwunicoipamt01 ipa]$ grep nofile /etc/security/limits.conf
#        - nofile - max number of open files
dirsrv          -       nofile          8192
[jonesst1@vuwunicoipamt01 ipa]$ cat /proc/sys/fs/file-max
97190
[jonesst1@vuwunicoipamt01 ipa]$
________________________________________
From: Rich Megginson [[email protected]]
Sent: Thursday, 19 May 2011 1:22 a.m.
To: Steven Jones
Cc: [email protected]
Subject: Re: [Freeipa-users] RHEL client to IPA

On 05/17/2011 09:36 PM, Steven Jones wrote:

the dirsrv isnt running...

its giving me " line 50: ulimit: open files: cannot modify limit: operation not 
permitted  dirsrv unix-vuw-ac-nz is stopped...

What is the number of files that ulimit is attempting to use?
What does
grep file-max /etc/sysctl.conf
say?
what about
grep nofile /etc/security/limits.conf
?
what about
cat /proc/sys/fs/file-max
?

krb5kdc is running.

regards
________________________________________
From: JR Aquino [[email protected]]
Sent: Wednesday, 18 May 2011 3:31 p.m.
To: Steven Jones
Cc: [email protected]
Subject: Re: [Freeipa-users] RHEL client to IPA

Is ns-ldap / kdc running on vuwunicoipamt01.unix.vuw.ac.nz?
service dirsrv status
service krb5kdc status

And are you running the command on vuwunicoipamt01.unix.vuw.ac.nz?

On May 17, 2011, at 8:23 PM, "Steven 
Jones"<[email protected]<mailto:[email protected]>>   wrote:

Im getting,

"SASL bind failed!"

8><----

Steven Jones wrote:
So what should the command be?

# kinit admin
# ipa-getkeytab -k /tmp/vuwnicologint2.keytab -p
host/vuwunicologint2.unix.vuw.ac.nz -s vuwunicoipamt01.unix.vuw.ac.nz

_______________________________________________
Freeipa-users mailing list
[email protected]<mailto:[email protected]>
https://www.redhat.com/mailman/listinfo/freeipa-users

_______________________________________________
Freeipa-users mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/freeipa-users


_______________________________________________
Freeipa-users mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/freeipa-users

Re: [Freeipa-users] RHEL client to IPA

Reply via email to