On 02/05/2013 08:02 PM, Rob Crittenden wrote:
Can you see if you have 60basev3.ldif in /etc/dirsrv/slapd-YOUR-REALM/schema ?

That was indeed not there (only 60basev2.ldif).

I've copied it, restarted dirsrv.

ipa user-show admin works (it did work before though).

You'll want to look at /var/log/ipaupgrade.log as well (it may be huge).

I reran ipa-upgradeconfig, there are a few errors; see the attachment.

Seems to be mostly ldap errors; I don't know why named and pki-cad didn't restart, when I do that manually, they start fine.

Thanks,
Tom


2012-02-24 14:48:01,062 ERROR Update failed: Type or value exists: 
2012-02-24 14:48:01,240 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:01,382 ERROR Add failure 
cn=anonymous-limits,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,392 ERROR Add failure cn=Managed 
Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,447 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:01,510 ERROR Add failure cn=replication,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,515 ERROR Add failure cn=automember,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,544 ERROR Add failure cn=Templates,cn=Managed 
Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,550 ERROR Add failure cn=Definitions,cn=Managed 
Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,555 ERROR Add failure 
cn=replicas,cn=ipa,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,561 ERROR Add failure 
cn=Hostgroup,cn=automember,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,566 ERROR Add failure 
cn=Group,cn=automember,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:01,571 ERROR Add failure cn=Write IPA 
Configuration,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,577 ERROR Add failure cn=Write IPA 
Configuration,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,582 ERROR Add failure cn=Add HBAC 
rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,586 ERROR Add failure cn=Delete HBAC 
rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,592 ERROR Add failure cn=Modify HBAC 
rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,597 ERROR Add failure cn=Manage HBAC rule 
membership,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,602 ERROR Add failure cn=Add HBAC 
services,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,607 ERROR Add failure cn=Delete HBAC 
services,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,613 ERROR Add failure cn=Add HBAC service 
groups,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,618 ERROR Add failure cn=Delete HBAC service 
groups,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,623 ERROR Add failure cn=Manage HBAC service group 
membership,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,628 ERROR Add failure cn=HBAC 
Administrator,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,634 ERROR Add failure cn=Add Sudo 
rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,638 ERROR Add failure cn=Delete Sudo 
rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,643 ERROR Add failure cn=Modify Sudo 
rule,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,648 ERROR Add failure cn=Add Sudo 
command,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,654 ERROR Add failure cn=Delete Sudo 
command,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,659 ERROR Add failure cn=Modify Sudo 
command,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,664 ERROR Add failure cn=Add Sudo command 
group,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,669 ERROR Add failure cn=Delete Sudo command 
group,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,674 ERROR Add failure cn=Manage Sudo command group 
membership,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,679 ERROR Add failure cn=Sudo 
Administrator,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,684 ERROR Add failure cn=Add Group Password Policy 
costemplate,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,689 ERROR Add failure cn=Delete Group Password Policy 
costemplate,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,694 ERROR Add failure cn=Modify Group Password Policy 
costemplate,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,699 ERROR Add failure cn=Add Group Password 
Policy,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,704 ERROR Add failure cn=Delete Group Password 
Policy,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,710 ERROR Add failure cn=Modify Group Password 
Policy,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,715 ERROR Add failure cn=Password Policy 
Administrator,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,721 ERROR Add failure cn=Add krbPrincipalName to a 
host,cn=permissions,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,813 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:01,825 ERROR Add failure cn=Modify Users and Reset 
passwords,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,874 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:01,919 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:01,925 ERROR Add failure cn=Modify Group 
membership,cn=privileges,cn=pbac,dc=xxxx,dc=com
2012-02-24 14:48:01,930 ERROR Add failure cn=User 
Administrator,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:01,978 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,016 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,021 ERROR Add failure cn=IT 
Specialist,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:02,066 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,111 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,144 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,178 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,183 ERROR Add failure cn=IT Security 
Specialist,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:02,219 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,255 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,260 ERROR Add failure cn=Security 
Architect,cn=roles,cn=accounts,dc=xxxx,dc=com
2012-02-24 14:48:02,292 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,330 ERROR Add failure Object class violation: missing 
required attribute "objectclass"
2012-02-24 14:48:02,475 ERROR Add failure Object class violation: attribute 
"cn" not allowed
2012-02-24 14:48:02,517 ERROR Add failure Object class violation: attribute 
"cn" not allowed
2012-02-24 14:48:02,558 ERROR Add failure Object class violation: attribute 
"cn" not allowed
2012-02-24 14:48:02,569 ERROR Add failure 
cn=vsftpd,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,580 ERROR Add failure 
cn=proftpd,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,590 ERROR Add failure 
cn=pure-ftpd,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,601 ERROR Add failure 
cn=gssftp,cn=hbacservices,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,612 ERROR Add failure 
cn=ftp,cn=hbacservicegroups,cn=hbac,dc=xxxx,dc=com
2012-02-24 14:48:02,620 ERROR Add failure cn=NGP HGP 
Template,cn=Templates,cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:02,657 ERROR Add failure Server is unwilling to perform: Not a 
valid managed entries configuration entry.
2012-02-24 14:48:34,830 ERROR Add failure cn=UPG 
Template,cn=Templates,cn=Managed Entries,cn=etc,dc=xxxx,dc=com
2012-02-24 14:48:34,916 ERROR Add failure Server is unwilling to perform: Not a 
valid managed entries configuration entry.
2012-05-30 13:53:32,873 ERROR Update failed: Type or value exists: 
2013-02-04T14:51:29Z ERROR Upgrade failed with Unable to connect to LDAP server 
ldapi://%2fvar%2frun%2fslapd-XXXX-COM.socket
2013-02-04T22:21:18Z ERROR Cannot connect to LDAP to add DNS records: cannot 
connect to u'ldapi://%2fvar%2frun%2fslapd-XXXX-COM.socket': LDAP Server Down
2013-02-04T22:21:18Z ERROR Failed to restart named: Command '/bin/systemctl 
restart named.service' returned non-zero exit status 1
2013-02-04T22:21:19Z ERROR Failed to restart pki-cad: Command '/bin/systemctl 
restart pki-cad@pki-ca.service' returned non-zero exit status 1
_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to