On 02/18/2013 09:06 PM, John Moyer wrote:
Peter,
The client is pointing to DNS for the server. Here is the log info
from the ipa-client-log (in /var/log/). I haven't tried the other stuff
yet, I'll respond back when I get a chance to check out the CA cert things.
2013-02-19T02:01:37Z DEBUG args=kinit [email protected]
When the client installer tries to retrieve the CA cert from LDAP it
uses a GSSAPI bind and they error you're getting is that it cannot
perform a bind with the credentials from above.
Did you provide the password for ipa-bind? Are you running the client
install interactively?
Is the realm EXAMPLE.COM really correct?
Are you able to do a kinit for [email protected] on the client
successfully?
Are your kerberos ports open?
--
John Dennis <[email protected]>
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
_______________________________________________
Freeipa-users mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/freeipa-users
