Jim Kinney wrote: > All, > > I'm setting up a new replicated master (CentOS7) from a CentOS 6.5 > original master. I added the patch (to the freeIPA 3.3 on CentOS 7) from > https://git.fedorahosted.org/cgit/freeipa.git/commit/?id=8c98561c209d0ccaa692a335e3e9a10aec23ee0e > to handle the 2 replication IDs bug. > > The replication fails to complete. If I exclude the connection check, it > fails. If I leave the connection check in place, it asks for an ssh > password for the admin@<original master host>. There is no admin user on > that machine. The admin user is only in freeIPA. > > Should there be an admin user account exposed? Did I find a config > change between 3.0 and 3.3 releases?
The admin user is in freeIPA so therefore the user IS on that original master. The connection check is there to confirm that the required ports are available in both directions. If replication is failing it may be due to that, but without details it's hard to say. rob -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project