Hi

I have had a defect entries in ldap for a replica and deleted them. But 
now the dirsrv keytab (/etc/dirsrv/ds.keytab) doesnt work anymore 
(revoked). The replica starts but it cant connect other replicas (but 
other replicas can connect to it).

I have tried:
kinit -k -t /etc/dirsrv/ds.keytab 
ldap/ipa-1.mgmt.testsystem-homemonitoring.int

and got:
kinit: Clients credentials have been revoked while getting initial 
credentials

It is possible to 'regenerate' this keytab? If yes how? Simple 
ipa-getkeytab (on this replica) doesnt work.
Or it is better to destroy it and do a new install?

MfG
Christoph Kaminski

-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project

Reply via email to