Hello, I remember experiencing this, but I'm not sure of solution. I think it's related to apache (httpd) and his group.
My notes for IPA installation on CentOS 7.x say: # groupadd -g 48 apache # yum -y install ipa-server bind bind-dyndb-ldap # usermod -g apache apache # ipa-server-install... CentOS is somehow not creating group apache for apache user and then assuming root which is then causing problems with apache later. Pre- creating such group before installing httpd and then usermod-ing user apache might solve it. Did you get any warnings while running: # yum install -y ipa-server bind bind-dyndb-ldap ? If possible, try installation from scratch with my notes on fresh system. If not: # systemctl stop apache # if it runs # groupadd -g 48 apache # I use 48 as apache's UID tends to be also 48, or use 'groupadd -r apache' instead # usermod -g apache apache # ipa-server-install... M. On Pi, 2015-11-27 at 23:04 +0100, Daniel Guldberg aaes wrote: > Hello. I am trying to setup FreeIPA but i am getting the following > error when i do a ipa-server-install, I am trying to set it up on a > ESXI 6 VM (The vm is a fresh install of Centos) > > ###############Installation > precedure################################### > wget http://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-5. > noarch.rpm > rpm -ivh epel-release-7-5.noarch.rpm > yum install -y haveged > yum install -y ipa-server bind bind-dyndb-ldap > ##################Version#################################### > 4.1.0, API_VERSION: 2.112 on a CentOs 7. > Linux version 3.10.0-229.20.1.el7.x86_64 (buil...@kbuilder.dev.centos. > org) (gcc version 4.8.3 20140911 (Red Hat 4.8.3-9) (GCC) ) #1 SMP Tue > Nov 3 19:10:07 UTC 2015 > #############Error ############################################ > [2/27]: configuring certificate server instance > ipa : CRITICAL failed to configure ca instance Command > ''/usr/sbin/pkispawn' '-s' 'CA' '-f' '/tmp/tmpYbSmkT'' returned non- > zero exit status 1 > [error] RuntimeError: Configuration of CA failed > Configuration of CA failed > I can't figure out where the error is or what to correct ? The full > .log is here : https://owncloud.techknight.eu/index.php/s/wH8TATlPvJOD > Ieo > > > -- > Manage your subscription for the Freeipa-users mailing list: > https://www.redhat.com/mailman/listinfo/freeipa-users > Go to http://freeipa.org for more info on the project
signature.asc
Description: This is a digitally signed message part
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project