Re: [Freeipa-users] Installation on CentOS 6.6 with DNS
Hello, I think that this more related to LDAP server than to DNS server. Could you system check logs (journalctl or /var/log/messages) to see if ns-slapd process crashed or something like that? Petr^2 Spacek On 27.5.2015 12:13, Ricardo Oliveira wrote: Hi, Thanks for your reply. The host is indeed in the hosts file, and even in the DNS server's mydomain.com zone and reverse zone, which is a local Bind instance which is the one I expect IPA to manage once the setup is complete. In fact, if both DNS and reverse DNS resolution are not configured, IPA server setup fails in the beginning with something like Host not found. Best, Ricardo. Date: Wed, 27 May 2015 06:14:34 +0700 Subject: Re: [Freeipa-users] Installation on CentOS 6.6 with DNS From: dewangg...@xtremenitro.org To: n3...@hotmail.com CC: freeipa-users@redhat.com Have you add your ipa.domain.com ip address on /etc/hosts file? The error seems like your installation can't resolve the ip address. On Wednesday, May 27, 2015, Ricardo Oliveira n3...@hotmail.com wrote: Hi, I've been trying to setup IPA on CentOS 6.6 with the --setup-dns option on, using the CentOS provided packages: rpm My problem is that everything is installed except when I use this flag. So, when I run: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U The installation finishes successfully. If I add DNS switches to the installation, it fails almost at the end: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U --setup-dns --no-forwarders Output (clipped): --- ... Configuring the web interface (httpd): Estimated time 1 minute [1/13]: setting mod_nss port to 443 [2/13]: setting mod_nss password file [3/13]: enabling mod_nss renegotiate [4/13]: adding URL rewriting rules [5/13]: configuring httpd [6/13]: setting up ssl [7/13]: setting up browser autoconfig [8/13]: publish CA cert [9/13]: creating a keytab for httpd [10/13]: clean up any existing httpd ccache [11/13]: configuring SELinux for httpd [12/13]: restarting httpd [13/13]: configuring httpd to start on boot Done configuring the web interface (httpd). Applying LDAP updates Restarting the directory server Restarting the KDC Can't contact LDAP server [root@ipa ~]# --- The screen output is at http://pastebin.com/HKiUwKq4The end of the error log is at http://pastebin.com/jDUhBCL7 (it's a 29 MB file so I only pasted the end of it). If anyone has come across anything like this, I would appreciate your help. Thanks. Ricardo. -- Petr^2 Spacek -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
Re: [Freeipa-users] Installation on CentOS 6.6 with DNS
Hi, Thanks for your reply. The host is indeed in the hosts file, and even in the DNS server's mydomain.com zone and reverse zone, which is a local Bind instance which is the one I expect IPA to manage once the setup is complete. In fact, if both DNS and reverse DNS resolution are not configured, IPA server setup fails in the beginning with something like Host not found. Best, Ricardo. Date: Wed, 27 May 2015 06:14:34 +0700 Subject: Re: [Freeipa-users] Installation on CentOS 6.6 with DNS From: dewangg...@xtremenitro.org To: n3...@hotmail.com CC: freeipa-users@redhat.com Have you add your ipa.domain.com ip address on /etc/hosts file? The error seems like your installation can't resolve the ip address. On Wednesday, May 27, 2015, Ricardo Oliveira n3...@hotmail.com wrote: Hi, I've been trying to setup IPA on CentOS 6.6 with the --setup-dns option on, using the CentOS provided packages: rpm My problem is that everything is installed except when I use this flag. So, when I run: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U The installation finishes successfully. If I add DNS switches to the installation, it fails almost at the end: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U --setup-dns --no-forwarders Output (clipped): --- ... Configuring the web interface (httpd): Estimated time 1 minute [1/13]: setting mod_nss port to 443 [2/13]: setting mod_nss password file [3/13]: enabling mod_nss renegotiate [4/13]: adding URL rewriting rules [5/13]: configuring httpd [6/13]: setting up ssl [7/13]: setting up browser autoconfig [8/13]: publish CA cert [9/13]: creating a keytab for httpd [10/13]: clean up any existing httpd ccache [11/13]: configuring SELinux for httpd [12/13]: restarting httpd [13/13]: configuring httpd to start on boot Done configuring the web interface (httpd). Applying LDAP updates Restarting the directory server Restarting the KDC Can't contact LDAP server [root@ipa ~]# --- The screen output is at http://pastebin.com/HKiUwKq4The end of the error log is at http://pastebin.com/jDUhBCL7 (it's a 29 MB file so I only pasted the end of it). If anyone has come across anything like this, I would appreciate your help. Thanks. Ricardo. -- Sent from iDewangga Device -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
[Freeipa-users] Installation on CentOS 6.6 with DNS
Hi, I've been trying to setup IPA on CentOS 6.6 with the --setup-dns option on, using the CentOS provided packages: rpm My problem is that everything is installed except when I use this flag. So, when I run: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U The installation finishes successfully. If I add DNS switches to the installation, it fails almost at the end: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U --setup-dns --no-forwarders Output (clipped): --- ... Configuring the web interface (httpd): Estimated time 1 minute [1/13]: setting mod_nss port to 443 [2/13]: setting mod_nss password file [3/13]: enabling mod_nss renegotiate [4/13]: adding URL rewriting rules [5/13]: configuring httpd [6/13]: setting up ssl [7/13]: setting up browser autoconfig [8/13]: publish CA cert [9/13]: creating a keytab for httpd [10/13]: clean up any existing httpd ccache [11/13]: configuring SELinux for httpd [12/13]: restarting httpd [13/13]: configuring httpd to start on boot Done configuring the web interface (httpd). Applying LDAP updates Restarting the directory server Restarting the KDC Can't contact LDAP server [root@ipa ~]# --- The screen output is at http://pastebin.com/HKiUwKq4The end of the error log is at http://pastebin.com/jDUhBCL7 (it's a 29 MB file so I only pasted the end of it). If anyone has come across anything like this, I would appreciate your help. Thanks. Ricardo. -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
Re: [Freeipa-users] Installation on CentOS 6.6 with DNS
Have you add your ipa.domain.com ip address on /etc/hosts file? The error seems like your installation can't resolve the ip address. On Wednesday, May 27, 2015, Ricardo Oliveira n3...@hotmail.com wrote: Hi, I've been trying to setup IPA on CentOS 6.6 with the --setup-dns option on, using the CentOS provided packages: rpm My problem is that everything is installed except when I use this flag. So, when I run: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U The installation finishes successfully. If I add DNS switches to the installation, it fails almost at the end: ipa-server-install -a sillyPassword123 --hostname=ipa.mydomain.com -r MYDOMAIN.COM -p sillyPassword123 -n mydomain.com -U --setup-dns --no-forwarders Output (clipped): --- ... Configuring the web interface (httpd): Estimated time 1 minute [1/13]: setting mod_nss port to 443 [2/13]: setting mod_nss password file [3/13]: enabling mod_nss renegotiate [4/13]: adding URL rewriting rules [5/13]: configuring httpd [6/13]: setting up ssl [7/13]: setting up browser autoconfig [8/13]: publish CA cert [9/13]: creating a keytab for httpd [10/13]: clean up any existing httpd ccache [11/13]: configuring SELinux for httpd [12/13]: restarting httpd [13/13]: configuring httpd to start on boot Done configuring the web interface (httpd). Applying LDAP updates Restarting the directory server Restarting the KDC Can't contact LDAP server [root@ipa ~]# --- The screen output is at http://pastebin.com/HKiUwKq4 The end of the error log is at http://pastebin.com/jDUhBCL7 (it's a 29 MB file so I only pasted the end of it). If anyone has come across anything like this, I would appreciate your help. Thanks. Ricardo. -- Sent from iDewangga Device -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project