Bug#841086: [Pkg-freeipa-devel] Bug#841086: pki-ca context doesn't start in tomcat
On Sat, 2016-10-22 at 00:12 +0300, Timo Aaltonen wrote: > On 21.10.2016 22:21, Michal Kašpar wrote: > > OK. It seems the problem might be related with problem described > > here: > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=841086 > > did you mean 841477 here? Wrong paste. Should be https://www.redhat.com/archives/freeipa-users/2016-September/msg00090.html
Bug#841086: [Pkg-freeipa-devel] Bug#841086: pki-ca context doesn't start in tomcat
On 21.10.2016 22:21, Michal Kašpar wrote: > OK. It seems the problem might be related with problem described here: > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=841086 did you mean 841477 here? > The proposed workaround is to run manually "pki-server-upgrade -v". > I've tried it and it failed on SELinux processing (I don't use SELinux > at all). After commenting out the SELinux part of upgrade, the upgrade > finished and the ca contexts starts but fails with the same error > returned via HTTP. From the /var/log/pki/pki-tomcat/ca/debug I've found > it's missing /var/log/pki/pki-tomcat/ca/signedAudit directory and after > created, the debug log shows problem connecting ldap server on port 636 > caused by Bug#841477. That directory is created at least on new installations. Would be nice to know what part of the selinux upgrade breaks -- t