[Freeipa-users] Re: freeipa dns resolving for non local domains fails

Sorry no errors in the logs even with the debug setting. I think we are not really looking for the right thing. Let me try to describe the problem again. When I configure my ipa server to use a global forwarder (8.8.8.8 or 8.8.4.4) I can do a dig and I get a list of the root dns servers. When I

[Freeipa-users] Re: failed to add IPA Replica(Centos 8) on existing IPA cluster (Centos 7) with CA role enabled.

Hi, please keep the list in copy as the resolution steps can often help other users. On Fri, Nov 25, 2022 at 4:55 PM Dushyant Khobragade wrote: > Hi Flo, > Thank you for response. > I could see below logs in /var/log/ipareplica-install.log > <>> > 2022-11-25T15:43:46Z DEBUG certmonger request i

[Freeipa-users] FreeIPA 4.9.11

The FreeIPA team would like to announce FreeIPA 4.9.11 release! It can be downloaded from http://www.freeipa.org/page/Downloads. Builds for Fedora distributions will be available from the official repository soon. [[highlights_in_4.9.11]] == Highlights in 4.9.11 * 9083: Support MIT Kerberos KDB

[Freeipa-users] Re: failed to add IPA Replica(Centos 8) on existing IPA cluster (Centos 7) with CA role enabled.

On 25/11/2022 14:14, dushyant k via FreeIPA-users wrote: I am trying to add new replica Centos 8 IPA v.4.7 to my existing centos 7 IPA cluster which has IPA version 4.6 CentOS 8 has been EOL for some time now. Try with CentOS Stream 8 (or better, CentOS Stream 9?) instead. I am able to add

[Freeipa-users] Re: freeipa dns resolving for non local domains fails

Hi, you can log the debug messages from bind and check if they provide any additional hint. sed -i "s/severity info;/severity debug;/" /etc/named/ipa-logging-ext.conf systemctl restart named Then perform a dig query outside the ipa domain and check the logs in /var/named/data/*log. HTH, flo On

[Freeipa-users] Re: failed to add IPA Replica(Centos 8) on existing IPA cluster (Centos 7) with CA role enabled.

Hi, On Fri, Nov 25, 2022 at 3:59 PM dushyant k via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote: > I am trying to add new replica Centos 8 IPA v.4.7 to my existing centos 7 > IPA cluster which has IPA version 4.6 > > I am able to add centos 8 replica as ipa client however while add

[Freeipa-users] failed to add IPA Replica(Centos 8) on existing IPA cluster (Centos 7) with CA role enabled.

I am trying to add new replica Centos 8 IPA v.4.7 to my existing centos 7 IPA cluster which has IPA version 4.6 I am able to add centos 8 replica as ipa client however while adding as replica with setup-ca. it failing. Also it would be great if anyone can provide documents on migrating IPA to