Other symptoms:
# kinit admin
:
# ipa help user
ipa: ERROR: No valid Negotiate header in server response
This is now happening on our primary IPA server.
On 12/07/2018 07:42 AM, Bret Wortman via FreeIPA-users wrote:
I'm seeing this in /var/log/messages periodically:
systemd: Starting IPA
I'm seeing this in /var/log/messages periodically:
systemd: Starting IPA key daemon...
ipa-dnskeysyncd: ipa : INFO LDAP bind...
ipa-dnskeysyncd: ipa : ERROR Login to LDAP server failed:
{'desc': 'Invalid credentials'}
ipa-dnskeysyncd: Traceback (most recent call last):
Bret Wortman via FreeIPA-users
writes:
> So I started working through the guide below and most of thesteps just
> worked. No errors, which was odd. For example:
>
> # kinit -kt /etc/named.keytab DNS/ipa3.my.net
> # klist
> Ticket cache: KEYRING:persistent:0:0
> Default principal:
So I started working through the guide below and most of thesteps just
worked. No errors, which was odd. For example:
# kinit -kt /etc/named.keytab DNS/ipa3.my.net
# klist
Ticket cache: KEYRING:persistent:0:0
Default principal: DNS/ipa3.my@my.net
Valid starting
12/06/2018 14:51:08
I'll check it out. Thanks, Flo!
On 12/06/2018 08:39 AM, Florence Blanc-Renaud wrote:
On 12/6/18 1:32 PM, Bret Wortman via FreeIPA-users wrote:
After a reboot, my IPA replica won't start. I've tracked it down to
an error in the named startup. From /var/log/messages(all messags
from
On 12/6/18 1:32 PM, Bret Wortman via FreeIPA-users wrote:
After a reboot, my IPA replica won't start. I've tracked it down to an
error in the named startup. From /var/log/messages(all messags from
named-pkcs11):
bind-dyndb-ldap version 11.1 compiled at 13:38:22 Aug 23 2017, complier
4.8.5