Re: [Freeipa-users] IPA Replication not working for User and DNS

LDAPS is also fine: [root@ipa-inf-prd-ng2-02 ~]# ldapsearch -x -H ldaps:// ipa-inf-prd-ng2-01.klikpay.int -s base -b '' namingContexts # extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: namingContexts # # dn: namingContexts: cn=changelog

Re: [Freeipa-users] IPA Replication not working for User and DNS

Tried to re-enroll the replica however, getting the same error, though I am able to connect to server. = Starting replication, please wait until this has completed. [ipa-inf-prd-ng2-01.klikpay.int] reports: Update failed! Status: [-1 - LDAP error: Can't contact LDAP server] [error]

Re: [Freeipa-users] IPA Replication not working for User and DNS

On 02.11.2015 08:01, Yogesh Sharma wrote: Listening: [root@ipa-inf-prd-ng2-02 ~]# telnet ipa-inf-prd-ng2-01.klikpay.int 636 Trying 172.16.32.10... Connected to ipa-inf-prd-ng2-01.klikpay.int . Escape character

Re: [Freeipa-users] IPA Replication not working for User and DNS

Adding to this, I am able to do ldsearch from the server which I am trying to make replica. [root@ipa-inf-prd-ng2-02 ~]# ldapsearch -x -H ldap:// ipa-inf-prd-ng2-01.klikpay.int -s base -b '' namingContexts # extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) #

Re: [Freeipa-users] IPA Replication not working for User and DNS

On Mon, 02 Nov 2015, Yogesh Sharma wrote: Adding to this, I am able to do ldsearch from the server which I am trying to make replica. [root@ipa-inf-prd-ng2-02 ~]# ldapsearch -x -H ldap:// ipa-inf-prd-ng2-01.klikpay.int -s base -b '' namingContexts # extended LDIF # # LDAPv3 # base <> with scope

Re: [Freeipa-users] IPA Replication not working for User and DNS

Listening: [root@ipa-inf-prd-ng2-02 ~]# telnet ipa-inf-prd-ng2-01.klikpay.int 636 Trying 172.16.32.10... Connected to ipa-inf-prd-ng2-01.klikpay.int. Escape character is '^]'. *Best Regards,* *__* *Yogesh Sharma* *Email: yks0...@gmail.com

Re: [Freeipa-users] IPA Replication not working for User and DNS

On 30.10.2015 11:54, Yogesh Sharma wrote: Additionally, On Replica UI, I am getting below Error Message: IPA Error 4301: CertificateOperationError Certificate operation cannot be completed: Unable to communicate with CMS (Not Found) Hello, can you check /var/log/httpd/error_log

Re: [Freeipa-users] IPA Replication not working for User and DNS

Martin Basti wrote: > > > On 30.10.2015 11:54, Yogesh Sharma wrote: >> Additionally, On Replica UI, I am getting below Error Message: >> >> >> IPA Error 4301: CertificateOperationError >> >> Certificate operation cannot be completed: Unable to communicate with >> CMS (Not Found) >> >

Re: [Freeipa-users] IPA Replication not working for User and DNS

Yogesh Sharma wrote: > Team, > > Noticed that user created on IPA Master are not replicating on Replica. > > Also, we create a new Zone in Master, However we do not see the same in > replica server. You need to figure out why ipa-inf-prd-ng2-01.klikpay.int can't contact port 389 on

Re: [Freeipa-users] IPA Replication not working for User and DNS

Thanks Rob & Martin. I will check in Logs. However when I checked last time I noticed that "pki-tomcat" service was not present in ipactl status output on replica server. Connectivity between master (ipa-inf-prd-ng2-01) and slave (02) is their , able to do telnet/nc on 389 686 from slave to

Re: [Freeipa-users] IPA Replication not working for User and DNS

Additionally, On Replica UI, I am getting below Error Message: IPA Error 4301: CertificateOperationError Certificate operation cannot be completed: Unable to communicate with CMS (Not Found) *Best Regards,* *__* *Yogesh Sharma* *Email: yks0...@gmail.com