Ran the suggested command from the primary (master) IPA:
[root@ipaN1 ~]# ipa-replica-manage list -v ipaN1..local
ipa-N2..local: replica
last init status: None
last init ended: None
last update status: -1 - LDAP error: Can't contact LDAP server
last update ended: None
Then ran it
A user contacted me today for a password reset. I made the reset on the
ipa-primary. The user opened a terminal session on an SSH Client to a server in
the realm and logged in. They received the required immediate password change
requirement and did so. They can log off and log back on that
Auerbach, Steven wrote:
A user contacted me today for a password reset. I made the reset on the
ipa-primary. The user opened a terminal session on an SSH Client to a
server in the realm and logged in. They received the required immediate
password change requirement and did so. They can log