On 09/09/14 09:35, Tevfik Ceydeliler wrote:
Hi,
I try to create replica to my IPA Server env.
When I try to use :
ipa-replica-prepare rep.ipa.grp --ip-address 10.1.1.183
At the end I have an error:
[root@srv ~]# ipa-replica-prepare rep.ipa.grp --ip-address
Thanks you Rob. My replica is workin now.
:)
2013/2/10 Rob Crittenden rcrit...@redhat.com
James James wrote:
Maybe I am stupid or tired (or both ..) but I have tried many thing to
include the ca cert, the ipa key and pem file in a single pkcs12 file
but I am still stucked.
Can you give
Maybe I am stupid or tired (or both ..) but I have tried many thing to
include the ca cert, the ipa key and pem file in a single pkcs12 file but I
am still stucked.
Can you give me a more detailled help ?
2013/2/8 Rob Crittenden rcrit...@redhat.com
James James wrote:
OK .. but I have to
James James wrote:
Maybe I am stupid or tired (or both ..) but I have tried many thing to
include the ca cert, the ipa key and pem file in a single pkcs12 file
but I am still stucked.
Can you give me a more detailled help ?
Well, this is one of the reasons we're deprecating this feature,
I had to set the --dirsrv_pkcs12, --dirsrv_pin, --http_pkcs12, --http_pin
and the ipa-replica-prepare command runs without failure.
Thanks for your help.
2013/2/8 James James jre...@gmail.com
My ipa version is ipa-server-2.2.0-17.el6_3.1.x86_64 and the distro is
Scientific Linux 6.3. I have
James James wrote:
I had to set the --dirsrv_pkcs12, --dirsrv_pin, --http_pkcs12,
--http_pin and the ipa-replica-prepare command runs without failure.
Thanks for your help.
Yes, this is what I was going to suggest. Using ipa-server-certinstall
replace the IPA CA with an external one.
I
On 02/08/2013 06:44 AM, Rob Crittenden wrote:
James James wrote:
I had to set the --dirsrv_pkcs12, --dirsrv_pin, --http_pkcs12,
--http_pin and the ipa-replica-prepare command runs without failure.
Thanks for your help.
Yes, this is what I was going to suggest. Using ipa-server-certinstall
Orion Poplawski wrote:
On 02/08/2013 06:44 AM, Rob Crittenden wrote:
James James wrote:
I had to set the --dirsrv_pkcs12, --dirsrv_pin, --http_pkcs12,
--http_pin and the ipa-replica-prepare command runs without failure.
Thanks for your help.
Yes, this is what I was going to suggest. Using
Now on the replica server I've got this error :
Run connection check to master
Connection check OK
Configuring ntpd
[1/4]: stopping ntpd
[2/4]: writing configuration
[3/4]: configuring ntpd to start on boot
[4/4]: starting ntpd
done configuring ntpd.
Configuring directory server: Estimated
James James wrote:
Now on the replica server I've got this error :
Run connection check to master
Connection check OK
Configuring ntpd
[1/4]: stopping ntpd
[2/4]: writing configuration
[3/4]: configuring ntpd to start on boot
[4/4]: starting ntpd
done configuring ntpd.
Configuring
OK .. but I have to put the pkc12 file in /etc/pki/nssdb ?
2013/2/8 Rob Crittenden rcrit...@redhat.com
James James wrote:
Now on the replica server I've got this error :
Run connection check to master
Connection check OK
Configuring ntpd
[1/4]: stopping ntpd
[2/4]: writing
James James wrote:
OK .. but I have to put the pkc12 file in /etc/pki/nssdb ?
No. The PKCS#12 file that contains your server private key and cert
needs to also contain the CA that signed it.
rob
2013/2/8 Rob Crittenden rcrit...@redhat.com mailto:rcrit...@redhat.com
James James
My ipa version is ipa-server-2.2.0-17.el6_3.1.x86_64 and the distro is
Scientific Linux 6.3. I have used ipa-server-certinstall to replace the
default IPA certs.
2013/2/8 Rob Crittenden rcrit...@redhat.com
James James wrote:
Hi,
today I wanted to install a ipa replica. When I used the
13 matches
Mail list logo