Re: [Freeipa-users] probems installin freeipa v2
Steven Jones wrote: 8--- Can you reliably reproduce this behavior after restarting directory server? Please file a bug with the necessary steps to reproduce the issue. 8 Yes it appears so.. =error [22/Sep/2010:15:58:16 +1200] - slapd shutting down - signaling operation threads [22/Sep/2010:15:58:16 +1200] - slapd shutting down - closing down internal subsystems and plugins [22/Sep/2010:16:08:31 +1200] NSMMReplicationPlugin - error in windows_conn_get_search_result, rc=-1 [22/Sep/2010:16:08:31 +1200] NSMMReplicationPlugin - agmt=cn=meTovuwwincodc1.vuw.ac.nz636 (vuwwincodc1:636): Failed to get search operation: LDAP error 81 (Can't contact LDAP server) [22/Sep/2010:16:08:31 +1200] NSMMReplicationPlugin - failed to send dirsync search request: 2 [22/Sep/2010:16:08:32 +1200] - Waiting for 4 database threads to stop [22/Sep/2010:16:08:32 +1200] - All database threads now stopped [22/Sep/2010:16:08:32 +1200] - slapd stopped. = =access [22/Sep/2010:15:57:41 +1200] conn=6 op=15 SRCH base=dc=vuw,dc=ac,dc=nz scope=2 filter=((cn=pulse-rt)(objectClass=posixGroup)) attrs=objectClass cn userPassword gidNumber member nsUniqueId modifyTimestamp [22/Sep/2010:15:57:41 +1200] conn=6 op=15 RESULT err=0 tag=101 nentries=0 etime=0 [22/Sep/2010:15:58:16 +1200] conn=8 fd=70 slot=70 SSL connection from 130.195.53.104 to 130.195.53.104 [22/Sep/2010:15:58:16 +1200] conn=8 SSL 256-bit AES [22/Sep/2010:15:58:16 +1200] conn=8 op=0 BIND dn=cn=directory manager method=128 version=3 [22/Sep/2010:15:58:16 +1200] conn=8 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn=cn=directory manager [22/Sep/2010:15:58:16 +1200] conn=8 op=1 SRCH base=cn=config scope=0 filter=(objectClass=*) attrs=nsslapd-instancedir nsslapd-errorlog nsslapd-certdir nsslapd-schemadir [22/Sep/2010:15:58:16 +1200] conn=8 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [22/Sep/2010:15:58:16 +1200] conn=8 op=2 SRCH base=cn=config,cn=ldbm database,cn=plugins,cn=config scope=0 filter=(objectClass=*) attrs=nsslapd-directory [22/Sep/2010:15:58:16 +1200] conn=8 op=2 RESULT err=0 tag=101 nentries=1 etime=0 = regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] probems installin freeipa v2
Hi, Since there seems to be no explanation why I cant update via ldapmodify, Can I install some the 389 gui parts to allow me to do this via its GUI? If so how? And/Or how can I get a look at the attributes to figure out what's wrong with the commands? something like you have changed ver2 from ver1 and the doc hasnt been corrected? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Steven Jones Sent: Tuesday, 21 September 2010 12:58 p.m. To: Freeipa-users@redhat.com Subject: [Freeipa-users] probems installin freeipa v2 Section 4.3 of the manual Running the command, ldapmodify -x -D cn=Directory Manager -W Enter LDAP Password: *** dn: cn=ipa_pwd_extop,cn=plugins,cn=config changetype: modify add: passSyncManagersDNs passSyncManagersDNs: uid=admin,cn=users,cn=accounts,dc=vuw,dc=ac,dc=nz ldapmodify: wrong attributeType at line 4, entry cn=ipa_pwd_extop,cn=plugins,cn=config I cannot figure out what is wrong here? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] probems installin freeipa v2
Hi, This is Fedora 13 with the yum repo setup as per your web site... 389-ds-base-1.2.6-1.fc13.x86_64 ipa-server-1.2.2-4.fc13.x86_64 Your ldapsearch command gives me, ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1) um.. So the LDAP server is dead? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 10:02 a.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: Hi, Since there seems to be no explanation why I cant update via ldapmodify, It wasn't entirely clear what version of IPA you were using. You filed a doc bug against v1 and asked other basic questions, I assumed you had the version wrong. I figured this would come back up once you were able to kinit and get to the GUI. Can I install some the 389 gui parts to allow me to do this via its GUI? This is strongly discouraged. If so how? And/Or how can I get a look at the attributes to figure out what's wrong with the commands? something like you have changed ver2 from ver1 and the doc hasnt been corrected? It works for me in the IPA v2 git head. What does your entry look like now? $ ldapsearch -x -D 'cn=directory manager' -W -s base -b 'cn=ipa_pwd_extop,cn=plugins,cn=config' And more importantly, what is the rpm version of the IPA server you are using? The version of 389-ds-base might be handy too. rob regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Steven Jones Sent: Tuesday, 21 September 2010 12:58 p.m. To: Freeipa-users@redhat.com Subject: [Freeipa-users] probems installin freeipa v2 Section 4.3 of the manual Running the command, ldapmodify -x -D cn=Directory Manager -W Enter LDAP Password: *** dn: cn=ipa_pwd_extop,cn=plugins,cn=config changetype: modify add: passSyncManagersDNs passSyncManagersDNs: uid=admin,cn=users,cn=accounts,dc=vuw,dc=ac,dc=nz ldapmodify: wrong attributeType at line 4, entry cn=ipa_pwd_extop,cn=plugins,cn=config I cannot figure out what is wrong here? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] probems installin freeipa v2
This time I copied the output from the ldapsearch command dn: cn=ipa_pwd_extop,cn=plugins,cn=config and it worked... ? So, section 4.4 ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --bindpw password --cacert /path/to/certfile.cer adserver.example.com -v This appears to be wrong? It should be, ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --cacert /path/to/certfile.cer adserver.example.com --passsync domain admin password -v ? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Steven Jones Sent: Wednesday, 22 September 2010 10:49 a.m. To: Steven Jones; Freeipa-users@redhat.com Subject: RE: [Freeipa-users] probems installin freeipa v2 Hi, I backed out the snapshot and restartednow I get, # extended LDIF # # LDAPv3 # base cn=ipa_pwd_extop,cn=plugins,cn=config with scope baseObject # filter: (objectclass=*) # requesting: ALL # # ipa_pwd_extop, plugins, config dn: cn=ipa_pwd_extop,cn=plugins,cn=config objectClass: top objectClass: nsSlapdPlugin objectClass: extensibleObject cn: ipa_pwd_extop nsslapd-pluginPath: libipa_pwd_extop nsslapd-pluginInitfunc: ipapwd_init nsslapd-pluginType: extendedop nsslapd-pluginEnabled: on nsslapd-pluginId: IPA Password Manager nsslapd-pluginVersion: FreeIPA/1.0 nsslapd-pluginVendor: FreeIPA project nsslapd-pluginDescription: IPA Password Extended Operation plugin nsslapd-plugin-depends-on-type: database nsslapd-realmtree: dc=vuw,dc=ac,dc=nz # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 === I tried again, this line seems to be the issue, dn: cn=ipa_pwd_extop,cn=plugins,cn=config So I simply follow the guide and input each line one by one? hitting enter at the end of each line? My impression is its like I am doing something wrong because the instruction is so un-clearreally the manuals are written by ppl that know how to do this syntax wellso you are maybe over looking my simple mis-understanding of how to enter these commands correctly. regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Steven Jones Sent: Wednesday, 22 September 2010 10:18 a.m. To: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Hi, This is Fedora 13 with the yum repo setup as per your web site... 389-ds-base-1.2.6-1.fc13.x86_64 ipa-server-1.2.2-4.fc13.x86_64 Your ldapsearch command gives me, ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1) um.. So the LDAP server is dead? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 10:02 a.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: Hi, Since there seems to be no explanation why I cant update via ldapmodify, It wasn't entirely clear what version of IPA you were using. You filed a doc bug against v1 and asked other basic questions, I assumed you had the version wrong. I figured this would come back up once you were able to kinit and get to the GUI. Can I install some the 389 gui parts to allow me to do this via its GUI? This is strongly discouraged. If so how? And/Or how can I get a look at the attributes to figure out what's wrong with the commands? something like you have changed ver2 from ver1 and the doc hasnt been corrected? It works for me in the IPA v2 git head. What does your entry look like now? $ ldapsearch -x -D 'cn=directory manager' -W -s base -b 'cn=ipa_pwd_extop,cn=plugins,cn=config' And more importantly, what is the rpm version of the IPA server you are using? The version of 389-ds-base might be handy too. rob regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Steven Jones Sent: Tuesday, 21 September 2010 12:58 p.m. To: Freeipa-users@redhat.com Subject: [Freeipa-users] probems installin freeipa v2 Section 4.3 of the manual Running the command, ldapmodify -x -D cn=Directory Manager -W Enter LDAP Password: *** dn: cn=ipa_pwd_extop,cn=plugins,cn=config changetype: modify add: passSyncManagersDNs passSyncManagersDNs: uid=admin,cn=users,cn=accounts,dc=vuw,dc=ac,dc=nz ldapmodify: wrong attributeType at line 4, entry cn=ipa_pwd_extop,cn=plugins,cn=config I cannot figure out what is wrong here? regards Steven Jones
Re: [Freeipa-users] probems installin freeipa v2
Steven Jones wrote: Hi, yes I think you are correct, --binpw is ndded except running this crashed the LDAP serveror sends it off to zombie land and I have to reboot it! ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com --bindpwdomain admin password \ --cacert /path/to/certfile.cer adserver.example.com --passsyncdomain admin password -v Is there a log somewhere to look for why? Crashed which LDAP server? Logs are in /var/log/dirsrv-YOUR_INSTANCE_NAME. Can you provide the output of ipa-replica-manage? rob regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 1:57 p.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: This time I copied the output from the ldapsearch command dn: cn=ipa_pwd_extop,cn=plugins,cn=config and it worked... Cosmic rays maybe, those strings look identical to me. Glad its working now in any case. ? So, section 4.4 ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --bindpw password --cacert /path/to/certfile.cer adserver.example.com -v This appears to be wrong? It should be, ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --cacert /path/to/certfile.cer adserver.example.com --passsyncdomain admin password -v You're right in that --passsync is required but --bindpw should also be required. I filed https://bugzilla.redhat.com/show_bug.cgi?id=636377 for this. rob ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] probems installin freeipa v2
Hi, Ok, it isnt crashing the LDAP server/service its doing a shutdown of it according to the error log... So while a sync is happening the LDAP server is offline? How long should this take? 30secs? 3mins? 30mins? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Steven Jones Sent: Wednesday, 22 September 2010 2:27 p.m. To: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 For ipa-replica-manage list The output is my AD vuwwincodc1.vuw.ac.nz regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 2:20 p.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: Hi, yes I think you are correct, --binpw is ndded except running this crashed the LDAP serveror sends it off to zombie land and I have to reboot it! ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com --bindpwdomain admin password \ --cacert /path/to/certfile.cer adserver.example.com --passsyncdomain admin password -v Is there a log somewhere to look for why? Crashed which LDAP server? Logs are in /var/log/dirsrv-YOUR_INSTANCE_NAME. Can you provide the output of ipa-replica-manage? rob regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 1:57 p.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: This time I copied the output from the ldapsearch command dn: cn=ipa_pwd_extop,cn=plugins,cn=config and it worked... Cosmic rays maybe, those strings look identical to me. Glad its working now in any case. ? So, section 4.4 ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --bindpw password --cacert /path/to/certfile.cer adserver.example.com -v This appears to be wrong? It should be, ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --cacert /path/to/certfile.cer adserver.example.com --passsyncdomain admin password -v You're right in that --passsync is required but --bindpw should also be required. I filed https://bugzilla.redhat.com/show_bug.cgi?id=636377 for this. rob ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] probems installin freeipa v2
Steven Jones wrote: After I do the sync command, ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com --bindpw domain admin password \ --cacert /path/to/certfile.cer adserver.example.com --passsync domain admin password -v this is what starts in the error log, [22/Sep/2010:14:33:36 +1200] - slapd shutting down - signaling operation threads [22/Sep/2010:14:33:36 +1200] - slapd shutting down - closing down internal subsystems and plugins what's in the access log from around this time? This looks like some sort of bug in the directory server - the directory server did not finish shutting down . . . [22/Sep/2010:14:43:35 +1200] NSMMReplicationPlugin - error in windows_conn_get_search_result, rc=-1 [22/Sep/2010:14:43:35 +1200] NSMMReplicationPlugin - agmt=cn=meTovuwwincodc1.vuw.ac.nz636 (vuwwincodc1:636): Failed to get search operation: LDAP error 81 (Can't contact LDAP server) [22/Sep/2010:14:43:35 +1200] NSMMReplicationPlugin - failed to send dirsync search request: 2 And I think the fact that the directory server is in this weird state is what causes these errors. [22/Sep/2010:14:43:36 +1200] NSMMReplicationPlugin - Finished total update of replica agmt=cn=meTovuwwincodc1.vuw.ac.nz636 (vuwwincodc1:636). Sent 0 entries. So after ten mins the LDAP server isnt responding, After ten minutes there is some more in the error log, [22/Sep/2010:14:53:36 +1200] NSMMReplicationPlugin - Warning: incremental protocol for replica agmt=cn=meTovuwwincodc1.vuw.ac.nz636 (vuwwincodc1:636) did not shut down properly. [22/Sep/2010:14:53:37 +1200] - Waiting for 4 database threads to stop [22/Sep/2010:14:53:37 +1200] - All database threads now stopped [22/Sep/2010:14:53:37 +1200] - slapd stopped. regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rich Megginson [mailto:rmegg...@redhat.com] Sent: Wednesday, 22 September 2010 2:45 p.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: Hi, Ok, it isnt crashing the LDAP server/service its doing a shutdown of it according to the error log... What exactly do you see in the error log? Can you provide excerpts? Can you also provide excerpts of the access log from around the time of the shutdown? So while a sync is happening the LDAP server is offline? No, not possible. Something is going wrong. How long should this take? 30secs? 3mins? 30mins? regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Steven Jones Sent: Wednesday, 22 September 2010 2:27 p.m. To: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 For ipa-replica-manage list The output is my AD vuwwincodc1.vuw.ac.nz regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 2:20 p.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: Hi, yes I think you are correct, --binpw is ndded except running this crashed the LDAP serveror sends it off to zombie land and I have to reboot it! ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com --bindpwdomain admin password \ --cacert /path/to/certfile.cer adserver.example.com --passsyncdomain admin password -v Is there a log somewhere to look for why? Crashed which LDAP server? Logs are in /var/log/dirsrv-YOUR_INSTANCE_NAME. Can you provide the output of ipa-replica-manage? rob regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand -Original Message- From: Rob Crittenden [mailto:rcrit...@redhat.com] Sent: Wednesday, 22 September 2010 1:57 p.m. To: Steven Jones Cc: Freeipa-users@redhat.com Subject: Re: [Freeipa-users] probems installin freeipa v2 Steven Jones wrote: This time I copied the output from the ldapsearch command dn: cn=ipa_pwd_extop,cn=plugins,cn=config and it worked... Cosmic rays maybe, those strings look identical to me. Glad its working now in any case. ? So, section 4.4 ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --bindpw password --cacert /path/to/certfile.cer adserver.example.com -v This appears to be wrong? It should be, ipa-replica-manage add --winsync --binddn cn=administrator,cn=users,dc=example,dc=com \ --cacert /path/to/certfile.cer adserver.example.com
Re: [Freeipa-users] probems installin freeipa v2
8--- Can you reliably reproduce this behavior after restarting directory server? 8 Yes it appears so.. =error [22/Sep/2010:15:58:16 +1200] - slapd shutting down - signaling operation threads [22/Sep/2010:15:58:16 +1200] - slapd shutting down - closing down internal subsystems and plugins [22/Sep/2010:16:08:31 +1200] NSMMReplicationPlugin - error in windows_conn_get_search_result, rc=-1 [22/Sep/2010:16:08:31 +1200] NSMMReplicationPlugin - agmt=cn=meTovuwwincodc1.vuw.ac.nz636 (vuwwincodc1:636): Failed to get search operation: LDAP error 81 (Can't contact LDAP server) [22/Sep/2010:16:08:31 +1200] NSMMReplicationPlugin - failed to send dirsync search request: 2 [22/Sep/2010:16:08:32 +1200] - Waiting for 4 database threads to stop [22/Sep/2010:16:08:32 +1200] - All database threads now stopped [22/Sep/2010:16:08:32 +1200] - slapd stopped. = =access [22/Sep/2010:15:57:41 +1200] conn=6 op=15 SRCH base=dc=vuw,dc=ac,dc=nz scope=2 filter=((cn=pulse-rt)(objectClass=posixGroup)) attrs=objectClass cn userPassword gidNumber member nsUniqueId modifyTimestamp [22/Sep/2010:15:57:41 +1200] conn=6 op=15 RESULT err=0 tag=101 nentries=0 etime=0 [22/Sep/2010:15:58:16 +1200] conn=8 fd=70 slot=70 SSL connection from 130.195.53.104 to 130.195.53.104 [22/Sep/2010:15:58:16 +1200] conn=8 SSL 256-bit AES [22/Sep/2010:15:58:16 +1200] conn=8 op=0 BIND dn=cn=directory manager method=128 version=3 [22/Sep/2010:15:58:16 +1200] conn=8 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn=cn=directory manager [22/Sep/2010:15:58:16 +1200] conn=8 op=1 SRCH base=cn=config scope=0 filter=(objectClass=*) attrs=nsslapd-instancedir nsslapd-errorlog nsslapd-certdir nsslapd-schemadir [22/Sep/2010:15:58:16 +1200] conn=8 op=1 RESULT err=0 tag=101 nentries=1 etime=0 [22/Sep/2010:15:58:16 +1200] conn=8 op=2 SRCH base=cn=config,cn=ldbm database,cn=plugins,cn=config scope=0 filter=(objectClass=*) attrs=nsslapd-directory [22/Sep/2010:15:58:16 +1200] conn=8 op=2 RESULT err=0 tag=101 nentries=1 etime=0 = regards Steven Jones Technical Specialist Linux/Vmware Tele 64 4 463 6272 Victoria University Kelburn New Zealand ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users