Hi List
I've been following the AD integration guide for IPAv3 here:
http://www.freeipa.org/page/Howto/IPAv3_AD_trust_setup
However, when I reach the Add trust with AD domain step I get the
following error:
---
[root@ipa ~]# ipa trust-add --type=ad mhatest.local --admin Administrator
--password
Active directory domain administrator's password:
ipa: ERROR: CIFS server communication error: code -1073741801,
message Memory allocation error (both may be None)
---
... And I'm at a loss for how to interpret this :-) Details on my setup:
- Windows 2008 R2 AD DC
- CentOS Linux 6.5 IPA server (installed from yum repos)
I've attached the output of ipa trust-add with the debug flag set. There
is also a summary of the packet conversation between the IPA server and the
AD DC during the run of ipa trust-add:
---
[root@ipa ~]# tcpdump host 172.16.107.109 and host 172.16.107.108
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
00:05:28.624337 IP ipa.linux.mhatest.local.48394
kwthqtstad001.mhatest.local.domain: 0+ A? ipa.linux.mhatest.local. (41)
00:05:28.624857 IP kwthqtstad001.mhatest.local.domain
ipa.linux.mhatest.local.48394: 0 NXDomain* 0/1/0 (121)
00:05:33.594937 ARP, Request who-has ipa.linux.mhatest.local
(00:50:56:9c:18:d4 (oui Unknown)) tell kwthqtstad001.mhatest.local, length
46
00:05:33.594952 ARP, Reply ipa.linux.mhatest.local is-at 00:50:56:9c:18:d4
(oui Unknown), length 28
00:06:05.056522 IP ipa.linux.mhatest.local.54679
kwthqtstad001.mhatest.local.domain: 0+ SRV? _ldap._tcp.linux.mhatest.local.
(48)
00:06:05.057022 IP kwthqtstad001.mhatest.local.domain
ipa.linux.mhatest.local.54679: 0* 1/0/0 SRV ipa.linux.mhatest.local.:389 0
100 (91)
00:06:09.599671 ARP, Request who-has ipa.linux.mhatest.local
(00:50:56:9c:18:d4 (oui Unknown)) tell kwthqtstad001.mhatest.local, length
46
00:06:09.599686 ARP, Reply ipa.linux.mhatest.local is-at 00:50:56:9c:18:d4
(oui Unknown), length 28
00:06:15.376853 IP ipa.linux.mhatest.local.44400
kwthqtstad001.mhatest.local.domain: 0+ SRV? _ldap._tcp.linux.mhatest.local.
(48)
00:06:15.377319 IP kwthqtstad001.mhatest.local.domain
ipa.linux.mhatest.local.44400: 0* 1/0/0 SRV ipa.linux.mhatest.local.:389 0
100 (91)
00:06:20.375747 ARP, Request who-has kwthqtstad001.mhatest.local tell
ipa.linux.mhatest.local, length 28
00:06:20.376025 ARP, Reply kwthqtstad001.mhatest.local is-at
00:15:5d:0a:0d:8b (oui Unknown), length 46
Any help on how to fix this and establish the AD trust relationship would
be much appreciated!
Many thanks in advance,
Traiano
The DNS configuration scenario I'm using is :
http://www.freeipa.org/page/Howto/IPAv3_AD_trust_setup#If_IPA_is_subdomain_of_AD
dump1.log
Description: Binary data
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go To http://freeipa.org for more info on the project
