Re: [Freeipa-users] Preserved users not replicated to new master (FreeIPA 4.2.0)

2016-02-29 Thread thierry bordaz 

Hi Justin,

   I was trying to reproduce this but I think I am missing some steps.
   Do you mind reviewing my testcase to check what is missing ?
   The test case  is :
   install master M, prepare replica (+copy of gpg), install replica
   (new master) R.
   On R:

 * Authenticate as 'admin'
 * 'ipa user-add '
 * ipa user-del --preserve 

   On M:

 * Authenticate as 'admin'
 * ipa user-find --preserved=true  <--- here the preserved 
   is found

   Is it similar to what you tested ?

   thanks
   theirry

On 02/27/2016 06:20 AM, Justin Bushey wrote:

Hello,

I've noticed that when creating a new IPA master users that are set to 
be Preserved after deletion are not being replicated to the new 
master. I haven't been able to experiment much with this since I'm 
working in our production environment, but I did notice that if I 
restore them as active users and re-initialize the new master I can 
then move them to the 'Preserved' category. This change is replicated.


I'm setting up the new master in the normal manner:

On existing master:
ipa-replica-prepare --ip-address x.x.x.x replica.domain.com 



And then using ipa-replica-install on the new master:

ipa-replica-install --setup-dns --setup-ca --no-reverse --forwarder 
x.x.x.x --forwarder x.x.x.x --ip-address=x.x.x.x 
replica-info-replica.domain.com.gpg


I'm just wondering if there's something I'm doing wrong, if this is by 
design, or if this is an actual bug.


Thanks,

Justin M. Bushey
Systems Administrator
InfoRelay Online Systems, Inc.




-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project

[Freeipa-users] Preserved users not replicated to new master (FreeIPA 4.2.0)

2016-02-26 Thread Justin Bushey 
Hello,

I've noticed that when creating a new IPA master users that are set to be
Preserved after deletion are not being replicated to the new master. I
haven't been able to experiment much with this since I'm working in our
production environment, but I did notice that if I restore them as active
users and re-initialize the new master I can then move them to the
'Preserved' category. This change is replicated.

I'm setting up the new master in the normal manner:

On existing master:
ipa-replica-prepare --ip-address x.x.x.x replica.domain.com

And then using ipa-replica-install on the new master:

ipa-replica-install --setup-dns --setup-ca --no-reverse --forwarder x.x.x.x
--forwarder x.x.x.x --ip-address=x.x.x.x replica-info-replica.domain.com.gpg

I'm just wondering if there's something I'm doing wrong, if this is by
design, or if this is an actual bug.

Thanks,

Justin M. Bushey
Systems Administrator
InfoRelay Online Systems, Inc.
-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project