Re: [Freeipa-users] RHEL6.3 Install Problem with IPA

[Rob Crittenden]

JR Aquino wrote:

I have a weird ipa-replica-install problem that I have not been able to work 
around.

I have managed to successfully reproduce and identify the root cause of my 
pain, but I don't understand why its coming up...

My install fails with:
Starting httpd: (98)Address already in use: make_sock: could not bind to 
address 0.0.0.0:80


After much head scratching, I finally was able to reproduce the problem:

If you start httpd as the install script does, it gives the following:

service httpd start
Starting httpd: Please enter password for "internal" token:

This process doesn't create the pidfile and essentially hangs httpd on 80 and 
443

When the restart process is later called, you get the message that the 
installer is throwing:

service httpd restart
Stopping httpd:[FAILED]
Starting httpd: (98)Address already in use: make_sock: could not bind to 
address 0.0.0.0:80
no listening sockets available, shutting down
Unable to open logs
 
[FAILED]


I've verified that the content of /etc/httpd/conf/password.conf is valid and 
will 'authenticate' if passed to that internal token prompt...

mod_nss is clearly the piece that is causing the prompting but I'm not sure 
what is breaking here or how I can work around it.

Can someone help?


What version of mod_nss is this?

Can you see if there are SELinux or permission errors? Maybe 
password.conf can't be read.


rob

___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

[Freeipa-users] RHEL6.3 Install Problem with IPA

[JR Aquino]

I have a weird ipa-replica-install problem that I have not been able to work 
around.

I have managed to successfully reproduce and identify the root cause of my 
pain, but I don't understand why its coming up...

My install fails with:
Starting httpd: (98)Address already in use: make_sock: could not bind to 
address 0.0.0.0:80


After much head scratching, I finally was able to reproduce the problem:

If you start httpd as the install script does, it gives the following:

service httpd start
Starting httpd: Please enter password for "internal" token:

This process doesn't create the pidfile and essentially hangs httpd on 80 and 
443

When the restart process is later called, you get the message that the 
installer is throwing:

service httpd restart
Stopping httpd:[FAILED]
Starting httpd: (98)Address already in use: make_sock: could not bind to 
address 0.0.0.0:80
no listening sockets available, shutting down
Unable to open logs
[FAILED]


I've verified that the content of /etc/httpd/conf/password.conf is valid and 
will 'authenticate' if passed to that internal token prompt...

mod_nss is clearly the piece that is causing the prompting but I'm not sure 
what is breaking here or how I can work around it.

Can someone help?

"Keeping your head in the cloud"
~
Jr Aquino | Sr. Information Security Specialist
GIAC Exploit Researcher and Advanced Penetration Tester |
GIAC Certified Incident Handler | GIAC WebApp Penetration Tester
Citrix Online | 7408 Hollister Avenue | Goleta, CA 
93117
T:  +1 805.690.3478
C: +1 805.717.0365
jr.aqu...@citrix.com
http://www.citrixonline.com


___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users