On 1/7/12 1:52 PM, Benjamin Reed wrote:
At this point, I will do whatever is the fastest way to get things back
online. I do want to keep my user schema if possible, even if I have to
make them reset their passwords. Is it possible to recover that if I
just blow my config away and start fresh?
I
On 1/7/12 3:06 PM, Benjamin Reed wrote:
Configuration of client side components failed!
ipa-client-install returned: Command '/usr/sbin/ipa-client-install
--on-master --unattended --domain opennms.com --server
connect.opennms.com --realm OPENNMS.COM --hostname
connect.opennms.com' returned
On Thu, 2011-12-22 at 22:54 -0500, Benjamin Reed wrote:
This implies I guess the LDAP server isn't accepting this cert?
No, more that the client does not recognized the LDAP server's cert as
trusted.
It may be because the ca.crt that is downloaded has not been updated and
so the client is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 12/23/11 12:02 PM, Simo Sorce wrote:
One thing you can test is if the ca.crt exposed via http is the same
that is stored on the server in /etc/ipa/ca.crt
they are identical, I did find that the errors file is complaining about
this:
I'm attempting to configure a CentOS6 box to talk to a RHEL6.2 IPA
server. The IPA server has anonymous bind disabled since it's on the
public Internet. When I run ipa-client-install, I get the following error:
---(snip!)---
[root@nen ~]# ipa-client-install --domain=OPENNMS.COM -w pass
root
On 12/22/11 9:46 PM, Benjamin Reed wrote:
I'm attempting to configure a CentOS6 box to talk to a RHEL6.2 IPA
server. The IPA server has anonymous bind disabled since it's on the
public Internet. When I run ipa-client-install, I get the following error:
So the full log makes more sense with
