Re: [Freeipa-users] ipa group-add-member failed

On Tue, 03 Mar 2015, Ben .T.George wrote: HI Alexander, please find below error_log Sorry Ben, this is unusable. You need to follow http://www.freeipa.org/page/Howto/IPAv3_AD_trust_setup#Debugging_trust, where it asks you to enable debugging in smb.conf.empty and re-establish trust. Given that

Re: [Freeipa-users] ipa group-add-member failed

HI Alexander, please find below error_log [Tue Mar 03 11:32:15.786252 2015] [suexec:notice] [pid 4754] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [Tue Mar 03 11:32:15.936866 2015] [auth_digest:notice] [pid 4754] AH01757: generating secret for digest authentication ... [Tue Mar 0

Re: [Freeipa-users] ipa group-add-member failed

On Tue, 03 Mar 2015, Ben .T.George wrote: HI thanks for the replay. iwas going through the replays and find that you suggested to check firewall and DNS What do you see in /var/log/httpd/error_log as result of dumping netr_LogonControl2Ex structure? You never showed that. Like in https://www

Re: [Freeipa-users] ipa group-add-member failed

HI thanks for the replay. iwas going through the replays and find that you suggested to check firewall and DNS *[root@kwtpocpbis01 ~]# systemctl status firewalld* *firewalld.service - firewalld - dynamic firewall daemon* * Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled)* *

Re: [Freeipa-users] ipa group-add-member failed

On Mon, 02 Mar 2015, Ben .T.George wrote: Hi please find below output [root@kwttstfreipa01 ~]# kinit admin Password for admin@SOLIPA.LOCAL: [root@kwttstfreipa01 ~]# id admin uid=75680(admin) gid=75680(admins) groups=75680(admins) [root@kwttstfreipa01 ~]# KRB5_TRACE=/dev/stderr kvn

Re: [Freeipa-users] ipa group-add-member failed

Hi please find below output [root@kwttstfreipa01 ~]# kinit admin Password for admin@SOLIPA.LOCAL: [root@kwttstfreipa01 ~]# id admin uid=75680(admin) gid=75680(admins) groups=75680(admins) [root@kwttstfreipa01 ~]# KRB5_TRACE=/dev/stderr kvno -S cifs kwttestdc001.kwttestdc.com [16898]

Re: [Freeipa-users] ipa group-add-member failed

On Mon, 02 Mar 2015, Ben .T.George wrote: HI trust was successful ipa trust-add --type=ad *ad_domain* --admin Administrator --password and i got output like below Active directory domain administrator's password: -- Added Active Directory tr

Re: [Freeipa-users] ipa group-add-member failed

HI trust was successful ipa trust-add --type=ad *ad_domain* --admin Administrator --password and i got output like below Active directory domain administrator's password: -- Added Active Directory trust for realm "KWTTESTDC.COM" --

Re: [Freeipa-users] ipa group-add-member failed

On Mon, 02 Mar 2015, Ben .T.George wrote: HI i am getting below error. please anyone tell me what does it mean [root@kwttstfreipa01 ~]# ipa group-add-member ad_admins_external --external 'KWTTESTDC\Domain Admins' [member user]: [member group]: Group name: ad_admins_external Description: kwtte

[Freeipa-users] ipa group-add-member failed

HI i am getting below error. please anyone tell me what does it mean [root@kwttstfreipa01 ~]# ipa group-add-member ad_admins_external --external 'KWTTESTDC\Domain Admins' [member user]: [member group]: Group name: ad_admins_external Description: kwttestdc.com admins external map Failed memb