Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-11-03 Thread Yogesh Sharma
LDAPS is also fine: [root@ipa-inf-prd-ng2-02 ~]# ldapsearch -x -H ldaps:// ipa-inf-prd-ng2-01.klikpay.int -s base -b '' namingContexts # extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: namingContexts # # dn: namingContexts: cn=changelog namingConte

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-11-02 Thread Martin Basti
On 02.11.2015 08:01, Yogesh Sharma wrote: Listening: [root@ipa-inf-prd-ng2-02 ~]# telnet ipa-inf-prd-ng2-01.klikpay.int 636 Trying 172.16.32.10... Connected to ipa-inf-prd-ng2-01.klikpay.int . Escape character i

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-11-02 Thread Yogesh Sharma
Tried to re-enroll the replica however, getting the same error, though I am able to connect to server. = Starting replication, please wait until this has completed. [ipa-inf-prd-ng2-01.klikpay.int] reports: Update failed! Status: [-1 - LDAP error: Can't contact LDAP server] [error] Runti

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-11-01 Thread Yogesh Sharma
Listening: [root@ipa-inf-prd-ng2-02 ~]# telnet ipa-inf-prd-ng2-01.klikpay.int 636 Trying 172.16.32.10... Connected to ipa-inf-prd-ng2-01.klikpay.int. Escape character is '^]'. *Best Regards,* *__* *Yogesh Sharma* *Email: yks0...@gmail.com | Web: www.init

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-11-01 Thread Alexander Bokovoy
On Mon, 02 Nov 2015, Yogesh Sharma wrote: Adding to this, I am able to do ldsearch from the server which I am trying to make replica. [root@ipa-inf-prd-ng2-02 ~]# ldapsearch -x -H ldap:// ipa-inf-prd-ng2-01.klikpay.int -s base -b '' namingContexts # extended LDIF # # LDAPv3 # base <> with scope

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-11-01 Thread Yogesh Sharma
Adding to this, I am able to do ldsearch from the server which I am trying to make replica. [root@ipa-inf-prd-ng2-02 ~]# ldapsearch -x -H ldap:// ipa-inf-prd-ng2-01.klikpay.int -s base -b '' namingContexts # extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # reque

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-10-30 Thread Yogesh Sharma
Thanks Rob & Martin. I will check in Logs. However when I checked last time I noticed that "pki-tomcat" service was not present in ipactl status output on replica server. Connectivity between master (ipa-inf-prd-ng2-01) and slave (02) is their , able to do telnet/nc on 389 686 from slave to master

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-10-30 Thread Rob Crittenden
Martin Basti wrote: > > > On 30.10.2015 11:54, Yogesh Sharma wrote: >> Additionally, On Replica UI, I am getting below Error Message: >> >> >> IPA Error 4301: CertificateOperationError >> >> Certificate operation cannot be completed: Unable to communicate with >> CMS (Not Found) >> > Hell

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-10-30 Thread Rob Crittenden
Yogesh Sharma wrote: > Team, > > Noticed that user created on IPA Master are not replicating on Replica. > > Also, we create a new Zone in Master, However we do not see the same in > replica server. You need to figure out why ipa-inf-prd-ng2-01.klikpay.int can't contact port 389 on ipa-inf-prd-n

[Freeipa-users] IPA Replication not working for User and DNS

2015-10-30 Thread Yogesh Sharma
Team, Noticed that user created on IPA Master are not replicating on Replica. Also, we create a new Zone in Master, However we do not see the same in replica server. Below is the information: >From Master: [root@ipa-inf-prd-ng2-01 ~]# ipa-replica-manage list -v ipa-inf-prd-ng2-01.klikpay.int

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-10-30 Thread Martin Basti
On 30.10.2015 11:54, Yogesh Sharma wrote: Additionally, On Replica UI, I am getting below Error Message: IPA Error 4301: CertificateOperationError Certificate operation cannot be completed: Unable to communicate with CMS (Not Found) Hello, can you check /var/log/httpd/error_log i

Re: [Freeipa-users] IPA Replication not working for User and DNS

2015-10-30 Thread Yogesh Sharma
Additionally, On Replica UI, I am getting below Error Message: IPA Error 4301: CertificateOperationError Certificate operation cannot be completed: Unable to communicate with CMS (Not Found) *Best Regards,* *__* *Yogesh Sharma* *Email: yks0...@gmail.com

Re: [Freeipa-users] ipa replication not working

2015-02-16 Thread Martin Kosek
On 02/16/2015 10:29 AM, alireza baghery wrote: > i install IPA on CENTOS 6.5 with Replication > when configure every role in IPA, role Copy to Replica > but Conversely, it does not work (role from Replica DO not copy to IPA) > i do the following: > > *on server IPA:* > #ipa-replica-manage list >

[Freeipa-users] ipa replication not working

2015-02-16 Thread alireza baghery
i install IPA on CENTOS 6.5 with Replication when configure every role in IPA, role Copy to Replica but Conversely, it does not work (role from Replica DO not copy to IPA) i do the following: *on server IPA:* #ipa-replica-manage list ipa... master ipareplica...master #ipa-replica-manage list