I did a little debugging, and the problem happens because
krb5-kdc.service fails to start with:
Feb 02 15:22:34 krb5-test systemd[1]: Starting Kerberos 5 Key Distribution
Center...
Feb 02 15:22:34 krb5-test krb5kdc[3957]: Cannot open DB2 database
'/var/lib/krb5kdc/principal': No such file or directory - while initializing
database for realm LXD
Feb 02 15:22:34 krb5-test krb5kdc[3957]: krb5kdc: cannot initialize realm LXD -
see log file for details
Feb 02 15:22:34 krb5-test systemd[1]: krb5-kdc.service: Control process exited,
code=exited, status=1/FAILURE
Feb 02 15:22:34 krb5-test systemd[1]: krb5-kdc.service: Failed with result
'exit-code'.
Feb 02 15:22:34 krb5-test systemd[1]: Failed to start Kerberos 5 Key
Distribution Center.
systemd-invoke will try to run systemctl like this:
systemctl --quiet --system restart krb5-kdc.service
which fails because of the problem mentioned above.
I don't think this is a problem with init-system-helpers, but rather an
issue with krb5-kdc indeed. Also, I believe it's worth reporting this
bug to Debian, since they suffer from it too.
** Also affects: krb5 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to init-system-helpers in
Ubuntu.
https://bugs.launchpad.net/bugs/2003756
Title:
Cannot configure krb5-kdc on Ubuntu Jammy 22.04.01, "Could not execute
systemctl: at /usr/bin/deb-systemd-invoke line 142."
Status in init-system-helpers package in Ubuntu:
New
Status in krb5 package in Ubuntu:
New
Bug description:
I have a fresh install of Ubuntu Server 22.04.01 LTS. After
installing the server and running all updates, I run the following
command:
apt -y install slapd ldap-utils schema2ldif sasl2-bin
libsasl2-modules-gssapi-mit krb5-kdc-ldap krb5-admin-server krb5-kdc
This will be installing krb5-kdc 1.19.2-2.
This is in preparation for setting up an OpenLDAP server, a Kerberos
server with an LDAP backend, and saslauthd for pass-through
authentication. krb5-kdc was auto-selected when running the steps in
the guide here in my development environment:
https://ubuntu.com/server/docs/service-kerberos-with-openldap-backend
When installing that, I get the following in the output:
Setting up krb5-kdc (1.19.2-2) ...
Created symlink /etc/systemd/system/multi-user.target.wants/krb5-kdc.service
→ /lib/systemd/system/krb5-kdc.service.
Could not execute systemctl: at /usr/bin/deb-systemd-invoke line 142.
I do get the prompts for the realm, kdc, and admin server hostnames,
and they are reflected in /etc/krb5.conf. If I then run the
following:
dpkg-reconfigure krb5-kdc
I am prompted for whether I want the package to create the Kerberos
KDC configuration automatically, and when I say yes, it then repeats
the following error:
Could not execute systemctl: at /usr/bin/deb-systemd-invoke line 142.
I cannot find any further debug in the syslog or anything to indicate
what the root cause is; the list of packages here are all installed
together on a separate development server where I experimented with
the configuration I will be deploying here in production so I don't
think it's incompatible packages in the install list, but I am open to
feedback on that.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/init-system-helpers/+bug/2003756/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
