Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 582511 Details for
Bug 818123
Install exit with with error "Configuration of CA failed"
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
f17-ipaserver-install.log
ipaserver-install.log (text/x-log), 42.90 KB, created by
Thorsten Scherf
on 2012-05-06 22:03:04 UTC
(
hide
)
Description:
f17-ipaserver-install.log
Filename:
MIME Type:
Creator:
Thorsten Scherf
Created:
2012-05-06 22:03:04 UTC
Size:
42.90 KB
patch
obsolete
>2012-05-06T21:28:42Z DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:28:42Z DEBUG Loading Index file from '/var/lib/ipa/sysrestore/sysrestore.index' >2012-05-06T21:28:42Z DEBUG httpd is not configured >2012-05-06T21:28:42Z DEBUG kadmin is not configured >2012-05-06T21:28:42Z DEBUG dirsrv is not configured >2012-05-06T21:28:42Z DEBUG pki-cad is not configured >2012-05-06T21:28:42Z DEBUG pkids is not configured >2012-05-06T21:28:42Z DEBUG install is not configured >2012-05-06T21:28:42Z DEBUG krb5kdc is not configured >2012-05-06T21:28:42Z DEBUG ntpd is not configured >2012-05-06T21:28:42Z DEBUG named is not configured >2012-05-06T21:28:42Z DEBUG ipa_memcached is not configured >2012-05-06T21:28:42Z DEBUG filestore is tracking no files >2012-05-06T21:28:42Z DEBUG Loading Index file from '/var/lib/ipa-client/sysrestore/sysrestore.index' >2012-05-06T21:28:42Z DEBUG /sbin/ipa-server-install was invoked with options: {'zone_refresh': 30, 'reverse_zone': None, 'setup_pkinit': True, 'realm_name': None, 'create_sshfp': True, 'conf_sshd': True, 'conf_ntp': True, 'subject': None, 'no_forwarders': False, 'ui_redirect': True, 'domain_name': None, 'idmax': 0, 'hbac_allow': False, 'no_reverse': False, 'dirsrv_pkcs12': None, 'unattended': False, 'pkinit_pkcs12': None, 'selfsign': False, 'trust_sshfp': False, 'external_ca_file': None, 'no_host_dns': False, 'http_pkcs12': None, 'zone_notif': False, 'forwarders': [CheckedIPAddress('192.168.122.1')], 'idstart': 1219000000, 'external_ca': False, 'ip_address': None, 'zonemgr': None, 'setup_dns': True, 'host_name': None, 'debug': False, 'external_cert_file': None, 'uninstall': False, 'pkinit_pin': None} >2012-05-06T21:28:42Z DEBUG missing options might be asked for interactively later > >2012-05-06T21:28:42Z DEBUG Loading Index file from '/var/lib/ipa/sysrestore/sysrestore.index' >2012-05-06T21:28:42Z DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:28:46Z DEBUG will use host_name: rawhide.virt.tuxgeek.de > >2012-05-06T21:28:47Z DEBUG read domain_name: virt.tuxgeek.de > >2012-05-06T21:28:47Z DEBUG args=/sbin/ip -family inet -oneline address show >2012-05-06T21:28:47Z DEBUG stdout=1: lo inet 127.0.0.1/8 scope host lo >2: eth0 inet 192.168.122.138/24 brd 192.168.122.255 scope global eth0 > >2012-05-06T21:28:47Z DEBUG stderr= >2012-05-06T21:28:48Z DEBUG read realm_name: VIRT.TUXGEEK.DE > >2012-05-06T21:29:01Z DEBUG will use dns_forwarders: [CheckedIPAddress('192.168.122.1')] > >2012-05-06T21:29:03Z DEBUG importing all plugin modules in '/usr/lib/python2.7/site-packages/ipalib/plugins'... >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/aci.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/automember.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/automount.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/baseldap.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/batch.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/cert.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/config.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/delegation.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/dns.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/entitle.py' >2012-05-06T21:29:03Z DEBUG skipping plugin module ipalib.plugins.entitle: No module named rhsm.connection >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/group.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/hbacrule.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/hbacsvc.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/hbacsvcgroup.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/hbactest.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/host.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/hostgroup.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/internal.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/kerberos.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/krbtpolicy.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/migration.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/misc.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/netgroup.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/passwd.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/permission.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/ping.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/pkinit.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/privilege.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/pwpolicy.py' >2012-05-06T21:29:03Z DEBUG args=klist -V >2012-05-06T21:29:03Z DEBUG stdout=Kerberos 5 version 1.10 > >2012-05-06T21:29:03Z DEBUG stderr= >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/role.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/selfservice.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/selinuxusermap.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/service.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/sudocmd.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/sudocmdgroup.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/sudorule.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/user.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/virtual.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipalib/plugins/xmlclient.py' >2012-05-06T21:29:03Z DEBUG importing all plugin modules in '/usr/lib/python2.7/site-packages/ipaserver/install/plugins'... >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipaserver/install/plugins/baseupdate.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipaserver/install/plugins/dns.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipaserver/install/plugins/fix_replica_memberof.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipaserver/install/plugins/rename_managed.py' >2012-05-06T21:29:03Z DEBUG importing plugin module '/usr/lib/python2.7/site-packages/ipaserver/install/plugins/updateclient.py' >2012-05-06T21:29:04Z DEBUG args=/usr/sbin/groupadd -r dirsrv >2012-05-06T21:29:04Z DEBUG stdout= >2012-05-06T21:29:04Z DEBUG stderr= >2012-05-06T21:29:04Z DEBUG done adding DS group >2012-05-06T21:29:04Z DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:29:04Z DEBUG Configuring ntpd >2012-05-06T21:29:04Z DEBUG [1/4]: stopping ntpd >2012-05-06T21:29:04Z DEBUG args=/bin/systemctl is-active ntpd.service >2012-05-06T21:29:04Z DEBUG stdout=unknown > >2012-05-06T21:29:04Z DEBUG stderr= >2012-05-06T21:29:04Z DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:29:04Z DEBUG args=/bin/systemctl stop ntpd.service >2012-05-06T21:29:04Z DEBUG stdout= >2012-05-06T21:29:04Z DEBUG stderr= >2012-05-06T21:29:04Z DEBUG duration: 0 seconds >2012-05-06T21:29:04Z DEBUG [2/4]: writing configuration >2012-05-06T21:29:04Z DEBUG Backing up system configuration file '/etc/ntp.conf' >2012-05-06T21:29:04Z DEBUG Saving Index File to '/var/lib/ipa/sysrestore/sysrestore.index' >2012-05-06T21:29:04Z DEBUG Backing up system configuration file '/etc/sysconfig/ntpd' >2012-05-06T21:29:04Z DEBUG Saving Index File to '/var/lib/ipa/sysrestore/sysrestore.index' >2012-05-06T21:29:04Z DEBUG duration: 0 seconds >2012-05-06T21:29:04Z DEBUG [3/4]: configuring ntpd to start on boot >2012-05-06T21:29:04Z DEBUG args=/bin/systemctl is-enabled ntpd.service >2012-05-06T21:29:04Z DEBUG stdout=disabled > >2012-05-06T21:29:04Z DEBUG stderr= >2012-05-06T21:29:04Z DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:29:04Z DEBUG args=/bin/systemctl enable ntpd.service >2012-05-06T21:29:04Z DEBUG stdout= >2012-05-06T21:29:04Z DEBUG stderr=ln -s '/usr/lib/systemd/system/ntpd.service' '/etc/systemd/system/multi-user.target.wants/ntpd.service' > >2012-05-06T21:29:04Z DEBUG duration: 0 seconds >2012-05-06T21:29:04Z DEBUG [4/4]: starting ntpd >2012-05-06T21:29:04Z DEBUG args=/bin/systemctl start ntpd.service >2012-05-06T21:29:04Z DEBUG stdout= >2012-05-06T21:29:04Z DEBUG stderr= >2012-05-06T21:29:04Z DEBUG duration: 0 seconds >2012-05-06T21:29:04Z DEBUG done configuring ntpd. >2012-05-06T21:29:04Z DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:29:04Z DEBUG Configuring directory server for the CA: Estimated time 30 seconds >2012-05-06T21:29:04Z DEBUG [1/3]: creating directory server user >2012-05-06T21:29:04Z DEBUG adding ds user pkisrv >2012-05-06T21:29:06Z DEBUG args=/usr/sbin/useradd -g dirsrv -c PKI DS System User -d /var/lib/dirsrv -s /sbin/nologin -M -r pkisrv >2012-05-06T21:29:06Z DEBUG stdout= >2012-05-06T21:29:06Z DEBUG stderr= >2012-05-06T21:29:06Z DEBUG done adding user >2012-05-06T21:29:06Z DEBUG duration: 2 seconds >2012-05-06T21:29:06Z DEBUG [2/3]: creating directory server instance >2012-05-06T21:29:06Z DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:29:06Z DEBUG writing inf template >2012-05-06T21:29:06Z DEBUG >[General] >FullMachineName= rawhide.virt.tuxgeek.de >SuiteSpotUserID= pkisrv >SuiteSpotGroup= dirsrv >ServerRoot= /usr/lib/dirsrv >[slapd] >ServerPort= 7389 >ServerIdentifier= PKI-IPA >Suffix= dc=virt,dc=tuxgeek,dc=de >RootDN= cn=Directory Manager > >2012-05-06T21:29:06Z DEBUG calling setup-ds.pl >2012-05-06T21:29:11Z DEBUG args=/usr/sbin/setup-ds.pl --silent --logfile - -f /tmp/tmpchvP8T >2012-05-06T21:29:11Z DEBUG stdout=[12/05/06:23:29:11] - [Setup] Info Your new DS instance 'PKI-IPA' was successfully created. >Your new DS instance 'PKI-IPA' was successfully created. >[12/05/06:23:29:11] - [Setup] Success Exiting . . . >Log file is '-' > >Exiting . . . >Log file is '-' > > >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG completed creating ds instance >2012-05-06T21:29:11Z DEBUG duration: 4 seconds >2012-05-06T21:29:11Z DEBUG [3/3]: restarting directory server >2012-05-06T21:29:11Z DEBUG args=/bin/systemctl --system daemon-reload >2012-05-06T21:29:11Z DEBUG stdout= >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG args=/usr/sbin/selinuxenabled >2012-05-06T21:29:11Z DEBUG stdout= >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG args=/sbin/restorecon /etc/sysconfig/dirsrv.systemd >2012-05-06T21:29:11Z DEBUG stdout= >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG args=/bin/systemctl --system daemon-reload >2012-05-06T21:29:11Z DEBUG stdout= >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG args=/bin/systemctl restart dirsrv@PKI-IPA.service >2012-05-06T21:29:11Z DEBUG stdout= >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG args=/bin/systemctl is-active dirsrv@PKI-IPA.service >2012-05-06T21:29:11Z DEBUG stdout=active > >2012-05-06T21:29:11Z DEBUG stderr= >2012-05-06T21:29:11Z DEBUG duration: 0 seconds >2012-05-06T21:29:11Z DEBUG done configuring pkids. >2012-05-06T21:29:11Z DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state' >2012-05-06T21:29:11Z DEBUG Configuring certificate server: Estimated time 3 minutes 30 seconds >2012-05-06T21:29:11Z DEBUG [1/18]: creating certificate server user >2012-05-06T21:29:11Z DEBUG adding ca user pkiuser >2012-05-06T21:29:12Z DEBUG args=/usr/sbin/useradd -c CA System User -d /var/lib -s /sbin/nologin -M -r pkiuser >2012-05-06T21:29:12Z DEBUG stdout= >2012-05-06T21:29:12Z DEBUG stderr= >2012-05-06T21:29:12Z DEBUG done adding user >2012-05-06T21:29:12Z DEBUG duration: 0 seconds >2012-05-06T21:29:12Z DEBUG [2/18]: creating pki-ca instance >2012-05-06T21:29:17Z DEBUG args=/usr/bin/pkicreate -pki_instance_root /var/lib -pki_instance_name pki-ca -subsystem_type ca -agent_secure_port 9443 -ee_secure_port 9444 -admin_secure_port 9445 -ee_secure_client_auth_port 9446 -unsecure_port 9180 -tomcat_server_port 9701 -redirect conf=/etc/pki-ca -redirect logs=/var/log/pki-ca -enable_proxy >2012-05-06T21:29:17Z DEBUG stdout=PKI instance creation Utility ... > >Capturing installation information in /var/log/pki-ca-install.log > >PKI instance creation completed ... > >Installation information recorded in /var/log/pki-ca-install.log. >Before proceeding with the configuration, make sure >the firewall settings of this machine permit proper >access to this subsystem. > >Please start the configuration by accessing: > >https://rawhide.virt.tuxgeek.de:9445/ca/admin/console/config/login?pin=mrcdw69FLWLemla4GPsP > >After configuration, the server can be operated by the command: > > /bin/systemctl restart pki-cad@pki-ca.service > > >2012-05-06T21:29:17Z DEBUG stderr=[error] Failed setting selinux context pki_ca_port_t for 9180. Port already defined otherwise. >[error] Failed setting selinux context pki_ca_port_t for 9701. Port already defined otherwise. >[error] Failed setting selinux context pki_ca_port_t for 9443. Port already defined otherwise. >[error] Failed setting selinux context pki_ca_port_t for 9444. Port already defined otherwise. >[error] Failed setting selinux context pki_ca_port_t for 9446. Port already defined otherwise. >[error] Failed setting selinux context pki_ca_port_t for 9445. Port already defined otherwise. >[error] Failed setting selinux context pki_ca_port_t for 9447. Port already defined otherwise. > >2012-05-06T21:29:17Z DEBUG duration: 4 seconds >2012-05-06T21:29:17Z DEBUG [3/18]: configuring certificate server instance >2012-05-06T21:29:19Z DEBUG args=/usr/bin/perl /usr/bin/pkisilent ConfigureCA -cs_hostname rawhide.virt.tuxgeek.de -cs_port 9445 -client_certdb_dir /tmp/tmp-n29ZfY -client_certdb_pwd XXXXXXXX -preop_pin mrcdw69FLWLemla4GPsP -domain_name IPA -admin_user admin -admin_email root@localhost -admin_password XXXXXXXX -agent_name ipa-ca-agent -agent_key_size 2048 -agent_key_type rsa -agent_cert_subject CN=ipa-ca-agent,O=VIRT.TUXGEEK.DE -ldap_host rawhide.virt.tuxgeek.de -ldap_port 7389 -bind_dn cn=Directory Manager -bind_password XXXXXXXX -base_dn o=ipaca -db_name ipaca -key_size 2048 -key_type rsa -key_algorithm SHA256withRSA -save_p12 true -backup_pwd XXXXXXXX -subsystem_name pki-cad -token_name internal -ca_subsystem_cert_subject_name CN=CA Subsystem,O=VIRT.TUXGEEK.DE -ca_ocsp_cert_subject_name CN=OCSP Subsystem,O=VIRT.TUXGEEK.DE -ca_server_cert_subject_name CN=rawhide.virt.tuxgeek.de,O=VIRT.TUXGEEK.DE -ca_audit_signing_cert_subject_name CN=CA Audit,O=VIRT.TUXGEEK.DE -ca_sign_cert_subject_name CN=Certificate Authority,O=VIRT.TUXGEEK.DE -external false -clone false >2012-05-06T21:29:19Z DEBUG stdout=libpath=/usr/lib >####################################################################### >CRYPTO INIT WITH CERTDB:/tmp/tmp-n29ZfY >tokenpwd:XXXXXXXX >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >in TestCertApprovalCallback.approve() >Peer cert details: > subject: CN=rawhide.virt.tuxgeek.de,O=2012-05-06 23:29:13 > issuer: CN=rawhide.virt.tuxgeek.de,O=2012-05-06 23:29:13 > serial: 0 >item 1 reason=-8156 depth=1 > cert details: > subject: CN=rawhide.virt.tuxgeek.de,O=2012-05-06 23:29:13 > issuer: CN=rawhide.virt.tuxgeek.de,O=2012-05-06 23:29:13 > serial: 0 >item 2 reason=-8172 depth=1 > cert details: > subject: CN=rawhide.virt.tuxgeek.de,O=2012-05-06 23:29:13 > issuer: CN=rawhide.virt.tuxgeek.de,O=2012-05-06 23:29:13 > serial: 0 >importing certificate. >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/login?pin=mrcdw69FLWLemla4GPsP&xml=true >RESPONSE STATUS: HTTP/1.1 302 Moved Temporarily >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Set-Cookie: JSESSIONID=2AA0399277BE1237542CBDE9ED5B3ADC; Path=/ca; Secure >RESPONSE HEADER: Location: https://rawhide.virt.tuxgeek.de:9445/ca/admin/console/config/wizard >RESPONSE HEADER: Content-Type: text/html;charset=UTF-8 >RESPONSE HEADER: Content-Length: 0 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:18 GMT >RESPONSE HEADER: Connection: keep-alive >xml returned: >cookie list: JSESSIONID=2AA0399277BE1237542CBDE9ED5B3ADC; Path=/ca; Secure >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/wizard?p=0&op=next&xml=true >RESPONSE STATUS: HTTP/1.1 200 OK >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Content-Type: application/xml;charset=UTF-8 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:18 GMT >RESPONSE HEADER: Connection: close ><?xml version="1.0" encoding="UTF-8"?> ><!-- BEGIN COPYRIGHT BLOCK > This program is free software; you can redistribute it and/or modify > it under the terms of the GNU General Public License as published by > the Free Software Foundation; version 2 of the License. > > This program is distributed in the hope that it will be useful, > but WITHOUT ANY WARRANTY; without even the implied warranty of > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > GNU General Public License for more details. > > You should have received a copy of the GNU General Public License along > with this program; if not, write to the Free Software Foundation, Inc., > 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. > > Copyright (C) 2007 Red Hat, Inc. > All rights reserved. > END COPYRIGHT BLOCK --> ><response> > <panel>admin/console/config/modulepanel.vm</panel> > <res/> > <showApplyButton/> > <status>display</status> > <subpanelno>2</subpanelno> > <sms> > <Vector> > <Module> > <CommonName>NSS Internal PKCS #11 Module</CommonName> > <UserFriendlyName>NSS Internal PKCS #11 Module</UserFriendlyName> > <ImagePath>../img/clearpixel.gif</ImagePath> > </Module> > <Module> > <CommonName>nfast</CommonName> > <UserFriendlyName>nCipher's nFast Token Hardware Module</UserFriendlyName> > <ImagePath>../img/clearpixel.gif</ImagePath> > </Module> > <Module> > <CommonName>lunasa</CommonName> > <UserFriendlyName>SafeNet's LunaSA Token Hardware Module</UserFriendlyName> > <ImagePath>../img/clearpixel.gif</ImagePath> > </Module> > </Vector> > </sms> > <errorString/> > <size>19</size> > <title>Key Store</title> > <panels> > <Vector> > <Panel> > <Id>welcome</Id> > <Name>Welcome</Name> > </Panel> > <Panel> > <Id>module</Id> > <Name>Key Store</Name> > </Panel> > <Panel> > <Id>confighsmlogin</Id> > <Name>ConfigHSMLogin</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Security Domain</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>subsystem</Id> > <Name>Subsystem Type</Name> > </Panel> > <Panel> > <Id>clone</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>restorekeys</Id> > <Name>Import Keys and Certificates</Name> > </Panel> > <Panel> > <Id>cahierarchy</Id> > <Name>PKI Hierarchy</Name> > </Panel> > <Panel> > <Id>database</Id> > <Name>Internal Database</Name> > </Panel> > <Panel> > <Id>size</Id> > <Name>Key Pairs</Name> > </Panel> > <Panel> > <Id>subjectname</Id> > <Name>Subject Names</Name> > </Panel> > <Panel> > <Id>certrequest</Id> > <Name>Requests and Certificates</Name> > </Panel> > <Panel> > <Id>backupkeys</Id> > <Name>Export Keys and Certificates</Name> > </Panel> > <Panel> > <Id>savepk12</Id> > <Name>Save Keys and Certificates</Name> > </Panel> > <Panel> > <Id>importcachain</Id> > <Name>Import CA's Certificate Chain</Name> > </Panel> > <Panel> > <Id>admin</Id> > <Name>Administrator</Name> > </Panel> > <Panel> > <Id>importadmincert</Id> > <Name>Import Administrator's Certificate</Name> > </Panel> > <Panel> > <Id>done</Id> > <Name>Done</Name> > </Panel> > </Vector> > </panels> > <p>1</p> > <name>CA Setup Wizard</name> > <oms> > <Vector/> > </oms> > <defTok>Internal Key Storage Token</defTok> > <req/> > <panelname>module</panelname> ></response> >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/wizard?p=1&op=next&xml=true&choice=Internal+Key+Storage+Token >RESPONSE STATUS: HTTP/1.1 200 OK >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Content-Type: application/xml;charset=UTF-8 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:18 GMT >RESPONSE HEADER: Connection: close ><?xml version="1.0" encoding="UTF-8"?> ><!-- BEGIN COPYRIGHT BLOCK > This program is free software; you can redistribute it and/or modify > it under the terms of the GNU General Public License as published by > the Free Software Foundation; version 2 of the License. > > This program is distributed in the hope that it will be useful, > but WITHOUT ANY WARRANTY; without even the implied warranty of > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > GNU General Public License for more details. > > You should have received a copy of the GNU General Public License along > with this program; if not, write to the Free Software Foundation, Inc., > 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. > > Copyright (C) 2007 Red Hat, Inc. > All rights reserved. > END COPYRIGHT BLOCK --> ><response> > <machineName>rawhide.virt.tuxgeek.de</machineName> > <panel>admin/console/config/securitydomainpanel.vm</panel> > <res/> > <showApplyButton/> > <initCommand>/usr/bin/pkicontrol</initCommand> > <sdomainName>VirtTuxgeek Domain</sdomainName> > <sdomainURL>https://rawhide.virt.tuxgeek.de:9445</sdomainURL> > <http_ee_port>80</http_ee_port> > <systemname>CA</systemname> > <title>Security Domain</title> > <panels> > <Vector> > <Panel> > <Id>welcome</Id> > <Name>Welcome</Name> > </Panel> > <Panel> > <Id>module</Id> > <Name>Key Store</Name> > </Panel> > <Panel> > <Id>confighsmlogin</Id> > <Name>ConfigHSMLogin</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Security Domain</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>subsystem</Id> > <Name>Subsystem Type</Name> > </Panel> > <Panel> > <Id>clone</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>restorekeys</Id> > <Name>Import Keys and Certificates</Name> > </Panel> > <Panel> > <Id>cahierarchy</Id> > <Name>PKI Hierarchy</Name> > </Panel> > <Panel> > <Id>database</Id> > <Name>Internal Database</Name> > </Panel> > <Panel> > <Id>size</Id> > <Name>Key Pairs</Name> > </Panel> > <Panel> > <Id>subjectname</Id> > <Name>Subject Names</Name> > </Panel> > <Panel> > <Id>certrequest</Id> > <Name>Requests and Certificates</Name> > </Panel> > <Panel> > <Id>backupkeys</Id> > <Name>Export Keys and Certificates</Name> > </Panel> > <Panel> > <Id>savepk12</Id> > <Name>Save Keys and Certificates</Name> > </Panel> > <Panel> > <Id>importcachain</Id> > <Name>Import CA's Certificate Chain</Name> > </Panel> > <Panel> > <Id>admin</Id> > <Name>Administrator</Name> > </Panel> > <Panel> > <Id>importadmincert</Id> > <Name>Import Administrator's Certificate</Name> > </Panel> > <Panel> > <Id>done</Id> > <Name>Done</Name> > </Panel> > </Vector> > </panels> > <sdomainAdminURL>https://rawhide.virt.tuxgeek.de:9445</sdomainAdminURL> > <check_existingdomain/> > <name>CA Setup Wizard</name> > <https_ee_port>443</https_ee_port> > <https_admin_port>443</https_admin_port> > <panelname>securitydomain</panelname> > <https_agent_port>443</https_agent_port> > <cstype>CA</cstype> > <instanceId>ca pki-cad@pki-ca.service</instanceId> > <updateStatus>success</updateStatus> > <errorString/> > <size>19</size> > <p>3</p> > <check_newdomain>checked</check_newdomain> > <req/> > <wizardname>CA Setup Wizard</wizardname> ></response> >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/wizard?sdomainURL=https%3A%2F%2Frawhide.virt.tuxgeek.de%3A9445&sdomainName=IPA&choice=newdomain&p=3&op=next&xml=true >RESPONSE STATUS: HTTP/1.1 200 OK >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Content-Type: application/xml;charset=UTF-8 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:18 GMT >RESPONSE HEADER: Connection: close ><?xml version="1.0" encoding="UTF-8"?> ><!-- BEGIN COPYRIGHT BLOCK > This program is free software; you can redistribute it and/or modify > it under the terms of the GNU General Public License as published by > the Free Software Foundation; version 2 of the License. > > This program is distributed in the hope that it will be useful, > but WITHOUT ANY WARRANTY; without even the implied warranty of > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > GNU General Public License for more details. > > You should have received a copy of the GNU General Public License along > with this program; if not, write to the Free Software Foundation, Inc., > 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. > > Copyright (C) 2007 Red Hat, Inc. > All rights reserved. > END COPYRIGHT BLOCK --> ><response> > <machineName>rawhide.virt.tuxgeek.de</machineName> > <panel>admin/console/config/createsubsystempanel.vm</panel> > <res/> > <showApplyButton/> > <disableClone>true</disableClone> > <systemname>CA</systemname> > <title>Subsystem Type</title> > <panels> > <Vector> > <Panel> > <Id>welcome</Id> > <Name>Welcome</Name> > </Panel> > <Panel> > <Id>module</Id> > <Name>Key Store</Name> > </Panel> > <Panel> > <Id>confighsmlogin</Id> > <Name>ConfigHSMLogin</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Security Domain</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>subsystem</Id> > <Name>Subsystem Type</Name> > </Panel> > <Panel> > <Id>clone</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>restorekeys</Id> > <Name>Import Keys and Certificates</Name> > </Panel> > <Panel> > <Id>cahierarchy</Id> > <Name>PKI Hierarchy</Name> > </Panel> > <Panel> > <Id>database</Id> > <Name>Internal Database</Name> > </Panel> > <Panel> > <Id>size</Id> > <Name>Key Pairs</Name> > </Panel> > <Panel> > <Id>subjectname</Id> > <Name>Subject Names</Name> > </Panel> > <Panel> > <Id>certrequest</Id> > <Name>Requests and Certificates</Name> > </Panel> > <Panel> > <Id>backupkeys</Id> > <Name>Export Keys and Certificates</Name> > </Panel> > <Panel> > <Id>savepk12</Id> > <Name>Save Keys and Certificates</Name> > </Panel> > <Panel> > <Id>importcachain</Id> > <Name>Import CA's Certificate Chain</Name> > </Panel> > <Panel> > <Id>admin</Id> > <Name>Administrator</Name> > </Panel> > <Panel> > <Id>importadmincert</Id> > <Name>Import Administrator's Certificate</Name> > </Panel> > <Panel> > <Id>done</Id> > <Name>Done</Name> > </Panel> > </Vector> > </panels> > <check_clonesubsystem/> > <name>CA Setup Wizard</name> > <https_ee_port>443</https_ee_port> > <https_admin_port>443</https_admin_port> > <fullsystemname>Certificate Authority</fullsystemname> > <http_port>80</http_port> > <panelname>subsystem</panelname> > <https_agent_port>443</https_agent_port> > <cstype>CA</cstype> > <check_newsubsystem>checked</check_newsubsystem> > <urls> > <Vector/> > </urls> > <subsystemName>Certificate Authority</subsystemName> > <updateStatus>success</updateStatus> > <errorString/> > <size>19</size> > <p>5</p> > <req/> > <wizardname>CA Setup Wizard</wizardname> ></response> >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/wizard?p=5&op=next&xml=true&choice=newsubsystem&subsystemName=pki-cad >RESPONSE STATUS: HTTP/1.1 200 OK >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Content-Type: application/xml;charset=UTF-8 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:18 GMT >RESPONSE HEADER: Connection: close ><?xml version="1.0" encoding="UTF-8"?> ><!-- BEGIN COPYRIGHT BLOCK > This program is free software; you can redistribute it and/or modify > it under the terms of the GNU General Public License as published by > the Free Software Foundation; version 2 of the License. > > This program is distributed in the hope that it will be useful, > but WITHOUT ANY WARRANTY; without even the implied warranty of > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > GNU General Public License for more details. > > You should have received a copy of the GNU General Public License along > with this program; if not, write to the Free Software Foundation, Inc., > 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. > > Copyright (C) 2007 Red Hat, Inc. > All rights reserved. > END COPYRIGHT BLOCK --> ><response> > <panel>admin/console/config/hierarchypanel.vm</panel> > <res/> > <showApplyButton/> > <check_root>checked</check_root> > <updateStatus>success</updateStatus> > <errorString/> > <size>19</size> > <title>PKI Hierarchy</title> > <panels> > <Vector> > <Panel> > <Id>welcome</Id> > <Name>Welcome</Name> > </Panel> > <Panel> > <Id>module</Id> > <Name>Key Store</Name> > </Panel> > <Panel> > <Id>confighsmlogin</Id> > <Name>ConfigHSMLogin</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Security Domain</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>subsystem</Id> > <Name>Subsystem Type</Name> > </Panel> > <Panel> > <Id>clone</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>restorekeys</Id> > <Name>Import Keys and Certificates</Name> > </Panel> > <Panel> > <Id>cahierarchy</Id> > <Name>PKI Hierarchy</Name> > </Panel> > <Panel> > <Id>database</Id> > <Name>Internal Database</Name> > </Panel> > <Panel> > <Id>size</Id> > <Name>Key Pairs</Name> > </Panel> > <Panel> > <Id>subjectname</Id> > <Name>Subject Names</Name> > </Panel> > <Panel> > <Id>certrequest</Id> > <Name>Requests and Certificates</Name> > </Panel> > <Panel> > <Id>backupkeys</Id> > <Name>Export Keys and Certificates</Name> > </Panel> > <Panel> > <Id>savepk12</Id> > <Name>Save Keys and Certificates</Name> > </Panel> > <Panel> > <Id>importcachain</Id> > <Name>Import CA's Certificate Chain</Name> > </Panel> > <Panel> > <Id>admin</Id> > <Name>Administrator</Name> > </Panel> > <Panel> > <Id>importadmincert</Id> > <Name>Import Administrator's Certificate</Name> > </Panel> > <Panel> > <Id>done</Id> > <Name>Done</Name> > </Panel> > </Vector> > </panels> > <name>CA Setup Wizard</name> > <p>8</p> > <req/> > <check_join/> > <panelname>cahierarchy</panelname> ></response> >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/wizard?p=8&op=next&xml=true&choice=root >RESPONSE STATUS: HTTP/1.1 200 OK >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Content-Type: application/xml;charset=UTF-8 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:18 GMT >RESPONSE HEADER: Connection: close ><?xml version="1.0" encoding="UTF-8"?> ><!-- BEGIN COPYRIGHT BLOCK > This program is free software; you can redistribute it and/or modify > it under the terms of the GNU General Public License as published by > the Free Software Foundation; version 2 of the License. > > This program is distributed in the hope that it will be useful, > but WITHOUT ANY WARRANTY; without even the implied warranty of > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > GNU General Public License for more details. > > You should have received a copy of the GNU General Public License along > with this program; if not, write to the Free Software Foundation, Inc., > 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. > > Copyright (C) 2007 Red Hat, Inc. > All rights reserved. > END COPYRIGHT BLOCK --> ><response> > <panel>admin/console/config/databasepanel.vm</panel> > <res/> > <clone>new</clone> > <bindpwd>(sensitive)</bindpwd> > <showApplyButton/> > <portStr>389</portStr> > <cloneStartTLS>off</cloneStartTLS> > <updateStatus>success</updateStatus> > <hostname>localhost</hostname> > <errorString/> > <database>rawhide.virt.tuxgeek.de-pki-ca</database> > <binddn>cn=Directory Manager</binddn> > <size>19</size> > <firsttime>true</firsttime> > <title>Internal Database</title> > <secureConn>off</secureConn> > <panels> > <Vector> > <Panel> > <Id>welcome</Id> > <Name>Welcome</Name> > </Panel> > <Panel> > <Id>module</Id> > <Name>Key Store</Name> > </Panel> > <Panel> > <Id>confighsmlogin</Id> > <Name>ConfigHSMLogin</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Security Domain</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>subsystem</Id> > <Name>Subsystem Type</Name> > </Panel> > <Panel> > <Id>clone</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>restorekeys</Id> > <Name>Import Keys and Certificates</Name> > </Panel> > <Panel> > <Id>cahierarchy</Id> > <Name>PKI Hierarchy</Name> > </Panel> > <Panel> > <Id>database</Id> > <Name>Internal Database</Name> > </Panel> > <Panel> > <Id>size</Id> > <Name>Key Pairs</Name> > </Panel> > <Panel> > <Id>subjectname</Id> > <Name>Subject Names</Name> > </Panel> > <Panel> > <Id>certrequest</Id> > <Name>Requests and Certificates</Name> > </Panel> > <Panel> > <Id>backupkeys</Id> > <Name>Export Keys and Certificates</Name> > </Panel> > <Panel> > <Id>savepk12</Id> > <Name>Save Keys and Certificates</Name> > </Panel> > <Panel> > <Id>importcachain</Id> > <Name>Import CA's Certificate Chain</Name> > </Panel> > <Panel> > <Id>admin</Id> > <Name>Administrator</Name> > </Panel> > <Panel> > <Id>importadmincert</Id> > <Name>Import Administrator's Certificate</Name> > </Panel> > <Panel> > <Id>done</Id> > <Name>Done</Name> > </Panel> > </Vector> > </panels> > <p>9</p> > <name>CA Setup Wizard</name> > <req/> > <basedn>dc=rawhide.virt.tuxgeek.de-pki-ca</basedn> > <panelname>database</panelname> ></response> >############################################# >Attempting to connect to: rawhide.virt.tuxgeek.de:9445 >Connected. >Posting Query = https://rawhide.virt.tuxgeek.de:9445//ca/admin/console/config/wizard?p=9&op=next&xml=true&host=rawhide.virt.tuxgeek.de&port=7389&binddn=cn%3DDirectory+Manager&__bindpwd=XXXXXXXX&basedn=o%3Dipaca&database=ipaca&display=%24displayStr >RESPONSE STATUS: HTTP/1.1 200 OK >RESPONSE HEADER: Server: Apache-Coyote/1.1 >RESPONSE HEADER: Content-Type: application/xml;charset=UTF-8 >RESPONSE HEADER: Date: Sun, 06 May 2012 21:29:19 GMT >RESPONSE HEADER: Connection: close ><?xml version="1.0" encoding="UTF-8"?> ><!-- BEGIN COPYRIGHT BLOCK > This program is free software; you can redistribute it and/or modify > it under the terms of the GNU General Public License as published by > the Free Software Foundation; version 2 of the License. > > This program is distributed in the hope that it will be useful, > but WITHOUT ANY WARRANTY; without even the implied warranty of > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > GNU General Public License for more details. > > You should have received a copy of the GNU General Public License along > with this program; if not, write to the Free Software Foundation, Inc., > 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. > > Copyright (C) 2007 Red Hat, Inc. > All rights reserved. > END COPYRIGHT BLOCK --> ><response> > <panel>admin/console/config/databasepanel.vm</panel> > <clone>new</clone> > <res/> > <portStr>7389</portStr> > <bindpwd>(sensitive)</bindpwd> > <cloneStartTLS>off</cloneStartTLS> > <updateStatus>failure</updateStatus> > <hostname>rawhide.virt.tuxgeek.de</hostname> > <errorString>Failed to connect to the internal database.</errorString> > <binddn>cn=Directory Manager</binddn> > <database>ipaca</database> > <size>19</size> > <firsttime>true</firsttime> > <title>Database</title> > <secureConn>off</secureConn> > <panels> > <Vector> > <Panel> > <Id>welcome</Id> > <Name>Welcome</Name> > </Panel> > <Panel> > <Id>module</Id> > <Name>Key Store</Name> > </Panel> > <Panel> > <Id>confighsmlogin</Id> > <Name>ConfigHSMLogin</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Security Domain</Name> > </Panel> > <Panel> > <Id>securitydomain</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>subsystem</Id> > <Name>Subsystem Type</Name> > </Panel> > <Panel> > <Id>clone</Id> > <Name>Display Certificate Chain</Name> > </Panel> > <Panel> > <Id>restorekeys</Id> > <Name>Import Keys and Certificates</Name> > </Panel> > <Panel> > <Id>cahierarchy</Id> > <Name>PKI Hierarchy</Name> > </Panel> > <Panel> > <Id>database</Id> > <Name>Internal Database</Name> > </Panel> > <Panel> > <Id>size</Id> > <Name>Key Pairs</Name> > </Panel> > <Panel> > <Id>subjectname</Id> > <Name>Subject Names</Name> > </Panel> > <Panel> > <Id>certrequest</Id> > <Name>Requests and Certificates</Name> > </Panel> > <Panel> > <Id>backupkeys</Id> > <Name>Export Keys and Certificates</Name> > </Panel> > <Panel> > <Id>savepk12</Id> > <Name>Save Keys and Certificates</Name> > </Panel> > <Panel> > <Id>importcachain</Id> > <Name>Import CA's Certificate Chain</Name> > </Panel> > <Panel> > <Id>admin</Id> > <Name>Administrator</Name> > </Panel> > <Panel> > <Id>importadmincert</Id> > <Name>Import Administrator's Certificate</Name> > </Panel> > <Panel> > <Id>done</Id> > <Name>Done</Name> > </Panel> > </Vector> > </panels> > <p>9</p> > <name>CA Setup Wizard</name> > <req/> > <basedn>o=ipaca</basedn> > <panelname>database</panelname> ></response> >Error in LdapConnectionPanel(): updateStatus returns failure >ERROR: ConfigureCA: LdapConnectionPanel() failure >ERROR: unable to create CA > >####################################################################### > >2012-05-06T21:29:19Z DEBUG stderr= >2012-05-06T21:29:19Z CRITICAL failed to configure ca instance Command '/usr/bin/perl /usr/bin/pkisilent ConfigureCA -cs_hostname rawhide.virt.tuxgeek.de -cs_port 9445 -client_certdb_dir /tmp/tmp-n29ZfY -client_certdb_pwd XXXXXXXX -preop_pin mrcdw69FLWLemla4GPsP -domain_name IPA -admin_user admin -admin_email root@localhost -admin_password XXXXXXXX -agent_name ipa-ca-agent -agent_key_size 2048 -agent_key_type rsa -agent_cert_subject CN=ipa-ca-agent,O=VIRT.TUXGEEK.DE -ldap_host rawhide.virt.tuxgeek.de -ldap_port 7389 -bind_dn cn=Directory Manager -bind_password XXXXXXXX -base_dn o=ipaca -db_name ipaca -key_size 2048 -key_type rsa -key_algorithm SHA256withRSA -save_p12 true -backup_pwd XXXXXXXX -subsystem_name pki-cad -token_name internal -ca_subsystem_cert_subject_name CN=CA Subsystem,O=VIRT.TUXGEEK.DE -ca_ocsp_cert_subject_name CN=OCSP Subsystem,O=VIRT.TUXGEEK.DE -ca_server_cert_subject_name CN=rawhide.virt.tuxgeek.de,O=VIRT.TUXGEEK.DE -ca_audit_signing_cert_subject_name CN=CA Audit,O=VIRT.TUXGEEK.DE -ca_sign_cert_subject_name CN=Certificate Authority,O=VIRT.TUXGEEK.DE -external false -clone false' returned non-zero exit status 255 >2012-05-06T21:29:19Z DEBUG Configuration of CA failed > File "/sbin/ipa-server-install", line 1100, in <module> > rval = main() > > File "/sbin/ipa-server-install", line 888, in main > subject_base=options.subject) > > File "/usr/lib/python2.7/site-packages/ipaserver/install/cainstance.py", line 531, in configure_instance > self.start_creation("Configuring certificate server", 210) > > File "/usr/lib/python2.7/site-packages/ipaserver/install/service.py", line 257, in start_creation > method() > > File "/usr/lib/python2.7/site-packages/ipaserver/install/cainstance.py", line 667, in __configure_instance > raise RuntimeError('Configuration of CA failed') >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=582511">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 818123
:
581554
|
581556
|
581710
|
581711
|
581712
| 582511 |
582512
|
583814
|
588537
|
590464
|
590466
|
590467