Bug 1515374
| Summary: | Custodia keys are not removed on uninstall | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Florence Blanc-Renaud <frenaud> |
| Component: | ipa | Assignee: | IPA Maintainers <ipa-maint> |
| Status: | CLOSED ERRATA | QA Contact: | ipa-qe <ipa-qe> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 7.4 | CC: | frenaud, ndehadra, pasik, pvoborni, rcritten, tscherf |
| Target Milestone: | rc | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | ipa-4.6.4-1.el7 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2018-10-30 10:57:10 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Florence Blanc-Renaud
2017-11-20 17:19:40 UTC
Fixed upstream
master:
8700101 Remove Custodia keys on uninstall
ipa-4-6:
fef419b Remove Custodia keys on uninstall
Version: ipa-server-4.6.4-2.el7.x86_64 custodia-0.3.1-4.el7.noarch Verified the bug on the basis of below observations: Verified that custodia files at '/etc/ipa/custodia' are removed from the location when ipa-server is uninstalled. Console: ------------ [root@auto-hv-01-guest01 ~]# rpm -q ipa-server custodia ipa-server-4.6.4-2.el7.x86_64 custodia-0.3.1-4.el7.noarch [root@auto-hv-01-guest01 ~]# ls -l /etc/ipa/custodia total 8 -rw-r--r--. 1 root root 638 Jul 18 05:51 custodia.conf -rw-------. 1 root root 3377 Jul 18 05:51 server.keys [root@auto-hv-01-guest01 ~]# ipa-server-install --uninstall -U Updating DNS system records ipaserver.dns_data_management: ERROR unable to resolve host name auto-hv-01-guest01.testrelm.test. to IP address, ipa-ca DNS record will be incomplete ----------------------------------------------------- Deleted IPA server "auto-hv-01-guest01.testrelm.test" ----------------------------------------------------- Shutting down all IPA services Unconfiguring ntpd Configuring certmonger to stop tracking system certificates for KRA Configuring certmonger to stop tracking system certificates for CA Unconfiguring CA Unconfiguring named Unconfiguring ipa-dnskeysyncd Unconfiguring web server Unconfiguring krb5kdc Unconfiguring kadmin Unconfiguring directory server Unconfiguring ipa-custodia Unconfiguring ipa-otpd Removing IPA client configuration Removing Kerberos service principals from /etc/krb5.keytab Disabling client Kerberos and LDAP configurations Redundant SSSD configuration file /etc/sssd/sssd.conf was moved to /etc/sssd/sssd.conf.deleted Restoring client configuration files Unconfiguring the NIS domain. nscd daemon is not installed, skip configuration nslcd daemon is not installed, skip configuration Systemwide CA database updated. Client uninstall complete. The ipa-client-install command was successful [root@auto-hv-01-guest01 ~]# ls -l /etc/ipa/custodia total 0 Thus on the basis of above observations and comment#4, marking the status of bug to 'VERIFIED'. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2018:3187 |