Bug 1603444
| Summary: | ipa-server-install script is failing when using the "--no-dnssec-validation" parameter combined with the "--forwarder" | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | mpanaous |
| Component: | ipa | Assignee: | IPA Maintainers <ipa-maint> |
| Status: | CLOSED ERRATA | QA Contact: | ipa-qe <ipa-qe> |
| Severity: | medium | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 7.5 | CC: | abokovoy, frenaud, lmiksik, ndehadra, pasik, pvoborni, rcritten, tdudlak, tscherf |
| Target Milestone: | rc | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | ipa-4.6.4-8.el7 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2018-10-30 10:58:44 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Comment 3
Armando Biagioni Neto
2018-08-06 17:04:40 UTC
Fixed upstream master: https://pagure.io/freeipa/c/911416e43dd58602df99fa06fe535655d26461ca Test: https://pagure.io/freeipa/c/739ddce6536502b3826f0480a9c7b69bf0f35905 Fixed upstream ipa-4-7: https://pagure.io/freeipa/c/a66789603a30b9582d9255a02edfbf66d90ae78d Test: https://pagure.io/freeipa/c/ac7b3f989e86ac0ff216b9b0c07ab2f1a0d571a1 Fixed upstream ipa-4-6: https://pagure.io/freeipa/c/d388bcf676d28c58eb2f5f34a1ddadada06d0e99 Test: https://pagure.io/freeipa/c/98212c168ec1c68abe796f4133c782f6790ad174 ipa-server: ipa-server-4.6.4-8.el7.x86_64 Verified the bug on the basis of following observations: 1. Verified that ipa-server installation is successful when using the "--no-dnssec-validation" parameter combined with the "--forwarder". 2. Verified that ipa-replica installation too is successful when using the "--no-dnssec-validation" parameter combined with the "--forwarder". Console: ------------ Master: [root@vm-idm-029 ~]# ipa-server-install --realm TESTRELM.TEST --domain testrelm.test -p Secret123 -a Secret123 --mkhomedir --hostname=`hostname` --ip-address=10.x.x.x --no-ntp --setup-dns --no-host-dns --no-reverse --no-dnssec-validation --forwarder=10.x.x.x --setup-adtrust --netbios-name=TESTRELM --enable-compat --unattended [root@vm-idm-029 ~]# tail -1 /var/log/ipaserver-install.log 2018-09-05T14:02:33Z INFO The ipa-server-install command was successful [root@vm-idm-029 ~]# rpm -q ipa-server ipa-server-4.6.4-8.el7.x86_64 Replica: [root@vm-idm-039 ~]# ipa-replica-install -U --setup-ca --setup-dns --forwarder=10.x.x.x --ip-address=10.x.x.x -P admin -w Secret123 --no-dnssec-validation [root@vm-idm-039 ~]# tail -1 /var/log/ipareplica-install.log 2018-09-05T14:25:35Z INFO The ipa-replica-install command was successful [root@vm-idm-039 ~]# rpm -q ipa-server ipa-server-4.6.4-8.el7.x86_64 [root@vm-idm-039 ~]# Thus on the basis of above observations, marking the status of bug to 'VERIFIED' Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2018:3187 |