Bug 2018535

Summary: Getting error "Internal server error" while running ipa-healthcheck
Product: Red Hat Enterprise Linux 8 Reporter: Vinay Mishra <vmishra>
Component: ipa-healthcheckAssignee: Rob Crittenden <rcritten>
Status: CLOSED DUPLICATE QA Contact: ipa-qe <ipa-qe>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 8.4CC: fcami
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-10-29 17:22:48 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 1 Rob Crittenden 2021-10-29 17:22:48 UTC 
Marking as a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=1740702

The root cause is that the CA maintains a security domain so it knows which hosts provide which services. IPA was not cleaning this up. The pki healthcheck ClonesConnectivyAndDataCheck exposes this failure to clean up as it uses the security domain to determine the list of hosts to check.

Deleted hosts can be removed using the pki cli tool.

pki client init
pki securitydomain-show
pki securitydomain-host-find
pki securitydomain-host-del

*** This bug has been marked as a duplicate of bug 1740702 ***