Bug 671036

Summary: ipa2 - ipa-server missing dependency on bind-dyndb-ldap
Product: Red Hat Enterprise Linux 6 Reporter: Marc Sauton <msauton>
Component: ipaAssignee: Rob Crittenden <rcritten>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: low    
Version: 6.0   
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-01-20 14:14:34 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Marc Sauton 2011-01-20 01:07:42 UTC 
Description of problem:

missing dependency on bind-dyndb-ldap for ipa-server
when running
ipa-server-install
with --setup-dns option


Version-Release number of selected component (if applicable):

Fedora release 14 (Laughlin)
Linux ipaserver1.example.com 2.6.35.10-74.fc14.x86_64 #1 SMP Thu Dec 23 16:04:50 UTC 2010 x86_64 x86_64 x86_64 GNU/Linux

ipa-admintools-2.0-0.2011011909git902bd90.fc14.x86_64
ipa-pki-common-theme-9.0.1-1.20110119T2054z.fc14.noarch
ipa-pki-ca-theme-9.0.1-1.20110119T2054z.fc14.noarch
ipa-client-2.0-0.2011011909git902bd90.fc14.x86_64
ipa-server-2.0-0.2011011909git902bd90.fc14.x86_64
ipa-python-2.0-0.2011011909git902bd90.fc14.x86_64
ipa-server-selinux-2.0-0.2011011909git902bd90.fc14.x86_64


How reproducible:


Steps to Reproduce:
1. get a system with F14
2. add repo http://jdennis.fedorapeople.org/ipa-devel/ipa-devel-fedora.repo
3. enable fedora-updates-testing.repo
4. add some utils
yum install -y ntpdate bind-utils rsync openssh-clients openldap-clients wget tigervnc-server lsof xterm twm xorg-x11-fonts-Type1 java-1.6.0-openjdk-devel firefox
yum install -y dbus subversion vim screen
5. yum update
6. reboot
7. yum install ipa-server bind caching-nameserver
8. ipa-server-install --realm=EXAMPLE.COM --domain=example.com --ds-password=password --master-password=password --admin-password=password --hostname=ipaserver1.example.com --idstart=1000 --setup-dns --forwarder=10.14.7.221 --zonemgr=msauton

  
Actual results:

The log file for this installation can be found in /var/log/ipaserver-install.log
==============================================================================
This program will set up the FreeIPA Server.

This includes:
  * Configure the Network Time Daemon (ntpd)
  * Create and configure an instance of Directory Server
  * Create and configure a Kerberos Key Distribution Center (KDC)
  * Configure Apache (httpd)
  * Configure DNS (bind)

To accept the default shown in brackets, press the Enter key.

The BIND LDAP plug-in was not found on this system
Please install the 'bind-dyndb-ldap' package and start the installation again
Aborting installation
[root@ipaserver1 ~]#


Expected results:


Additional info:

seem to be in IPA trac:
https://fedorahosted.org/freeipa/ticket/140

tried to look into bz if already reported, not in
bz 502744 - Update "Installing the IPA Server" section to account for BIND
bz 504387 - bind-dyndb-ldap missing dependencies on rhel 5

does it need to be in BZ ?

workaround:
yum install bind-dyndb-ldap

and then hit a pkisilent issue.
Comment 2 Rob Crittenden 2011-01-20 14:14:34 UTC 
DNS is an optional component so we do not require its packages be installed. We determine at runtime whether the packages exist and warn accordingly.
Comment 3 Marc Sauton 2011-01-20 19:22:36 UTC 
pki is optional too, but pki-ca seem to be added as a dependency.
It is kind of annoying to see ipa-server-install aborting on an optional feature, 
Can we add a note into the doc?
Like may be in:
http://obriend.fedorapeople.org/freeIPA2.0/Identity_and_Policy_Management_Guide/html-single/#sect-Enterprise_Identity_Management_Guide-Preparing_for_an_IPA_Installation-DNS
5.6. DNS
?

(the pkisilent issue i had was with bz 671058 - ipa2 - ipa-server-install fails on pkisilent - xml parsing string -- ?)
Comment 4 Rob Crittenden 2011-01-20 19:35:12 UTC 
pki is optional but enabled by default
dns is optional and disabled by default