Bug 681377
Summary: | ipa-server-install with external ca hangs on creating directory server instance | ||
---|---|---|---|
Product: | [Retired] freeIPA | Reporter: | Erinn Looney-Triggs <erinn.looneytriggs> |
Component: | ipa-server | Assignee: | Rob Crittenden <rcritten> |
Status: | CLOSED NOTABUG | QA Contact: | Chandrasekar Kannan <ckannan> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 2.0 | CC: | benl, dpal, jgalipea |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-03-03 04:28:34 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Erinn Looney-Triggs
2011-03-01 23:34:15 UTC
Right after filing the bug it errored out, here is more information: root : CRITICAL failed to restart ds instance Command '/usr/sbin/setup-ds.pl --silent --logfile - -f /tmp/tmpTUr_z3' returned non-zero exit status 1 [3/32]: adding default schema [4/32]: enabling memberof plugin root : CRITICAL Failed to load memberof-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/memberof-conf.ldif -x -D cn=Directory Manager -y /tmp/tmpGACAgy' returned non-zero exit status 255 [5/32]: enabling referential integrity plugin root : CRITICAL Failed to load referint-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/referint-conf.ldif -x -D cn=Directory Manager -y /tmp/tmpWBELxW' returned non-zero exit status 255 [6/32]: enabling winsync plugin root : CRITICAL Failed to load ipa-winsync-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/ipa-winsync-conf.ldif -x -D cn=Directory Manager -y /tmp/tmpBshkg6' returned non-zero exit status 255 [7/32]: configuring replication version plugin root : CRITICAL Failed to load version-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/version-conf.ldif -x -D cn=Directory Manager -y /tmp/tmpHTbNxU' returned non-zero exit status 255 [8/32]: enabling IPA enrollment plugin root : CRITICAL Failed to load enrollment-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /tmp/tmpo5CKdf -x -D cn=Directory Manager -y /tmp/tmpsNHJE1' returned non-zero exit status 255 [9/32]: enabling ldapi root : CRITICAL Failed to load ldapi.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /tmp/tmpoR2kU7 -x -D cn=Directory Manager -y /tmp/tmpfwO4Sd' returned non-zero exit status 255 [10/32]: configuring uniqueness plugin root : CRITICAL Failed to load unique-attributes.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /tmp/tmpm0MkX1 -x -D cn=Directory Manager -y /tmp/tmpHmucpv' returned non-zero exit status 255 [11/32]: configuring uuid plugin root : CRITICAL Failed to load uuid-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/uuid-conf.ldif -x -D cn=Directory Manager -y /tmp/tmp7qg6P7' returned non-zero exit status 255 root : CRITICAL Failed to load uuid-ipauniqueid.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /tmp/tmpuiVTA1 -x -D cn=Directory Manager -y /tmp/tmp9oMzpt' returned non-zero exit status 255 [12/32]: configuring modrdn plugin root : CRITICAL Failed to load modrdn-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/modrdn-conf.ldif -x -D cn=Directory Manager -y /tmp/tmp53ZJeq' returned non-zero exit status 255 root : CRITICAL Failed to load modrdn-krbprinc.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /tmp/tmpmMuHhx -x -D cn=Directory Manager -y /tmp/tmp3_UE8s' returned non-zero exit status 255 [13/32]: enabling entryUSN plugin root : CRITICAL Failed to load entryusn.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/entryusn.ldif -x -D cn=Directory Manager -y /tmp/tmp8bsCfi' returned non-zero exit status 255 [14/32]: configuring lockout plugin root : CRITICAL Failed to load lockout-conf.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/lockout-conf.ldif -x -D cn=Directory Manager -y /tmp/tmpFdotmh' returned non-zero exit status 255 [15/32]: creating indices root : CRITICAL Failed to load indices.ldif: Command '/usr/bin/ldapmodify -h ipa.foo.com -v -f /usr/share/ipa/indices.ldif -x -D cn=Directory Manager -y /tmp/tmpP8yI8L' returned non-zero exit status 255 [16/32]: configuring ssl for ds instance Unexpected error - see ipaserver-install.log for details: {'desc': "Can't contact LDAP server"} Are there any errors logged in /var/log/dirsrv/slapd-FOO-COM Hmm, well maybe the third time is a charm, tried twice yesterday, hang in same place. Tried again today after removing the contents of /var/log/dirsrv/* (so I could try to get you a clean run) and it worked. I will try an un-install and re-install again to see if this has anything to do with pollution left over from previous installs. -Erinn This is what I suspected, that some permissions were causing 389-ds to fail to install. Ok I was unable to reproduce with another re-install so I believe this is probably an artifact of having done many uninstalls and re-installs on this system while testing. Thanks, -Erinn I ran into this today as well. The log directory of the main IPA LDAP server was owned by pkiuser which is the dogtag CA user. Makes me wonder if something is doing a chown() in there. |