Bug 684690

Summary: ipa-server-install fails on compat plugin when domain name is different than realm name
Product: [Retired] freeIPA Reporter: Tomasz 'Zen' Napierala <tomasz>
Component: ipa-serverAssignee: Adam Young <ayoung>
Status: CLOSED ERRATA QA Contact: Chandrasekar Kannan <ckannan>
Severity: high Docs Contact:
Priority: unspecified    
Version: 2.0CC: ayoung, benl, dpal, jgalipea, rcritten
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: freeipa-2.1.0-1.fc15 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 684744 (view as bug list) Environment:
Last Closed: 2012-03-28 09:25:28 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 684744    
Attachments:
Description Flags
installation log none

Description Tomasz 'Zen' Napierala 2011-03-14 08:56:41 UTC 
Created attachment 484101 [details]
installation log

Description of problem:

ipa-server-install fails if provided with realm different than domain name

Version-Release number of selected component (if applicable):
freeipa-python-2.0.0.rc3-0.fc14.x86_64
freeipa-client-2.0.0.rc3-0.fc14.x86_6
freeipa-server-selinux-2.0.0.rc3-0.fc14.x86_64
freeipa-admintools-2.0.0.rc3-0.fc14.x86_64
freeipa-server-2.0.0.rc3-0.fc14.x86_64


How reproducible:
Always

Steps to Reproduce:
1.ipa-server-install -r REALM -n DOMAIN
or use interactive install and choose realm different from domain

  
Actual results:
root        : DEBUG      duration: 0 seconds
root        : DEBUG      [30/32]: enabling compatibility plugin
  [30/32]: enabling compatibility plugin
Unexpected error - see ipaserver-install.log for details:
 Unable to connect to LDAP server ipa20-test.dc2
root        : DEBUG    Unable to connect to LDAP server ipa20-test.dc2
  File "/usr/sbin/ipa-server-install", line 975, in <module>
    sys.exit(main())

  File "/usr/sbin/ipa-server-install", line 813, in main
    hbac_allow=not options.hbac_allow)

  File "/usr/lib/python2.7/site-packages/ipaserver/install/dsinstance.py", line 262, in create_instance
    self.start_creation("Configuring directory server", 60)

  File "/usr/lib/python2.7/site-packages/ipaserver/install/service.py", line 282, in start_creation
    method()

  File "/usr/lib/python2.7/site-packages/ipaserver/install/dsinstance.py", line 453, in __enable_compat_plugin
    ld = ldapupdate.LDAPUpdate(dm_password=self.dm_password, sub_dict=self.sub_dict)

  File "/usr/lib/python2.7/site-packages/ipaserver/install/ldapupdate.py", line 117, in __init__
    raise RuntimeError("Unable to connect to LDAP server %s" % fqdn)

Expected results:
Installation succeeds
Comment 1 Dmitri Pal 2011-03-14 12:22:38 UTC 
https://fedorahosted.org/freeipa/ticket/1091
Comment 2 Adam Young 2011-03-14 14:26:46 UTC 
Confirmed and reproduced.
Comment 3 Rob Crittenden 2011-03-15 18:42:37 UTC 
master: 0b6b2342d0d723336b2c612460e3b7ec43f21112