Bug 801410

Summary: "Error looking up public keys" while ssh to replica using IP address.
Product: Red Hat Enterprise Linux 6 Reporter: Gowrishankar Rajaiyan <grajaiya>
Component: ipaAssignee: Rob Crittenden <rcritten>
Status: CLOSED NOTABUG QA Contact: IDM QE LIST <seceng-idm-qe-list>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.3CC: mkosek
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 801719 (view as bug list) Environment:
Last Closed: 2012-03-20 17:05:57 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 801719, 817406    

Description Gowrishankar Rajaiyan 2012-03-08 13:23:35 UTC 
Description of problem:


Version-Release number of selected component (if applicable):
ipa-server-2.2.0-3.el6.x86_64

How reproducible:
Always

Steps to Reproduce:
1. Install ipa-server with dns
2. Install ipa-server replica

3. [root@primenova ~]# ipa dnsrecord-find lab.eng.pnq.redhat.com goldbug 
  Record name: @
  NS record: primenova.lab.eng.pnq.redhat.com., goldbug.lab.eng.pnq.redhat.com.
...
  Record name: goldbug
  A record: 10.65.201.101
  SSHFP record: 1 1 A7E007E7EFF842656F17C0A12BEDAD7522C04C1B, 2 1 BED1634D80799DEFDE344DAFDDDF8B56E0EB75E5
-----------------------------
Number of entries returned 10
-----------------------------

4. [root@primenova ~]# ssh goldbug.lab.eng.pnq.redhat.com
root.eng.pnq.redhat.com's password: 

5. [root@primenova ~]# ssh 10.65.201.101

  
Actual results:
Error looking up public keys
root.201.101's password: 

Expected results:
Reverse SSHFP lookup should be successful and "Error looking up public keys" should not be displayed.

Additional info:
Comment 2 Martin Kosek 2012-03-09 09:20:41 UTC 
This check is for SSSD, I wil clone the BZ to this component. I can leave this BZ as a tracker for IPA.
Comment 3 Martin Kosek 2012-03-20 17:05:57 UTC 
I will close this BZ, the issue will be fixed in sssd.