Description of problem:
When runinng rhevm-manage-domains for domains that is missing SRV records from DNS (like in bug 757519),
please print a clear 'missing DNS entries...' error message,
which is seen at /var/log/ovirt-engine/engine-manage-domains.log (bellow).
Version-Release number of selected component (if applicable):
SI22.1
How reproducible:
always
rhevm console log:
[root@lilach-rhel ~]# rhevm-manage-domains -action=add -domain=dc1.forest2008.qa.lab.tlv.redhat.com -user=vdcadmin -provider=ActiveDirectory -interactive
Enter password:
Error: Authentication Failed. Please verify the fully qualified domain name that is used for authentication is correct.. Problematic domain is: dc1.forest2008.qa.lab.tlv.redhat.com
Failure while applying Kerberos configuration. Details: Authentication Failed. Please verify the fully qualified domain name that is used for authentication is correct.
/var/log/ovirt-engine/engine-manage-domains.log:
2012-10-30 15:37:51,659 INFO [org.ovirt.engine.core.utils.kerberos.ManageDomains] Creating kerberos configuration for domain(s): qa.lab.tlv.redhat.com,dc1.forest2008.qa.lab.tlv.redhat.com
2012-10-30 15:37:51,693 ERROR [org.ovirt.engine.core.utils.dns.DnsSRVLocator] Error: could not find DNS SRV record name: _kerberos._tcp.DC1.FOREST2008.QA.LAB.TLV.REDHAT.COM.
Exception message is: DNS name not found [response code 3]
Possible causes: missing DNS entries in the DNS server or DNS resolving issues from engine-core machine.
Please Ensure correct DNS entries exist in the DNS server and ensure the DNS server is reachable from the engine-core machine.
2012-10-30 15:37:51,712 ERROR [org.ovirt.engine.core.utils.kerberos.ManageDomains] Failure while applying Kerberos configuration. Details: Authentication Failed. Please verify the fully qualified domain name that is used for authentication is correct.
Additional Info:
Bug 871585 is about the problem of asking for password, instead of just giving error message on the DNS not found.
Actual Results:
Instead of error message on DNS not found, a password is asked.
I solved the two bugs by solving https://bugzilla.redhat.com/871585
I both provide a clear message about DNS issue + don't prompt for password in such case.
I prefer not to perform close duplicate, as these are two separate bugs, handled in same way (due to my extra handling in 871585)
Verified on sf-7:
[root@lilach-rhel yum.repos.d]# rhevm-manage-domains -action=add -domain=dc1.forest2008.qa.lab.tlv.redhat.com -user=vdcadmin -provider=ActiveDirectory -interactive
No LDAP servers can be obtained for domain dc1.forest2008.qa.lab.tlv.redhat.com