Bug 905626
Summary: | ipa-client-install failed to fall over to replica with master down | |||
---|---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Scott Poore <spoore> | |
Component: | ipa | Assignee: | Martin Kosek <mkosek> | |
Status: | CLOSED ERRATA | QA Contact: | Namita Soman <nsoman> | |
Severity: | unspecified | Docs Contact: | ||
Priority: | high | |||
Version: | 6.4 | CC: | dpal, jgalipea, jwest, mkosek, pasteur, tlavigne | |
Target Milestone: | rc | Keywords: | ZStream | |
Target Release: | --- | |||
Hardware: | Unspecified | |||
OS: | Unspecified | |||
Whiteboard: | ||||
Fixed In Version: | ipa-3.0.0-26.el6 | Doc Type: | Bug Fix | |
Doc Text: |
The Identity Management client enrollment "ipa-client-install" command would fail to enroll a client if any of the Identity Management masters were unavailable during enrollment. The client installer now tries all servers, either auto-discovered from DNS or passed via the "--server" option on the command line, until it finds one that is available and enrolls it in that one. Now, the Identity Management client enrollment "ipa-client-install" command functions normally.
|
Story Points: | --- | |
Clone Of: | ||||
: | 910557 (view as bug list) | Environment: | ||
Last Closed: | 2013-11-21 20:49:14 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 909161, 910557, 949632 |
Description
Scott Poore
2013-01-29 19:23:02 UTC
Upstream ticket: https://fedorahosted.org/freeipa/ticket/3388 Fixed upstream. master: cbb262dc07ea0615068a630e6c7136e3200d5a06 ipa-3-1: a5f10e25b27fb860be0f06506d603197c2e5a955 This bug also needs to be cloned for inclusion in RHEL 7.0 Verified using ipa-client-3.0.0-33.el6.x86_64 ; generated by /sbin/dhclient-script search idm.lab.bos.redhat.com #nameserver 10.16.101.41 #nameserver 10.11.5.19 nameserver 10.16.98.183 nameserver 10.16.98.184 :: [ PASS ] :: Running 'cat /etc/resolv.conf' (Expected 0, got 0) :: [ 13:18:51 ] :: M=10.16.98.183 ; S=10.16.98.184 :: [ PASS ] :: Running 'ssh -o StrictHostKeyChecking=no root.com "echo 'service iptables stop' >> /tmp/at.1.sh"' (Expected 0, got 0) job 1 at 2013-09-04 13:20 :: [ PASS ] :: Running 'ssh -o StrictHostKeyChecking=no root.com "at -f /tmp/at.1.sh now + 2 minutes"' (Expected 0, got 0) Warning: Permanently added 'ipaqa64vmc.testrelm.com' (RSA) to the list of known hosts. :: [ PASS ] :: Running 'ssh -o StrictHostKeyChecking=no root.com "echo 'service iptables stop' >> /tmp/at.1.sh"' (Expected 0, got 0) job 1 at 2013-09-04 13:20 :: [ PASS ] :: Running 'ssh -o StrictHostKeyChecking=no root.com "at -f /tmp/at.1.sh now + 2 minutes"' (Expected 0, got 0) :: [ PASS ] :: Start Firewall on MASTER IPA server (Expected 0, got 0) :: [ PASS ] :: Start Firewall on SLAVE IPA server (Expected 0, got 0) :: [ 13:18:57 ] :: EXECUTING: ipa-client-install -U :: [ PASS ] :: Running 'ipa-client-install -p admin -w Secret123 -U > /tmp/tmp.Cf1OjRK0T0/ipaclientinstall_server_unreachableserver.out 2>&1' (Expected 1, got 1) Unable to discover domain, not provided on command line Installation failed. Rolling back changes. IPA client is not configured on this system. :: [ PASS ] :: Running 'cat /tmp/tmp.Cf1OjRK0T0/ipaclientinstall_server_unreachableserver.out' (Expected 0, got 0) :: [ 13:19:19 ] :: Verify expected error message for IPA Install with unreachable server :: [ PASS ] :: Expected error seen: Unable to discover domain, not provided on command line :: [ PASS ] :: File '/var/log/ipaclient-install.log' should not contain 'Can't contact LDAP server' :: [ PASS ] :: File '/var/log/ipaclient-install.log' should not contain 'Failed to verify that.*is an IPA Server' :: [ PASS ] :: BZ 905626 not found MARK-LWD-LOOP -- 2013-09-04 13:20:15 -- :: [ PASS ] :: Running 'sleep 150' (Expected 0, got 0) :: [ PASS ] :: Stop Firewall on MASTER IPA server (Expected 0, got 0) :: [ PASS ] :: Stop Firewall on SLAVE IPA server (Expected 0, got 0) '36a69092-6258-4128-8199-926d8b038d5b' ipa-client-install-10-Negative-Install-with-unreachable-server result: PASS Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-1651.html |