RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 1376723 - IPA Replica installation fails on second replica machine
Summary: IPA Replica installation fails on second replica machine
Keywords:
Status: CLOSED WORKSFORME
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: ipa
Version: 7.3
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: IPA Maintainers
QA Contact: Kaleem
URL:
Whiteboard:
Depends On:
Blocks: 1366612
TreeView+ depends on / blocked
 
Reported: 2016-09-16 09:14 UTC by Abhijeet Kasurde
Modified: 2016-09-20 05:07 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-09-20 05:07:45 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)
ipamaster1.dirsrv.errors.log (48.55 KB, text/plain)
2016-09-16 09:14 UTC, Abhijeet Kasurde 		no flags Details
ipa-replica-install.log (77.26 KB, text/plain)
2016-09-16 09:14 UTC, Abhijeet Kasurde 		no flags Details
console logs tar.gz (363.94 KB, application/x-gzip)
2016-09-16 10:02 UTC, Abhijeet Kasurde 		no flags Details
View All

Description Abhijeet Kasurde 2016-09-16 09:14:07 UTC 
Created attachment 1201574 [details]
ipamaster1.dirsrv.errors.log

Description of problem:
If user tries to install replica from an existing replica server then IPA replica installation fails with following error 

  [27/44]: retrieving DS Certificate
  [28/44]: restarting directory server
  [29/44]: setting up initial replication
Starting replication, please wait until this has completed.
Update in progress, 15 seconds elapsed
[ipareplica1.testrelm.test] reports: Update failed! Status: [-1  - LDAP error: Can't contact LDAP server]

  [error] RuntimeError: Failed to start replication
Your system may be partly configured.
Run /usr/sbin/ipa-server-install --uninstall to clean up.

ipa.ipapython.install.cli.install_tool(Replica): ERROR    Failed to start replication
ipa.ipapython.install.cli.install_tool(Replica): ERROR    The ipa-replica-install command failed. See /var/log/ipareplica-install.log for more information



Version-Release number of selected component (if applicable):
ipa-server-4.4.0-11.el7.x86_64

How reproducible:
Always

Steps to Reproduce:
1. Install IPA server
2. Install IPA replica 1
3. Install IPA replica 2 using IPA replica 1 as master server

Actual results:
Installation fails with LDAP error

Expected results:
Installation should be successful.

Additional info:

Seen "Permission Denied" messages in Dirsrv Error log.
Comment 1 Abhijeet Kasurde 2016-09-16 09:14:26 UTC 
Created attachment 1201575 [details]
ipa-replica-install.log
Comment 2 Petr Vobornik 2016-09-16 09:26:01 UTC 
Could you attach also directory server error and access log from both master(replica 1) and replica(replica 2)?
Comment 4 Abhijeet Kasurde 2016-09-16 10:02:56 UTC 
Created attachment 1201583 [details]
console logs tar.gz
Comment 6 Ludwig 2016-09-19 12:38:04 UTC 
I just tried to reproduce with 
ipa-server.x86_64              4.4.0-12.el7

but it works fine. If you still can reproduce the failure, can you give the exact commands, with all options, you are using
Comment 8 Abhijeet Kasurde 2016-09-20 05:07:45 UTC 
Unable to reproduce using IPA version :: 

ipa-server-4.4.0-12.el7.x86_64

Closing BZ as WORKSFORME
Note You need to log in before you can comment on or make changes to this bug.