Hi, On Mon, Feb 3, 2025 at 4:43 PM Nacho Marti via FreeIPA-users < [email protected]> wrote:
> Hi Flo! > Thanks for the response. > > kinit admin: kinit: Password incorrect while getting initial credentials > ipa user-find: ipa: ERROR: Could not create log_dir u'/home/testmk/.ipa/log' > ipa: ERROR: Major (851968): Unspecified GSS failure. Minor code may > provide more information, Minor (2598845122): Credentials cache permissions > incorrect (filename: /var/run/ipa/ccaches/[email protected]) > > The thing is that when I introduce the password its says that the > credentials are incorrect, but the password its actually correct. And in > the other IPA's instances takes properly the password. I don't know what > else to do :( > You have other IPA servers replicated with this one? If they have the same services set up, it will probably be easier to uninstall the broken instance and reinstall it. You need first to make sure that the other instances have all the services you need. On a working replica, list the services with kinit admin ipa config-show It will show you which server is configured as DNS server, which one as CA, which one as KRA etc... If all your services are available on a working server, you can re-create a replica by following the uninstall/reinstall process. More info in https://docs.redhat.com/en/documentation/Red_Hat_Enterprise_Linux/9/html/preparing_for_disaster_recovery_with_identity_management and https://docs.redhat.com/en/documentation/Red_Hat_Enterprise_Linux/9/html/performing_disaster_recovery_with_identity_management, especially in this chapter: https://docs.redhat.com/en/documentation/Red_Hat_Enterprise_Linux/9/html/performing_disaster_recovery_with_identity_management/recovering-a-single-server-with-replication_performing-disaster-recovery flo -- > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue >
-- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
