Re: [Freeipa-users] ipa-client-install error

Fri, 04 Nov 2011 12:15:24 -0700

CentOS is far behind RHEL. Many of the issues you will find have been fixed in released versions of IPA. This one is due, I think to an earlier issue with directory server that has since been upgraded.
You might want to see if the versions shipped with Scientifix Linux work better for you, but it is going to be quite a few packages. Aside from freeipa* it will be xmlrpc, 38-ds-base and DNS dyndb and possibly others. 






On 11/04/2011 03:04 PM, Jimmy wrote:

I'm running the ipa-client-install on a CentOS 6 client and get this 
error:


[root@kudzu ~]# ipa-client-install
Discovery was successful!
Realm: PDH.CSP
DNS Domain: pdh.csp
IPA Server: csp-idm.pdh.csp
BaseDN: dc=pdh,dc=csp

Continue to configure the system with these values? [no]: yes
Principal: admin
Password for [email protected]:
Joining realm failed: Operation failed! unsupported extended operation
child exited with 9
Certificate subject base is: O=PDH.CSP

The only logs I see on the server are here:


Nov 04 18:52:55 csp-idm.pdh.csp krb5kdc[5354](info): AS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: 
NEEDED_PREAUTH: [email protected] for krbtgt/[email protected], Additional 
pre-authentication required
Nov 04 18:53:20 csp-idm.pdh.csp krb5kdc[5354](info): AS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, [email protected] for 
krbtgt/[email protected]
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, [email protected] for 
HTTP/[email protected]
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (1 etypes 
{18}) 192.168.201.199 <http://192.168.201.199>: ISSUE: authtime 
1320432800, etypes {rep=18 tkt=18 ses=18}, [email protected] for 
krbtgt/[email protected]
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.102 <http://192.168.201.102>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, [email protected] for 
ldap/[email protected]
Nov 04 18:53:21 csp-idm.pdh.csp krb5kdc[5354](info): TGS_REQ (4 etypes 
{18 17 16 23}) 192.168.201.199 <http://192.168.201.199>: ISSUE: 
authtime 1320432800, etypes {rep=18 tkt=18 ses=18}, [email protected] for 
ldap/[email protected]




_______________________________________________
Freeipa-users mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/freeipa-users



_______________________________________________
Freeipa-users mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/freeipa-users





















					Reply via email to