thanks i remove /etc/ipa/ca.cert and problem solved On Sat, Apr 25, 2015 at 4:26 PM, alireza baghery <[email protected]> wrote:
> thanks > i remove /etc/ipa/ca.cert and problem solved > > On Sat, Apr 25, 2015 at 4:16 PM, Dmitri Pal <[email protected]> wrote: > >> On 04/25/2015 01:27 AM, alireza baghery wrote: >> >> hi >> i REMOVE server ipa-server (3.0.0 centos 6.5) with HOSTNAME >> (ipasrv.linux) >> and REINSTALL server ipa with same hostname and OS (centos 6.5) >> server IPA integrate with AD windows (2008) >> and on Clients first Uninstall IPa-Client with Command >> ipa-client-install --uninstall >> but when i want INSTALL ipa-client -install --mkhomedir get ERROR >> #### >> LDAP Error: Connect error: TLS error -8054:You are attempting to import a >> cert with the same issuer/serial as an existing cert, but that is not the >> same cert. >> #### >> thnks every body >> >> >> When you install the client IPA issues a cert that is tracked by >> certmonger on the client. >> If you uninstall the client the cert might still be there. >> When then you reinstall the client it tries to get the cert again and >> since it is a different server but client with the same name you get a >> mismatch of the cert. The error is about that. >> >> Please try this: >> >> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Identity_Management_Guide/manually-unconfig-machines.html >> >> However I thought that this was fixed quite some time ago but may be it >> did not make 6.5. >> >> -- >> Thank you, >> Dmitri Pal >> >> Sr. Engineering Manager IdM portfolio >> Red Hat, Inc. >> >> >> -- >> Manage your subscription for the Freeipa-users mailing list: >> https://www.redhat.com/mailman/listinfo/freeipa-users >> Go to http://freeipa.org for more info on the project >> > >
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
