Hi, On Mon, Feb 3, 2025 at 4:43 PM Nacho Marti via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote:
> Hi Flo! > Thanks for the response. > > kinit admin: kinit: Password incorrect while getting initial credentials > ipa user-find: ipa: ERROR: Could not create log_dir u'/home/testmk/.ipa/log' > ipa: ERROR: Major (851968): Unspecified GSS failure. Minor code may > provide more information, Minor (2598845122): Credentials cache permissions > incorrect (filename: /var/run/ipa/ccaches/testmk@TEST.PRIVATE) > > The thing is that when I introduce the password its says that the > credentials are incorrect, but the password its actually correct. And in > the other IPA's instances takes properly the password. I don't know what > else to do :( > You have other IPA servers replicated with this one? If they have the same services set up, it will probably be easier to uninstall the broken instance and reinstall it. You need first to make sure that the other instances have all the services you need. On a working replica, list the services with kinit admin ipa config-show It will show you which server is configured as DNS server, which one as CA, which one as KRA etc... If all your services are available on a working server, you can re-create a replica by following the uninstall/reinstall process. More info in https://docs.redhat.com/en/documentation/Red_Hat_Enterprise_Linux/9/html/preparing_for_disaster_recovery_with_identity_management and https://docs.redhat.com/en/documentation/Red_Hat_Enterprise_Linux/9/html/performing_disaster_recovery_with_identity_management, especially in this chapter: https://docs.redhat.com/en/documentation/Red_Hat_Enterprise_Linux/9/html/performing_disaster_recovery_with_identity_management/recovering-a-single-server-with-replication_performing-disaster-recovery flo -- > _______________________________________________ > FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org > To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue >
-- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
