well, I thought I was out of the woods, but I still have some issues.
the services are running, but kinit gets me a ticket to nowhere.
"ipa: ERROR: No valid Negotiate header in server response"
grant@ef-idm01:~[20240220-14:36][#785]$ klist
Ticket cache: KCM:555
Default pri
On 2/17/24 00:54, Natxo Asenjo via FreeIPA-users wrote:
hi,
a bit late, but you should check the forwarding logs (maybe enable
them, bit unsure if it is enabled per default on named).
Without any proof, my gut feeling is on dnssec :-), I have had to turn
it off a few times.
Regards,
Natxo
On the latest stable freeipa on v9, in a two-master setup: after a
period of normal operations, I need to reboot one of them. When that
happens, each boot, nslookup times out on the newly rebooted one, even
after named has been running for minutes.
The logs are filled with such as (signed) z
kt s via FreeIPA-users wrote:
> when I login in with administrator, I got an error "Kerberos principal
> expiration".
>
> I can't login in now ,so how to change Kerberos principal time.
You'll need your Directory Manager password which was set during IPA
server installation.
Since you don't hav
and tell me please, how to install ipa-client from git (step by step
instructions will be better)?
--
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora
here is new log with admin principal:
https://pastebin.com/UnETWizc
--
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.
Hi,
The logs show you're using a non-admin user for enrollment and you are
probably hitting issue https://pagure.io/freeipa/issue/9496
It was fixed on multiple branches but not shipped in any official release
yet.
The pagure ticket provides a workaround, or you can enroll using the admin
user.
HT
when I login in with administrator, I got an error "Kerberos principal
expiration".
I can't login in now ,so how to change Kerberos principal time.
--
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
when I login in with administrator, I got an error "Kerberos principal
expiration".
I can't login in now ,so how to change Kerberos principal time.
--
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
all ports available, selinux and firewalld disabled, iptables is empty.
ipaclient-install.log:
https://pastebin.com/nM0xkL16
--
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lis
10 matches
Mail list logo
