I ran the 4.4 upgrade yesterday on a group of Centos7 servers that are IPA
replicas for my North American datacenters. All seem to have the same issue
that I am now unable to connect to the web UI, with the following error in the
browser…
Bad Request
Your browser sent a request that this serv
Pete Fuller wrote:
> I ran the 4.4 upgrade yesterday on a group of Centos7 servers that are
> IPA replicas for my North American datacenters. All seem to have the
> same issue that I am now unable to connect to the web UI, with the
> following error in the browser…
>
>
> Bad Request
>
> Your
Tried with another browser? 400 normally means an issue with cookies or cache.
Sent from my Commodore 64
> On 8 May 2017, at 17:59, Pete Fuller wrote:
>
> an
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://free
That was my first thought too. Tried with different browsers, in incognito,
etc.
> On May 8, 2017, at 1:24 PM, Per Qvindesland wrote:
>
> Tried with another browser? 400 normally means an issue with cookies or cache.
>
> Sent from my Commodore 64
>
>> On 8 May 2017, at 17:59, Pete Fuller
Pete Fuller wrote:
> IPA command line seems to work. Have been able to use ipa user-find
> and ipa cert-find. Can also sudo and kinit from other machines as IPA user.
>
> Another clue here, looks like even when querying with the ipa cli tools,
> I’m getting 400 errors in the access logs. The t
http error log has nothing. This is with http restart and a failed request for
web ui. The request has no error. Is there a different log that I am
overlooking that might have more information?
[Mon May 08 10:46:14.842162 2017] [:warn] [pid 25471] NSSSessionCacheTimeout is
deprecated. Ignor
Pete Fuller wrote:
> http error log has nothing. This is with http restart and a failed
> request for web ui. The request has no error. Is there a different log
> that I am overlooking that might have more information?
No.
Create /etc/ipa/server.conf with these contents:
[global]
debug = True
From the cli - it looks like the answers I’m getting are actually coming from
one of my non-upgraded servers.The window for those servers is later tonight.
The request gets denied on the localhost it seems.
(Lb3 is the local server. Ipa11 is offsite server that has not been upgraded)
[pful
account in IPA with no HBACS or anything and just gave it a IPA
role to read data which we use in the below config.
Getting
file:///home/schogan/Documents/SametimeTranscripts/[multi-way]/20170508-100730%7BJUSTIN%20L.%20BAUMAN's%20group%20chat%7D/IMAGE
$1CFC0CDDB6F2F123.jpg
URL I have them
ting
> [image:
> file:///home/schogan/Documents/SametimeTranscripts/[multi-way]/20170508-100730%7BJUSTIN%20L.%20BAUMAN's%20group%20chat%7D/IMAGE$1CFC0CDDB6F2F123.jpg]
>
> URL I have them using ldaps://IPofIPAserver.example.com
> BaseDN dc=example,dc=local
> filter users,cn=a
/schogan/Documents/SametimeTranscripts/[multi-way]/20170508-100730%7BJUSTIN%20L.%20BAUMAN's%20group%20chat%7D/IMAGE
$1CFC0CDDB6F2F123.jpg
URL I have them using ldaps://IPofIPAserver.example.com
BaseDN dc=example,dc=local
filter users,cn=accounts,$Suffix
attributes are left default
us
50.el6.1.x86_64
>
>
>I set up an account in IPA with no HBACS or anything and just gave it
>a IPA role to read data which we use in the below config.
>Getting
>[image:
>
> file:///home/schogan/Documents/SametimeTranscripts/[multi-way]/20170508-100730%7BJUSTIN%20L.%
IPA/SSSD developers -
I'm writing to give everyone involved in the IPA and sssd projects a big
"Thank You". I've been poking at IPA for a little over 4 years now, looking
to migrate away from our 389ds LDAP configuration. There have been lots of
hurdles to jump, bugs to fix, as well as a comp
13 matches
Mail list logo
