When configuring kinoite as an ipa-client things stop functioning some items that are broken after the install - sshd is no longer running after the configuration config is done by
ipa-client-install --enable-dns-updates --mkhomedir
rpm-ostree status ● fedora:fedora/35/x86_64/kinoite Version: 35.20211123.0 (2021-11-23T01:11:36Z) BaseCommit: ab88d40fccb9f9929267e7b9ff99fd9b5dc65cfe5bc4d7e983e704e127ed4893 GPGSignature: Valid signature by 787EA6AE1147EEE56C40B30CDB4639719867C58F LayeredPackages: ipa-client flatpak list Name Application ID Version Branch Installation Fedora Platform org.fedoraproject.Platform 35 f35 system
Rob
I guess the reconfiguration of authselect by the ipa-client-install command really does quite some damage.
Anybody know some workaround for this ?
Looks a lot like https://github.com/authselect/authselect/pull/273. Can you make sure that you have altfiles in /etc/nsswitch.conf?
altfiles
/etc/nsswitch.conf
Metadata Update from @siosm: - Issue tagged with: kinoite
that was it, after reverting to a clean install I looked up altfiles in the /etc/nsswitch.conf installed ipa-client and registered the system and they were gone.
After putting them back all was ok again, but now the authselect check gives an error. Nothing a custom profile can't work around.
Looking forward to a permanent solution from kinoite.
authselect has had changes in F36 that might have improved things here. Closing but feel free to re-open if you have more info or are able to reproduce the issue.
Metadata Update from @siosm: - Issue close_status updated to: Fixed - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.