#327 Detect that host name can't be resolved
Closed: Fixed None Opened 13 years ago by dpal.

The issue below was caused by the typo in the hosts file. This should be detected by the install and reported accordingly.

====

Installed a fresh F13 system. Did update. Configured DHCP to give static IP to the machine. Added host to hosts file with type in IP address.

Added devel repo.

Installed packages:
Installed Packages
Name        : ipa-server
Arch        : i686
Version     : 1.91
Release     : 0.2010100601gitbfd2e38.fc13
Size        : 1.8 M
Repo        : installed
From repo   : ipa-devel

Run ipa-server-install with no parameters.
Installation failed:

The log file for this installation can be found in /var/log/ipaserver-install.log
==============================================================================
This program will set up the FreeIPA Server.

This includes:
  * Configure the Network Time Daemon (ntpd)
  * Create and configure an instance of Directory Server
  * Create and configure a Kerberos Key Distribution Center (KDC)
  * Configure Apache (httpd)

To accept the default shown in brackets, press the Enter key.

Enter the fully qualified domain name of the computer
on which you're setting up server software. Using the form
<hostname>.<domainname>
Example: master.example.com.


Server host name [lenovo.home]:

Warning: Hostname (lenovo.home) not found in DNS
The domain name has been calculated based on the host name.

Please confirm the domain name [home]:

The IPA Master Server will be configured with
Hostname:    lenovo.home
IP address:  192.168.0.107
Domain name: home

The server must run as a specific user in a specific group.
It is strongly recommended that this user should have no privileges
on the computer (i.e. a non-root user).  The set up procedure
will give this user/group some permissions in specific paths/files
to perform server-specific operations.

The kerberos protocol requires a Realm name to be defined.
This is typically the domain name converted to uppercase.

Please provide a realm name [HOME]: 
Certain directory server operations require an administrative user.
This user is referred to as the Directory Manager and has full access
to the Directory for system management tasks and will be added to the
instance of directory server created for IPA.
The password must be at least 8 characters long.

Directory Manager password: 
Password (confirm):

The IPA server requires an administrative user, named 'admin'.
This user is a regular system account used for IPA server administration.

IPA admin password: 
Password (confirm):


The following operations may take some minutes to complete.
Please wait until the prompt is returned.

Configuring directory server for the CA:
  [1/4]: creating directory server user
  [2/4]: creating directory server instance
  [3/4]: configuring directory to start on boot
  [4/4]: restarting directory server
done configuring pkids.
Configuring certificate server:
  [1/16]: creating certificate server user
  [2/16]: creating pki-ca instance
  [3/16]: restarting certificate server
  [4/16]: configuring certificate server instance
root        : CRITICAL failed to restart ca instance Command '/usr/bin/perl /usr/bin/pkisilent ConfigureCA -cs_hostname lenovo.home -cs_port 9445 -client_certdb_dir /tmp/tmp-yE_Iku -client_certdb_pwd "XXXXXXXX" -preop_pin fxZcSKpjv3H50ZFLuZbN -domain_name IPA -admin_user admin -admin_email root@localhost -admin_password "XXXXXXXX" -agent_name ipa-ca-agent -agent_key_size 2048 -agent_key_type rsa -agent_cert_subject "CN=ipa-ca-agent,O=IPA" -ldap_host lenovo.home -ldap_port 7389 -bind_dn "cn=Directory Manager" -bind_password "XXXXXXXX" -base_dn o=ipaca -db_name ipaca -key_size 2048 -key_type rsa -key_algorithm SHA256withRSA -save_p12 true -backup_pwd "XXXXXXXX" -subsystem_name pki-cad -token_name internal -ca_subsystem_cert_subject_name "CN=CA Subsystem,O=IPA" -ca_ocsp_cert_subject_name "CN=OCSP Subsystem,O=IPA" -ca_server_cert_subject_name "CN=lenovo.home,O=IPA" -ca_audit_signing_cert_subject_name "CN=CA Audit,O=IPA" -ca_sign_cert_subject_name "CN=Certificate Authority,O=IPA" -external false -clone false' returned non-zero exit status 255
Unexpected error - see ipaserver-install.log for details:
 Configuration of CA failed

2010-10-06 09:30:20,138 DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:30:20,139 DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:30:20,139 DEBUG Loading Index file from '/var/lib/ipa/sysrestore/sysrestore.index'
2010-10-06 09:31:19,046 DEBUG importing all plugin modules in '/usr/lib/python2.6/site-packages/ipalib/plugins'...
2010-10-06 09:31:19,047 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/aci.py'
2010-10-06 09:31:19,059 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/automount.py'
2010-10-06 09:31:19,068 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/baseldap.py'
2010-10-06 09:31:19,069 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/cert.py'
2010-10-06 09:31:19,088 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/config.py'
2010-10-06 09:31:19,092 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/dns.py'
2010-10-06 09:31:19,102 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/group.py'
2010-10-06 09:31:19,107 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/hbac.py'
2010-10-06 09:31:19,114 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/hbacsvc.py'
2010-10-06 09:31:19,115 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/hbacsvcgroup.py'
2010-10-06 09:31:19,118 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/host.py'
2010-10-06 09:31:19,124 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/hostgroup.py'
2010-10-06 09:31:19,126 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/internal.py'
2010-10-06 09:31:19,127 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/kerberos.py'
2010-10-06 09:31:19,128 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/krbtpolicy.py'
2010-10-06 09:31:19,129 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/migration.py'
2010-10-06 09:31:19,132 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/misc.py'
2010-10-06 09:31:19,133 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/netgroup.py'
2010-10-06 09:31:19,137 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/passwd.py'
2010-10-06 09:31:19,138 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/ping.py'
2010-10-06 09:31:19,138 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/pwpolicy.py'
2010-10-06 09:31:19,142 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/rolegroup.py'
2010-10-06 09:31:19,145 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/service.py'
2010-10-06 09:31:19,145 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/sudocmd.py'
2010-10-06 09:31:19,146 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/sudocmdgroup.py'
2010-10-06 09:31:19,149 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/sudorule.py'
2010-10-06 09:31:19,153 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/taskgroup.py'
2010-10-06 09:31:19,156 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/user.py'
2010-10-06 09:31:19,163 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/virtual.py'
2010-10-06 09:31:19,163 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/whoami.py'
2010-10-06 09:31:19,163 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipalib/plugins/xmlclient.py'
2010-10-06 09:31:19,163 DEBUG importing all plugin modules in '/usr/lib/python2.6/site-packages/ipaserver/plugins'...
2010-10-06 09:31:19,164 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/dogtag.py'
2010-10-06 09:31:19,333 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/join.py'
2010-10-06 09:31:19,336 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/ldap2.py'
2010-10-06 09:31:19,336 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/ldapapi.py'
2010-10-06 09:31:19,338 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/rabase.py'
2010-10-06 09:31:19,338 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/selfsign.py'
2010-10-06 09:31:19,339 INFO skipping plugin module ipaserver.plugins.selfsign: selfsign is not selected as RA plugin, it is dogtag
2010-10-06 09:31:19,339 DEBUG importing plugin module '/usr/lib/python2.6/site-packages/ipaserver/plugins/xmlserver.py'
2010-10-06 09:31:19,455 INFO Mounting ipaserver.rpcserver.xmlserver() at 'xml'
2010-10-06 09:31:19,473 INFO Mounting ipaserver.rpcserver.jsonserver() at 'json'
2010-10-06 09:31:19,828 DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:31:19,828 DEBUG Configuring directory server for the CA:
2010-10-06 09:31:19,828 DEBUG   [1/4]: creating directory server user
2010-10-06 09:31:19,828 DEBUG adding ds user dirsrv
2010-10-06 09:31:20,164 INFO args=/usr/sbin/useradd -c DS System User -d /var/lib/dirsrv -M -r -s /sbin/nologin dirsrv
2010-10-06 09:31:20,165 INFO stdout=
2010-10-06 09:31:20,165 INFO stderr=
2010-10-06 09:31:20,165 DEBUG done adding user
2010-10-06 09:31:20,166 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:31:20,166 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:31:20,167 DEBUG   [2/4]: creating directory server instance
2010-10-06 09:31:20,302 INFO args=/sbin/service dirsrv status
2010-10-06 09:31:20,302 INFO stdout=
2010-10-06 09:31:20,302 INFO stderr=/bin/ls: cannot access /etc/dirsrv/slapd-*: No such file or directory

2010-10-06 09:31:20,302 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:31:20,303 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:31:20,305 DEBUG writing inf template
2010-10-06 09:31:20,307 DEBUG 
[General]
FullMachineName=   lenovo.home
SuiteSpotUserID=   dirsrv
ServerRoot=    /usr/lib/dirsrv
[slapd]
ServerPort=   7389
ServerIdentifier=   PKI-IPA
Suffix=   dc=home
RootDN=   cn=Directory Manager

2010-10-06 09:31:20,307 DEBUG calling setup-ds.pl
2010-10-06 09:32:11,926 INFO args=/usr/sbin/setup-ds.pl --silent --logfile - -f /tmp/tmpK7tNNW
2010-10-06 09:32:11,926 INFO stdout=[10/10/06:09:32:11] - [Setup] Info Your new DS instance 'PKI-IPA' was successfully created.
Your new DS instance 'PKI-IPA' was successfully created.
[10/10/06:09:32:11] - [Setup] Success Exiting . . .
Log file is '-'

Exiting . . .
Log file is '-'


2010-10-06 09:32:11,926 INFO stderr=
2010-10-06 09:32:11,927 DEBUG completed creating ds instance
2010-10-06 09:32:11,928 DEBUG   [3/4]: configuring directory to start on boot
2010-10-06 09:32:11,949 INFO args=/sbin/chkconfig --list dirsrv
2010-10-06 09:32:11,949 INFO stdout=dirsrv          0:off   1:off   2:off   3:off   4:off   5:off   6:off

2010-10-06 09:32:11,949 INFO stderr=
2010-10-06 09:32:11,950 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:32:11,961 INFO args=/sbin/chkconfig dirsrv on
2010-10-06 09:32:11,961 INFO stdout=
2010-10-06 09:32:11,961 INFO stderr=
2010-10-06 09:32:11,961 DEBUG   [4/4]: restarting directory server
2010-10-06 09:32:14,245 INFO args=/sbin/service dirsrv restart PKI-IPA
2010-10-06 09:32:14,245 INFO stdout=Shutting down dirsrv: 
    PKI-IPA...                                             [  OK  ]
Starting dirsrv: 
    PKI-IPA...                                             [  OK  ]

2010-10-06 09:32:14,246 INFO stderr=
2010-10-06 09:32:14,303 INFO args=/sbin/service dirsrv status
2010-10-06 09:32:14,304 INFO stdout=dirsrv PKI-IPA (pid 28588) is running...

2010-10-06 09:32:14,304 INFO stderr=
2010-10-06 09:32:14,304 DEBUG done configuring pkids.
2010-10-06 09:32:14,304 DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:32:14,306 DEBUG Configuring certificate server:
2010-10-06 09:32:14,307 DEBUG   [1/16]: creating certificate server user
2010-10-06 09:32:14,307 DEBUG adding ca user pkiuser
2010-10-06 09:32:14,704 INFO args=/usr/sbin/useradd -c CA System User -d /var/lib -M -r -s /sbin/nologin pkiuser
2010-10-06 09:32:14,705 INFO stdout=
2010-10-06 09:32:14,705 INFO stderr=
2010-10-06 09:32:14,705 DEBUG done adding user
2010-10-06 09:32:14,705 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:32:14,706 DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2010-10-06 09:32:14,707 DEBUG   [2/16]: creating pki-ca instance
2010-10-06 09:33:18,739 INFO args=/usr/bin/pkicreate -pki_instance_root /var/lib -pki_instance_name pki-ca -subsystem_type ca -agent_secure_port 9443 -ee_secure_port 9444 -admin_secure_port 9445 -ee_secure_client_auth_port 9446 -unsecure_port 9180 -tomcat_server_port 9701 -redirect conf=/etc/pki-ca -redirect logs=/var/log/pki-ca
2010-10-06 09:33:18,739 INFO stdout=PKI instance creation Utility ...


PKI instance creation completed ...

Stopping pki-ca: 
process already stopped

============================================================

Starting pki-ca:                                           [  OK  ]

pki-ca (pid 29481) is running ...

    'pki-ca' must still be CONFIGURED!
    (see /var/log/pki-ca-install.log)

Before proceeding with the configuration, make sure 
the firewall settings of this machine permit proper 
access to this subsystem.

Please start the configuration by accessing:

https://lenovo.home:9445/ca/admin/console/config/login?pin=fxZcSKpjv3H50ZFLuZbN

After configuration, the server can be operated by the command:

    /sbin/service pki-cad restart pki-ca


2010-10-06 09:33:18,739 INFO stderr=
2010-10-06 09:33:18,740 DEBUG   [3/16]: restarting certificate server
2010-10-06 09:33:59,597 INFO args=/sbin/service pki-cad restart 
2010-10-06 09:33:59,597 INFO stdout=Stopping pki-ca: ......[  OK  ].................

============================================================

Starting pki-ca:                                           [  OK  ]

pki-ca (pid 30758) is running ...

    'pki-ca' must still be CONFIGURED!
    (see /var/log/pki-ca-install.log)


2010-10-06 09:33:59,598 INFO stderr=Oct 6, 2010 9:33:19 AM org.apache.catalina.startup.Catalina stopServer
SEVERE: Catalina.stop: 
java.net.ConnectException: Connection refused
    at java.net.PlainSocketImpl.socketConnect(Native Method)
    at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:310)
    at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:176)
    at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:163)
    at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:384)
    at java.net.Socket.connect(Socket.java:546)
    at java.net.Socket.connect(Socket.java:495)
    at java.net.Socket.<init>(Socket.java:392)
    at java.net.Socket.<init>(Socket.java:206)
    at org.apache.catalina.startup.Catalina.stopServer(Catalina.java:395)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:616)
    at org.apache.catalina.startup.Bootstrap.stopServer(Bootstrap.java:344)
    at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:435)

2010-10-06 09:33:59,598 DEBUG   [4/16]: configuring certificate server instance
2010-10-06 09:34:20,902 INFO args=/usr/bin/perl /usr/bin/pkisilent ConfigureCA -cs_hostname lenovo.home -cs_port 9445 -client_certdb_dir /tmp/tmp-yE_Iku -client_certdb_pwd "XXXXXXXX" -preop_pin fxZcSKpjv3H50ZFLuZbN -domain_name IPA -admin_user admin -admin_email root@localhost -admin_password "XXXXXXXX" -agent_name ipa-ca-agent -agent_key_size 2048 -agent_key_type rsa -agent_cert_subject "CN=ipa-ca-agent,O=IPA" -ldap_host lenovo.home -ldap_port 7389 -bind_dn "cn=Directory Manager" -bind_password "XXXXXXXX" -base_dn o=ipaca -db_name ipaca -key_size 2048 -key_type rsa -key_algorithm SHA256withRSA -save_p12 true -backup_pwd "XXXXXXXX" -subsystem_name pki-cad -token_name internal -ca_subsystem_cert_subject_name "CN=CA Subsystem,O=IPA" -ca_ocsp_cert_subject_name "CN=OCSP Subsystem,O=IPA" -ca_server_cert_subject_name "CN=lenovo.home,O=IPA" -ca_audit_signing_cert_subject_name "CN=CA Audit,O=IPA" -ca_sign_cert_subject_name "CN=Certificate Authority,O=IPA" -external false -clone false
2010-10-06 09:34:20,903 INFO stdout=libpath=/usr/lib
#######################################################################
CRYPTO INIT WITH CERTDB:/tmp/tmp-yE_Iku
tokenpwd:XXXXXXXX
#############################################
Attempting to connect to: lenovo.home:9445
Exception in LoginPanel(): java.lang.NullPointerException
ERROR: ConfigureCA: LoginPanel() failure
ERROR: unable to create CA

#######################################################################

2010-10-06 09:34:20,903 INFO stderr=Exception: Unable to Send Request:java.net.ConnectException: Connection timed out
java.net.ConnectException: Connection timed out
    at java.net.PlainSocketImpl.socketConnect(Native Method)
    at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:310)
    at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:176)
    at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:163)
    at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:384)
    at java.net.Socket.connect(Socket.java:546)
    at java.net.Socket.connect(Socket.java:495)
    at java.net.Socket.<init>(Socket.java:392)
    at java.net.Socket.<init>(Socket.java:235)
    at HTTPClient.sslConnect(HTTPClient.java:317)
    at ConfigureCA.LoginPanel(ConfigureCA.java:181)
    at ConfigureCA.ConfigureCAInstance(ConfigureCA.java:1165)
    at ConfigureCA.main(ConfigureCA.java:1629)
java.lang.NullPointerException
    at ConfigureCA.LoginPanel(ConfigureCA.java:182)
    at ConfigureCA.ConfigureCAInstance(ConfigureCA.java:1165)
    at ConfigureCA.main(ConfigureCA.java:1629)

2010-10-06 09:34:20,903 CRITICAL failed to restart ca instance Command '/usr/bin/perl /usr/bin/pkisilent ConfigureCA -cs_hostname lenovo.home -cs_port 9445 -client_certdb_dir /tmp/tmp-yE_Iku -client_certdb_pwd "XXXXXXXX" -preop_pin fxZcSKpjv3H50ZFLuZbN -domain_name IPA -admin_user admin -admin_email root@localhost -admin_password "XXXXXXXX" -agent_name ipa-ca-agent -agent_key_size 2048 -agent_key_type rsa -agent_cert_subject "CN=ipa-ca-agent,O=IPA" -ldap_host lenovo.home -ldap_port 7389 -bind_dn "cn=Directory Manager" -bind_password "XXXXXXXX" -base_dn o=ipaca -db_name ipaca -key_size 2048 -key_type rsa -key_algorithm SHA256withRSA -save_p12 true -backup_pwd "XXXXXXXX" -subsystem_name pki-cad -token_name internal -ca_subsystem_cert_subject_name "CN=CA Subsystem,O=IPA" -ca_ocsp_cert_subject_name "CN=OCSP Subsystem,O=IPA" -ca_server_cert_subject_name "CN=lenovo.home,O=IPA" -ca_audit_signing_cert_subject_name "CN=CA Audit,O=IPA" -ca_sign_cert_subject_name "CN=Certificate Authority,O=IPA" -external false -clone false' returned non-zero exit status 255
2010-10-06 09:34:20,906 DEBUG Configuration of CA failed
  File "/usr/sbin/ipa-server-install", line 839, in <module>
    sys.exit(main())

  File "/usr/sbin/ipa-server-install", line 698, in main
    ca.configure_instance("pkiuser", host_name, dm_password, dm_password, subject_base=options.subject)

  File "/usr/lib/python2.6/site-packages/ipaserver/install/cainstance.py", line 458, in configure_instance
    self.start_creation("Configuring certificate server:")

  File "/usr/lib/python2.6/site-packages/ipaserver/install/service.py", line 242, in start_creation
    method()

  File "/usr/lib/python2.6/site-packages/ipaserver/install/cainstance.py", line 607, in __configure_instance
    raise RuntimeError('Configuration of CA failed')

Do you have a firewall configured? What network interface is lenovo.home configured on and is it up?

Replying to [comment:2 rcritten]:

Do you have a firewall configured? What network interface is lenovo.home configured on and is it up?

The problem was caused by the typo in the hosts file. The reverse lookup was not returning right results. Is there any way to do this validation at the beginning of the install and report misconfiguration? It is completely unclear what is the cause of the problem. I tried installing without CA with --self first and that failed too is some part of DS configuration but it was not clear what the reason was either.

What was the typo in the hosts file?

Replying to [comment:5 rcritten]:

What was the typo in the hosts file?

The IP was 192.168.0.107 instead of 192.168.2.107

The reason this isn't detected is we use the resolver to do the verification. Since the problem lies in /etc/hosts it isn't detected. We would have to fire up a DNS client to truly verify things.

I tested by setting my own host entry in /etc/host to a bogus IP addr.

compare resolver reverse and DNS reverse IP addrs
freeipa-575-install.patch

master: 90beb26b5350455dc1b1d82e1e71c4bb4304f87c

Metadata Update from @dpal:
- Issue assigned to rcritten
- Issue set to the milestone: FreeIPA 2.0 - 2010/10

7 years ago

Login to comment on this ticket.

Metadata