#3617 ipa-dns-install is broken on CA-less server
Closed: Fixed None Opened 9 years ago by mkosek.

ipa-dns-install crashes on CA-less server:

# ipa-dns-install --forwarder 10.16.101.41

The log file for this installation can be found in /var/log/ipaserver-install.log
==============================================================================
This program will setup DNS for the FreeIPA Server.

This includes:
  * Configure DNS (bind)

To accept the default shown in brackets, press the Enter key.

Existing BIND configuration detected, overwrite? [no]: y
Directory Manager password:

Do you want to configure the reverse zone? [yes]: 
Please specify the reverse zone name [78.16.10.in-addr.arpa.]: 
Using reverse zone 78.16.10.in-addr.arpa.

The following operations may take some minutes to complete.
Please wait until the prompt is returned.

Configuring DNS (named)
  [1/11]: adding DNS container
  [2/11]: setting up our zone
  [3/11]: setting up reverse zone
  [4/11]: setting up our own record
  [5/11]: setting up records for other masters
  [6/11]: setting up CA record
Unexpected error - see /var/log/ipaserver-install.log for details:
NotFound: no such entry

Log excerpt:

2013-05-09T11:48:36Z DEBUG   [6/11]: setting up CA record
2013-05-09T11:48:36Z DEBUG Check if CA is enabled for this host
2013-05-09T11:48:36Z DEBUG CA is not configured
2013-05-09T11:48:36Z INFO   File "/usr/lib/python2.7/site-packages/ipaserver/install/installutils.py",  line 615, in run_script
    return_value = main_function()

  File "/sbin/ipa-dns-install", line 238, in main
    bind.create_instance()

  File "/usr/lib/python2.7/site-packages/ipaserver/install/bindinstance.py", line 551, in               create_instance
    self.start_creation()

  File "/usr/lib/python2.7/site-packages/ipaserver/install/service.py", line 362, in start_creation
    method()

  File "/usr/lib/python2.7/site-packages/ipaserver/install/bindinstance.py", line 742, in               __add_ipa_ca_record
    ['dn'])

  File "/usr/lib/python2.7/site-packages/ipapython/ipaldap.py", line 1180, in get_entries
    base_dn=base_dn, scope=scope, filter=filter, attrs_list=attrs_list)

  File "/usr/lib/python2.7/site-packages/ipapython/ipaldap.py", line 1248, in find_entries
    raise errors.NotFound(reason='no such entry')

2013-05-09T11:48:36Z INFO The ipa-dns-install command failed, exception: NotFound: no such entry

Patch freeipa-mkosek-404-do-not-add-ipa-ca-records-on-ca-less-installs.patch sent for review

Patch freeipa-mkosek-405-fix-ipa-ca-dns-name-creation.patch sent for review

Metadata Update from @mkosek:
- Issue assigned to mkosek
- Issue set to the milestone: FreeIPA 3.2 - 2013/04-05 (GA)

5 years ago

Login to comment on this ticket.

Metadata