With umask set to 077 named is unable to start due wrong permission on directory/files:
Workaround:
chmod 770 /var/lib/ipa/dnssec chmod 644 /etc/ipa/dnssec/softhsm2.conf
File mods must be explicitly modified by os.chmod() to have effect over umask.
This may not be all affected files.
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1289311 (Red Hat Enterprise Linux 7)
It should be
chmod 644 /etc/ipa/dnssec/softhsm2.conf
master:
Needs triage, if it should be backported to ipa 4.2
yes, it should be backported to 4.2.4
ipa-4-2:
Fix:
ipa-4-3:
Metadata Update from @mbasti: - Issue assigned to mbasti - Issue set to the milestone: FreeIPA 4.2.4
Login to comment on this ticket.