#5558 [RFE] create a helper tool to check IPA secrets
Opened 3 years ago by simo. Modified 2 years ago

In some cases people inadvertently breaks their installation by corrupting their keytab files or certificates.

A simple tool that knows of the various keytabs on the system (for server and client) and that can consult certmonger to find the certs, and then proceed to check if they work by trying to kinit and by checking the cert validity/chain would make troubleshooting some situations much easier.

The tool may also check firewall rules perhaps and DNS settings.
All those things that cause hard to debug problems but are relatively easy to check by an autometed tool.

This IMO should be a part of the troubleshooting tool.

Metadata Update from @simo:
- Issue assigned to someone
- Issue set to the milestone: FreeIPA 4.5 backlog

2 years ago

Login to comment on this ticket.