freeipa

FreeIPA is an integrated Identity and Authentication solution for Linux/UNIX networked environments.  |  http://www.freeipa.org/

#5966 Missing 'ipa-ca' records for replica installed by replica promotion

Created 2 years ago by mbasti
Modified a year ago

A/AAAA records are not added for replica.

Steps to reproduce:
1. [master]# ipa-server-install
1. [replica]# ipa-replica-install
1. [replica]# ipa-ca-install
1. A/AAAA records in 'ipa-ca' does not contain IP addresses of replica

Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=837369 (Red Hat Enterprise Linux 7)

master:

  • 5693d19 CA replica promotion: add proper CA DNS records

ipa-4-3:

  • 8502fe4 CA replica promotion: add proper CA DNS records

ipa-4-3:

  • afee95a CA replica promotion: fix forgotten import

Bug detected:

[ipa.ipatests.test_integration.host.Host.replica1.cmd23]   [25/25]: Updating DNS CA records
[ipa.ipatests.test_integration.host.Host.replica1.cmd23] Updating DNS system records
[ipa.ipatests.test_integration.host.Host.replica1.cmd23]   [error] AttributeError: ldap2 is not connected (ldap2_140624950979984 in MainThread)
[ipa.ipatests.test_integration.host.Host.replica1.cmd23] ipa.ipapython.install.cli.install_tool(Replica): ERROR    ldap2 is not connected (ldap2_140624950979984 in MainThread)
[ipa.ipatests.test_integration.host.Host.replica1.cmd23] ipa.ipapython.install.cli.install_tool(Replica): ERROR    The ipa-replica-install command failed. See /var/log/ipareplica-install.log for more information
[ipa.ipatests.test_integration.host.Host.replica1.cmd23] Your system may be partly configured.
[ipa.ipatests.test_integration.host.Host.replica1.cmd23] Run /usr/sbin/ipa-server-install --uninstall to clean up.

master:

  • a155f69 Fix replica install with CA

Patch for ipa-4-3 needed

ipa-4-3:

  • 4edd39f Fix replica install with CA
a year ago

Metadata Update from @mbasti:
- Issue assigned to mbasti
- Issue set to the milestone: FreeIPA 4.3.2

Login to comment on this ticket.

defect

IPA

1

https://bugzilla.redhat.com/show_bug.cgi?id=837369

cancel