The server install fails to set up the kdc user from time to time, probably because of special characters in the password:
011-01-06 15:51:26,324 INFO args=kdb5_ldap_util -D uid=kdc,cn=sysaccounts,cn=etc,dc=testrelm -w g.z~Ab)TR|d create -s -P Secret123 -r TESTRELM -subtrees dc=testrelm -sscope sub 2011-01-06 15:51:26,324 INFO stdout= 2011-01-06 15:51:26,324 INFO stderr=kdb5_ldap_util: Invalid credentials while initializing database
Note too that this password appears twice in the log output. Once when the entry is created in the ldapmodify command and once here.
This needs to be escaped. And the passwords should not be logged.
Fixed in: e73efb9
Metadata Update from @rcritten: - Issue assigned to mkosek - Issue set to the milestone: FreeIPA 2.0 - 2011/01 (cleanup)
Login to comment on this ticket.