The replica connection check is failing if for example the AD administrator Administrator@AD.EXAMPLE.COM is used for the deployment or promotion of a replica
ERROR: Remote master check failed with following error message(s): Insufficient access: not allowed to perform server connection check
No error.
$ rpm -q freeipa-server freeipa-client ipa-server ipa-client 389-ds-base pki-ca krb5-server ipa-server-4.11.0-5.el9.x86_64 ipa-client-4.11.0-5.el9.x86_64 389-ds-base-2.4.5-3.el9.x86_64 krb5-server-1.21.1-1.el9.x86_64
Metadata Update from @ftrivino: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/7245 - Issue assigned to twoerner
Metadata Update from @ftrivino: - Custom field rhbz adjusted to https://issues.redhat.com/browse/RHEL-26261
master:
ipa-4-11:
ipa-4-10:
Metadata Update from @frenaud: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Metadata Update from @abbra: - Custom field changelog adjusted to Privilege checks in IPA API now support ID overrides, allowing trusted Active Directory users to perform various operations like enrolling a replica.
ipa-4-12:
Log in to comment on this ticket.