Hello,
Hope you are doing good.
Hello All,
We have a master freeipa server through which we created more two replica freeipa servers. When we create a user in master server, the user was automatically created into the two replica servers. Everything was working fine, But now I am seeing this error for one of the replica server, when running this command ipa-replica-manage -v list local-host
last update status: -1 Incremental update has failed and requires administrator actionLDAP error: Can't contact LDAP server
When i am checking the logs for /var/log/dirsrv/localhost, I can see this :-
[24/Dec/2018:21:27:55 +0000] slapi_ldap_bind - Error: could not perform interactive bind for id [] authentication mechanism [GSSAPI]: error -1 (Can't contact LDAP server) [24/Dec/2018:21:32:20 +0000] slapi_ldap_bind - Error: could not send startTLS request: error -1 (Can't contact LDAP server) errno 2 (No such file or directory) [24/Dec/2018:21:32:55 +0000] slapd_ldap_sasl_interactive_bind - Error: could not perform interactive bind for id [] mech [GSSAPI]: LDAP error -1 (Can't contact LDAP server) ((null)) errno 107 (Transport endpoint is not connected) [24/Dec/2018:21:32:55 +0000] slapi_ldap_bind - Error: could not perform interactive bind for id [] authentication mechanism [GSSAPI]: error -1 (Can't contact LDAP server)
Can you please tell me how to resolve this issue ? Thanks & Regards, Azeem
Hi
Except for the weirdness (replica or master named local-host or localhost, which should not be), your issue looks a lot like what's reported here: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahoste... You should check it out. You should probably also rebuild your IPA domain to have reasonable resolvable hostnames.
On Sat, Dec 29, 2018 at 7:21 PM Azim Siddiqui via FreeIPA-users freeipa-users@lists.fedorahosted.org wrote:
Hello,
Hope you are doing good.
Hello All,
We have a master freeipa server through which we created more two replica freeipa servers. When we create a user in master server, the user was automatically created into the two replica servers. Everything was working fine, But now I am seeing this error for one of the replica server, when running this command ipa-replica-manage -v list local-host
last update status: -1 Incremental update has failed and requires administrator actionLDAP error: Can't contact LDAP server
When i am checking the logs for /var/log/dirsrv/localhost, I can see this :-
[24/Dec/2018:21:27:55 +0000] slapi_ldap_bind - Error: could not perform interactive bind for id [] authentication mechanism [GSSAPI]: error -1 (Can't contact LDAP server) [24/Dec/2018:21:32:20 +0000] slapi_ldap_bind - Error: could not send startTLS request: error -1 (Can't contact LDAP server) errno 2 (No such file or directory) [24/Dec/2018:21:32:55 +0000] slapd_ldap_sasl_interactive_bind - Error: could not perform interactive bind for id [] mech [GSSAPI]: LDAP error -1 (Can't contact LDAP server) ((null)) errno 107 (Transport endpoint is not connected) [24/Dec/2018:21:32:55 +0000] slapi_ldap_bind - Error: could not perform interactive bind for id [] authentication mechanism [GSSAPI]: error -1 (Can't contact LDAP server)
Can you please tell me how to resolve this issue ? Thanks & Regards, Azeem
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahoste...
freeipa-users@lists.fedorahosted.org