kadmin service not running after installing ipa server - FreeIPA-users - Fedora mailing-lists

20 Jun 2019


      Hello
I have just installed ipa-server on ubuntu 18.04 and I have observed that the kadmin service is not running. While investigating the issue I’ve seen that is complaining about the not existance of the /etc/krb5kdc/kadm5.acl.
ipactl status
Directory Service: RUNNING
krb5kdc Service: RUNNING
kadmin Service: STOPPED
httpd Service: RUNNING
ipa-custodia Service: RUNNING
pki-tomcatd Service: RUNNING
ipa-otpd Service: RUNNING
ipa: INFO: The ipactl command was successful
systemctl status krb5-admin-server.service 
● krb5-admin-server.service - Kerberos 5 Admin Server
   Loaded: loaded (/lib/systemd/system/krb5-admin-server.service; disabled; vendor preset: enabled)
  Drop-In: /lib/systemd/system/krb5-admin-server.service.d
           └─slapd-before-kdc.conf
   Active: failed (Result: exit-code) since Thu 2019-06-20 16:36:34 EDT; 3min 9s ago
  Process: 13426 ExecStart=/usr/sbin/kadmind -nofork $DAEMON_ARGS (code=exited, status=1/FAILURE)
 Main PID: 13426 (code=exited, status=1/FAILURE)
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: setsockopt(11,IPV6_V6ONLY,1) worked
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: Setting up RPC socket for address 0.0.0.0.749
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: Setting up RPC socket for address ::.749
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: setsockopt(13,IPV6_V6ONLY,1) worked
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: set up 6 sockets
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: No such file or directory while opening ACL file /etc/krb5kdc/kadm5.acl
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: Cannot open /etc/krb5kdc/kadm5.acl: No such file or directory while initializing ACL file, aborting
Jun 20 16:36:34 ipadev.redcapcloud.com kadmind[13426]: kadmind: kadmind: Cannot open /etc/krb5kdc/kadm5.acl: No such file or directory while initializing ACL file, aborting
Jun 20 16:36:34 ipadev.redcapcloud.com systemd[1]: krb5-admin-server.service: Main process exited, code=exited, status=1/FAILURE
Jun 20 16:36:34 ipadev.redcapcloud.com systemd[1]: krb5-admin-server.service: Failed with result 'exit-code’.
is there any way I can fix this?
regards,
Peter