<div dir="ltr">Does the user you are using have permissions to add people? Why not just use IPA to add the user accounts?</div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Oct 2, 2017 at 2:26 AM, Ondra Machacek <span dir="ltr"><<a href="mailto:omachace@redhat.com" target="_blank">omachace@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class="">On Sun, Oct 1, 2017 at 1:07 PM, Yan Naing Myint<br>
<<a href="mailto:yannaing@cyberwings.asia">yannaing@cyberwings.asia</a>> wrote:<br>
> Hello guys,<br>
><br>
> I'm having problem with adding users from my FreeIPA server to oVirt.<br>
> 1. Status of ovirt-engine-extension-aaa-<wbr>ldap-setup is success with RHDS<br>
> 2. I cannot add IPA users in oVirt webadmin panel<br>
> 3. In oVirt web admin panel it says "Error while executing action AddUser:<br>
> Internal Engine Error"<br>
><br>
> What will be the problem or is it a bug?<br>
<br>
</span>Can you please share the log from the following command?<br>
<br>
$ ovirt-engine-extensions-tool --log-level=FINEST<br>
--log-file=/tmp/aaa.log aaa search --entity-name=mgorca<br>
--extension-name=cyberwings.<wbr>local<br>
<div><div class="h5"><br>
> Is there any suggestion of how do it make it work?<br>
><br>
> in the engine.log it says;<br>
><br>
> 2017-10-01 17:30:52,436+06 ERROR<br>
> [org.ovirt.engine.core.bll.<wbr>aaa.AddUserCommand] (default task-113)<br>
> [bf5822eb-39da-49e5-b2ab-<wbr>9865f71346a3] Transaction rolled-back for command<br>
> 'org.ovirt.engine.core.bll.<wbr>aaa.AddUserCommand'.<br>
> 2017-10-01 17:30:52,459+06 WARN<br>
> [org.ovirt.engine.core.dal.<wbr>dbbroker.auditloghandling.<wbr>AuditLogDirector]<br>
> (default task-113) [bf5822eb-39da-49e5-b2ab-<wbr>9865f71346a3] EVENT_ID:<br>
> USER_FAILED_ADD_ADUSER(327), Correlation ID:<br>
> bf5822eb-39da-49e5-b2ab-<wbr>9865f71346a3, Call Stack: null, Custom ID: null,<br>
> Custom Event ID: -1, Message: Failed to add User 'mgorca' to the system.<br>
><br>
> in cyberwings.local.properties<br>
><br>
> <a href="http://ovirt.engine.extension.name" rel="noreferrer" target="_blank">ovirt.engine.extension.name</a> = cyberwings.local<br>
> ovirt.engine.extension.<wbr>bindings.method = jbossmodule<br>
> ovirt.engine.extension.<wbr>binding.jbossmodule.module =<br>
> org.ovirt.engine-extensions.<wbr>aaa.ldap<br>
> ovirt.engine.extension.<wbr>binding.jbossmodule.class =<br>
> org.ovirt.engineextensions.<wbr>aaa.ldap.AuthzExtension<br>
> ovirt.engine.extension.<wbr>provides = org.ovirt.engine.api.<wbr>extensions.aaa.Authz<br>
> config.profile.file.1 = ../aaa/cyberwings.local.<wbr>properties<br>
> config.globals.baseDN.simple_<wbr>baseDN = dc=cyberwings,dc=local<br>
><br>
> in cyberwings.local-authn.<wbr>properties<br>
> <a href="http://ovirt.engine.extension.name" rel="noreferrer" target="_blank">ovirt.engine.extension.name</a> = cyberwings.local-authn<br>
> ovirt.engine.extension.<wbr>bindings.method = jbossmodule<br>
> ovirt.engine.extension.<wbr>binding.jbossmodule.module =<br>
> org.ovirt.engine-extensions.<wbr>aaa.ldap<br>
> ovirt.engine.extension.<wbr>binding.jbossmodule.class =<br>
> org.ovirt.engineextensions.<wbr>aaa.ldap.AuthnExtension<br>
> ovirt.engine.extension.<wbr>provides = org.ovirt.engine.api.<wbr>extensions.aaa.Authn<br>
> <a href="http://ovirt.engine.aaa.authn.profile.name" rel="noreferrer" target="_blank">ovirt.engine.aaa.authn.<wbr>profile.name</a> = cyberwings.local<br>
> ovirt.engine.aaa.authn.authz.<wbr>plugin = cyberwings.local<br>
> config.profile.file.1 = ../aaa/cyberwings.local.<wbr>properties<br>
> config.globals.baseDN.simple_<wbr>baseDN = dc=cyberwings,dc=local<br>
><br>
><br>
> --<br>
> Yan Naing Myint<br>
> CEO<br>
> Server & Network Engineer<br>
> Cyber Wings Co., Ltd<br>
> <a href="http://cyberwings.asia" rel="noreferrer" target="_blank">http://cyberwings.asia</a><br>
> 09799950510<br>
><br>
</div></div>> ______________________________<wbr>_________________<br>
> Users mailing list<br>
> <a href="mailto:Users@ovirt.org">Users@ovirt.org</a><br>
> <a href="http://lists.ovirt.org/mailman/listinfo/users" rel="noreferrer" target="_blank">http://lists.ovirt.org/<wbr>mailman/listinfo/users</a><br>
><br>
______________________________<wbr>_________________<br>
Users mailing list<br>
<a href="mailto:Users@ovirt.org">Users@ovirt.org</a><br>
<a href="http://lists.ovirt.org/mailman/listinfo/users" rel="noreferrer" target="_blank">http://lists.ovirt.org/<wbr>mailman/listinfo/users</a><br>
</blockquote></div><br></div>