---------- Forwarded message ---------- From: Kristian Petersen <nesretep@chem.byu.edu> Date: Tue, Apr 24, 2018 at 12:38 PM Subject: Re: [ovirt-users] FreeIPA authentication broken To: Ondra Machacek <omachace@redhat.com> That directory only contains internal.properties. So I copied the IPA.properties, IPA-authn.properties, and IPA.jks files all into the 'aaa' subdirectory and set ownership and permissions as you directed. I reran the command you gave me initially and it prompted me for a password for the user when entered the process exited with status 0. However, the web interface still isn't letting me log in. Do I need to restart a service for the changes to be effective in the web UI? On Mon, Apr 23, 2018 at 11:59 PM, Ondra Machacek <omachace@redhat.com> wrote:
Right, you are missing file /etc/ovirt-engine/aaa/IPA.properties
It's not subdirectory of /etc/ovirt-engine/extensions.d, but it's in /etc/ovirt-engine/ in 'aaa' subdirectory, can you check what's there? Please check also the correct permissions of that file, it should be '600' and owned by ovirt user.
On 04/23/2018 10:25 PM, Kristian Petersen wrote:
Looks like it can't find the IPA.properties file. I tried following the path it is complaining about but there are only files in /etc/ovirt-engine/extensions.d on the engine VM. No subdirectories. However, that directory appears to contain the files it is looking for. Both IPA-authn.properties and IPA.properties are there as are the internal properties files. Is there a config file we can edit to tell it to look in the right place?
-- Kristian Petersen System Administrator BYU Dept. of Chemistry and Biochemistry -- Kristian Petersen System Administrator BYU Dept. of Chemistry and Biochemistry