---------- Forwarded message ----------
From: Kristian Petersen <nesretep@chem.byu.edu>
Date: Tue, Apr 24, 2018 at 12:38 PM
Subject: Re: [ovirt-users] FreeIPA authentication broken
To: Ondra Machacek <omachace@redhat.com>


That directory only contains internal.properties.  So I copied the IPA.properties, IPA-authn.properties, and IPA.jks files all into the 'aaa' subdirectory and set ownership and permissions as you directed.  I reran the command you gave me initially and it prompted me for a password for the user when entered the process exited with status 0.  However, the web interface still isn't letting me log in.  Do I need to restart a service for the changes to be effective in the web UI?

On Mon, Apr 23, 2018 at 11:59 PM, Ondra Machacek <omachace@redhat.com> wrote:
Right, you are missing file /etc/ovirt-engine/aaa/IPA.properties

It's not subdirectory of /etc/ovirt-engine/extensions.d, but it's in
/etc/ovirt-engine/ in 'aaa' subdirectory, can you check what's there?
Please check also the correct permissions of that file, it should be
'600' and owned by ovirt user.


On 04/23/2018 10:25 PM, Kristian Petersen wrote:
Looks like it can't find the IPA.properties file.  I tried following the path it is complaining about but there are only files in /etc/ovirt-engine/extensions.d on the engine VM.  No subdirectories.  However, that directory appears to contain the files it is looking for.  Both IPA-authn.properties and IPA.properties are there as are the internal properties files.  Is there a config file we can edit to tell it to look in the right place?




--
Kristian Petersen
System Administrator
BYU Dept. of Chemistry and Biochemistry



--
Kristian Petersen
System Administrator
BYU Dept. of Chemistry and Biochemistry