------=_Part_156372_2091032049.1443025601914 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Fantastic Ondra, nice Hawk Eye It's working. When I enter with a user name and click on console I get: Could not connect to the agent on the guest, it may be unresponsive or not installed. As a result, some features may not work. What kind of agent shoul I install on the guests? Thaks a lot ----- Mensagem original ----- De: "Ondra Machacek" <omachace@redhat.com> Para: suporte@logicworks.pt Cc: users@ovirt.org Enviadas: Quarta-feira, 23 De Setembro de 2015 16:39:05 Assunto: Re: [ovirt-users] FreeIPA As you can see in exception you have trailing space at the end of your fqdn of IPA, please remove the trailing space in properties file. it's: 'ipa.acloud.pt ' <- trailing space and should be: 'ipa.acloud.pt' On 09/23/2015 05:30 PM, suporte@logicworks.pt wrote: I can ping ipa server from engine, the log: 2015-09-23 16:24:50,504 WARN [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot initialize LDAP framework, deferring initialization. Error: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known 2015-09-23 16:24:50,504 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error), errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known') at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7] at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66) [ovirt-engine-extension-aaa-ldap.jar:] at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7] 2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) open Entry 2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) runSequence Entry name='simple-open-pools' 2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Running sequence simple-open-pools/010/pool-create create authz pool 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-BEGIN 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) authz_enable = 1 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) capability_credentialsChange = false 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) capability_resucrsiveGroupResolution = false 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) maxFilterSize = 50 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) sensitiveKeys = , password, passwordNew 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrGroupMemberDN = member 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrMemberOf = memberOf 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsBaseDN = defaultNamingContext 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsBaseDNIndex = 0 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsGroupRecord = ipaUniqueID, cn, description 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid, displayName, department, givenName, sn, title, mail, krbpasswordexpiration 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsUserName = uid 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_bindFormat = dn 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_filterGroupObject = (objectClass=ipausergroup)(ipaUniqueID=*) 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_filterUserObject = (objectClass=person)(ipaUniqueID=*) 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_groupLogic = member 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_principalPostFetch = ipa-post-principal-fetch 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) stop = false 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-END 2015-09-23 16:24:50,517 INFO [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool 'authz' 2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createPool Entry name='authz' 2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createConnectionPool Entry 2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPConnectionOptions 2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) LDAPConnectionOptions: LDAPConnectionOptions(autoReconnect=true, bindWithDNRequiresPassword=true, followReferrals=false, useKeepAlive=true, useLinger=true, lingerTimeoutSeconds=5, useReuseAddress=true, useSchema=false, usePooledSchema=false, pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false, useTCPNoDelay=true, captureConnectStackTrace=false, connectTimeoutMillis=5000, responseTimeoutMillis=60000, abandonOnTimeout=true, maxMessageSize=20971520, receiveBufferSize=0, sendBufferSize=0, allowConcurrentSocketFactoryUse=true, sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier') 2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating SocketFactory 2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating resolver 2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service thread 1-1) Open: Context: {java.naming.provider.url=dns://, java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory} 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Resolver: Resolver(env='{java.naming.provider.url=dns://, java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}', supportIPv6='false', cacheTTL='10000') 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) SocketFactory: org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating ServerSet 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt :389) 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating BindRequest 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createBindRequest Entry type='simple', user='' 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createBindRequest Return SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt') 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) BindRequest: SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt') 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPConnectionPool 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Sequence simple-open-pools create authz pool failed due to exception: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt 2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Exception during sequence: LDAPException(resultCode=91 (connect error), errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ') at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7] at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433) [ovirt-engine-extension-aaa-ldap.jar:] at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7] 2015-09-23 16:24:50,531 WARN [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot initialize LDAP framework, deferring initialization. Error: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt 2015-09-23 16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error), errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ') at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7] at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7] at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503) [ovirt-engine-extension-aaa-ldap.jar:] at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433) [ovirt-engine-extension-aaa-ldap.jar:] at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7] 2015-09-23 16:24:50,541 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized: 'true' 2015-09-23 16:24:50,542 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized: 'true' ----- Mensagem original ----- De: "Ondra Machacek" <omachace@redhat.com> Para: suporte@logicworks.pt Cc: users@ovirt.org Enviadas: Quarta-feira, 23 De Setembro de 2015 15:02:54 Assunto: Re: [ovirt-users] FreeIPA Try this[1] easier approach. [1] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob... On 09/23/2015 03:58 PM, suporte@logicworks.pt wrote: <blockquote> well, when I run # /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=30000 --controller=localhost:8706 --user=admin@internal --commands="if (outcome != success) of /subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)" get this error: Duplicate argument '--command'/'--commands'. can't see why ----- Mensagem original ----- De: "Ondra Machacek" <omachace@redhat.com> Para: suporte@logicworks.pt Cc: users@ovirt.org Enviadas: Quarta-feira, 23 De Setembro de 2015 12:50:46 Assunto: Re: [ovirt-users] FreeIPA You don't have to do anything on IPA side, just create users/groups. OK, nothing in the log at INFO level, initialization succeed, so can you please send the debug log? See here[1] how to enable. Thank you. [1] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob... On 09/23/2015 10:48 AM, suporte@logicworks.pt wrote: <blockquote> Is there anything to do on the IPA side? Or is just add users? On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but the GO button is still in gray. I think something is wrong with the autehtication on the IPA server. Here is the engine log : 2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension 'builtin-authn-internal' initialized 2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Initializing extension 'internal' 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension 'internal' initialized 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Start of enabled extensions list 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized: 'true' 2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized: 'true' 2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'builtin-authn-internal', Extension name: 'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true' 2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true' 2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) End of enabled extensions list 2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC service thread 1-1) Initialization of AsyncTaskManager completed successfully. 2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Start initializing ResourceManager 2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor 2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321) 2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource Manager 2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Finished initializing ResourceManager 2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) Initialization of OvfDataUpdater completed successfully. 2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start scheduling to enable vds load balancer 2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished scheduling to enable vds load balancer 2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start HA Reservation check 2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished HA Reservation check 2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges 2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) Init VM custom properties utilities 2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) Init device custom properties utilities 2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initializing Scheduling manager 2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251 2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) External scheduler disabled, discovery skipped 2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initialized Scheduling manager 2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) Initializing DWH Heart Beat 2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Beat initialized 2015-09-23 09:38:02,159 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc 2015-09-23 09:38:02,167 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc 2015-09-23 09:38:02,173 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table 2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string table 2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string table 2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table 2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string table 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in string table 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in string table 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in string table 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string table 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in string table 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in string table 2015-09-23 09:38:02,179 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table 2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Host node3.acloud.pt does not enforce SELinux. 2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux. 2015-09-23 09:38:02,623 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68 2015-09-23 09:38:02,708 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED], log id: 53441a68 2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt 2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS 2015-09-23 09:38:03,562 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644 2015-09-23 09:38:03,583 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: cf31644 2015-09-23 09:38:08,514 INFO [org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool 2015-09-23 09:38:08,533 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null 2015-09-23 09:38:08,540 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null 2015-09-23 09:38:08,714 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non Responsive. 2015-09-23 09:38:08,758 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004 2015-09-23 09:38:08,788 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 767b5004 2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM, storage pool Default 2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201 2015-09-23 09:38:08,999 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address: 192.168.6.201). 2015-09-23 09:38:09,051 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log id: 6735b7ad 2015-09-23 09:38:09,157 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on storage pool 00000002-0002-0002-0002-000000000238 2015-09-23 09:38:09,180 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746 2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746 2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad 2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default 2015-09-23 09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4 2015-09-23 09:38:13,964 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 663177d4 2015-09-23 09:38:19,184 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd 2015-09-23 09:38:19,232 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd 2015-09-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320 2015-09-23 09:38:24,410 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 3beec320 Thanks ----- Mensagem original ----- De: "Ondra Machacek" <omachace@redhat.com> Para: suporte@logicworks.pt , users@ovirt.org Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12 Assunto: Re: [ovirt-users] FreeIPA Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6 Can you send engine.log, hard to say what's wrong from configuration, it looks good. On 09/22/2015 09:55 PM, Ravi Nori wrote: <blockquote> Once you have installed ovirt-engine-extension-aaa-ldap and ovirt-engine-extension-aaa-ldap-setup You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap. Once that is done you can login to webadmin and add users/groups from ipa On 09/22/2015 11:57 AM, suporte@logicworks.pt wrote: <blockquote> Here is what I'm trying to do: Ovirt engine : engine.domain.tld Freeipa 4.1.0 : ipa.domain.tld I have installed on the engine: ovirt-engine-extension-aaa-ldap openldap-clients /etc/ovirt-engine/aaa/profile1.properties: # # Select one # #include = <openldap.properties> #include = <389ds.properties> #include = <rhds.properties> include = <ipa.properties> #include = <iplanet.properties> #include = <rfc2307.properties> #include = <rfc2307-openldap.properties> # # Server # vars.server = ipa.domain.tld # # Search user and its password. # vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld vars.password = ipa_admin_password pool.default.serverset.single.server = ${global:vars.server} pool.default.auth.simple.bindDN = ${global:vars.user} pool.default.auth.simple.password = ${global:vars.password} # Create keystore, import certificate chain and uncomment # if using ssl/tls. #pool.default.ssl.startTLS = true #pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks #pool.default.ssl.truststore.password = changeit On the engine cannot find any users configured on the ipa server. Any help? Thanks Jose ----- Mensagem original ----- De: "Alon Bar-Lev" <alonbl@redhat.com> Para: suporte@logicworks.pt Cc: "users" <users@ovirt.org> Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22 Assunto: Re: [ovirt-users] FreeIPA ----- Original Message -----
From: suporte@logicworks.pt To: "users" <users@ovirt.org> Sent: Friday, September 18, 2015 5:45:18 PM Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how to configure it?
Hi, Please find documentation at [1][2]. Regards, Alon Bar-Lev. [1] http://www.ovirt.org/Features/AAA [2] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob... _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users </blockquote> </blockquote> </blockquote> </blockquote> ------=_Part_156372_2091032049.1443025601914 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable <html><body><div style=3D"font-family: Times New Roman; font-size: 10pt; co= lor: #000000"><div>Fantastic Ondra, nice Hawk Eye<br></div><div><br></div><= div>It's working.<br></div><div>When I enter with a user name and click on = console I get:<br></div><div>Could not connect to the agent on the guest, i= t may be unresponsive or not installed.<br>As a result, some features may n= ot work.</div><div><br></div><div><br></div><div>What kind of agent shoul I= install on the guests?<br></div><div><br></div><div>Thaks a lot<br></div><= div><br></div><hr id=3D"zwchr"><div style=3D"color:#000;font-weight:normal;= font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-ser= if;font-size:12pt;"><b>De: </b>"Ondra Machacek" <omachace@redhat.com>= <br><b>Para: </b>suporte@logicworks.pt<br><b>Cc: </b>users@ovirt.org<br><b>= Enviadas: </b>Quarta-feira, 23 De Setembro de 2015 16:39:05<br><b>Assunto: = </b>Re: [ovirt-users] FreeIPA<br><div><br></div> =20 =20 =20 =20 As you can see in exception you have trailing space at the end of your fqdn of IPA, please remove the trailing space in properties file.<br> <br> it's:<br> <br> 'ipa.acloud.pt ' <- trailing space<br> <br> and should be:<br> <br> 'ipa.acloud.pt'<br> <br> <div class=3D"moz-cite-prefix">On 09/23/2015 05:30 PM, <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicwor= ks.pt" target=3D"_blank">suporte@logicworks.pt</a> wrote:<br> </div> <blockquote cite=3D"mid:1355950642.154095.1443022209428.JavaMail.zimbra= @logicworks.pt"> <div style=3D"font-family: Times New Roman; font-size: 10pt; color: #000000"> <div>I can ping ipa server from engine, the log:<br> </div> <div><br> </div> <div>2015-09-23 16:24:50,504 WARN [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot initialize LDAP framework, deferring initialization. Error: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known<br> 2015-09-23 16:24:50,504 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) Ignoring Exception: LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known')<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :754) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :709) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection= .java:533) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServer= Set.java:229) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPCo= nnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec= tionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec= tionPool.java:913) [unboundid-ldapsdk.jar:2.3.7]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPoo= l(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewor= k.java:632) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framewo= rk.java:1362) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java= :667) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramewor= k(AuthnExtension.java:49) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnEx= tension.java:130) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnEx= tension.java:66) [ovirt-engine-extension-aaa-ldap.jar:]<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :749) [unboundid-ldapsdk.jar:2.3.7]<br> 2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) open Entry<br> 2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) runSequence Entry name=3D'simple-open-pools'<br> 2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Running sequence simple-open-pools/010/pool-create create authz pool<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-BEGIN<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) authz_enable =3D 1<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) capability_credentialsChange =3D false<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) capability_resucrsiveGroupResolution =3D false<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) maxFilterSize =3D 50<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) sensitiveKeys =3D , password, passwordNew<br> 2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrGroupMemberDN =3D member<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrMemberOf =3D memberOf<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsBaseDN =3D defaultNamingContext<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsBaseDNIndex =3D 0<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsGroupRecord =3D ipaUniqueID, cn, description<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsPrincipalRecord =3D ipaUniqueID, uid, displayName, department, givenName, sn, title, mail, krbpasswordexpiration<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsUserName =3D uid<br> 2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_bindFormat =3D dn<br> 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_filterGroupObject =3D (objectClass=3Dipausergroup)(ipaUniqueID=3D*)<br> 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_filterUserObject =3D (objectClass=3Dperson)(ipaUniqueID=3D*)<br> 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_groupLogic =3D member<br> 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_principalPostFetch =3D ipa-post-principal-fetch<br> 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) stop =3D false<br> 2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-END<br> 2015-09-23 16:24:50,517 INFO [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool 'authz'<br> 2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createPool Entry name=3D'authz'<br> 2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createConnectionPool Entry<br> 2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPConnectionOptions<br> 2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) LDAPConnectionOptions: LDAPConnectionOptions(autoReconnect=3Dtrue, bindWithDNRequiresPassword=3Dtrue, followReferrals=3Dfalse, useKeepAlive=3Dtrue, useLinger=3Dtrue, lingerTimeoutSeconds=3D5, useReuseAddress=3Dtrue, useSchema=3Dfalse, usePooledSchema=3Dfals= e, pooledSchemaTimeoutMillis=3D3600000, useSynchronousMode=3Dfalse, useTCPNoDelay=3Dtrue, captureConnectStackTrace=3Dfalse, connectTimeoutMillis=3D5000, responseTimeoutMillis=3D60000, abandonOnTimeout=3Dtrue, maxMessageSize=3D20971520, receiveBufferSize=3D0, sendBufferSize=3D0, allowConcurrentSocketFactoryUse=3Dtrue, sslSocketVerifierClass=3D'com.unboundid.util.ssl.TrustAllSSLSocketVerifier'= )<br> 2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating SocketFactory<br> 2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating resolver<br> 2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service thread 1-1) Open: Context: {java.naming.provider.url=3Ddns://, java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFactory}= <br> 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Resolver: Resolver(env=3D'{java.naming.provider.url=3Ddns://, java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFactory}= ', supportIPv6=3D'false', cacheTTL=3D'10000')<br> 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) SocketFactory: org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cd= b<br> 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating ServerSet<br> 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) ServerSet: SingleServerSet(server=3Dipa.acloud.pt :389)<br> 2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating BindRequest<br> 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createBindRequest Entry type=3D'simple', user=3D''<br=
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createBindRequest Return SimpleBindRequest(dn=3D'uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc= =3Dacloud,dc=3Dpt')<br> 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) BindRequest: SimpleBindRequest(dn=3D'uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc= =3Dacloud,dc=3Dpt')<br> 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPConnectionPool<br> 2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Sequence simple-open-pools create authz pool failed due to exception: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt<br> 2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Exception during sequence: LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ')<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :754) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :709) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection= .java:533) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServer= Set.java:229) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPCo= nnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec= tionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec= tionPool.java:913) [unboundid-ldapsdk.jar:2.3.7]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPoo= l(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewor= k.java:632) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framewo= rk.java:1362) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java= :667) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramewor= k(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzEx= tension.java:503) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzEx= tension.java:433) [ovirt-engine-extension-aaa-ldap.jar:]<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :749) [unboundid-ldapsdk.jar:2.3.7]<br> 2015-09-23 16:24:50,531 WARN [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot initialize LDAP framework, deferring initialization. Error: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt<br> 2015-09-23 16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service thread 1-1) Ignoring Exception: LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ')<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :754) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :709) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection= .java:533) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServer= Set.java:229) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPCo= nnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec= tionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7]<br> at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec= tionPool.java:913) [unboundid-ldapsdk.jar:2.3.7]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPoo= l(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewor= k.java:632) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framewo= rk.java:1362) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java= :667) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramewor= k(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzEx= tension.java:503) [ovirt-engine-extension-aaa-ldap.jar:]<br> at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzEx= tension.java:433) [ovirt-engine-extension-aaa-ldap.jar:]<br> at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java= :749) [unboundid-ldapsdk.jar:2.3.7]<br> 2015-09-23 16:24:50,541 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext" href=3D"http://ww= w.ovirt.org" target=3D"_blank">http://www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized: 'true'<br> 2015-09-23 16:24:50,542 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext" href=3D"http://ww= w.ovirt.org" target=3D"_blank">http://www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized: 'true'<br> <br> </div> <div><br> </div> <hr id=3D"zwchr"> <div style=3D"color:#000;font-weight:normal;font-style:normal;text-= decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>= De: </b>"Ondra Machacek" <a class=3D"moz-txt-link-rfc2396E" href=3D"mailto:omach= ace@redhat.com" target=3D"_blank"><omachace@redhat.com></a><br> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" href=3D"mailto= :suporte@logicworks.pt" target=3D"_blank">suporte@logicworks.pt</a><br> <b>Cc: </b><a class=3D"moz-txt-link-abbreviated" href=3D"mailto:u= sers@ovirt.org" target=3D"_blank">users@ovirt.org</a><br> <b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015 15:02:54<br> <b>Assunto: </b>Re: [ovirt-users] FreeIPA<br> <div><br> </div> Try this[1] easier approach.<br> <br> [1] <a class=3D"moz-txt-link-freetext" href=3D"https://gerrit.ovi= rt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;h= b=3Daed09b5793e0352dc20812b4746dbd2d7898f292#l389" target=3D"_blank">https:= //gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;= f=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2d7898f292#l389</a><br> <br> <div class=3D"moz-cite-prefix">On 09/23/2015 03:58 PM, <a class= =3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt" target= =3D"_blank"></a><a class=3D"moz-txt-link-abbreviated" href=3D"mailto:suport= e@logicworks.pt" target=3D"_blank">suporte@logicworks.pt</a> wrote:<br> </div> <blockquote cite=3D"mid:1838149591.149200.1443016712320.JavaMail.= zimbra@logicworks.pt"> <div style=3D"font-family: Times New Roman; font-size: 10pt; color: #000000"> <div>well, when I run<br> </div> <div># /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=3D30000 --controller=3Dlocalhost:8706 --user=3Dadmin@internal --commands=3D"if (outcome !=3D success) of /subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensions.aaa.ldap:read-attr= ibute(name=3Dlevel),/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextension= s.aaa.ldap:add,end-if,/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensi= ons.aaa.ldap:write-attribute(name=3Dlevel,value=3DALL)"</div> <div><br> </div> <div>get this error: Duplicate argument '--command'/'--commands'.<br> </div> <div><br> </div> <div>can't see why<br> </div> <div><br> </div> <hr id=3D"zwchr"> <div style=3D"color:#000;font-weight:normal;font-style:normal= ;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt= ;"><b>De: </b>"Ondra Machacek" <a class=3D"moz-txt-link-rfc2396E" href=3D"mailto= :omachace@redhat.com" target=3D"_blank"><omachace@redhat.com></a><br> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" href=3D"= mailto:suporte@logicworks.pt" target=3D"_blank">suporte@logicworks.pt</a><b= r> <b>Cc: </b><a class=3D"moz-txt-link-abbreviated" href=3D"ma= ilto:users@ovirt.org" target=3D"_blank">users@ovirt.org</a><br> <b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015 12:50:46<br> <b>Assunto: </b>Re: [ovirt-users] FreeIPA<br> <div><br> </div> You don't have to do anything on IPA side, just create users/groups.<br> <br> OK, nothing in the log at INFO level, initialization succeed, so can you please send the debug log? See here[1] how to enable.<br> <br> Thank you.<br> <br> [1] <a class=3D"moz-txt-link-freetext" href=3D"https://gerr= it.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DRE= ADME;hb=3DHEAD#l389" target=3D"_blank">https://gerrit.ovirt.org/gitweb?p=3D= ovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3DHEAD#l389</a><= br> <br> <div class=3D"moz-cite-prefix">On 09/23/2015 10:48 AM, <a c= lass=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt" tar= get=3D"_blank"></a><a class=3D"moz-txt-link-abbreviated" href=3D"mailto:sup= orte@logicworks.pt" target=3D"_blank">suporte@logicworks.pt</a> wrote:<br> </div> <blockquote cite=3D"mid:629543964.131623.1442998098767.Java= Mail.zimbra@logicworks.pt"> <div style=3D"font-family: Times New Roman; font-size: 10pt; color: #000000"> <div><br> </div> <div>Is there anything to do on the IPA side? Or is just add users?<br> </div> <div>On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but the GO button is still in gray.<br> </div> <div>I think something is wrong with the autehtication on the IPA server.<br> </div> <div><br> </div> <div>Here is the engine log :<br> </div> <div><br> </div> <div>2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Extension 'builtin-authn-internal' initialized<br> 2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Initializing extension 'internal'<br> 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Extension 'internal' initialized<br> 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Start of enabled extensions list<br> 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-f= reetext" href=3D"http://www.ovirt.org" target=3D"_blank"></a><a class=3D"mo= z-txt-link-freetext" href=3D"http://www.ovirt.org" target=3D"_blank">http:/= /www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.proper= ties', Initialized: 'true'<br> 2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-f= reetext" href=3D"http://www.ovirt.org" target=3D"_blank"></a><a class=3D"mo= z-txt-link-freetext" href=3D"http://www.ovirt.org" target=3D"_blank">http:/= /www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.proper= ties', Initialized: 'true'<br> 2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Instance name: 'builtin-authn-internal', Extension name: 'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: '<a class=3D"moz= -txt-link-freetext" href=3D"http://www.ovirt.org" target=3D"_blank"></a><a = class=3D"moz-txt-link-freetext" href=3D"http://www.ovirt.org" target=3D"_bl= ank">http://www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true'<= br> 2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext" = href=3D"http://www.ovirt.org" target=3D"_blank">http://www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true'<= br> 2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManag= er] (MSC service thread 1-2) End of enabled extensions list<br> 2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC service thread 1-1) Initialization of AsyncTaskManager completed successfully.<br> 2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Start initializing ResourceManager<br> 2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor<br=
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)<br> 2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource Manager<br> 2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Finished initializing ResourceManager<br> 2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) Initialization of OvfDataUpdater completed successfully.<br> 2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) Start scheduling to enable vds load balancer<br> 2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) Finished scheduling to enable vds load balancer<br> 2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) Start HA Reservation check<br> 2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) Finished HA Reservation check<br> 2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRang= es] (org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges<br> 2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStart= upBean] (MSC service thread 1-1) Init VM custom properties utilities<br> 2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStart= upBean] (MSC service thread 1-1) Init device custom properties utilities<br> 2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) Initializing Scheduling manager<br> 2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRang= es] (org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251<br> 2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) External scheduler disabled, discovery skipped<br> 2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManag= er] (MSC service thread 1-1) Initialized Scheduling manager<br> 2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) Initializing DWH Heart Beat<br> 2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Beat initialized<br> 2015-09-23 09:38:02,159 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwar= eInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=3DHost[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8= d2beb7e0f6]), log id: 66c9effc<br> 2015-09-23 09:38:02,167 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwar= eInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc<br> 2015-09-23 09:38:02,173 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table<br> 2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string table<br> 2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string table<br> 2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table<br> 2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string table<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in string table<br=
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in string table<br=
2015-09-23 09:38:02,179 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Host node3.acloud.pt does not enforce SELinux.<br> 2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.<br> 2015-09-23 09:38:02,623 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServe= rsListVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68<br> 2015-09-23 09:38:02,708 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServe= rsListVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED], log id: 53441a68<br> 2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt<br> 2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br> 2015-09-23 09:38:03,562 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644<br> 2015-09-23 09:38:03,583 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: cf31644<br> 2015-09-23 09:38:08,514 INFO [org.ovirt.engine.core.bll.storage.SetStoragePoolStat= usCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool<br> 2015-09-23 09:38:08,533 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolD= omainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null<br> 2015-09-23 09:38:08,540 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolD= omainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null<br> 2015-09-23 09:38:08,714 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non Responsive.<br> 2015-09-23 09:38:08,758 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004<br> 2015-09-23 09:38:08,788 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 767b5004<br> 2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyDa= ta] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM, storage pool Default<br> 2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyDa= ta] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201<br> 2015-09-23 09:38:08,999 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.= AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address: 192.168.6.201).<br> 2015-09-23 09:38:09,051 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllT= asksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePoolId =3D 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =3D false), log id: 6735b7ad<br> 2015-09-23 09:38:09,157 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllT= asksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on storage pool 00000002-0002-0002-0002-000000000238<br> 2015-09-23 09:38:09,180 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllT= asksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTasksInfoVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllT= asksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllT= asksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad<br> 2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default<br> 2015-09-23 09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4<br> 2015-09-23 09:38:13,964 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 663177d4<br> 2015-09-23 09:38:19,184 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd<br> 2015-09-23 09:38:19,232 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd<br> 2015-09-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320<br> 2015-09-23 09:38:24,410 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum= esListVDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 3beec320<br> <br> </div> <div><br> </div> <div>Thanks<br> </div> <div><br> </div> <hr id=3D"zwchr"> <div style=3D"color:#000;font-weight:normal;font-style:= normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-siz= e:12pt;"><b>De: </b>"Ondra Machacek" <a class=3D"moz-txt-link-rfc2396E" hre= f=3D"mailto:omachace@redhat.com" target=3D"_blank"></a><a class=3D"moz-txt-= link-rfc2396E" href=3D"mailto:omachace@redhat.com" target=3D"_blank"><om= achace@redhat.com></a><br> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" hr= ef=3D"mailto:suporte@logicworks.pt" target=3D"_blank">suporte@logicworks.pt= </a>, <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:= users@ovirt.org" target=3D"_blank">users@ovirt.org</a><br> <b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015 7:40:12<br> <b>Assunto: </b>Re: [ovirt-users] FreeIPA<br> <div><br> </div> Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6<br> <br> Can you send engine.log, hard to say what's wrong from configuration, it looks good.<br> <br> <div class=3D"moz-cite-prefix">On 09/22/2015 09:55 PM, Ravi Nori wrote:<br> </div> <blockquote cite=3D"mid:5601B215.8020704@redhat.com"> <div class=3D"moz-cite-prefix">Once you have installed ovirt-engine-extension-aaa-ldap and ovirt-engine-extension-aaa-ldap-setup<br> <br> You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap.<br> <br> Once that is done you can login to webadmin and add users/groups from ipa<br> <br> On 09/22/2015 11:57 AM, <a class=3D"moz-txt-link-= abbreviated" href=3D"mailto:suporte@logicworks.pt" target=3D"_blank"></a><a= class=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt" t= arget=3D"_blank">suporte@logicworks.pt</a> wrote:<br> </div> <blockquote cite=3D"mid:1706731369.91118.1442937460= 886.JavaMail.zimbra@logicworks.pt"> <div style=3D"font-family: Times New Roman; font-size: 10pt; color: #000000"> <div>Here is what I'm trying to do:<br> </div> <div><br> Ovirt engine : engine.domain.tld<br> </div> <div>Freeipa 4.1.0 : ipa.domain.tld<br> </div> <div><br> </div> <div>I have installed on the engine: <pre class=3D"western" style=3D"margin-bottom= : 0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i> </pre> <pre class=3D"western" style=3D"margin-bottom= : 0.5cm;"><i>openldap-clients</i> /etc/ovirt-engine/aaa/profile1.properties: # # Select one # #include =3D <openldap.properties> #include =3D <389ds.properties> #include =3D <rhds.properties> include =3D <ipa.properties> #include =3D <iplanet.properties> #include =3D <rfc2307.properties> #include =3D <rfc2307-openldap.properties> # # Server # vars.server =3D ipa.domain.tld # # Search user and its password. # vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld vars.password =3D <em>ipa_admin_password</em> pool.default.serverset.single.server =3D ${global:vars.server} pool.default.auth.simple.bindDN =3D ${global:vars.user} pool.default.auth.simple.password =3D ${global:vars.password} # Create keystore, import certificate chain and uncomment # if using ssl/tls. #pool.default.ssl.startTLS =3D true #pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve= r}.jks #pool.default.ssl.truststore.password =3D changeit On the engine cannot find any users configured on the ipa server. Any help? Thanks Jose </pre> <br> </div> <div><br> </div> <hr id=3D"zwchr"> <div style=3D"color:#000;font-weight:normal;fon= t-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;= font-size:12pt;"><b>De: </b>"Alon Bar-Lev" <a class=3D"moz-txt-link-rfc2396= E" href=3D"mailto:alonbl@redhat.com" target=3D"_blank"></a><a class=3D"moz-= txt-link-rfc2396E" href=3D"mailto:alonbl@redhat.com" target=3D"_blank"><= alonbl@redhat.com></a><br> <b>Para: </b><a class=3D"moz-txt-link-abbrevi= ated" href=3D"mailto:suporte@logicworks.pt" target=3D"_blank">suporte@logic= works.pt</a><br> <b>Cc: </b>"users" <a class=3D"moz-txt-link-r= fc2396E" href=3D"mailto:users@ovirt.org" target=3D"_blank"></a><a class=3D"= moz-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org" target=3D"_blank">&l= t;users@ovirt.org></a><br> <b>Enviadas: </b>Sexta-feira, 18 De Setembro de 2015 15:48:22<br> <b>Assunto: </b>Re: [ovirt-users] FreeIPA<br> <div><br> </div> <br> <div><br> </div> ----- Original Message -----<br> > From: <a class=3D"moz-txt-link-abbreviat= ed" href=3D"mailto:suporte@logicworks.pt" target=3D"_blank">suporte@logicwo= rks.pt</a><br> > To: "users" <a class=3D"moz-txt-link-rfc= 2396E" href=3D"mailto:users@ovirt.org" target=3D"_blank"></a><a class=3D"mo= z-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org" target=3D"_blank"><= users@ovirt.org></a><br> > Sent: Friday, September 18, 2015 5:45:18 PM<br> > Subject: [ovirt-users] FreeIPA<br> > <br> > Hi,<br> > <br> > Is there any documentation about FreeIPA integration with oVirt 3.5 and how<br=
> to configure it?<br> > <br> <div><br> </div> Hi,<br> <div><br> </div> Please find documentation at [1][2].<br> <div><br> </div> Regards,<br> Alon Bar-Lev.<br> <div><br> </div> [1] <a class=3D"moz-txt-link-freetext" href= =3D"http://www.ovirt.org/Features/AAA" target=3D"_blank">http://www.ovirt.o= rg/Features/AAA</a><br> [2] <a class=3D"moz-txt-link-freetext" href= =3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git= ;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aaa-ldap-1.0" target=3D"_b= lank">https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.g= it;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aaa-ldap-1.0</a><br> </div> <div><br> </div> </div> <br> <fieldset class=3D"mimeAttachmentHeader"></fields= et> <br> <pre>____________________________________________= ___ Users mailing list <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:Users@ovirt.org" targe= t=3D"_blank">Users@ovirt.org</a> <a class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l= istinfo/users" target=3D"_blank">http://lists.ovirt.org/mailman/listinfo/us= ers</a> </pre> </blockquote> <br> <br> <fieldset class=3D"mimeAttachmentHeader"></fieldset=
<br> <pre>______________________________________________= _ Users mailing list <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:Users@ovirt.org" targe= t=3D"_blank">Users@ovirt.org</a> <a class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l= istinfo/users" target=3D"_blank">http://lists.ovirt.org/mailman/listinfo/us= ers</a> </pre> </blockquote> <br> </div> <div><br> </div> </div> </blockquote> <br> </div> <div><br> </div> </div> </blockquote> <br> </div> <div><br> </div> </div> </blockquote> <br> =20 </div><div><br></div></div></body></html> ------=_Part_156372_2091032049.1443025601914--