Re: [ovirt-users] FreeIPA

23 Sep 2015

      ------=_Part_149199_1360765842.1443016712319
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

well, when I run 
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=30000 --controller=localhost:8706 --user=admin@internal --commands="if (outcome != success) of /subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)" 

get this error: Duplicate argument '--command'/'--commands'. 

can't see why 

----- Mensagem original -----

De: "Ondra Machacek" <omachace@redhat.com> 
Para: suporte@logicworks.pt 
Cc: users@ovirt.org 
Enviadas: Quarta-feira, 23 De Setembro de 2015 12:50:46 
Assunto: Re: [ovirt-users] FreeIPA 

You don't have to do anything on IPA side, just create users/groups. 

OK, nothing in the log at INFO level, initialization succeed, so can you please send the debug log? See here[1] how to enable. 

Thank you. 

[1] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob... 

On 09/23/2015 10:48 AM, suporte@logicworks.pt wrote: 

Is there anything to do on the IPA side? Or is just add users? 
On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but the GO button is still in gray. 
I think something is wrong with the autehtication on the IPA server. 

Here is the engine log : 

2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension 'builtin-authn-internal' initialized 
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Initializing extension 'internal' 
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension 'internal' initialized 
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Start of enabled extensions list 
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized: 'true' 
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized: 'true' 
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'builtin-authn-internal', Extension name: 'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true' 
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true' 
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) End of enabled extensions list 
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC service thread 1-1) Initialization of AsyncTaskManager completed successfully. 
2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Start initializing ResourceManager 
2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor 
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321) 
2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource Manager 
2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Finished initializing ResourceManager 
2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) Initialization of OvfDataUpdater completed successfully. 
2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start scheduling to enable vds load balancer 
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished scheduling to enable vds load balancer 
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start HA Reservation check 
2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished HA Reservation check 
2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges 
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) Init VM custom properties utilities 
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) Init device custom properties utilities 
2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initializing Scheduling manager 
2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251 
2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) External scheduler disabled, discovery skipped 
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initialized Scheduling manager 
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) Initializing DWH Heart Beat 
2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Beat initialized 
2015-09-23 09:38:02,159 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc 
2015-09-23 09:38:02,167 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc 
2015-09-23 09:38:02,173 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table 
2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string table 
2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string table 
2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table 
2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,179 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Host node3.acloud.pt does not enforce SELinux. 
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux. 
2015-09-23 09:38:02,623 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68 
2015-09-23 09:38:02,708 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED], log id: 53441a68 
2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt 
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS 
2015-09-23 09:38:03,562 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644 
2015-09-23 09:38:03,583 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: cf31644 
2015-09-23 09:38:08,514 INFO [org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool 
2015-09-23 09:38:08,533 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null 
2015-09-23 09:38:08,540 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null 
2015-09-23 09:38:08,714 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non Responsive. 
2015-09-23 09:38:08,758 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004 
2015-09-23 09:38:08,788 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 767b5004 
2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM, storage pool Default 
2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201 
2015-09-23 09:38:08,999 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address: 192.168.6.201). 
2015-09-23 09:38:09,051 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log id: 6735b7ad 
2015-09-23 09:38:09,157 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on storage pool 00000002-0002-0002-0002-000000000238 
2015-09-23 09:38:09,180 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746 
2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746 
2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad 
2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default 
2015-09-23 09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4 
2015-09-23 09:38:13,964 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 663177d4 
2015-09-23 09:38:19,184 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd 
2015-09-23 09:38:19,232 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd 
2015-09-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320 
2015-09-23 09:38:24,410 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 3beec320 

Thanks 

----- Mensagem original -----

De: "Ondra Machacek" <omachace@redhat.com> 
Para: suporte@logicworks.pt , users@ovirt.org 
Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12 
Assunto: Re: [ovirt-users] FreeIPA 

Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6 

Can you send engine.log, hard to say what's wrong from configuration, it looks good. 

On 09/22/2015 09:55 PM, Ravi Nori wrote: 

<blockquote>

Once you have installed ovirt-engine-extension-aaa-ldap and ovirt-engine-extension-aaa-ldap-setup 

You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap. 

Once that is done you can login to webadmin and add users/groups from ipa 

On 09/22/2015 11:57 AM, suporte@logicworks.pt wrote: 

<blockquote>

Here is what I'm trying to do: 

Ovirt engine : engine.domain.tld 
Freeipa 4.1.0 : ipa.domain.tld 

I have installed on the engine: 
ovirt-engine-extension-aaa-ldap 
openldap-clients /etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>

#
# Server
#
vars.server = ipa.domain.tld

#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}

# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit

On the engine cannot find any users configured on the ipa server.

Any help?

Thanks

Jose 

----- Mensagem original -----

De: "Alon Bar-Lev" <alonbl@redhat.com> 
Para: suporte@logicworks.pt 
Cc: "users" <users@ovirt.org> 
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22 
Assunto: Re: [ovirt-users] FreeIPA 

----- Original Message -----
...
From: suporte@logicworks.pt 
To: "users" <users@ovirt.org> 
Sent: Friday, September 18, 2015 5:45:18 PM 
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how 
to configure it?
Hi, 

Please find documentation at [1][2]. 

Regards, 
Alon Bar-Lev. 

[1] http://www.ovirt.org/Features/AAA 
[2] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob... 

_______________________________________________
Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users 

_______________________________________________
Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users 

</blockquote>

</blockquote>

------=_Part_149199_1360765842.1443016712319
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable

<html><body><div style=3D"font-family: Times New Roman; font-size: 10pt; co=
lor: #000000"><div>well, when I run<br></div><div># /usr/share/ovirt-engine=
-jboss-as/bin/jboss-cli.sh --connect --timeout=3D30000 --controller=3Dlocal=
host:8706 --user=3Dadmin@internal --commands=3D"if (outcome !=3D success) o=
f /subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensions.aaa.ldap:read-at=
tribute(name=3Dlevel),/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensi=
ons.aaa.ldap:add,end-if,/subsystem=3Dlogging/logger=3Dorg.ovirt.engineexten=
sions.aaa.ldap:write-attribute(name=3Dlevel,value=3DALL)"</div><div><br></d=
iv><div>get this error: Duplicate argument '--command'/'--commands'.<br></d=
iv><div><br></div><div>can't see why<br></div><div><br></div><hr id=3D"zwch=
r"><div style=3D"color:#000;font-weight:normal;font-style:normal;text-decor=
ation:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;" data-mce=
-style=3D"color: #000; font-weight: normal; font-style: normal; text-decora=
tion: none; font-family: Helvetica,Arial,sans-serif; font-size: 12pt;"><b>D=
e: </b>"Ondra Machacek" <omachace@redhat.com><br><b>Para: </b>suporte=
@logicworks.pt<br><b>Cc: </b>users@ovirt.org<br><b>Enviadas: </b>Quarta-fei=
ra, 23 De Setembro de 2015 12:50:46<br><b>Assunto: </b>Re: [ovirt-users] Fr=
eeIPA<br><div><br></div>You don't have to do anything on IPA side, just cre=
ate users/groups.<br> <br> OK, nothing in the log at INFO level, initializa=
tion succeed, so can you please send the debug log? See here[1] how to enab=
le.<br> <br> Thank you.<br> <br> [1] <a class=3D"moz-txt-link-freetext" hre=
f=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.gi=
t;a=3Dblob;f=3DREADME;hb=3DHEAD#l389" target=3D"_blank" data-mce-href=3D"ht=
tps://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Db=
lob;f=3DREADME;hb=3DHEAD#l389">https://gerrit.ovirt.org/gitweb?p=3Dovirt-en=
gine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3DHEAD#l389</a><br> <br>=
<div class=3D"moz-cite-prefix">On 09/23/2015 10:48 AM, <a class=3D"moz-txt-=
link-abbreviated" href=3D"mailto:suporte@logicworks.pt" target=3D"_blank" d=
ata-mce-href=3D"mailto:suporte@logicworks.pt">suporte@logicworks.pt</a> wro=
te:<br></div><blockquote cite=3D"mid:629543964.131623.1442998098767.JavaMai=
l.zimbra@logicworks.pt"><div style=3D"font-family: Times New Roman; font-si=
ze: 10pt; color:
        #000000" data-mce-style=3D"font-family: Times New Roman; font-size:=
 10pt; color: #000000;"><div><br></div><div>Is there anything to do on the =
IPA side? Or is just add users?<br></div><div>On the oVirt Engine, Users Ta=
b, when click on add I can see profile1 (profile1-aurhz) but the GO button =
is still in gray.<br></div><div>I think something is wrong with the autehti=
cation on the IPA server.<br></div><div><br></div><div>Here is the engine l=
og :<br></div><div><br></div><div>2015-09-23 09:37:57,927 INFO  [org.o=
virt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2)=
 Extension 'builtin-authn-internal' initialized<br> 2015-09-23 09:37:57,927=
 INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC s=
ervice thread 1-2) Initializing extension 'internal'<br> 2015-09-23 09:37:5=
7,928 INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (=
MSC service thread 1-2) Extension 'internal' initialized<br> 2015-09-23 09:=
37:57,928 INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsManage=
r] (MSC service thread 1-2) Start of enabled extensions list<br> 2015-09-23=
 09:37:57,928 INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsMa=
nager] (MSC service thread 1-2) Instance name: 'profile1-authn', Extension =
name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Di=
splay name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0=
', Home: '<a class=3D"moz-txt-link-freetext" href=3D"http://www.ovirt.org" =
target=3D"_blank" data-mce-href=3D"http://www.ovirt.org">http://www.ovirt.o=
rg</a>', Author 'The oVirt Project', Build interface Version: '0',  Fi=
le: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized=
: 'true'<br> 2015-09-23 09:37:57,929 INFO  [org.ovirt.engine.core.exte=
nsions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'prof=
ile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Versi=
on: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.=
el7', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext" href=3D=
"http://www.ovirt.org" target=3D"_blank" data-mce-href=3D"http://www.ovirt.=
org">http://www.ovirt.org</a>', Author 'The oVirt Project', Build interface=
 Version: '0',  File: '/etc/ovirt-engine/extensions.d/profile1-authz.p=
roperties', Initialized: 'true'<br> 2015-09-23 09:37:57,929 INFO  [org=
.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-=
2) Instance name: 'builtin-authn-internal', Extension name: 'Internal Authn=
 (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: '<a clas=
s=3D"moz-txt-link-freetext" href=3D"http://www.ovirt.org" target=3D"_blank"=
 data-mce-href=3D"http://www.ovirt.org">http://www.ovirt.org</a>', Author '=
The oVirt Project', Build interface Version: '0',  File: 'N/A', Initia=
lized: 'true'<br> 2015-09-23 09:37:57,930 INFO  [org.ovirt.engine.core=
.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: =
'internal', Extension name: 'Internal Authz (Built-in)', Version: 'N/A', No=
tes: '', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext" href=
=3D"http://www.ovirt.org" target=3D"_blank" data-mce-href=3D"http://www.ovi=
rt.org">http://www.ovirt.org</a>', Author 'The oVirt Project', Build interf=
ace Version: '0',  File: 'N/A', Initialized: 'true'<br> 2015-09-23 09:=
37:57,930 INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsManage=
r] (MSC service thread 1-2) End of enabled extensions list<br> 2015-09-23 0=
9:37:58,103 INFO  [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (=
MSC service thread 1-1) Initialization of AsyncTaskManager completed succes=
sfully.<br> 2015-09-23 09:37:58,105 INFO  [org.ovirt.engine.core.vdsbr=
oker.ResourceManager] (MSC service thread 1-1) Start initializing ResourceM=
anager<br> 2015-09-23 09:37:58,217 INFO  [org.ovirt.engine.core.vdsbro=
ker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor<br>=
 2015-09-23 09:37:58,268 INFO  [org.ovirt.engine.core.vdsbroker.VdsMan=
ager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)<=
br> 2015-09-23 09:37:58,402 INFO  [org.ovirt.engine.core.vdsbroker.Res=
ourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7=
e0f6 was added to the Resource Manager<br> 2015-09-23 09:37:58,429 INFO&nbs=
p; [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-=
1) Finished initializing ResourceManager<br> 2015-09-23 09:37:58,430 INFO&n=
bsp; [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) In=
itialization of OvfDataUpdater completed successfully.<br> 2015-09-23 09:37=
:58,431 INFO  [org.ovirt.engine.core.bll.scheduling.SchedulingManager]=
 (MSC service thread 1-1) Start scheduling to enable vds load balancer<br> =
2015-09-23 09:37:58,432 INFO  [org.ovirt.engine.core.bll.scheduling.Sc=
hedulingManager] (MSC service thread 1-1) Finished scheduling to enable vds=
 load balancer<br> 2015-09-23 09:37:58,432 INFO  [org.ovirt.engine.cor=
e.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start HA Reser=
vation check<br> 2015-09-23 09:37:58,434 INFO  [org.ovirt.engine.core.=
bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished HA Rese=
rvation check<br> 2015-09-23 09:37:58,440 INFO  [org.ovirt.engine.core=
.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Start=
 initializing MacPoolManagerRanges<br> 2015-09-23 09:37:58,444 INFO  [=
org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service th=
read 1-1) Init VM custom properties utilities<br> 2015-09-23 09:37:58,444 I=
NFO  [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC=
 service thread 1-1) Init device custom properties utilities<br> 2015-09-23=
 09:37:58,453 INFO  [org.ovirt.engine.core.bll.scheduling.SchedulingMa=
nager] (MSC service thread 1-1) Initializing Scheduling manager<br> 2015-09=
-23 09:37:58,485 INFO  [org.ovirt.engine.core.bll.network.MacPoolManag=
erRanges] (org.ovirt.thread.pool-8-thread-1) Finished initializing. Availab=
le MACs in pool: 251<br> 2015-09-23 09:37:58,499 INFO  [org.ovirt.engi=
ne.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) External=
 scheduler disabled, discovery skipped<br> 2015-09-23 09:37:58,500 INFO&nbs=
p; [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service th=
read 1-1) Initialized Scheduling manager<br> 2015-09-23 09:37:58,500 INFO&n=
bsp; [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) =
Initializing DWH Heart Beat<br> 2015-09-23 09:37:58,502 INFO  [org.ovi=
rt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Bea=
t initialized<br> 2015-09-23 09:38:02,159 INFO  [org.ovirt.engine.core=
.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Wor=
ker-5) START, GetHardwareInfoVDSCommand(HostName =3D node3.acloud.pt, HostI=
d =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=3DHost[node3.acloud.pt,0ffd=
e0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc<br> 2015-09-23 09:38:0=
2,167 INFO  [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfo=
VDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCom=
mand, log id: 66c9effc<br> 2015-09-23 09:38:02,173 INFO  [org.ovirt.en=
gine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSch=
eduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table<br> 201=
5-09-23 09:38:02,174 INFO  [org.ovirt.engine.core.dal.dbbroker.auditlo=
ghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType:=
 VDS_HIGH_NETWORK_USE not exist in string table<br> 2015-09-23 09:38:02,174=
 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDi=
rector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_=
VM not exist in string table<br> 2015-09-23 09:38:02,175 INFO  [org.ov=
irt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQua=
rtzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exis=
t in string table<br> 2015-09-23 09:38:02,175 INFO  [org.ovirt.engine.=
core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSchedule=
r_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not e=
xist in string table<br> 2015-09-23 09:38:02,176 INFO  [org.ovirt.engi=
ne.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSched=
uler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string tab=
le<br> 2015-09-23 09:38:02,176 INFO  [org.ovirt.engine.core.dal.dbbrok=
er.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Aud=
itLogType: USER_ADDED_DISK_PROFILE not exist in string table<br> 2015-09-23=
 09:38:02,176 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandli=
ng.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_F=
AILED_TO_ADD_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02=
,176 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditL=
ogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DI=
SK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO =
 [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (De=
faultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PRO=
FILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO  [org.=
ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQ=
uartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist =
in string table<br> 2015-09-23 09:38:02,177 INFO  [org.ovirt.engine.co=
re.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_=
Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in str=
ing table<br> 2015-09-23 09:38:02,177 INFO  [org.ovirt.engine.core.dal=
.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker=
-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string table<br> 2015=
-09-23 09:38:02,178 INFO  [org.ovirt.engine.core.dal.dbbroker.auditlog=
handling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: =
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br> 2015-09-23 09:=
38:02,178 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.A=
uditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOV=
ED_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO&n=
bsp; [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]=
 (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_=
PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO  [o=
rg.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Defau=
ltQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exis=
t in string table<br> 2015-09-23 09:38:02,179 INFO  [org.ovirt.engine.=
core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSchedule=
r_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in st=
ring table<br> 2015-09-23 09:38:02,479 WARN  [org.ovirt.engine.core.da=
l.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worke=
r-5) Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: =
Host node3.acloud.pt does not enforce SELinux.<br> 2015-09-23 09:38:02,479 =
WARN  [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzSched=
uler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.<br> 2=
015-09-23 09:38:02,623 INFO  [org.ovirt.engine.core.vdsbroker.gluster.=
GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) START, Glus=
terServersListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-=
c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68<br> 2015-09-23 09:38:02,708 =
INFO  [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCo=
mmand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSComma=
nd, return: [192.168.6.201:CONNECTED], log id: 53441a68<br> 2015-09-23 09:3=
8:03,178 INFO  [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQu=
artzScheduler_Worker-5) Initializing Host: node3.acloud.pt<br> 2015-09-23 0=
9:38:03,326 INFO  [org.ovirt.engine.core.bll.HandleVdsVersionCommand] =
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVers=
ionCommand internal: true. Entities affected :  ID: 0ffde0bc-c610-43ee=
-8ded-e8d2beb7e0f6 Type: VDS<br> 2015-09-23 09:38:03,562 INFO  [org.ov=
irt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQua=
rtzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =3D nod=
e3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf3=
1644<br> 2015-09-23 09:38:03,583 INFO  [org.ovirt.engine.core.vdsbroke=
r.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) F=
INISH, GlusterVolumesListVDSCommand, return: {}, log id: cf31644<br> 2015-0=
9-23 09:38:08,514 INFO  [org.ovirt.engine.core.bll.storage.SetStorageP=
oolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8] Running com=
mand: SetStoragePoolStatusCommand internal: true. Entities affected : =
 ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool<br> 2015-09-23 =
09:38:08,533 INFO  [org.ovirt.engine.core.vdsbroker.storage.StoragePoo=
lDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 0=
0000002-0002-0002-0002-000000000238 - Updating Storage Domain 7f099189-6afa=
-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null<br> 20=
15-09-23 09:38:08,540 INFO  [org.ovirt.engine.core.vdsbroker.storage.S=
toragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Stora=
ge Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 5e80=
c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : nu=
ll<br> 2015-09-23 09:38:08,714 WARN  [org.ovirt.engine.core.dal.dbbrok=
er.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [2=
05b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Event ID: -1, M=
essage: Invalid status on Data Center Default. Setting status to Non Respon=
sive.<br> 2015-09-23 09:38:08,758 INFO  [org.ovirt.engine.core.vdsbrok=
er.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20)=
 START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =
=3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004<br> 2015-09-23 =
09:38:08,788 INFO  [org.ovirt.engine.core.vdsbroker.gluster.GlusterVol=
umesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolum=
esListVDSCommand, return: {}, log id: 767b5004<br> 2015-09-23 09:38:08,928 =
INFO  [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (Defaul=
tQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acl=
oud.pt, spmStatus SPM, storage pool Default<br> 2015-09-23 09:38:08,949 INF=
O  [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQu=
artzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.=
6.201<br> 2015-09-23 09:38:08,999 INFO  [org.ovirt.engine.core.dal.dbb=
roker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18)=
 [205b10f8] Correlation ID: null, Call Stack: null, Custom Event ID: -1, Me=
ssage: Storage Pool Manager runs on Host node3.acloud.pt (Address: 192.168.=
6.201).<br> 2015-09-23 09:38:09,051 INFO  [org.ovirt.engine.core.vdsbr=
oker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-threa=
d-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePoolId =3D 000=
00002-0002-0002-0002-000000000238, ignoreFailoverLimit =3D false), log id: =
6735b7ad<br> 2015-09-23 09:38:09,157 INFO  [org.ovirt.engine.core.vdsb=
roker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thre=
ad-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on storage pool 00=
000002-0002-0002-0002-000000000238<br> 2015-09-23 09:38:09,180 INFO  [=
org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (or=
g.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTasksInfoVDSCom=
mand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2b=
eb7e0f6), log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO  [org.ovir=
t.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.=
thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand, r=
eturn: [], log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO  [org.ovi=
rt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt=
.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand, =
return: [], log id: 6735b7ad<br> 2015-09-23 09:38:09,217 INFO  [org.ov=
irt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.pool-8-thread=
-16) [205b10f8] Discovered no tasks on Storage Pool Default<br> 2015-09-23 =
09:38:13,937 INFO  [org.ovirt.engine.core.vdsbroker.gluster.GlusterVol=
umesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, GlusterVolume=
sListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee=
-8ded-e8d2beb7e0f6), log id: 663177d4<br> 2015-09-23 09:38:13,964 INFO =
; [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (D=
efaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, retu=
rn: {}, log id: 663177d4<br> 2015-09-23 09:38:19,184 INFO  [org.ovirt.=
engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzS=
cheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =3D node3.=
acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78e=
bd<br> 2015-09-23 09:38:19,232 INFO  [org.ovirt.engine.core.vdsbroker.=
gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) FI=
NISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd<br> 2015-0=
9-23 09:38:24,382 INFO  [org.ovirt.engine.core.vdsbroker.gluster.Glust=
erVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) START, GlusterV=
olumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610=
-43ee-8ded-e8d2beb7e0f6), log id: 3beec320<br> 2015-09-23 09:38:24,410 INFO=
  [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSComman=
d] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand,=
 return: {}, log id: 3beec320<br> <br></div><div><br></div><div>Thanks<br><=
/div><div><br></div><hr id=3D"zwchr"><div style=3D"color:#000;font-weight:n=
ormal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sa=
ns-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-weight: norma=
l; font-style: normal; text-decoration: none; font-family: Helvetica,Arial,=
sans-serif; font-size: 12pt;"><b>De: </b>"Ondra Machacek" <a class=3D"moz-t=
xt-link-rfc2396E" href=3D"mailto:omachace@redhat.com" target=3D"_blank" dat=
a-mce-href=3D"mailto:omachace@redhat.com"><omachace@redhat.com></a><b=
r> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" href=3D"mailto:suport=
e@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto:suporte@logicwor=
ks.pt">suporte@logicworks.pt</a>, <a class=3D"moz-txt-link-abbreviated" hre=
f=3D"mailto:users@ovirt.org" target=3D"_blank" data-mce-href=3D"mailto:user=
s@ovirt.org">users@ovirt.org</a><br> <b>Enviadas: </b>Quarta-feira, 23 De S=
etembro de 2015 7:40:12<br> <b>Assunto: </b>Re: [ovirt-users] FreeIPA<br><d=
iv><br></div>Just for clarification - ovirt-engine-extension-aaa-ldap-setup=
 is available from oVirt 3.6<br> <br> Can you send engine.log, hard to say =
what's wrong from configuration, it looks good.<br> <br><div class=3D"moz-c=
ite-prefix">On 09/22/2015 09:55 PM, Ravi Nori wrote:<br></div><blockquote c=
ite=3D"mid:5601B215.8020704@redhat.com"><div class=3D"moz-cite-prefix">Once=
 you have installed ovirt-engine-extension-aaa-ldap and ovirt-engine-extens=
ion-aaa-ldap-setup<br> <br> You can run ovirt-engine-extension-aaa-ldap-set=
up and follow the steps to set up ldap.<br> <br> Once that is done you can =
login to webadmin and add users/groups from ipa<br> <br> On 09/22/2015 11:5=
7 AM, <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicwor=
ks.pt" target=3D"_blank" data-mce-href=3D"mailto:suporte@logicworks.pt">sup=
orte@logicworks.pt</a> wrote:<br></div><blockquote cite=3D"mid:1706731369.9=
1118.1442937460886.JavaMail.zimbra@logicworks.pt"><div style=3D"font-family=
: Times New Roman; font-size: 10pt;
                color: #000000" data-mce-style=3D"font-family: Times New Ro=
man; font-size: 10pt; color: #000000;"><div>Here is what I'm trying to do:<=
br></div><div><br> Ovirt engine : engine.domain.tld<br></div><div>Freeipa 4=
.1.0 : ipa.domain.tld<br></div><div><br></div><div>I have installed on the =
engine:<pre class=3D"western" style=3D"margin-bottom: 0.5cm;" data-mce-styl=
e=3D"margin-bottom: 0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre><pre class=3D"western" style=3D"margin-bottom: 0.5cm;" data-mce-style=
=3D"margin-bottom: 0.5cm;"><i>openldap-clients</i>

/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include =3D <openldap.properties>
#include =3D <389ds.properties>
#include =3D <rhds.properties>
include =3D <ipa.properties>
#include =3D <iplanet.properties>
#include =3D <rfc2307.properties>
#include =3D <rfc2307-openldap.properties>

#
# Server
#
vars.server =3D ipa.domain.tld

#
# Search user and its password.
#
vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld
vars.password =3D <em>ipa_admin_password</em>

pool.default.serverset.single.server =3D ${global:vars.server}
pool.default.auth.simple.bindDN =3D ${global:vars.user}
pool.default.auth.simple.password =3D ${global:vars.password}

# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS =3D true
#pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve=
r}.jks
#pool.default.ssl.truststore.password =3D changeit

On the engine cannot find any users configured on the ipa server.

Any help?

Thanks

Jose
</pre><br></div><div><br></div><hr id=3D"zwchr"><div style=3D"color:#000;fo=
nt-weight:normal;font-style:normal;text-decoration:none;font-family:Helveti=
ca,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-we=
ight: normal; font-style: normal; text-decoration: none; font-family: Helve=
tica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Alon Bar-Lev" <a class=
=3D"moz-txt-link-rfc2396E" href=3D"mailto:alonbl@redhat.com" target=3D"_bla=
nk" data-mce-href=3D"mailto:alonbl@redhat.com"><alonbl@redhat.com></a=
...
<br> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" href=3D"mailto:sup=
orte@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto:suporte@logic=
works.pt">suporte@logicworks.pt</a><br> <b>Cc: </b>"users" <a class=3D"moz-=
txt-link-rfc2396E" href=3D"mailto:users@ovirt.org" target=3D"_blank" data-m=
ce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><br> <b>Envia=
das: </b>Sexta-feira, 18 De Setembro de 2015 15:48:22<br> <b>Assunto: </b>R=
e: [ovirt-users] FreeIPA<br><div><br></div><br><div><br></div>----- Origina=
l Message -----<br> > From: <a class=3D"moz-txt-link-abbreviated" href=
=3D"mailto:suporte@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto=
:suporte@logicworks.pt">suporte@logicworks.pt</a><br> > To: "users" <a c=
lass=3D"moz-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org" target=3D"_b=
lank" data-mce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><=
br> > Sent: Friday, September 18, 2015 5:45:18 PM<br> > Subject: [ovi=
rt-users] FreeIPA<br> > <br> > Hi,<br> > <br> > Is there any do=
cumentation about FreeIPA integration with oVirt 3.5 and how<br> > to co=
nfigure it?<br> > <br><div><br></div>Hi,<br><div><br></div>Please find d=
ocumentation at [1][2].<br><div><br></div>Regards,<br> Alon Bar-Lev.<br><di=
v><br></div>[1] <a class=3D"moz-txt-link-freetext" href=3D"http://www.ovirt=
.org/Features/AAA" target=3D"_blank" data-mce-href=3D"http://www.ovirt.org/=
Features/AAA">http://www.ovirt.org/Features/AAA</a><br> [2] <a class=3D"moz=
-txt-link-freetext" href=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engin=
e-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aa=
a-ldap-1.0" target=3D"_blank" data-mce-href=3D"https://gerrit.ovirt.org/git=
web?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-=
engine-extension-aaa-ldap-1.0">https://gerrit.ovirt.org/gitweb?p=3Dovirt-en=
gine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension=
-aaa-ldap-1.0</a><br></div><div><br></div></div><br><fieldset class=3D"mime=
AttachmentHeader"></fieldset><br><pre>_____________________________________=

Users mailing list
<a class=3D"moz-txt-link-abbreviated" href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank" data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank" data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre></blockquote><br> <br><fieldset class=3D"mimeAttachmentHeader"></fiel=
dset><br><pre>_______________________________________________
Users mailing list
<a class=3D"moz-txt-link-abbreviated" href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank" data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank" data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre></blockquote><br></div><div><br></div></div></blockquote><br></div><d=
iv><br></div></div></body></html>
------=_Part_149199_1360765842.1443016712319--

Re: [ovirt-users] FreeIPA

suporte＠logicworks.pt