5:45 p.m.
------=_Part_789470_851827211.1442587518543
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how to configure
it?
Thanks
Jose
--
Jose Ferradeira
http://www.logicworks.pt
------=_Part_789470_851827211.1442587518543
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 7bit
<html><body><div style="font-family: Times New Roman; font-size: 10pt;
color:
#000000"><div>Hi,<br></div><div><br></div><div>Is
there any documentation about FreeIPA integration with oVirt 3.5 and how to configure
it?<br></div><div><br></div><div>Thanks<br></div><div><br></div><div>Jose<br></div><div><br></div><div>--
<br></div><div><span name="x"></span><hr
style="width: 100%; height: 2px;" data-mce-style="width: 100%; height:
2px;">Jose Ferradeira<br>http://www.logicworks.pt<br><span
name="x"></span><br></div></div></body></html>
------=_Part_789470_851827211.1442587518543--
5:48 p.m.
----- Original Message -----
From: suporte(a)logicworks.pt
To: "users" <users(a)ovirt.org>
Sent: Friday, September 18, 2015 5:45:18 PM
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how
to configure it?
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
6:57 p.m.
------=_Part_91117_410636740.1442937460885
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
ovirt-engine-extension-aaa-ldap
openldap-clients
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
----- Mensagem original -----
De: "Alon Bar-Lev" <alonbl(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: "users" <users(a)ovirt.org>
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22
Assunto: Re: [ovirt-users] FreeIPA
----- Original Message -----
From: suporte(a)logicworks.pt
To: "users" <users(a)ovirt.org>
Sent: Friday, September 18, 2015 5:45:18 PM
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how
to configure it?
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
------=_Part_91117_410636740.1442937460885
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<html><body><div style=3D"font-family: Times New Roman; font-size:
10pt; co=
lor: #000000"><div>Here is what I'm trying to
do:<br></div><div><br>Ovirt e=
ngine : engine.domain.tld<br></div><div>Freeipa 4.1.0 :
ipa.domain.tld<br><=
/div><div><br></div><div>I have installed on the engine:
<pre class=3D"west=
ern" style=3D"margin-bottom: 0.5cm;" data-mce-style=3D"margin-bottom:
0.5cm=
;"><i>ovirt-engine-extension-aaa-ldap</i><br></pre><pre
class=3D"western" s=
tyle=3D"margin-bottom: 0.5cm;" data-mce-style=3D"margin-bottom:
0.5cm;"><i>=
openldap-clients</i><br><br>/etc/ovirt-engine/aaa/profile1.properties:<br>#=
<br># Select one<br>#<br>#include =3D
<openldap.properties><br>#inclu=
de =3D <389ds.properties><br>#include =3D
<rhds.properties><br>=
include =3D <ipa.properties><br>#include =3D
<iplanet.properties&g=
t;<br>#include =3D <rfc2307.properties><br>#include =3D
<rfc2307-o=
penldap.properties><br><br>#<br>#
Server<br>#<br>vars.server =3D ipa.dom=
ain.tld<br><br>#<br># Search user and its
password.<br>#<br>vars.user =3D u=
id=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld<br>vars.password =
=3D
<em>ipa_admin_password</em><br><br>pool.default.serverset.single.server=
=3D ${global:vars.server}<br>pool.default.auth.simple.bindDN =3D ${global:=
vars.user}<br>pool.default.auth.simple.password =3D ${global:vars.password}=
<br><br># Create keystore, import certificate chain and uncomment<br>#
if u=
sing ssl/tls.<br>#pool.default.ssl.startTLS =3D true<br>#pool.default.ssl.t=
ruststore.file =3D ${local:_basedir}/${global:vars.server}.jks<br>#pool.def=
ault.ssl.truststore.password =3D changeit<br><br><br>On the engine
cannot f=
ind any users configured on the ipa server.<br><br>Any
help?<br><br>Thanks<=
br><br>Jose<br></pre><br></div><div><br></div><hr
id=3D"zwchr"><div style=
=3D"color:#000;font-weight:normal;font-style:normal;text-decoration:none;fo=
nt-family:Helvetica,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"col=
or: #000; font-weight: normal; font-style: normal; text-decoration: none; f=
ont-family: Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Alon =
Bar-Lev" &lt;alonbl(a)redhat.com&gt;<br><b>Para:
</b>suporte(a)logicworks.pt<br=
<b>Cc: </b>"users"
&lt;users(a)ovirt.org&gt;<br><b>Enviadas: </b>Sexta-feira=
,
18 De Setembro de 2015 15:48:22<br><b>Assunto: </b>Re: [ovirt-users]
Free=
IPA<br><div><br></div><br><div><br></div>-----
Original Message -----<br>&g=
t; From: suporte(a)logicworks.pt<br>&gt; To: "users"
&lt;users(a)ovirt.org&gt;<=
br>> Sent: Friday, September 18, 2015 5:45:18 PM<br>> Subject:
[ovirt=
-users] FreeIPA<br>> <br>> Hi,<br>>
<br>> Is there any document=
ation about FreeIPA integration with oVirt 3.5 and how<br>> to configure=
it?<br>>
<br><div><br></div>Hi,<br><div><br></div>Please
find documenta=
tion at [1][2].<br><div><br></div>Regards,<br>Alon
Bar-Lev.<br><div><br></d=
iv>[1] http://www.ovirt.org/Features/AAA<br>[2] https://gerrit.ovirt.org/gi=
tweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt=
-engine-extension-aaa-ldap-1.0<br></div><div><br></div></div></body></html>
------=_Part_91117_410636740.1442937460885--
10:55 p.m.
This is a multi-part message in MIME format.
--------------000504020604060006000002
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps
to set up ldap.
Once that is done you can login to webadmin and add users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
/ovirt-engine-extension-aaa-ldap/
/openldap-clients/
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password =/ipa_admin_password/
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
------------------------------------------------------------------------
*De: *"Alon Bar-Lev" <alonbl(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *"users" <users(a)ovirt.org>
*Enviadas: *Sexta-feira, 18 De Setembro de 2015 15:48:22
*Assunto: *Re: [ovirt-users] FreeIPA
----- Original Message -----
> From: suporte(a)logicworks.pt
> To: "users" <users(a)ovirt.org>
> Sent: Friday, September 18, 2015 5:45:18 PM
> Subject: [ovirt-users] FreeIPA
>
> Hi,
>
> Is there any documentation about FreeIPA integration with oVirt 3.5
and how
> to configure it?
>
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
--------------000504020604060006000002
Content-Type: text/html; charset=windows-1252
Content-Transfer-Encoding: 7bit
<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">Once you have installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run ovirt-engine-extension-aaa-ldap-setup and follow the
steps to set up ldap.<br>
<br>
Once that is done you can login to webadmin and add users/groups
from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt"
type="cite">
<div style="font-family: Times New Roman; font-size: 10pt; color:
#000000">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class="western" style="margin-bottom: 0.5cm;"
data-mce-style="margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre>
<pre class="western" style="margin-bottom: 0.5cm;"
data-mce-style="margin-bottom: 0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = <em>ipa_admin_password</em>
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal; font-style:
normal; text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Alon
Bar-Lev" <a class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"><alonbl@redhat.com></a><br>
<b>Para: </b><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b>"users" <a
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
<b>Enviadas: </b>Sexta-feira, 18 De Setembro de 2015
15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
> To: "users" <a class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
> Sent: Friday, September 18, 2015 5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation about FreeIPA integration with
oVirt 3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/AAA">http://www.ovirt.or...
[2]
<a class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
</div>
<div><br>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Users mailing list
<a class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users">http://...
</pre>
</blockquote>
<br>
</body>
</html>
--------------000504020604060006000002--
9:40 a.m.
This is a multi-part message in MIME format.
--------------090802080605090904020305
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is
available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from configuration, it
looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps
to set up ldap.
Once that is done you can login to webadmin and add users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
> Here is what I'm trying to do:
>
> Ovirt engine : engine.domain.tld
> Freeipa 4.1.0 : ipa.domain.tld
>
> I have installed on the engine:
> /ovirt-engine-extension-aaa-ldap/
> /openldap-clients/
>
> /etc/ovirt-engine/aaa/profile1.properties:
> #
> # Select one
> #
> #include = <openldap.properties>
> #include = <389ds.properties>
> #include = <rhds.properties>
> include = <ipa.properties>
> #include = <iplanet.properties>
> #include = <rfc2307.properties>
> #include = <rfc2307-openldap.properties>
>
> #
> # Server
> #
> vars.server = ipa.domain.tld
>
> #
> # Search user and its password.
> #
> vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
> vars.password =/ipa_admin_password/
>
> pool.default.serverset.single.server = ${global:vars.server}
> pool.default.auth.simple.bindDN = ${global:vars.user}
> pool.default.auth.simple.password = ${global:vars.password}
>
> # Create keystore, import certificate chain and uncomment
> # if using ssl/tls.
> #pool.default.ssl.startTLS = true
> #pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
> #pool.default.ssl.truststore.password = changeit
>
>
> On the engine cannot find any users configured on the ipa server.
>
> Any help?
>
> Thanks
>
> Jose
>
>
> ------------------------------------------------------------------------
> *De: *"Alon Bar-Lev" <alonbl(a)redhat.com>
> *Para: *suporte(a)logicworks.pt
> *Cc: *"users" <users(a)ovirt.org>
> *Enviadas: *Sexta-feira, 18 De Setembro de 2015 15:48:22
> *Assunto: *Re: [ovirt-users] FreeIPA
>
>
>
> ----- Original Message -----
> > From: suporte(a)logicworks.pt
> > To: "users" <users(a)ovirt.org>
> > Sent: Friday, September 18, 2015 5:45:18 PM
> > Subject: [ovirt-users] FreeIPA
> >
> > Hi,
> >
> > Is there any documentation about FreeIPA integration with oVirt 3.5
> and how
> > to configure it?
> >
>
> Hi,
>
> Please find documentation at [1][2].
>
> Regards,
> Alon Bar-Lev.
>
> [1] http://www.ovirt.org/Features/AAA
> [2]
>
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
>
>
>
> _______________________________________________
> Users mailing list
> Users(a)ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
--------------090802080605090904020305
Content-Type: text/html; charset=windows-1252
Content-Transfer-Encoding: 7bit
<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is
available from oVirt 3.6<br>
<br>
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.<br>
<br>
<div class="moz-cite-prefix">On 09/22/2015 09:55 PM, Ravi Nori
wrote:<br>
</div>
<blockquote cite="mid:5601B215.8020704@redhat.com"
type="cite">
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
<div class="moz-cite-prefix">Once you have installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run ovirt-engine-extension-aaa-ldap-setup and follow the
steps to set up ldap.<br>
<br>
Once that is done you can login to webadmin and add users/groups
from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt"
type="cite">
<div style="font-family: Times New Roman; font-size: 10pt;
color: #000000">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class="western" style="margin-bottom: 0.5cm;"
data-mce-style="margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre>
<pre class="western" style="margin-bottom: 0.5cm;"
data-mce-style="margin-bottom: 0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = <em>ipa_admin_password</em>
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal;
font-style: normal; text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Alon
Bar-Lev" <a moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"><alonbl@redhat.com></a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b>"users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
<b>Enviadas: </b>Sexta-feira, 18 De Setembro de 2015
15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
> To: "users" <a moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
> Sent: Friday, September 18, 2015 5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation about FreeIPA integration
with oVirt 3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/AAA">http://www.ovirt.or...
[2]
<a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
</div>
<div><br>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users">http://...
</pre>
</blockquote>
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Users mailing list
<a class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users">http://...
</pre>
</blockquote>
<br>
</body>
</html>
--------------090802080605090904020305--
11:48 a.m.
------=_Part_131622_344386147.1442998098766
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but
the GO button is still in gray.
I think something is wrong with the autehtication on the IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project', Build interface Version: '0', File: 'N/A', Initialized:
'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0',
Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager completed successfully.
2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource
Manager
2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service
thread 1-1) Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string
table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string
table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in
string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string
table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist
in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string
table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist
in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID:
-1, Message: Host node3.acloud.pt does not enforce SELinux.
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68
2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand
internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type:
StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null,
Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non
Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 767b5004
2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt,
spmStatus SPM, storage pool Default
2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null,
Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address:
192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand(
storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log
id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on
storage pool 00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand,
return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand,
return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 3beec320
Thanks
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt, users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12
Assunto: Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap.
Once that is done you can login to webadmin and add users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
<blockquote>
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
ovirt-engine-extension-aaa-ldap
openldap-clients /etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password pool.default.serverset.single.server =
${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
----- Mensagem original -----
De: "Alon Bar-Lev" <alonbl(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: "users" <users(a)ovirt.org>
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22
Assunto: Re: [ovirt-users] FreeIPA
----- Original Message -----
From: suporte(a)logicworks.pt
To: "users" <users(a)ovirt.org>
Sent: Friday, September 18, 2015 5:45:18 PM
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how
to configure it?
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
</blockquote>
------=_Part_131622_344386147.1442998098766
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<html><body><div style=3D"font-family: Times New Roman; font-size:
10pt; co=
lor: #000000"><div><br></div><div>Is there anything to do
on the IPA side? =
Or is just add users?<br></div><div>On the oVirt Engine, Users Tab, when
cl=
ick on add I can see profile1 (profile1-aurhz) but the GO button is still i=
n gray.<br></div><div>I think something is wrong with the autehtication
on =
the IPA server.<br></div><div><br></div><div>Here is
the engine log :<br></=
div><div><br></div><div>2015-09-23 09:37:57,927 INFO
[org.ovirt.engin=
e.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension=
'builtin-authn-internal' initialized<br>2015-09-23 09:37:57,927
INFO =
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thre=
ad 1-2) Initializing extension 'internal'<br>2015-09-23 09:37:57,928
INFO&n=
bsp; [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service =
thread 1-2) Extension 'internal' initialized<br>2015-09-23 09:37:57,928
INF=
O [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC servi=
ce thread 1-2) Start of enabled extensions list<br>2015-09-23 09:37:57,928 =
INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC se=
rvice thread 1-2) Instance name: 'profile1-authn', Extension name: 'ovirt-e=
ngine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name:
ov=
irt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home:
'http=
://www.ovirt.org', Author 'The oVirt Project', Build interface Version:
'0'=
, File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', I=
nitialized: 'true'<br>2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.=
core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance na=
me: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.auth=
z', Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap=
-1.0.2-1.el7', License: 'ASL 2.0', Home: 'http://www.ovirt.org',
Author 'Th=
e oVirt Project', Build interface Version: '0', File:
'/etc/ovirt-eng=
ine/extensions.d/profile1-authz.properties', Initialized:
'true'<br>2015-09=
-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.Extension=
sManager] (MSC service thread 1-2) Instance name: 'builtin-authn-internal',=
Extension name: 'Internal Authn (Built-in)', Version: 'N/A', Notes:
'', Li=
cense: 'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project',=
Build interface Version: '0', File: 'N/A', Initialized:
'true'<br>20=
15-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.Exte=
nsionsManager] (MSC service thread 1-2) Instance name: 'internal', Extensio=
n name: 'Internal Authz (Built-in)', Version: 'N/A', Notes: '',
License: 'A=
SL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project',
Build in=
terface Version: '0', File: 'N/A', Initialized:
'true'<br>2015-09-23 =
09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsMan=
ager] (MSC service thread 1-2) End of enabled extensions list<br>2015-09-23=
09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager]=
(MSC service thread 1-1) Initialization of AsyncTaskManager completed succ=
essfully.<br>2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsb=
roker.ResourceManager] (MSC service thread 1-1) Start initializing Resource=
Manager<br>2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbro=
ker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor<br>=
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsMana=
ger] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)<b=
r>2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.Resou=
rceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0=
f6 was added to the Resource Manager<br>2015-09-23 09:37:58,429 INFO =
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) =
Finished initializing ResourceManager<br>2015-09-23 09:37:58,430 INFO =
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) Initia=
lization of OvfDataUpdater completed successfully.<br>2015-09-23 09:37:58,4=
31 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC=
service thread 1-1) Start scheduling to enable vds load balancer<br>2015-0=
9-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.Scheduli=
ngManager] (MSC service thread 1-1) Finished scheduling to enable vds load =
balancer<br>2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.s=
cheduling.SchedulingManager] (MSC service thread 1-1) Start HA Reservation =
check<br>2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.sche=
duling.SchedulingManager] (MSC service thread 1-1) Finished HA Reservation =
check<br>2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.netw=
ork.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Start initiali=
zing MacPoolManagerRanges<br>2015-09-23 09:37:58,444 INFO [org.ovirt.=
engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) =
Init VM custom properties utilities<br>2015-09-23 09:37:58,444 INFO [=
org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service th=
read 1-1) Init device custom properties utilities<br>2015-09-23 09:37:58,45=
3 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC =
service thread 1-1) Initializing Scheduling manager<br>2015-09-23 09:37:58,=
485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (or=
g.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in po=
ol: 251<br>2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.sc=
heduling.SchedulingManager] (MSC service thread 1-1) External scheduler dis=
abled, discovery skipped<br>2015-09-23 09:37:58,500 INFO [org.ovirt.e=
ngine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initi=
alized Scheduling manager<br>2015-09-23 09:37:58,500 INFO [org.ovirt.=
engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) Initializing DWH=
Heart Beat<br>2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bl=
l.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Beat initialized<br>=
2015-09-23 09:38:02,159 INFO [org.ovirt.engine.core.vdsbroker.vdsbrok=
er.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GetH=
ardwareInfoVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c61=
0-43ee-8ded-e8d2beb7e0f6, vds=3DHost[node3.acloud.pt,0ffde0bc-c610-43ee-8de=
d-e8d2beb7e0f6]), log id: 66c9effc<br>2015-09-23 09:38:02,167 INFO [o=
rg.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (Defaul=
tQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9e=
ffc<br>2015-09-23 09:38:02,173 INFO [org.ovirt.engine.core.dal.dbbrok=
er.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Aud=
itLogType: UNASSIGNED not exist in string table<br>2015-09-23 09:38:02,174 =
INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDir=
ector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE=
not exist in string table<br>2015-09-23 09:38:02,174 INFO [org.ovirt=
.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartz=
Scheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string=
table<br>2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbb=
roker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) =
AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table<br>20=
15-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditl=
oghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType=
: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table<br>=
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.audi=
tloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogTy=
pe: STORAGE_ACTIVATE_ASYNC not exist in string table<br>2015-09-23 09:38:02=
,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditL=
ogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK=
_PROFILE not exist in string table<br>2015-09-23 09:38:02,176 INFO [o=
rg.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Defau=
ltQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE n=
ot exist in string table<br>2015-09-23 09:38:02,176 INFO [org.ovirt.e=
ngine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSc=
heduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in stri=
ng table<br>2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.d=
bbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5=
) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string tabl=
e<br>2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker=
.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Audit=
LogType: USER_UPDATED_DISK_PROFILE not exist in string table<br>2015-09-23 =
09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandlin=
g.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FA=
ILED_TO_UPDATE_DISK_PROFILE not exist in string table<br>2015-09-23 09:38:0=
2,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.Audit=
LogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU=
_PROFILE not exist in string table<br>2015-09-23 09:38:02,178 INFO [o=
rg.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Defau=
ltQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE no=
t exist in string table<br>2015-09-23 09:38:02,178 INFO [org.ovirt.en=
gine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSch=
eduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in string=
table<br>2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbb=
roker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) =
AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table<b=
r>2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.au=
ditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLog=
Type: USER_UPDATED_CPU_PROFILE not exist in string table<br>2015-09-23 09:3=
8:02,179 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.Au=
ditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED=
_TO_UPDATE_CPU_PROFILE not exist in string table<br>2015-09-23 09:38:02,479=
WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDi=
rector] (DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack:=
null, Custom Event ID: -1, Message: Host node3.acloud.pt does not enforce =
SELinux.<br>2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbr=
oker.VdsManager] (DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is =
running with disabled SELinux.<br>2015-09-23 09:38:02,623 INFO [org.o=
virt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQu=
artzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName =3D no=
de3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53=
441a68<br>2015-09-23 09:38:02,708 INFO [org.ovirt.engine.core.vdsbrok=
er.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) =
FINISH, GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED], lo=
g id: 53441a68<br>2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core=
.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Initializing Host:=
node3.acloud.pt<br>2015-09-23 09:38:03,326 INFO [org.ovirt.engine.co=
re.bll.HandleVdsVersionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6=
] Running command: HandleVdsVersionCommand internal: true. Entities affecte=
d : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br>2015-09-23 =
09:38:03,562 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVol=
umesListVDSCommand] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumes=
ListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-=
8ded-e8d2beb7e0f6), log id: cf31644<br>2015-09-23 09:38:03,583 INFO [=
org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (Defa=
ultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: =
{}, log id: cf31644<br>2015-09-23 09:38:08,514 INFO [org.ovirt.engine=
.core.bll.storage.SetStoragePoolStatusCommand] (DefaultQuartzScheduler_Work=
er-18) [205b10f8] Running command: SetStoragePoolStatusCommand internal: tr=
ue. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type=
: StoragePool<br>2015-09-23 09:38:08,533 INFO [org.ovirt.engine.core.=
vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-1=
8) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating =
Storage Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to U=
nknown, reason : null<br>2015-09-23 09:38:08,540 INFO [org.ovirt.engi=
ne.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_=
Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - U=
pdating Storage Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Act=
ive to Unknown, reason : null<br>2015-09-23 09:38:08,714 WARN [org.ov=
irt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQua=
rtzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: nu=
ll, Custom Event ID: -1, Message: Invalid status on Data Center Default. Se=
tting status to Non Responsive.<br>2015-09-23 09:38:08,758 INFO [org.=
ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQ=
uartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName =3D =
node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: =
767b5004<br>2015-09-23 09:38:08,788 INFO [org.ovirt.engine.core.vdsbr=
oker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-2=
0) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 767b5004<br>20=
15-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker=
.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::s=
electedVds - node3.acloud.pt, spmStatus SPM, storage pool Default<br>2015-0=
9-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.Irs=
ProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs pro=
xy from vds: 192.168.6.201<br>2015-09-23 09:38:08,999 INFO [org.ovirt=
.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartz=
Scheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Cus=
tom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.p=
t (Address: 192.168.6.201).<br>2015-09-23 09:38:09,051 INFO [org.ovir=
t.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.=
thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( st=
oragePoolId =3D 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =
=3D false), log id: 6735b7ad<br>2015-09-23 09:38:09,157 INFO [org.ovi=
rt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt=
.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting=
on storage pool 00000002-0002-0002-0002-000000000238<br>2015-09-23 09:38:0=
9,180 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksI=
nfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGet=
AllTasksInfoVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c6=
10-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746<br>2015-09-23 09:38:09,216 INF=
O [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCom=
mand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasks=
InfoVDSCommand, return: [], log id: 2c5dc746<br>2015-09-23 09:38:09,216 INF=
O [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCom=
mand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasks=
InfoVDSCommand, return: [], log id: 6735b7ad<br>2015-09-23 09:38:09,217 INF=
O [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.threa=
d.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default<=
br>2015-09-23 09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.glus=
ter.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START,=
GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffd=
e0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4<br>2015-09-23 09:38:13,=
964 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListV=
DSCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDS=
Command, return: {}, log id: 663177d4<br>2015-09-23 09:38:19,184 INFO =
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (De=
faultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostNam=
e =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), lo=
g id: 4db78ebd<br>2015-09-23 09:38:19,232 INFO [org.ovirt.engine.core=
.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Wo=
rker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd=
<br>2015-09-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.glu=
ster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) START=
, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ff=
de0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320<br>2015-09-23 09:38:24=
,410 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesList=
VDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVD=
SCommand, return: {}, log id:
3beec320<br><br></div><div><br></div><div>Tha=
nks<br></div><div><br></div><hr
id=3D"zwchr"><div style=3D"color:#000;font-=
weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,=
Arial,sans-serif;font-size:12pt;"><b>De: </b>"Ondra
Machacek" <omachace@=
redhat.com><br><b>Para: </b>suporte(a)logicworks.pt,
users(a)ovirt.org<br><b=
Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
7:40:12<br><b>Assunto: =
</b>Re: [ovirt-users]
FreeIPA<br><div><br></div>
=20
=20
=20
=20
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is
available from oVirt 3.6<br>
<br>
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.<br>
<br>
<div class=3D"moz-cite-prefix">On 09/22/2015 09:55 PM, Ravi Nori
wrote:<br>
</div>
<blockquote cite=3D"mid:5601B215.8020704@redhat.com">
=20
<div class=3D"moz-cite-prefix">Once you have installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run ovirt-engine-extension-aaa-ldap-setup and follow the
steps to set up ldap.<br>
<br>
Once that is done you can login to webadmin and add users/groups
from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a class=3D"moz-txt-link-abbreviated" href=
=3D"mailto:suporte@logicworks.pt"
target=3D"_blank">suporte(a)logicworks.pt</=
a>
wrote:<br>
</div>
<blockquote cite=3D"mid:1706731369.91118.1442937460886.JavaMail.zimbr=
a(a)logicworks.pt">
<div style=3D"font-family: Times New Roman; font-size: 10pt;
color: #000000">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class=3D"western" style=3D"margin-bottom:
0.5cm;"><i>ovirt=
-engine-extension-aaa-ldap</i>
</pre>
<pre class=3D"western" style=3D"margin-bottom:
0.5cm;"><i>openl=
dap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include =3D <openldap.properties>
#include =3D <389ds.properties>
#include =3D <rhds.properties>
include =3D <ipa.properties>
#include =3D <iplanet.properties>
#include =3D <rfc2307.properties>
#include =3D <rfc2307-openldap.properties>
#
# Server
#
vars.server =3D ipa.domain.tld
#
# Search user and its password.
#
vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld
vars.password =3D <em>ipa_admin_password</em>
pool.default.serverset.single.server =3D ${global:vars.server}
pool.default.auth.simple.bindDN =3D ${global:vars.user}
pool.default.auth.simple.password =3D ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS =3D true
#pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve=
r}.jks
#pool.default.ssl.truststore.password =3D changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id=3D"zwchr">
<div style=3D"color:#000;font-weight:normal;font-style:normal;tex=
t-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><=
b>De: </b>"Alon
Bar-Lev" <a class=3D"moz-txt-link-rfc2396E"
href=3D"mailto:alon=
bl(a)redhat.com"
target=3D"_blank">&lt;alonbl(a)redhat.com&gt;</a><br>
<b>Para: </b><a class=3D"moz-txt-link-abbreviated"
href=3D"mail=
to:suporte@logicworks.pt"
target=3D"_blank">suporte(a)logicworks.pt</a><br>
<b>Cc: </b>"users" <a
class=3D"moz-txt-link-rfc2396E" href=3D"m=
ailto:users@ovirt.org"
target=3D"_blank">&lt;users(a)ovirt.org&gt;</a><br>
<b>Enviadas: </b>Sexta-feira, 18 De Setembro de 2015
15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a class=3D"moz-txt-link-abbreviated"
href=3D"mailto=
:suporte@logicworks.pt"
target=3D"_blank">suporte(a)logicworks.pt</a><br>
> To: "users" <a class=3D"moz-txt-link-rfc2396E"
href=3D"mai=
lto:users@ovirt.org"
target=3D"_blank">&lt;users(a)ovirt.org&gt;</a><br>
> Sent: Friday, September 18, 2015 5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation about FreeIPA integration
with oVirt 3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a class=3D"moz-txt-link-freetext"
href=3D"http://www.ovirt=
.org/Features/AAA"
target=3D"_blank">http://www.ovirt.org/Features/AAA</a>...
br>
[2]
<a class=3D"moz-txt-link-freetext"
href=3D"https://gerrit.ovirt=
.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=
=3Dovirt-engine-extension-aaa-ldap-1.0"
target=3D"_blank">https://gerrit.ov=
irt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;=
hb=3Dovirt-engine-extension-aaa-ldap-1.0</a><br>
</div>
<div><br>
</div>
</div>
<br>
<fieldset class=3D"mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank">Users(a)ovirt.org</a>
<a class=3D"moz-txt-link-freetext"
href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users"
target=3D"_blank">http://lists.ovirt.org/mailman/listinfo/us=
ers</a>
</pre>
</blockquote>
<br>
<br>
<fieldset class=3D"mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank">Users(a)ovirt.org</a>
<a class=3D"moz-txt-link-freetext"
href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users"
target=3D"_blank">http://lists.ovirt.org/mailman/listinfo/us=
ers</a>
</pre>
</blockquote>
<br>
=20
</div><div><br></div></div></body></html>
------=_Part_131622_344386147.1442998098766--
2:50 p.m.
This is a multi-part message in MIME format.
--------------080802000300020409070709
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
You don't have to do anything on IPA side, just create users/groups.
OK, nothing in the log at INFO level, initialization succeed, so can you
please send the debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see profile1
(profile1-aurhz) but the GO button is still in gray.
I think something is wrong with the autehtication on the IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Instance name: 'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License:
'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0',
Home:
'http://www.ovirt.org', Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC service thread
1-1) Initialization of AsyncTaskManager completed successfully.
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread
1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1)
Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1)
Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread
1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the
Resource Manager
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread
1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1)
Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) Finished scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC
service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC
service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing. Available
MACs in pool: 251
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service
thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1)
Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1)
DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log
id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand,
log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist
in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE
not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM
not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC
not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE
not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack:
null, Custom Event ID: -1, Message: Host node3.acloud.pt does not
enforce SELinux.
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with
disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED], log
id: 53441a68
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command:
HandleVdsVersionCommand internal: true. Entities affected : ID:
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command:
SetStoragePoolStatusCommand internal: true. Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type: StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown,
reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown,
reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
205b10f8, Call Stack: null, Custom Event ID: -1, Message: Invalid
status on Data Center Default. Setting status to Non Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds
- node3.acloud.pt, spmStatus SPM, storage pool Default
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy
from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null,
Call Stack: null, Custom Event ID: -1, Message: Storage Pool Manager
runs on Host node3.acloud.pt (Address: 192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId =
00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false),
log id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage pool
00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on
Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 3beec320
Thanks
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt, users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 7:40:12
*Assunto: *Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is
available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from configuration,
it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the
steps to set up ldap.
Once that is done you can login to webadmin and add users/groups
from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
/ovirt-engine-extension-aaa-ldap/
/openldap-clients/
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password =/ipa_admin_password/
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
------------------------------------------------------------------------
*De: *"Alon Bar-Lev" <alonbl(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *"users" <users(a)ovirt.org>
*Enviadas: *Sexta-feira, 18 De Setembro de 2015 15:48:22
*Assunto: *Re: [ovirt-users] FreeIPA
----- Original Message -----
> From: suporte(a)logicworks.pt
> To: "users" <users(a)ovirt.org>
> Sent: Friday, September 18, 2015 5:45:18 PM
> Subject: [ovirt-users] FreeIPA
>
> Hi,
>
> Is there any documentation about FreeIPA integration with
oVirt 3.5 and how
> to configure it?
>
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
--------------080802000300020409070709
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
<html>
<head>
<meta content="text/html; charset=utf-8"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
You don't have to do anything on IPA side, just create users/groups.<br>
<br>
OK, nothing in the log at INFO level, initialization succeed, so can
you please send the debug log? See here[1] how to enable.<br>
<br>
Thank you.<br>
<br>
[1]
<a class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
<br>
<div class="moz-cite-prefix">On 09/23/2015 10:48 AM,
<a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:629543964.131623.1442998098767.JavaMail.zimbra@logicworks.pt"
type="cite">
<div style="font-family: Times New Roman; font-size: 10pt; color:
#000000">
<div><br>
</div>
<div>Is there anything to do on the IPA side? Or is just add
users?<br>
</div>
<div>On the oVirt Engine, Users Tab, when click on add I can see
profile1 (profile1-aurhz) but the GO button is still in gray.<br>
</div>
<div>I think something is wrong with the autehtication on the
IPA server.<br>
</div>
<div><br>
</div>
<div>Here is the engine log :<br>
</div>
<div><br>
</div>
<div>2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal'
initialized<br>
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension
name: 'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: '<a class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a>', Author
'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension
name: 'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: '<a class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a>', Author
'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal',
Extension name: 'Internal Authn (Built-in)', Version: 'N/A',
Notes: '', License: 'ASL 2.0', Home: '<a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface Version: '0',
File: 'N/A', Initialized: 'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name:
'Internal Authz (Built-in)', Version: 'N/A', Notes: '',
License: 'ASL 2.0', Home: '<a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a>', Author
'The
oVirt Project', Build interface Version: '0', File: 'N/A',
Initialized: 'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list<br>
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager
completed successfully.<br>
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) Start initializing ResourceManager<br>
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor<br>
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)<br>
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added
to the Resource Manager<br>
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) Finished initializing ResourceManager<br>
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread
1-1) Initialization of OvfDataUpdater completed successfully.<br>
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load
balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load
balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check<br>
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check<br>
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing
MacPoolManagerRanges<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties
utilities<br>
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager<br>
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing.
Available MACs in pool: 251<br>
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery
skipped<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat<br>
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized<br>
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc<br>
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc<br>
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not
exist in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in
string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call
Stack: null, Custom Event ID: -1, Message: Host
node3.acloud.pt does not enforce SELinux.<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is
running with disabled SELinux.<br>
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
53441a68<br>
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68<br>
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host:
node3.acloud.pt<br>
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command:
HandleVdsVersionCommand internal: true. Entities affected :
ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br>
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
cf31644<br>
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: cf31644<br>
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command:
SetStoragePoolStatusCommand internal: true. Entities affected
: ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool<br>
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to
Unknown, reason : null<br>
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to
Unknown, reason : null<br>
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
205b10f8, Call Stack: null, Custom Event ID: -1, Message:
Invalid status on Data Center Default. Setting status to Non
Responsive.<br>
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
767b5004<br>
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004<br>
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM,
storage pool Default<br>
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs
proxy from vds: 192.168.6.201<br>
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
null, Call Stack: null, Custom Event ID: -1, Message: Storage
Pool Manager runs on Host node3.acloud.pt (Address:
192.168.6.201).<br>
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId =
00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =
false), log id: 6735b7ad<br>
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage pool
00000002-0002-0002-0002-000000000238<br>
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad<br>
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no
tasks on Storage Pool Default<br>
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
663177d4<br>
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 663177d4<br>
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
4db78ebd<br>
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd<br>
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
3beec320<br>
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 3beec320<br>
<br>
</div>
<div><br>
</div>
<div>Thanks<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Ondra Machacek" <a
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"><omachace@redhat.com></a><br>
<b>Para: </b><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>, <a
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
7:40:12<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
Just for clarification - ovirt-engine-extension-aaa-ldap-setup
is available from oVirt 3.6<br>
<br>
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.<br>
<br>
<div class="moz-cite-prefix">On 09/22/2015 09:55 PM, Ravi Nori
wrote:<br>
</div>
<blockquote cite="mid:5601B215.8020704@redhat.com">
<div class="moz-cite-prefix">Once you have installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run ovirt-engine-extension-aaa-ldap-setup and
follow the steps to set up ldap.<br>
<br>
Once that is done you can login to webadmin and add
users/groups from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size: 10pt;
color: #000000">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class="western" style="margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre>
<pre class="western" style="margin-bottom:
0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = <em>ipa_admin_password</em>
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Alon Bar-Lev" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"
target="_blank">&lt;alonbl(a)redhat.com&gt;</a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a><br>
<b>Cc: </b>"users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank">&lt;users(a)ovirt.org&gt;</a><br>
<b>Enviadas: </b>Sexta-feira, 18 De Setembro de 2015
15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a><br>
> To: "users" <a moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank">&lt;users(a)ovirt.org&gt;</a><br>
> Sent: Friday, September 18, 2015 5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation about FreeIPA
integration with oVirt 3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/AAA"
target="_blank">http://www.ovirt.org/Features/AAA</a>&...
[2] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank">https://gerrit.ovirt.org/gitweb?p=ovirt-engi...
</div>
<div><br>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org"
target="_blank">Users(a)ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users"
target="_blank">http://lists.ovirt.org/mailman/listinfo/user...
</pre>
</blockquote>
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org"
target="_blank">Users(a)ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users"
target="_blank">http://lists.ovirt.org/mailman/listinfo/user...
</pre>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</body>
</html>
--------------080802000300020409070709--
4:58 p.m.
------=_Part_149199_1360765842.1443016712319
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
well, when I run
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=30000
--controller=localhost:8706 --user=admin@internal --commands="if (outcome != success)
of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"
get this error: Duplicate argument '--command'/'--commands'.
can't see why
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 12:50:46
Assunto: Re: [ovirt-users] FreeIPA
You don't have to do anything on IPA side, just create users/groups.
OK, nothing in the log at INFO level, initialization succeed, so can you please send the
debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but
the GO button is still in gray.
I think something is wrong with the autehtication on the IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License:
'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt
Project', Build interface Version: '0', File: 'N/A', Initialized:
'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0',
Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build
interface Version: '0', File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager completed successfully.
2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource
Manager
2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service
thread 1-1) Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string
table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string
table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in
string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string
table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist
in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string
table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist
in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID:
-1, Message: Host node3.acloud.pt does not enforce SELinux.
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68
2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand
internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type:
StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null,
Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non
Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 767b5004
2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt,
spmStatus SPM, storage pool Default
2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null,
Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address:
192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand(
storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log
id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on
storage pool 00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand,
return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand,
return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 3beec320
Thanks
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt , users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12
Assunto: Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
<blockquote>
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap.
Once that is done you can login to webadmin and add users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
<blockquote>
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
ovirt-engine-extension-aaa-ldap
openldap-clients /etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password pool.default.serverset.single.server =
${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
----- Mensagem original -----
De: "Alon Bar-Lev" <alonbl(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: "users" <users(a)ovirt.org>
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22
Assunto: Re: [ovirt-users] FreeIPA
----- Original Message -----
From: suporte(a)logicworks.pt
To: "users" <users(a)ovirt.org>
Sent: Friday, September 18, 2015 5:45:18 PM
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how
to configure it?
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
</blockquote>
</blockquote>
------=_Part_149199_1360765842.1443016712319
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<html><body><div style=3D"font-family: Times New Roman; font-size:
10pt; co=
lor: #000000"><div>well, when I run<br></div><div>#
/usr/share/ovirt-engine=
-jboss-as/bin/jboss-cli.sh --connect --timeout=3D30000 --controller=3Dlocal=
host:8706 --user=3Dadmin@internal --commands=3D"if (outcome !=3D success) o=
f /subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensions.aaa.ldap:read-at=
tribute(name=3Dlevel),/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensi=
ons.aaa.ldap:add,end-if,/subsystem=3Dlogging/logger=3Dorg.ovirt.engineexten=
sions.aaa.ldap:write-attribute(name=3Dlevel,value=3DALL)"</div><div><br></d=
iv><div>get this error: Duplicate argument
'--command'/'--commands'.<br></d=
iv><div><br></div><div>can't see
why<br></div><div><br></div><hr id=3D"zwch=
r"><div
style=3D"color:#000;font-weight:normal;font-style:normal;text-decor=
ation:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;" data-mce=
-style=3D"color: #000; font-weight: normal; font-style: normal; text-decora=
tion: none; font-family: Helvetica,Arial,sans-serif; font-size:
12pt;"><b>D=
e: </b>"Ondra Machacek"
&lt;omachace(a)redhat.com&gt;<br><b>Para: </b>suporte=
@logicworks.pt<br><b>Cc: </b>users(a)ovirt.org<br><b>Enviadas:
</b>Quarta-fei=
ra, 23 De Setembro de 2015 12:50:46<br><b>Assunto: </b>Re: [ovirt-users]
Fr=
eeIPA<br><div><br></div>You don't have to do anything on IPA
side, just cre=
ate users/groups.<br> <br> OK, nothing in the log at INFO level, initializa=
tion succeed, so can you please send the debug log? See here[1] how to enab=
le.<br> <br> Thank you.<br> <br> [1] <a
class=3D"moz-txt-link-freetext" hre=
f=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-...
t;a=3Dblob;f=3DREADME;hb=3DHEAD#l389" target=3D"_blank"
data-mce-href=3D"ht=
tps://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Db=
lob;f=3DREADME;hb=3DHEAD#l389">https://gerrit.ovirt.org/gitweb?p=...
gine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3DHEAD#l389</a><br>
<br>=
<div class=3D"moz-cite-prefix">On 09/23/2015 10:48 AM, <a
class=3D"moz-txt-=
link-abbreviated" href=3D"mailto:suporte@logicworks.pt"
target=3D"_blank" d=
ata-mce-href=3D"mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wro=
te:<br></div><blockquote
cite=3D"mid:629543964.131623.1442998098767.JavaMai=
l.zimbra(a)logicworks.pt"><div style=3D"font-family: Times New Roman;
font-si=
ze: 10pt; color:
#000000" data-mce-style=3D"font-family: Times New Roman; font-size:=
10pt; color: #000000;"><div><br></div><div>Is there
anything to do on the =
IPA side? Or is just add users?<br></div><div>On the oVirt Engine, Users
Ta=
b, when click on add I can see profile1 (profile1-aurhz) but the GO button =
is still in gray.<br></div><div>I think something is wrong with the
autehti=
cation on the IPA
server.<br></div><div><br></div><div>Here is the
engine l=
og :<br></div><div><br></div><div>2015-09-23
09:37:57,927 INFO [org.o=
virt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2)=
Extension 'builtin-authn-internal' initialized<br> 2015-09-23
09:37:57,927=
INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC s=
ervice thread 1-2) Initializing extension 'internal'<br> 2015-09-23
09:37:5=
7,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (=
MSC service thread 1-2) Extension 'internal' initialized<br> 2015-09-23
09:=
37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManage=
r] (MSC service thread 1-2) Start of enabled extensions list<br> 2015-09-23=
09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsMa=
nager] (MSC service thread 1-2) Instance name: 'profile1-authn', Extension =
name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Di=
splay name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0=
', Home: '<a class=3D"moz-txt-link-freetext"
href=3D"http://www.ovirt.org" =
target=3D"_blank"
data-mce-href=3D"http://www.ovirt.org">http://www.ovirt.o=
rg</a>', Author 'The oVirt Project', Build interface Version:
'0', Fi=
le: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized=
: 'true'<br> 2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.exte=
nsions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'prof=
ile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Versi=
on: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.=
el7', License: 'ASL 2.0', Home: '<a
class=3D"moz-txt-link-freetext" href=3D=
"http://www.ovirt.org" target=3D"_blank"
data-mce-href=3D"http://www.ovirt.=
org">http://www.ovirt.org</a>', Author 'The oVirt Project',
Build interface=
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.p=
roperties', Initialized: 'true'<br> 2015-09-23 09:37:57,929
INFO [org=
.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-=
2) Instance name: 'builtin-authn-internal', Extension name: 'Internal Authn=
(Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0',
Home: '<a clas=
s=3D"moz-txt-link-freetext" href=3D"http://www.ovirt.org"
target=3D"_blank"=
data-mce-href=3D"http://www.ovirt.org">http://www.ovirt.org</a>',
Author '=
The oVirt Project', Build interface Version: '0', File:
'N/A', Initia=
lized: 'true'<br> 2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core=
.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: =
'internal', Extension name: 'Internal Authz (Built-in)', Version:
'N/A', No=
tes: '', License: 'ASL 2.0', Home: '<a
class=3D"moz-txt-link-freetext" href=
=3D"http://www.ovirt.org" target=3D"_blank"
data-mce-href=3D"http://www.ovi=
rt.org">http://www.ovirt.org</a>', Author 'The oVirt Project',
Build interf=
ace Version: '0', File: 'N/A', Initialized:
'true'<br> 2015-09-23 09:=
37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManage=
r] (MSC service thread 1-2) End of enabled extensions list<br> 2015-09-23 0=
9:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (=
MSC service thread 1-1) Initialization of AsyncTaskManager completed succes=
sfully.<br> 2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbr=
oker.ResourceManager] (MSC service thread 1-1) Start initializing ResourceM=
anager<br> 2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbro=
ker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor<br>=
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsMan=
ager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)<=
br> 2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.Res=
ourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7=
e0f6 was added to the Resource Manager<br> 2015-09-23 09:37:58,429 INFO&nbs=
p; [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-=
1) Finished initializing ResourceManager<br> 2015-09-23 09:37:58,430 INFO&n=
bsp; [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) In=
itialization of OvfDataUpdater completed successfully.<br> 2015-09-23 09:37=
:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager]=
(MSC service thread 1-1) Start scheduling to enable vds load balancer<br> =
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.Sc=
hedulingManager] (MSC service thread 1-1) Finished scheduling to enable vds=
load balancer<br> 2015-09-23 09:37:58,432 INFO [org.ovirt.engine.cor=
e.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start HA Reser=
vation check<br> 2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.=
bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished HA Rese=
rvation check<br> 2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core=
.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Start=
initializing MacPoolManagerRanges<br> 2015-09-23 09:37:58,444 INFO [=
org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service th=
read 1-1) Init VM custom properties utilities<br> 2015-09-23 09:37:58,444 I=
NFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC=
service thread 1-1) Init device custom properties utilities<br> 2015-09-23=
09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingMa=
nager] (MSC service thread 1-1) Initializing Scheduling manager<br> 2015-09=
-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManag=
erRanges] (org.ovirt.thread.pool-8-thread-1) Finished initializing. Availab=
le MACs in pool: 251<br> 2015-09-23 09:37:58,499 INFO [org.ovirt.engi=
ne.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) External=
scheduler disabled, discovery skipped<br> 2015-09-23 09:37:58,500 INFO&nbs=
p; [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service th=
read 1-1) Initialized Scheduling manager<br> 2015-09-23 09:37:58,500 INFO&n=
bsp; [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) =
Initializing DWH Heart Beat<br> 2015-09-23 09:37:58,502 INFO [org.ovi=
rt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Bea=
t initialized<br> 2015-09-23 09:38:02,159 INFO [org.ovirt.engine.core=
.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Wor=
ker-5) START, GetHardwareInfoVDSCommand(HostName =3D node3.acloud.pt, HostI=
d =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=3DHost[node3.acloud.pt,0ffd=
e0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc<br> 2015-09-23 09:38:0=
2,167 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfo=
VDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCom=
mand, log id: 66c9effc<br> 2015-09-23 09:38:02,173 INFO [org.ovirt.en=
gine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSch=
eduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table<br> 201=
5-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditlo=
ghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType:=
VDS_HIGH_NETWORK_USE not exist in string table<br> 2015-09-23 09:38:02,174=
INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDi=
rector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_=
VM not exist in string table<br> 2015-09-23 09:38:02,175 INFO [org.ov=
irt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQua=
rtzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exis=
t in string table<br> 2015-09-23 09:38:02,175 INFO [org.ovirt.engine.=
core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSchedule=
r_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not e=
xist in string table<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engi=
ne.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSched=
uler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string tab=
le<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbrok=
er.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Aud=
itLogType: USER_ADDED_DISK_PROFILE not exist in string table<br> 2015-09-23=
09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandli=
ng.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_F=
AILED_TO_ADD_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02=
,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditL=
ogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DI=
SK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO =
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (De=
faultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PRO=
FILE not exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.=
ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQ=
uartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist =
in string table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.co=
re.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_=
Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in str=
ing table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal=
.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker=
-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string table<br> 2015=
-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditlog=
handling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: =
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br> 2015-09-23 09:=
38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.A=
uditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOV=
ED_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO&n=
bsp; [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]=
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_=
PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 INFO [o=
rg.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Defau=
ltQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exis=
t in string table<br> 2015-09-23 09:38:02,179 INFO [org.ovirt.engine.=
core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSchedule=
r_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in st=
ring table<br> 2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.da=
l.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worke=
r-5) Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: =
Host node3.acloud.pt does not enforce SELinux.<br> 2015-09-23 09:38:02,479 =
WARN [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzSched=
uler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.<br> 2=
015-09-23 09:38:02,623 INFO [org.ovirt.engine.core.vdsbroker.gluster.=
GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) START, Glus=
terServersListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-=
c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68<br> 2015-09-23 09:38:02,708 =
INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCo=
mmand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSComma=
nd, return: [192.168.6.201:CONNECTED], log id: 53441a68<br> 2015-09-23 09:3=
8:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQu=
artzScheduler_Worker-5) Initializing Host: node3.acloud.pt<br> 2015-09-23 0=
9:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand] =
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVers=
ionCommand internal: true. Entities affected : ID: 0ffde0bc-c610-43ee=
-8ded-e8d2beb7e0f6 Type: VDS<br> 2015-09-23 09:38:03,562 INFO [org.ov=
irt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQua=
rtzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =3D nod=
e3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf3=
1644<br> 2015-09-23 09:38:03,583 INFO [org.ovirt.engine.core.vdsbroke=
r.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) F=
INISH, GlusterVolumesListVDSCommand, return: {}, log id: cf31644<br> 2015-0=
9-23 09:38:08,514 INFO [org.ovirt.engine.core.bll.storage.SetStorageP=
oolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8] Running com=
mand: SetStoragePoolStatusCommand internal: true. Entities affected : =
ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool<br> 2015-09-23 =
09:38:08,533 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoo=
lDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 0=
0000002-0002-0002-0002-000000000238 - Updating Storage Domain 7f099189-6afa=
-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null<br> 20=
15-09-23 09:38:08,540 INFO [org.ovirt.engine.core.vdsbroker.storage.S=
toragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Stora=
ge Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 5e80=
c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : nu=
ll<br> 2015-09-23 09:38:08,714 WARN [org.ovirt.engine.core.dal.dbbrok=
er.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [2=
05b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Event ID: -1, M=
essage: Invalid status on Data Center Default. Setting status to Non Respon=
sive.<br> 2015-09-23 09:38:08,758 INFO [org.ovirt.engine.core.vdsbrok=
er.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20)=
START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =
=3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004<br> 2015-09-23 =
09:38:08,788 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVol=
umesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolum=
esListVDSCommand, return: {}, log id: 767b5004<br> 2015-09-23 09:38:08,928 =
INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (Defaul=
tQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acl=
oud.pt, spmStatus SPM, storage pool Default<br> 2015-09-23 09:38:08,949 INF=
O [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQu=
artzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.=
6.201<br> 2015-09-23 09:38:08,999 INFO [org.ovirt.engine.core.dal.dbb=
roker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18)=
[205b10f8] Correlation ID: null, Call Stack: null, Custom Event ID: -1, Me=
ssage: Storage Pool Manager runs on Host node3.acloud.pt (Address: 192.168.=
6.201).<br> 2015-09-23 09:38:09,051 INFO [org.ovirt.engine.core.vdsbr=
oker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-threa=
d-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePoolId =3D 000=
00002-0002-0002-0002-000000000238, ignoreFailoverLimit =3D false), log id: =
6735b7ad<br> 2015-09-23 09:38:09,157 INFO [org.ovirt.engine.core.vdsb=
roker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thre=
ad-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on storage pool 00=
000002-0002-0002-0002-000000000238<br> 2015-09-23 09:38:09,180 INFO [=
org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (or=
g.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTasksInfoVDSCom=
mand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2b=
eb7e0f6), log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO [org.ovir=
t.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.=
thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand, r=
eturn: [], log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO [org.ovi=
rt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt=
.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand, =
return: [], log id: 6735b7ad<br> 2015-09-23 09:38:09,217 INFO [org.ov=
irt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.pool-8-thread=
-16) [205b10f8] Discovered no tasks on Storage Pool Default<br> 2015-09-23 =
09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVol=
umesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, GlusterVolume=
sListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee=
-8ded-e8d2beb7e0f6), log id: 663177d4<br> 2015-09-23 09:38:13,964 INFO =
; [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (D=
efaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, retu=
rn: {}, log id: 663177d4<br> 2015-09-23 09:38:19,184 INFO [org.ovirt.=
engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzS=
cheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =3D node3.=
acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78e=
bd<br> 2015-09-23 09:38:19,232 INFO [org.ovirt.engine.core.vdsbroker.=
gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) FI=
NISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd<br> 2015-0=
9-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.gluster.Glust=
erVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) START, GlusterV=
olumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610=
-43ee-8ded-e8d2beb7e0f6), log id: 3beec320<br> 2015-09-23 09:38:24,410 INFO=
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSComman=
d] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand,=
return: {}, log id: 3beec320<br>
<br></div><div><br></div><div>Thanks<br><=
/div><div><br></div><hr id=3D"zwchr"><div
style=3D"color:#000;font-weight:n=
ormal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sa=
ns-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-weight: norma=
l; font-style: normal; text-decoration: none; font-family: Helvetica,Arial,=
sans-serif; font-size: 12pt;"><b>De: </b>"Ondra Machacek"
<a class=3D"moz-t=
xt-link-rfc2396E" href=3D"mailto:omachace@redhat.com"
target=3D"_blank" dat=
a-mce-href=3D"mailto:omachace@redhat.com"><omachace@redhat.com></a><b=
r> <b>Para: </b><a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:suport=
e(a)logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto:suporte@logicwor=
ks.pt">suporte(a)logicworks.pt</a>, <a
class=3D"moz-txt-link-abbreviated" hre=
f=3D"mailto:users@ovirt.org" target=3D"_blank"
data-mce-href=3D"mailto:user=
s@ovirt.org">users(a)ovirt.org</a><br> <b>Enviadas:
</b>Quarta-feira, 23 De S=
etembro de 2015 7:40:12<br> <b>Assunto: </b>Re: [ovirt-users]
FreeIPA<br><d=
iv><br></div>Just for clarification -
ovirt-engine-extension-aaa-ldap-setup=
is available from oVirt 3.6<br> <br> Can you send engine.log, hard to say =
what's wrong from configuration, it looks good.<br> <br><div
class=3D"moz-c=
ite-prefix">On 09/22/2015 09:55 PM, Ravi Nori
wrote:<br></div><blockquote c=
ite=3D"mid:5601B215.8020704@redhat.com"><div
class=3D"moz-cite-prefix">Once=
you have installed ovirt-engine-extension-aaa-ldap and ovirt-engine-extens=
ion-aaa-ldap-setup<br> <br> You can run ovirt-engine-extension-aaa-ldap-set=
up and follow the steps to set up ldap.<br> <br> Once that is done you can =
login to webadmin and add users/groups from ipa<br> <br> On 09/22/2015 11:5=
7 AM, <a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:suporte@logicwor=
ks.pt" target=3D"_blank"
data-mce-href=3D"mailto:suporte@logicworks.pt">sup=
orte(a)logicworks.pt</a> wrote:<br></div><blockquote
cite=3D"mid:1706731369.9=
1118.1442937460886.JavaMail.zimbra(a)logicworks.pt"><div
style=3D"font-family=
: Times New Roman; font-size: 10pt;
color: #000000" data-mce-style=3D"font-family: Times New Ro=
man; font-size: 10pt; color: #000000;"><div>Here is what I'm trying to
do:<=
br></div><div><br> Ovirt engine :
engine.domain.tld<br></div><div>Freeipa 4=
.1.0 : ipa.domain.tld<br></div><div><br></div><div>I
have installed on the =
engine:<pre class=3D"western" style=3D"margin-bottom: 0.5cm;"
data-mce-styl=
e=3D"margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre><pre class=3D"western" style=3D"margin-bottom: 0.5cm;"
data-mce-style=
=3D"margin-bottom: 0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include =3D <openldap.properties>
#include =3D <389ds.properties>
#include =3D <rhds.properties>
include =3D <ipa.properties>
#include =3D <iplanet.properties>
#include =3D <rfc2307.properties>
#include =3D <rfc2307-openldap.properties>
#
# Server
#
vars.server =3D ipa.domain.tld
#
# Search user and its password.
#
vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld
vars.password =3D <em>ipa_admin_password</em>
pool.default.serverset.single.server =3D ${global:vars.server}
pool.default.auth.simple.bindDN =3D ${global:vars.user}
pool.default.auth.simple.password =3D ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS =3D true
#pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve=
r}.jks
#pool.default.ssl.truststore.password =3D changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre><br></div><div><br></div><hr
id=3D"zwchr"><div style=3D"color:#000;fo=
nt-weight:normal;font-style:normal;text-decoration:none;font-family:Helveti=
ca,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-we=
ight: normal; font-style: normal; text-decoration: none; font-family: Helve=
tica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Alon
Bar-Lev" <a class=
=3D"moz-txt-link-rfc2396E" href=3D"mailto:alonbl@redhat.com"
target=3D"_bla=
nk"
data-mce-href=3D"mailto:alonbl@redhat.com"><alonbl@redhat.com></a=
<br> <b>Para: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"mailto:sup=
orte(a)logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto:suporte@logic=
works.pt">suporte(a)logicworks.pt</a><br> <b>Cc:
</b>"users" <a class=3D"moz-=
txt-link-rfc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_blank" data-m=
ce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><br>
<b>Envia=
das: </b>Sexta-feira, 18 De Setembro de 2015 15:48:22<br> <b>Assunto:
</b>R=
e: [ovirt-users]
FreeIPA<br><div><br></div><br><div><br></div>-----
Origina=
l Message -----<br> > From: <a
class=3D"moz-txt-link-abbreviated" href=
=3D"mailto:suporte@logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto=
:suporte@logicworks.pt">suporte@logicworks.pt</a><br> > To:
"users" <a c=
lass=3D"moz-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_b=
lank"
data-mce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><=
br> > Sent: Friday, September 18, 2015 5:45:18 PM<br> > Subject:
[ovi=
rt-users] FreeIPA<br> > <br> > Hi,<br> > <br>
> Is there any do=
cumentation about FreeIPA integration with oVirt 3.5 and how<br> > to co=
nfigure it?<br> >
<br><div><br></div>Hi,<br><div><br></div>Please
find d=
ocumentation at [1][2].<br><div><br></div>Regards,<br> Alon
Bar-Lev.<br><di=
v><br></div>[1] <a class=3D"moz-txt-link-freetext"
href=3D"http://www.ovirt=
.org/Features/AAA" target=3D"_blank"
data-mce-href=3D"http://www.ovirt.org/=
Features/AAA">http://www.ovirt.org/Features/AAA</a><br> [2] <a
class=3D"moz=
-txt-link-freetext" href=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engin=
e-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aa=
a-ldap-1.0" target=3D"_blank"
data-mce-href=3D"https://gerrit.ovirt.org/git=
web?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-=
engine-extension-aaa-ldap-1.0">https://gerrit.ovirt.org/gitweb?p=...
gine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension=
-aaa-ldap-1.0</a><br></div><div><br></div></div><br><fieldset
class=3D"mime=
AttachmentHeader"></fieldset><br><pre>_____________________________________=
__________
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank"
data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext"
href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank"
data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/use...
</pre></blockquote><br> <br><fieldset
class=3D"mimeAttachmentHeader"></fiel=
dset><br><pre>_______________________________________________
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank"
data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext"
href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank"
data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/use...
</pre></blockquote><br></div><div><br></div></div></blockquote><br></div><d=
iv><br></div></div></body></html>
------=_Part_149199_1360765842.1443016712319--
5:02 p.m.
This is a multi-part message in MIME format.
--------------050406020703050707050606
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Try this[1] easier approach.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 03:58 PM, suporte(a)logicworks.pt wrote:
well, when I run
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect
--timeout=30000 --controller=localhost:8706 --user=admin@internal
--commands="if (outcome != success) of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"
get this error: Duplicate argument '--command'/'--commands'.
can't see why
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 12:50:46
*Assunto: *Re: [ovirt-users] FreeIPA
You don't have to do anything on IPA side, just create users/groups.
OK, nothing in the log at INFO level, initialization succeed, so can
you please send the debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see
profile1 (profile1-aurhz) but the GO button is still in gray.
I think something is wrong with the autehtication on the IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension
name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2',
Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0',
Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension
name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2',
Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0',
Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal',
Extension name: 'Internal Authn (Built-in)', Version: 'N/A',
Notes: '', License: 'ASL 2.0', Home: 'http://www.ovirt.org',
Author 'The oVirt Project', Build interface Version: '0', File:
'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name:
'Internal Authz (Built-in)', Version: 'N/A', Notes: '',
License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project', Build interface Version: '0', File: 'N/A',
Initialized:
'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC service
thread 1-1) Initialization of AsyncTaskManager completed successfully.
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread
1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread
1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to
the Resource Manager
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread
1-1) Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing
MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC
service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC
service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing.
Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread
1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread
1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not
exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call
Stack: null, Custom Event ID: -1, Message: Host node3.acloud.pt
does not enforce SELinux.
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running
with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED],
log id: 53441a68
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command:
HandleVdsVersionCommand internal: true. Entities affected : ID:
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command:
SetStoragePoolStatusCommand internal: true. Entities affected :
ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to
Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to
Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
205b10f8, Call Stack: null, Custom Event ID: -1, Message: Invalid
status on Data Center Default. Setting status to Non Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM, storage
pool Default
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy
from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
null, Call Stack: null, Custom Event ID: -1, Message: Storage Pool
Manager runs on Host node3.acloud.pt (Address: 192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId =
00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =
false), log id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage pool
00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks
on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 3beec320
Thanks
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt, users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 7:40:12
*Assunto: *Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is
available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow
the steps to set up ldap.
Once that is done you can login to webadmin and add
users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
/ovirt-engine-extension-aaa-ldap/
/openldap-clients/
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password =/ipa_admin_password/
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file =
${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
------------------------------------------------------------------------
*De: *"Alon Bar-Lev" <alonbl(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *"users" <users(a)ovirt.org>
*Enviadas: *Sexta-feira, 18 De Setembro de 2015 15:48:22
*Assunto: *Re: [ovirt-users] FreeIPA
----- Original Message -----
> From: suporte(a)logicworks.pt
> To: "users" <users(a)ovirt.org>
> Sent: Friday, September 18, 2015 5:45:18 PM
> Subject: [ovirt-users] FreeIPA
>
> Hi,
>
> Is there any documentation about FreeIPA integration
with oVirt 3.5 and how
> to configure it?
>
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
--------------050406020703050707050606
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
<html>
<head>
<meta content="text/html; charset=utf-8"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Try this[1] easier approach.<br>
<br>
[1]
<a class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
<br>
<div class="moz-cite-prefix">On 09/23/2015 03:58 PM,
<a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:1838149591.149200.1443016712320.JavaMail.zimbra@logicworks.pt"
type="cite">
<div style="font-family: Times New Roman; font-size: 10pt; color:
#000000">
<div>well, when I run<br>
</div>
<div># /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh
--connect --timeout=30000 --controller=localhost:8706
--user=admin@internal --commands="if (outcome != success) of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"</div>
<div><br>
</div>
<div>get this error: Duplicate argument
'--command'/'--commands'.<br>
</div>
<div><br>
</div>
<div>can't see why<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal; font-style:
normal; text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Ondra
Machacek" <a class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"><omachace@redhat.com></a><br>
<b>Para: </b><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b><a class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
12:50:46<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
You don't have to do anything on IPA side, just create
users/groups.<br>
<br>
OK, nothing in the log at INFO level, initialization succeed,
so can you please send the debug log? See here[1] how to
enable.<br>
<br>
Thank you.<br>
<br>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank"
data-mce-href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extens...
<br>
<div class="moz-cite-prefix">On 09/23/2015 10:48 AM, <a
moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt" target="_blank"
data-mce-href="mailto:suporte@logicworks.pt"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:629543964.131623.1442998098767.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size: 10pt;
color: #000000" data-mce-style="font-family: Times New
Roman; font-size: 10pt; color: #000000;">
<div><br>
</div>
<div>Is there anything to do on the IPA side? Or is just
add users?<br>
</div>
<div>On the oVirt Engine, Users Tab, when click on add I
can see profile1 (profile1-aurhz) but the GO button is
still in gray.<br>
</div>
<div>I think something is wrong with the autehtication on
the IPA server.<br>
</div>
<div><br>
</div>
<div>Here is the engine log :<br>
</div>
<div><br>
</div>
<div>2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension
'builtin-authn-internal' initialized<br>
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Initializing extension
'internal'<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension 'internal'
initialized<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Start of enabled extensions
list<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: '<a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface Version:
'0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: '<a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface Version:
'0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'builtin-authn-internal', Extension name: 'Internal
Authn (Built-in)', Version: 'N/A', Notes: '',
License:
'ASL 2.0', Home: '<a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface Version:
'0', File: 'N/A', Initialized: 'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name: 'internal',
Extension name: 'Internal Authz (Built-in)', Version:
'N/A', Notes: '', License: 'ASL 2.0', Home:
'<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface Version:
'0', File: 'N/A', Initialized: 'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) End of enabled extensions list<br>
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager
completed successfully.<br>
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Start initializing ResourceManager<br>
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC
service thread 1-1) Entered VdsManager constructor<br>
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC
service thread 1-1) Initialize vdsBroker
(192.168.6.201,54,321)<br>
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) VDS
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the
Resource Manager<br>
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Finished initializing
ResourceManager<br>
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service
thread 1-1) Initialization of OvfDataUpdater completed
successfully.<br>
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start scheduling to enable vds
load balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished scheduling to enable
vds load balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start HA Reservation check<br>
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished HA Reservation check<br>
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing
MacPoolManagerRanges<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties
utilities<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties
utilities<br>
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initializing Scheduling manager<br>
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished
initializing. Available MACs in pool: 251<br>
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) External scheduler disabled,
discovery skipped<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initialized Scheduling manager<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC
service thread 1-1) Initializing DWH Heart Beat<br>
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC
service thread 1-1) DWH Heart Beat initialized<br>
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc<br>
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc<br>
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
UNASSIGNED not exist in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in
string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null,
Call Stack: null, Custom Event ID: -1, Message: Host
node3.acloud.pt does not enforce SELinux.<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt
is running with disabled SELinux.<br>
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
53441a68<br>
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68<br>
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host:
node3.acloud.pt<br>
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running
command: HandleVdsVersionCommand internal: true.
Entities affected : ID:
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br>
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
cf31644<br>
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
cf31644<br>
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running
command: SetStoragePoolStatusCommand internal: true.
Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type: StoragePool<br>
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage
Pool 00000002-0002-0002-0002-000000000238 - Updating
Storage Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5
status from Active to Unknown, reason : null<br>
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage
Pool 00000002-0002-0002-0002-000000000238 - Updating
Storage Domain 5e80c937-6996-43df-9db7-a3511347d735
status from Active to Unknown, reason : null<br>
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Correlation ID: 205b10f8, Call Stack: null, Custom Event
ID: -1, Message: Invalid status on Data Center Default.
Setting status to Non Responsive.<br>
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
767b5004<br>
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
767b5004<br>
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt, spmStatus
SPM, storage pool Default<br>
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize
Irs proxy from vds: 192.168.6.201<br>
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Correlation ID: null, Call Stack: null, Custom Event ID:
-1, Message: Storage Pool Manager runs on Host
node3.acloud.pt (Address: 192.168.6.201).<br>
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId =
00000002-0002-0002-0002-000000000238,
ignoreFailoverLimit = false), log id: 6735b7ad<br>
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage pool
00000002-0002-0002-0002-000000000238<br>
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [], log id:
2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [], log id:
6735b7ad<br>
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
Discovered no tasks on Storage Pool Default<br>
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
663177d4<br>
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
663177d4<br>
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
4db78ebd<br>
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
4db78ebd<br>
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
3beec320<br>
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
3beec320<br>
<br>
</div>
<div><br>
</div>
<div>Thanks<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal;
font-style: normal; text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Ondra
Machacek" <a moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com" target="_blank"
data-mce-href="mailto:omachace@redhat.com"><omachace@redhat.com></a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt" target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>,
<a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org" target="_blank"
data-mce-href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
7:40:12<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
Just for clarification -
ovirt-engine-extension-aaa-ldap-setup is available from
oVirt 3.6<br>
<br>
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.<br>
<br>
<div class="moz-cite-prefix">On 09/22/2015 09:55 PM,
Ravi Nori wrote:<br>
</div>
<blockquote cite="mid:5601B215.8020704@redhat.com">
<div class="moz-cite-prefix">Once you have installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run ovirt-engine-extension-aaa-ldap-setup
and follow the steps to set up ldap.<br>
<br>
Once that is done you can login to webadmin and add
users/groups from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size:
10pt; color: #000000" data-mce-style="font-family:
Times New Roman; font-size: 10pt; color: #000000;">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class="western" style="margin-bottom:
0.5cm;" data-mce-style="margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre>
<pre class="western" style="margin-bottom:
0.5cm;" data-mce-style="margin-bottom:
0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = <em>ipa_admin_password</em>
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight:
normal; font-style: normal; text-decoration:
none; font-family: Helvetica,Arial,sans-serif;
font-size: 12pt;"><b>De: </b>"Alon
Bar-Lev" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"
target="_blank"
data-mce-href="mailto:alonbl@redhat.com"><a
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"><alonbl@redhat.com></a></a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b>"users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank"
data-mce-href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
<b>Enviadas: </b>Sexta-feira, 18 De Setembro de
2015 15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
> To: "users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank"
data-mce-href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
> Sent: Friday, September 18, 2015 5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation about FreeIPA
integration with oVirt 3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/AAA"
target="_blank"
data-mce-href="http://www.ovirt.org/Features/AAA">http://www...
[2] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank"
data-mce-href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extens...
</div>
<div><br>
</div>
</div>
<br>
<fieldset
class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org" target="_blank"
data-mce-href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank"
data-mce-href="http://lists.ovirt.org/mailman/listinfo/users"&g...
</pre>
</blockquote>
<br>
<br>
<fieldset
class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org" target="_blank"
data-mce-href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank"
data-mce-href="http://lists.ovirt.org/mailman/listinfo/users"&g...
</pre>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</body>
</html>
--------------050406020703050707050606--
6:30 p.m.
------=_Part_154094_1342082269.1443022209425
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
I can ping ipa server from engine, the log:
2015-09-23 16:24:50,504 WARN [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1) [ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot
initialize LDAP framework, deferring initialization. Error: An error occurred while
attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known
2015-09-23 16:24:50,504 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known')
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) open Entry
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) runSequence Entry name='simple-open-pools'
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Running sequence simple-open-pools/010/pool-create create authz pool
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-BEGIN
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) authz_enable = 1
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_credentialsChange = false
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_resucrsiveGroupResolution = false
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) maxFilterSize = 50
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) sensitiveKeys = , password, passwordNew
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrGroupMemberDN = member
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrMemberOf = memberOf
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDN = defaultNamingContext
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDNIndex = 0
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsGroupRecord = ipaUniqueID, cn, description
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid, displayName, department,
givenName, sn, title, mail, krbpasswordexpiration
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsUserName = uid
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_bindFormat = dn
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterGroupObject = (objectClass=ipausergroup)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterUserObject = (objectClass=person)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_groupLogic = member
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_principalPostFetch = ipa-post-principal-fetch
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) stop = false
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-END
2015-09-23 16:24:50,517 INFO [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool
'authz'
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createPool Entry name='authz'
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createConnectionPool Entry
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionOptions
2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) LDAPConnectionOptions: LDAPConnectionOptions(autoReconnect=true,
bindWithDNRequiresPassword=true, followReferrals=false, useKeepAlive=true, useLinger=true,
lingerTimeoutSeconds=5, useReuseAddress=true, useSchema=false, usePooledSchema=false,
pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false, useTCPNoDelay=true,
captureConnectStackTrace=false, connectTimeoutMillis=5000, responseTimeoutMillis=60000,
abandonOnTimeout=true, maxMessageSize=20971520, receiveBufferSize=0, sendBufferSize=0,
allowConcurrentSocketFactoryUse=true,
sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier')
2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating SocketFactory
2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating resolver
2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service
thread 1-1) Open: Context: {java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Resolver: Resolver(env='{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}',
supportIPv6='false', cacheTTL='10000')
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating ServerSet
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt :389)
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating BindRequest
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Entry type='simple', user=''
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Return
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) BindRequest:
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionPool
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Sequence simple-open-pools create authz pool failed due to exception: An error
occurred while attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt
2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Exception during sequence: LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt ')
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,531 WARN [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot
initialize LDAP framework, deferring initialization. Error: An error occurred while
attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt
2015-09-23 16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt ')
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,541 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized:
'true'
2015-09-23 16:24:50,542 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized:
'true'
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 15:02:54
Assunto: Re: [ovirt-users] FreeIPA
Try this[1] easier approach.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 03:58 PM, suporte(a)logicworks.pt wrote:
well, when I run
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=30000
--controller=localhost:8706 --user=admin@internal --commands="if (outcome != success)
of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"
get this error: Duplicate argument '--command'/'--commands'.
can't see why
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 12:50:46
Assunto: Re: [ovirt-users] FreeIPA
You don't have to do anything on IPA side, just create users/groups.
OK, nothing in the log at INFO level, initialization succeed, so can you please send the
debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
<blockquote>
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but
the GO button is still in gray.
I think something is wrong with the autehtication on the IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License:
'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt
Project', Build interface Version: '0', File: 'N/A', Initialized:
'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0',
Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build
interface Version: '0', File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager completed successfully.
2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource
Manager
2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service
thread 1-1) Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string
table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string
table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in
string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string
table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist
in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string
table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist
in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID:
-1, Message: Host node3.acloud.pt does not enforce SELinux.
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68
2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand
internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type:
StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null,
Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non
Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 767b5004
2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt,
spmStatus SPM, storage pool Default
2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null,
Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address:
192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand(
storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log
id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on
storage pool 00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand,
return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand,
return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 3beec320
Thanks
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt , users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12
Assunto: Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
<blockquote>
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap.
Once that is done you can login to webadmin and add users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
<blockquote>
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
ovirt-engine-extension-aaa-ldap
openldap-clients /etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password pool.default.serverset.single.server =
${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
----- Mensagem original -----
De: "Alon Bar-Lev" <alonbl(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: "users" <users(a)ovirt.org>
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22
Assunto: Re: [ovirt-users] FreeIPA
----- Original Message -----
From: suporte(a)logicworks.pt
To: "users" <users(a)ovirt.org>
Sent: Friday, September 18, 2015 5:45:18 PM
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how
to configure it?
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
</blockquote>
</blockquote>
</blockquote>
------=_Part_154094_1342082269.1443022209425
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<html><body><div style=3D"font-family: Times New Roman; font-size:
10pt; co=
lor: #000000"><div>I can ping ipa server from engine, the
log:<br></div><di=
v><br></div><div>2015-09-23 16:24:50,504 WARN
[org.ovirt.engineextens=
ions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) [ovirt-engine-extens=
ion-aaa-ldap.authn::profile1-authn] Cannot initialize LDAP framework, defer=
ring initialization. Error: An error occurred while attempting to resolve a=
ddress 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt=
: Name or service not known<br>2015-09-23 16:24:50,504 DEBUG [org.ovirt.en=
gineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) Ignoring E=
xception: LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An=
error occurred while attempting to resolve address 'ipa.acloud.pt ': =
java.net.UnknownHostException: ipa.acloud.pt : Name or service not known')=
<br> at
com.unboundid.ldap.sdk.LD=
APConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7]=
<br> at
com.unboundid.ldap.sdk.LD=
APConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7]=
<br> at
com.unboundid.ldap.sdk.LD=
APConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2=
.3.7]<br> at
com.unboundid.ldap.s=
dk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldaps=
dk.jar:2.3.7]<br>
at com.unboundi=
d.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.ja=
r:2.3.7]<br>
at com.unboundid.lda=
p.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [un=
boundid-ldapsdk.jar:2.3.7]<br>
at=
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.=
java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br> &=
nbsp; at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPC=
onnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br> =
at
org.ovirt.engineextensions.aaa.ldap.Framework.c=
reateConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.ja=
r:]<br> at
org.ovirt.engineextens=
ions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extens=
ion-aaa-ldap.jar:]<br>
at org.ovi=
rt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ov=
irt-engine-extension-aaa-ldap.jar:]<br> =
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java=
:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br> &nb=
sp; at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensur=
eFramework(AuthnExtension.java:49) [ovirt-engine-extension-aaa-ldap.jar:]<b=
r> at
org.ovirt.engineextensions.=
aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130) [ovirt-engine-exten=
sion-aaa-ldap.jar:]<br>
at org.ov=
irt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)=
[ovirt-engine-extension-aaa-ldap.jar:]<br> &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.=
java:749) [unboundid-ldapsdk.jar:2.3.7]<br>2015-09-23 16:24:50,514 DEBUG [o=
rg.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) open=
Entry<br>2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.lda=
p.Framework] (MSC service thread 1-1) runSequence Entry name=3D'simple-open=
-pools'<br>2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ld=
ap.Framework] (MSC service thread 1-1) Running sequence simple-open-pools/0=
10/pool-create create authz pool<br>2015-09-23 16:24:50,515 TRACE [org.ovir=
t.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-BEGIN<=
br>2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Frame=
work] (MSC service thread 1-1) authz_enable =3D 1<br>2015-09-23 16:24:50,51=
5 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread=
1-1) capability_credentialsChange =3D false<br>2015-09-23 16:24:50,515 TRA=
CE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1)=
capability_resucrsiveGroupResolution =3D false<br>2015-09-23 16:24:50,515 =
TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1=
-1) maxFilterSize =3D 50<br>2015-09-23 16:24:50,515 TRACE [org.ovirt.engine=
extensions.aaa.ldap.Framework] (MSC service thread 1-1) sensitiveKeys =3D ,=
password, passwordNew<br>2015-09-23 16:24:50,515 TRACE [org.ovirt.engineex=
tensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrGroupMembe=
rDN =3D member<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions=
.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrMemberOf =3D membe=
rOf<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.F=
ramework] (MSC service thread 1-1) simple_attrsBaseDN =3D defaultNamingCont=
ext<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.F=
ramework] (MSC service thread 1-1) simple_attrsBaseDNIndex =3D 0<br>2015-09=
-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC=
service thread 1-1) simple_attrsGroupRecord =3D ipaUniqueID, cn, descripti=
on<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Fr=
amework] (MSC service thread 1-1) simple_attrsPrincipalRecord =3D ipaUnique=
ID, uid, displayName, department, givenName, sn, title, mail, krbpasswordex=
piration<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.l=
dap.Framework] (MSC service thread 1-1) simple_attrsUserName =3D uid<br>201=
5-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] =
(MSC service thread 1-1) simple_bindFormat =3D dn<br>2015-09-23 16:24:50,51=
7 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread=
1-1) simple_filterGroupObject =3D (objectClass=3Dipausergroup)(ipaUniqueID=
=3D*)<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap=
.Framework] (MSC service thread 1-1) simple_filterUserObject =3D (objectCla=
ss=3Dperson)(ipaUniqueID=3D*)<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.e=
ngineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_groupLo=
gic =3D member<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions=
.aaa.ldap.Framework] (MSC service thread 1-1) simple_principalPostFetch =3D=
ipa-post-principal-fetch<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.engin=
eextensions.aaa.ldap.Framework] (MSC service thread 1-1) stop =3D false<br>=
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framewor=
k] (MSC service thread 1-1) VARS-END<br>2015-09-23 16:24:50,517 INFO =
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) [o=
virt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool 'a=
uthz'<br>2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap=
.Framework] (MSC service thread 1-1) createPool Entry
name=3D'authz'<br>201=
5-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] =
(MSC service thread 1-1) createConnectionPool Entry<br>2015-09-23 16:24:50,=
518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thre=
ad 1-1) Creating LDAPConnectionOptions<br>2015-09-23 16:24:50,519 DEBUG [or=
g.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) LDAPC=
onnectionOptions: LDAPConnectionOptions(autoReconnect=3Dtrue, bindWithDNReq=
uiresPassword=3Dtrue, followReferrals=3Dfalse, useKeepAlive=3Dtrue, useLing=
er=3Dtrue, lingerTimeoutSeconds=3D5, useReuseAddress=3Dtrue, useSchema=3Dfa=
lse, usePooledSchema=3Dfalse, pooledSchemaTimeoutMillis=3D3600000, useSynch=
ronousMode=3Dfalse, useTCPNoDelay=3Dtrue, captureConnectStackTrace=3Dfalse,=
connectTimeoutMillis=3D5000, responseTimeoutMillis=3D60000, abandonOnTimeo=
ut=3Dtrue, maxMessageSize=3D20971520, receiveBufferSize=3D0, sendBufferSize=
=3D0, allowConcurrentSocketFactoryUse=3Dtrue, sslSocketVerifierClass=3D'com=
.unboundid.util.ssl.TrustAllSSLSocketVerifier')<br>2015-09-23 16:24:50,519 =
DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1=
-1) Creating SocketFactory<br>2015-09-23 16:24:50,520 DEBUG [org.ovirt.engi=
neextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating resolver=
<br>2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Reso=
lver] (MSC service thread 1-1) Open: Context: {java.naming.provider.url=3Dd=
ns://, java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFactory}<br=
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framewo=
rk] (MSC service thread 1-1) Resolver:
Resolver(env=3D'{java.naming.provide=
r.url=3Ddns://, java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFa=
ctory}', supportIPv6=3D'false',
cacheTTL=3D'10000')<br>2015-09-23 16:24:50,=
521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thre=
ad 1-1) SocketFactory: org.ovirt.engineextensions.aaa.ldap.ResolverSocketFa=
ctory@6b281cdb<br>2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions=
.aaa.ldap.Framework] (MSC service thread 1-1) Creating ServerSet<br>2015-09=
-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC=
service thread 1-1) ServerSet: SingleServerSet(server=3Dipa.acloud.pt :389=
)<br>2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Fra=
mework] (MSC service thread 1-1) Creating BindRequest<br>2015-09-23 16:24:5=
0,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service th=
read 1-1) createBindRequest Entry type=3D'simple',
user=3D''<br>2015-09-23 =
16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC ser=
vice thread 1-1) createBindRequest Return SimpleBindRequest(dn=3D'uid=3Dsea=
rch,cn=3Dusers,cn=3Daccounts,dc=3Dacloud,dc=3Dpt')<br>2015-09-23 16:24:50,5=
22 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service threa=
d 1-1) BindRequest: SimpleBindRequest(dn=3D'uid=3Dsearch,cn=3Dusers,cn=3Dac=
counts,dc=3Dacloud,dc=3Dpt')<br>2015-09-23 16:24:50,522 DEBUG [org.ovirt.en=
gineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPCo=
nnectionPool<br>2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.a=
aa.ldap.Framework] (MSC service thread 1-1) Sequence simple-open-pools crea=
te authz pool failed due to exception: An error occurred while attempting t=
o resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ip=
a.acloud.pt<br>2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aa=
a.ldap.Framework] (MSC service thread 1-1) Exception during sequence: LDAPE=
xception(resultCode=3D91 (connect error), errorMessage=3D'An error occurred=
while attempting to resolve address 'ipa.acloud.pt ': java.net.Unkno=
wnHostException: ipa.acloud.pt
')<br> &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:7=
54)
[unboundid-ldapsdk.jar:2.3.7]<br> &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:7=
09)
[unboundid-ldapsdk.jar:2.3.7]<br> &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.j=
ava:533)
[unboundid-ldapsdk.jar:2.3.7]<br> &nb=
sp; at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleSer=
verSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br> &=
nbsp; at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerS=
et.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br> =
at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(=
LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br> =
at
com.unboundid.ldap.sdk.LDAPConnectionPool=
.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7]<b=
r> at
com.unboundid.ldap.sdk.LDAP=
ConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk=
.jar:2.3.7]<br>
at org.ovirt.engi=
neextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [o=
virt-engine-extension-aaa-ldap.jar:]<br>  =
; at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewo=
rk.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br> &n=
bsp; at org.ovirt.engineextensions.aaa.ldap.Framework.run=
Sequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:]<br>&nb=
sp; at
org.ovirt.engineextensions.aaa.l=
dap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar=
:]<br> at
org.ovirt.engineextensi=
ons.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152) [ovirt=
-engine-extension-aaa-ldap.jar:]<br> &nb=
sp; at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExten=
sion.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br> =
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtens=
ion.invoke(AuthzExtension.java:433) [ovirt-engine-extension-aaa-ldap.jar:]<=
br> at
com.unboundid.ldap.sdk.LDA=
PConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7]<=
br>2015-09-23 16:24:50,531 WARN [org.ovirt.engineextensions.aaa.ldap.=
AuthzExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.a=
uthz::profile1-authz] Cannot initialize LDAP framework, deferring initializ=
ation. Error: An error occurred while attempting to resolve address 'ipa.ac=
loud.pt ': java.net.UnknownHostException:
ipa.acloud.pt<br>2015-09-23=
16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (M=
SC service thread 1-1) Ignoring Exception: LDAPException(resultCode=3D91 (c=
onnect error), errorMessage=3D'An error occurred while attempting to resolv=
e address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud=
.pt ')<br>
at com.unboundid.ldap.=
sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:=
2.3.7]<br> at
com.unboundid.ldap.=
sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:=
2.3.7]<br> at
com.unboundid.ldap.=
sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk=
.jar:2.3.7]<br>
at com.unboundid.=
ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid=
-ldapsdk.jar:2.3.7]<br>
at com.un=
boundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldap=
sdk.jar:2.3.7]<br>
at com.unbound=
id.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:108=
8)
[unboundid-ldapsdk.jar:2.3.7]<br> &nb=
sp; at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectio=
nPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br> &=
nbsp; at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>=
(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br> =
at
org.ovirt.engineextensions.aaa.ldap.Frame=
work.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-l=
dap.jar:]<br>
at org.ovirt.engine=
extensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-=
extension-aaa-ldap.jar:]<br>
at o=
rg.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:136=
2)
[ovirt-engine-extension-aaa-ldap.jar:]<br> =
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framewor=
k.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br> &nb=
sp; at org.ovirt.engineextensions.aaa.ldap.AuthzExtension=
.ensureFramework(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.=
jar:]<br> at
org.ovirt.engineexte=
nsions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503) [ovirt-engin=
e-extension-aaa-ldap.jar:]<br>
at=
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.j=
ava:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br> =
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPCon=
nection.java:749) [unboundid-ldapsdk.jar:2.3.7]<br>2015-09-23 16:24:50,541 =
INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC se=
rvice thread 1-1) Instance name: 'profile1-authn', Extension name: 'ovirt-e=
ngine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name:
ov=
irt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home:
'http=
://www.ovirt.org', Author 'The oVirt Project', Build interface Version:
'0'=
, File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', I=
nitialized: 'true'<br>2015-09-23 16:24:50,542 INFO
[org.ovirt.engine.=
core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance na=
me: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.auth=
z', Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap=
-1.0.2-1.el7', License: 'ASL 2.0', Home: 'http://www.ovirt.org',
Author 'Th=
e oVirt Project', Build interface Version: '0', File:
'/etc/ovirt-eng=
ine/extensions.d/profile1-authz.properties', Initialized:
'true'<br><br></d=
iv><div><br></div><hr id=3D"zwchr"><div
style=3D"color:#000;font-weight:nor=
mal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans=
-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-weight: normal;=
font-style: normal; text-decoration: none; font-family: Helvetica,Arial,sa=
ns-serif; font-size: 12pt;"><b>De: </b>"Ondra Machacek"
<omachace@redhat=
.com><br><b>Para: </b>suporte(a)logicworks.pt<br><b>Cc:
</b>users(a)ovirt.or=
g<br><b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
15:02:54<br><b>A=
ssunto: </b>Re: [ovirt-users] FreeIPA<br><div><br></div>Try
this[1] easier =
approach.<br> <br> [1] <a class=3D"moz-txt-link-freetext"
href=3D"https://g=
errit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=
=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2d7898f292#l389" target=3D"_bl=
ank" data-mce-href=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-exte=
nsion-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2=
d7898f292#l389">https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-...
aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2d7898f=
292#l389</a><br> <br><div class=3D"moz-cite-prefix">On
09/23/2015 03:58 PM,=
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:suporte@logicworks.pt=
" target=3D"_blank"
data-mce-href=3D"mailto:suporte@logicworks.pt">suporte@=
logicworks.pt</a> wrote:<br></div><blockquote
cite=3D"mid:1838149591.149200=
.1443016712320.JavaMail.zimbra(a)logicworks.pt"><div style=3D"font-family:
Ti=
mes New Roman; font-size: 10pt; color:
#000000" data-mce-style=3D"font-family: Times New Roman; font-size:=
10pt; color: #000000;"><div>well, when I
run<br></div><div># /usr/share/ov=
irt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=3D30000 --controll=
er=3Dlocalhost:8706 --user=3Dadmin@internal --commands=3D"if (outcome !=3D =
success) of /subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensions.aaa.ld=
ap:read-attribute(name=3Dlevel),/subsystem=3Dlogging/logger=3Dorg.ovirt.eng=
ineextensions.aaa.ldap:add,end-if,/subsystem=3Dlogging/logger=3Dorg.ovirt.e=
ngineextensions.aaa.ldap:write-attribute(name=3Dlevel,value=3DALL)"</div><d=
iv><br></div><div>get this error: Duplicate argument
'--command'/'--command=
s'.<br></div><div><br></div><div>can't see
why<br></div><div><br></div><hr =
id=3D"zwchr"><div
style=3D"color:#000;font-weight:normal;font-style:normal;=
text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;=
" data-mce-style=3D"color: #000; font-weight: normal; font-style: normal; t=
ext-decoration: none; font-family: Helvetica,Arial,sans-serif; font-size: 1=
2pt;"><b>De: </b>"Ondra Machacek" <a
class=3D"moz-txt-link-rfc2396E" href=
=3D"mailto:omachace@redhat.com" target=3D"_blank"
data-mce-href=3D"mailto:o=
machace@redhat.com">&lt;omachace(a)redhat.com&gt;</a><br>
<b>Para: </b><a cla=
ss=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt"
targe=
t=3D"_blank"
data-mce-href=3D"mailto:suporte@logicworks.pt">suporte@logicwo=
rks.pt</a><br> <b>Cc: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"mai=
lto:users@ovirt.org" target=3D"_blank"
data-mce-href=3D"mailto:users@ovirt.=
org">users(a)ovirt.org</a><br> <b>Enviadas:
</b>Quarta-feira, 23 De Setembro =
de 2015 12:50:46<br> <b>Assunto: </b>Re: [ovirt-users]
FreeIPA<br><div><br>=
</div>You don't have to do anything on IPA side, just create users/groups.<=
br> <br> OK, nothing in the log at INFO level, initialization succeed, so c=
an you please send the debug log? See here[1] how to enable.<br> <br> Thank=
you.<br> <br> [1] <a class=3D"moz-txt-link-freetext"
href=3D"https://gerri=
t.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREA=
DME;hb=3DHEAD#l389" target=3D"_blank"
data-mce-href=3D"https://gerrit.ovirt=
.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=
=3DHEAD#l389">https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aa=
a-ldap.git;a=3Dblob;f=3DREADME;hb=3DHEAD#l389</a><br> <br><div
class=3D"moz=
-cite-prefix">On 09/23/2015 10:48 AM, <a
class=3D"moz-txt-link-abbreviated"=
href=3D"mailto:suporte@logicworks.pt" target=3D"_blank"
data-mce-href=3D"m=
ailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br></div><blo=
ckquote cite=3D"mid:629543964.131623.1442998098767.JavaMail.zimbra@logicwor=
ks.pt"><div style=3D"font-family: Times New Roman; font-size: 10pt;
color: #000000" data-mce-style=3D"font-family: Times New Roma=
n; font-size: 10pt; color:
#000000;"><div><br></div><div>Is there anything =
to do on the IPA side? Or is just add users?<br></div><div>On the oVirt
Eng=
ine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but t=
he GO button is still in gray.<br></div><div>I think something is wrong
wit=
h the autehtication on the IPA
server.<br></div><div><br></div><div>Here is=
the engine log
:<br></div><div><br></div><div>2015-09-23 09:37:57,927
INFO=
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC servic=
e thread 1-2) Extension 'builtin-authn-internal' initialized<br>
2015-09-23=
09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsMa=
nager] (MSC service thread 1-2) Initializing extension 'internal'<br>
2015-=
09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.Extensi=
onsManager] (MSC service thread 1-2) Extension 'internal' initialized<br>
2=
015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.Ext=
ensionsManager] (MSC service thread 1-2) Start of enabled extensions list<b=
r> 2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr=
.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authn=
', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2=
', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', Lice=
nse: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext"
href=3D"http://ww=
w.ovirt.org" target=3D"_blank"
data-mce-href=3D"http://www.ovirt.org">http:=
//www.ovirt.org</a>', Author 'The oVirt Project', Build interface
Version: =
'0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties'=
, Initialized: 'true'<br> 2015-09-23 09:37:57,929 INFO
[org.ovirt.eng=
ine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instanc=
e name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.=
authz', Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-=
ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: '<a
class=3D"moz-txt-link-free=
text" href=3D"http://www.ovirt.org" target=3D"_blank"
data-mce-href=3D"http=
://www.ovirt.org">http://www.ovirt.org</a>', Author 'The oVirt
Project', Bu=
ild interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/pro=
file1-authz.properties', Initialized: 'true'<br> 2015-09-23 09:37:57,929
IN=
FO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC serv=
ice thread 1-2) Instance name: 'builtin-authn-internal', Extension name: 'I=
nternal Authn (Built-in)', Version: 'N/A', Notes: '', License:
'ASL 2.0', H=
ome: '<a class=3D"moz-txt-link-freetext"
href=3D"http://www.ovirt.org" targ=
et=3D"_blank"
data-mce-href=3D"http://www.ovirt.org">http://www.ovirt.org</=
a>', Author 'The oVirt Project', Build interface Version:
'0', File: =
'N/A', Initialized: 'true'<br> 2015-09-23 09:37:57,930
INFO [org.ovir=
t.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) In=
stance name: 'internal', Extension name: 'Internal Authz (Built-in)',
Versi=
on: 'N/A', Notes: '', License: 'ASL 2.0', Home: '<a
class=3D"moz-txt-link-f=
reetext" href=3D"http://www.ovirt.org" target=3D"_blank"
data-mce-href=3D"h=
ttp://www.ovirt.org">http://www.ovirt.org</a>', Author 'The oVirt
Project',=
Build interface Version: '0', File: 'N/A', Initialized:
'true'<br> 2=
015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.Ext=
ensionsManager] (MSC service thread 1-2) End of enabled extensions list<br>=
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncT=
askManager] (MSC service thread 1-1) Initialization of AsyncTaskManager com=
pleted successfully.<br> 2015-09-23 09:37:58,105 INFO [org.ovirt.engi=
ne.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Start initializ=
ing ResourceManager<br> 2015-09-23 09:37:58,217 INFO [org.ovirt.engin=
e.core.vdsbroker.VdsManager] (MSC service thread 1-1) Entered VdsManager co=
nstructor<br> 2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vds=
broker.VdsManager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6=
.201,54,321)<br> 2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.=
vdsbroker.ResourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-=
8ded-e8d2beb7e0f6 was added to the Resource Manager<br> 2015-09-23 09:37:58=
,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC serv=
ice thread 1-1) Finished initializing ResourceManager<br> 2015-09-23 09:37:=
58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service t=
hread 1-1) Initialization of OvfDataUpdater completed successfully.<br> 201=
5-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.Sched=
ulingManager] (MSC service thread 1-1) Start scheduling to enable vds load =
balancer<br> 2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.=
scheduling.SchedulingManager] (MSC service thread 1-1) Finished scheduling =
to enable vds load balancer<br> 2015-09-23 09:37:58,432 INFO [org.ovi=
rt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) S=
tart HA Reservation check<br> 2015-09-23 09:37:58,434 INFO [org.ovirt=
.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Fin=
ished HA Reservation check<br> 2015-09-23 09:37:58,440 INFO [org.ovir=
t.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-th=
read-1) Start initializing MacPoolManagerRanges<br> 2015-09-23 09:37:58,444=
INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (M=
SC service thread 1-1) Init VM custom properties utilities<br> 2015-09-23 0=
9:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStar=
tupBean] (MSC service thread 1-1) Init device custom properties utilities<b=
r> 2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling=
.SchedulingManager] (MSC service thread 1-1) Initializing Scheduling manage=
r<br> 2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network=
.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Finished initiali=
zing. Available MACs in pool: 251<br> 2015-09-23 09:37:58,499 INFO [o=
rg.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread =
1-1) External scheduler disabled, discovery skipped<br> 2015-09-23 09:37:58=
,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (M=
SC service thread 1-1) Initialized Scheduling manager<br> 2015-09-23 09:37:=
58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service=
thread 1-1) Initializing DWH Heart Beat<br> 2015-09-23 09:37:58,502 INFO&n=
bsp; [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) =
DWH Heart Beat initialized<br> 2015-09-23 09:38:02,159 INFO [org.ovir=
t.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartz=
Scheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =3D node3.acl=
oud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=3DHost[node3.a=
cloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc<br> 2015-=
09-23 09:38:02,167 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.Ge=
tHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardw=
areInfoVDSCommand, log id: 66c9effc<br> 2015-09-23 09:38:02,173 INFO =
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Def=
aultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string =
table<br> 2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbb=
roker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) =
AuditLogType: VDS_HIGH_NETWORK_USE not exist in string table<br> 2015-09-23=
09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandli=
ng.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_F=
AILED_REMOVE_VM not exist in string table<br> 2015-09-23 09:38:02,175 INFO&=
nbsp; [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector=
] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SC=
RIPT not exist in string table<br> 2015-09-23 09:38:02,175 INFO [org.=
ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQ=
uartzScheduler_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_=
NETWORK not exist in string table<br> 2015-09-23 09:38:02,176 INFO [o=
rg.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Defau=
ltQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist =
in string table<br> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.co=
re.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_=
Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in string table<b=
r> 2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.a=
uditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLo=
gType: USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table<br> 2015-0=
9-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditlogha=
ndling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: US=
ER_REMOVED_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,1=
77 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLog=
Director] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_RE=
MOVE_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INF=
O [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirect=
or] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFI=
LE not exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.ov=
irt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQua=
rtzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not=
exist in string table<br> 2015-09-23 09:38:02,177 INFO [org.ovirt.en=
gine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSch=
eduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string t=
able<br> 2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbr=
oker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) A=
uditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br> 2=
015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.audit=
loghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogTyp=
e: USER_REMOVED_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:=
02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.Audi=
tLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_T=
O_REMOVE_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 =
INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDir=
ector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PRO=
FILE not exist in string table<br> 2015-09-23 09:38:02,179 INFO [org.=
ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQ=
uartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE no=
t exist in string table<br> 2015-09-23 09:38:02,479 WARN [org.ovirt.e=
ngine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSc=
heduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID: =
-1, Message: Host node3.acloud.pt does not enforce SELinux.<br> 2015-09-23 =
09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager] (Defau=
ltQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled S=
ELinux.<br> 2015-09-23 09:38:02,623 INFO [org.ovirt.engine.core.vdsbr=
oker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5=
) START, GlusterServersListVDSCommand(HostName =3D node3.acloud.pt, HostId =
=3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68<br> 2015-09-23 =
09:38:02,708 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterSer=
versListVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServer=
sListVDSCommand, return: [192.168.6.201:CONNECTED], log id: 53441a68<br> 20=
15-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManage=
r] (DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt<br>=
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVer=
sionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: =
HandleVdsVersionCommand internal: true. Entities affected : ID: 0ffde=
0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br> 2015-09-23 09:38:03,562 INFO&=
nbsp; [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand=
] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(Hos=
tName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6)=
, log id: cf31644<br> 2015-09-23 09:38:03,583 INFO [org.ovirt.engine.=
core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzSchedule=
r_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: cf316=
44<br> 2015-09-23 09:38:08,514 INFO [org.ovirt.engine.core.bll.storag=
e.SetStoragePoolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8=
] Running command: SetStoragePoolStatusCommand internal: true. Entities aff=
ected : ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool<br=
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.stora=
ge.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] S=
torage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain =
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason =
: null<br> 2015-09-23 09:38:08,540 INFO [org.ovirt.engine.core.vdsbro=
ker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [20=
5b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storag=
e Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown=
, reason : null<br> 2015-09-23 09:38:08,714 WARN [org.ovirt.engine.co=
re.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_=
Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Ev=
ent ID: -1, Message: Invalid status on Data Center Default. Setting status =
to Non Responsive.<br> 2015-09-23 09:38:08,758 INFO [org.ovirt.engine=
.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzSchedul=
er_Worker-20) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud=
.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004<br>=
2015-09-23 09:38:08,788 INFO [org.ovirt.engine.core.vdsbroker.gluste=
r.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, =
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004<br> 2015-09-23 0=
9:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyD=
ata] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds=
- node3.acloud.pt, spmStatus SPM, storage pool Default<br> 2015-09-23 09:3=
8:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData=
] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from v=
ds: 192.168.6.201<br> 2015-09-23 09:38:08,999 INFO [org.ovirt.engine.=
core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSchedule=
r_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Custom Even=
t ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Addre=
ss: 192.168.6.201).<br> 2015-09-23 09:38:09,051 INFO [org.ovirt.engin=
e.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.=
pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePo=
olId =3D 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =3D fals=
e), log id: 6735b7ad<br> 2015-09-23 09:38:09,157 INFO [org.ovirt.engi=
ne.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread=
.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on sto=
rage pool 00000002-0002-0002-0002-000000000238<br> 2015-09-23 09:38:09,180 =
INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDS=
Command] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTas=
ksInfoVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43e=
e-8ded-e8d2beb7e0f6), log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO&nbs=
p; [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]=
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoV=
DSCommand, return: [], log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO&nb=
sp; [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand=
] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfo=
VDSCommand, return: [], log id: 6735b7ad<br> 2015-09-23 09:38:09,217 INFO&n=
bsp; [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.p=
ool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default<br>=
2015-09-23 09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.gluste=
r.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, G=
lusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0=
bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4<br> 2015-09-23 09:38:13,9=
64 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVD=
SCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSC=
ommand, return: {}, log id: 663177d4<br> 2015-09-23 09:38:19,184 INFO =
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (De=
faultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostNam=
e =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), lo=
g id: 4db78ebd<br> 2015-09-23 09:38:19,232 INFO [org.ovirt.engine.cor=
e.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_W=
orker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78eb=
d<br> 2015-09-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.g=
luster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) STA=
RT, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0=
ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320<br> 2015-09-23 09:38=
:24,410 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesL=
istVDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesLis=
tVDSCommand, return: {}, log id: 3beec320<br>
<br></div><div><br></div><div=
Thanks<br></div><div><br></div><hr
id=3D"zwchr"><div style=3D"color:#000;f=
ont-weight:normal;font-style:normal;text-decoration:none;font-family:Helvet=
ica,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-w=
eight: normal; font-style: normal; text-decoration: none; font-family: Helv=
etica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Ondra
Machacek" <a cl=
ass=3D"moz-txt-link-rfc2396E" href=3D"mailto:omachace@redhat.com"
target=3D=
"_blank"
data-mce-href=3D"mailto:omachace@redhat.com"><omachace@redhat.c=
om></a><br> <b>Para: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"m=
ailto:suporte@logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto:supo=
rte@logicworks.pt">suporte(a)logicworks.pt</a>, <a
class=3D"moz-txt-link-abbr=
eviated" href=3D"mailto:users@ovirt.org" target=3D"_blank"
data-mce-href=3D=
"mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-fe=
ira, 23 De Setembro de 2015 7:40:12<br> <b>Assunto: </b>Re:
[ovirt-users] F=
reeIPA<br><div><br></div>Just for clarification -
ovirt-engine-extension-aa=
a-ldap-setup is available from oVirt 3.6<br> <br> Can you send engine.log, =
hard to say what's wrong from configuration, it looks good.<br>
<br><div cl=
ass=3D"moz-cite-prefix">On 09/22/2015 09:55 PM, Ravi Nori
wrote:<br></div><=
blockquote cite=3D"mid:5601B215.8020704@redhat.com"><div
class=3D"moz-cite-=
prefix">Once you have installed ovirt-engine-extension-aaa-ldap and ovirt-e=
ngine-extension-aaa-ldap-setup<br> <br> You can run ovirt-engine-extension-=
aaa-ldap-setup and follow the steps to set up ldap.<br> <br> Once that is d=
one you can login to webadmin and add users/groups from ipa<br> <br> On 09/=
22/2015 11:57 AM, <a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:supo=
rte(a)logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto:suporte@logicw=
orks.pt">suporte(a)logicworks.pt</a>
wrote:<br></div><blockquote cite=3D"mid:=
1706731369.91118.1442937460886.JavaMail.zimbra(a)logicworks.pt"><div style=3D=
"font-family: Times New Roman; font-size:
10pt; color: #000000" data-mce-style=3D"font-family: =
Times New Roman; font-size: 10pt; color: #000000;"><div>Here is what I'm
tr=
ying to do:<br></div><div><br> Ovirt engine :
engine.domain.tld<br></div><d=
iv>Freeipa 4.1.0 :
ipa.domain.tld<br></div><div><br></div><div>I have
insta=
lled on the engine:<pre class=3D"western" style=3D"margin-bottom:
0.5cm;" d=
ata-mce-style=3D"margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap<=
/i>
</pre><pre class=3D"western" style=3D"margin-bottom: 0.5cm;"
data-mce-style=
=3D"margin-bottom: 0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include =3D <openldap.properties>
#include =3D <389ds.properties>
#include =3D <rhds.properties>
include =3D <ipa.properties>
#include =3D <iplanet.properties>
#include =3D <rfc2307.properties>
#include =3D <rfc2307-openldap.properties>
#
# Server
#
vars.server =3D ipa.domain.tld
#
# Search user and its password.
#
vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld
vars.password =3D <em>ipa_admin_password</em>
pool.default.serverset.single.server =3D ${global:vars.server}
pool.default.auth.simple.bindDN =3D ${global:vars.user}
pool.default.auth.simple.password =3D ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS =3D true
#pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve=
r}.jks
#pool.default.ssl.truststore.password =3D changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre><br></div><div><br></div><hr
id=3D"zwchr"><div style=3D"color:#000;fo=
nt-weight:normal;font-style:normal;text-decoration:none;font-family:Helveti=
ca,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-we=
ight: normal; font-style: normal; text-decoration: none; font-family: Helve=
tica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Alon
Bar-Lev" <a class=
=3D"moz-txt-link-rfc2396E" href=3D"mailto:alonbl@redhat.com"
target=3D"_bla=
nk"
data-mce-href=3D"mailto:alonbl@redhat.com"><alonbl@redhat.com></a=
<br> <b>Para: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"mailto:sup=
orte(a)logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto:suporte@logic=
works.pt">suporte(a)logicworks.pt</a><br> <b>Cc:
</b>"users" <a class=3D"moz-=
txt-link-rfc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_blank" data-m=
ce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><br>
<b>Envia=
das: </b>Sexta-feira, 18 De Setembro de 2015 15:48:22<br> <b>Assunto:
</b>R=
e: [ovirt-users]
FreeIPA<br><div><br></div><br><div><br></div>-----
Origina=
l Message -----<br> > From: <a
class=3D"moz-txt-link-abbreviated" href=
=3D"mailto:suporte@logicworks.pt" target=3D"_blank"
data-mce-href=3D"mailto=
:suporte@logicworks.pt">suporte@logicworks.pt</a><br> > To:
"users" <a c=
lass=3D"moz-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_b=
lank"
data-mce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><=
br> > Sent: Friday, September 18, 2015 5:45:18 PM<br> > Subject:
[ovi=
rt-users] FreeIPA<br> > <br> > Hi,<br> > <br>
> Is there any do=
cumentation about FreeIPA integration with oVirt 3.5 and how<br> > to co=
nfigure it?<br> >
<br><div><br></div>Hi,<br><div><br></div>Please
find d=
ocumentation at [1][2].<br><div><br></div>Regards,<br> Alon
Bar-Lev.<br><di=
v><br></div>[1] <a class=3D"moz-txt-link-freetext"
href=3D"http://www.ovirt=
.org/Features/AAA" target=3D"_blank"
data-mce-href=3D"http://www.ovirt.org/=
Features/AAA">http://www.ovirt.org/Features/AAA</a><br> [2] <a
class=3D"moz=
-txt-link-freetext" href=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engin=
e-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aa=
a-ldap-1.0" target=3D"_blank"
data-mce-href=3D"https://gerrit.ovirt.org/git=
web?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-=
engine-extension-aaa-ldap-1.0">https://gerrit.ovirt.org/gitweb?p=...
gine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension=
-aaa-ldap-1.0</a><br></div><div><br></div></div><br><fieldset
class=3D"mime=
AttachmentHeader"></fieldset><br><pre>_____________________________________=
__________
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank"
data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext"
href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank"
data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/use...
</pre></blockquote><br> <br><fieldset
class=3D"mimeAttachmentHeader"></fiel=
dset><br><pre>_______________________________________________
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank"
data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext"
href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank"
data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/use...
</pre></blockquote><br></div><div><br></div></div></blockquote><br></div><d=
iv><br></div></div></blockquote><br></div><div><br></div></div></body></htm=
l>
------=_Part_154094_1342082269.1443022209425--
6:39 p.m.
This is a multi-part message in MIME format.
--------------010405070007050402030303
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
As you can see in exception you have trailing space at the end of your
fqdn of IPA, please remove the trailing space in properties file.
it's:
'ipa.acloud.pt ' <- trailing space
and should be:
'ipa.acloud.pt'
On 09/23/2015 05:30 PM, suporte(a)logicworks.pt wrote:
I can ping ipa server from engine, the log:
2015-09-23 16:24:50,504 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service
thread 1-1) [ovirt-engine-extension-aaa-ldap.authn::profile1-authn]
Cannot initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt : Name or service not known
2015-09-23 16:24:50,504 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service
thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect
error), errorMessage='An error occurred while attempting to resolve
address 'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known')
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) open Entry
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) runSequence Entry name='simple-open-pools'
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Running sequence simple-open-pools/010/pool-create create authz pool
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) VARS-BEGIN
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) authz_enable = 1
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) capability_credentialsChange = false
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) capability_resucrsiveGroupResolution = false
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) maxFilterSize = 50
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) sensitiveKeys = , password, passwordNew
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrGroupMemberDN = member
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrMemberOf = memberOf
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrsBaseDN = defaultNamingContext
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrsBaseDNIndex = 0
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrsGroupRecord = ipaUniqueID, cn, description
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid, displayName,
department, givenName, sn, title, mail, krbpasswordexpiration
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_attrsUserName = uid
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_bindFormat = dn
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_filterGroupObject = (objectClass=ipausergroup)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_filterUserObject = (objectClass=person)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_groupLogic = member
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) simple_principalPostFetch = ipa-post-principal-fetch
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) stop = false
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) VARS-END
2015-09-23 16:24:50,517 INFO
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating
LDAP pool 'authz'
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) createPool Entry name='authz'
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) createConnectionPool Entry
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Creating LDAPConnectionOptions
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) LDAPConnectionOptions: LDAPConnectionOptions(autoReconnect=true,
bindWithDNRequiresPassword=true, followReferrals=false,
useKeepAlive=true, useLinger=true, lingerTimeoutSeconds=5,
useReuseAddress=true, useSchema=false, usePooledSchema=false,
pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false,
useTCPNoDelay=true, captureConnectStackTrace=false,
connectTimeoutMillis=5000, responseTimeoutMillis=60000,
abandonOnTimeout=true, maxMessageSize=20971520, receiveBufferSize=0,
sendBufferSize=0, allowConcurrentSocketFactoryUse=true,
sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier')
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Creating SocketFactory
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Creating resolver
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service thread
1-1) Open: Context: {java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Resolver: Resolver(env='{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}',
supportIPv6='false', cacheTTL='10000')
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Creating ServerSet
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt :389)
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Creating BindRequest
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) createBindRequest Entry type='simple', user=''
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) createBindRequest Return
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) BindRequest:
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Creating LDAPConnectionPool
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Sequence simple-open-pools create authz pool failed due to
exception: An error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt
2015-09-23 16:24:50,523 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread
1-1) Exception during sequence: LDAPException(resultCode=91 (connect
error), errorMessage='An error occurred while attempting to resolve
address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ')
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,531 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service
thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz]
Cannot initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt
2015-09-23 16:24:50,531 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service
thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect
error), errorMessage='An error occurred while attempting to resolve
address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ')
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,541 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-1) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'
2015-09-23 16:24:50,542 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service
thread 1-1) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 15:02:54
*Assunto: *Re: [ovirt-users] FreeIPA
Try this[1] easier approach.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 03:58 PM, suporte(a)logicworks.pt wrote:
well, when I run
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect
--timeout=30000 --controller=localhost:8706 --user=admin@internal
--commands="if (outcome != success) of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"
get this error: Duplicate argument '--command'/'--commands'.
can't see why
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 12:50:46
*Assunto: *Re: [ovirt-users] FreeIPA
You don't have to do anything on IPA side, just create users/groups.
OK, nothing in the log at INFO level, initialization succeed, so
can you please send the debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see
profile1 (profile1-aurhz) but the GO button is still in gray.
I think something is wrong with the autehtication on the IPA
server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension
name: 'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension
name: 'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal',
Extension name: 'Internal Authn (Built-in)', Version: 'N/A',
Notes: '', License: 'ASL 2.0', Home:
'http://www.ovirt.org',
Author 'The oVirt Project', Build interface Version: '0',
File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name:
'Internal Authz (Built-in)', Version: 'N/A', Notes: '',
License: 'ASL 2.0', Home: 'http://www.ovirt.org', Author
'The
oVirt Project', Build interface Version: '0', File: 'N/A',
Initialized: 'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager
completed successfully.
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added
to the Resource Manager
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service
thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread
1-1) Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load
balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing
MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing.
Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not
exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in
string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call
Stack: null, Custom Event ID: -1, Message: Host
node3.acloud.pt does not enforce SELinux.
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is
running with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host:
node3.acloud.pt
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command:
HandleVdsVersionCommand internal: true. Entities affected :
ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type: StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to
Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to
Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
205b10f8, Call Stack: null, Custom Event ID: -1, Message:
Invalid status on Data Center Default. Setting status to Non
Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM,
storage pool Default
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs
proxy from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID:
null, Call Stack: null, Custom Event ID: -1, Message: Storage
Pool Manager runs on Host node3.acloud.pt (Address:
192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId =
00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =
false), log id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage pool
00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no
tasks on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 3beec320
Thanks
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt, users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 7:40:12
*Assunto: *Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup
is available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
Once you have installed ovirt-engine-extension-aaa-ldap
and ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and
follow the steps to set up ldap.
Once that is done you can login to webadmin and add
users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
/ovirt-engine-extension-aaa-ldap/
/openldap-clients/
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password =/ipa_admin_password/
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file =
${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
------------------------------------------------------------------------
*De: *"Alon Bar-Lev" <alonbl(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *"users" <users(a)ovirt.org>
*Enviadas: *Sexta-feira, 18 De Setembro de 2015 15:48:22
*Assunto: *Re: [ovirt-users] FreeIPA
----- Original Message -----
> From: suporte(a)logicworks.pt
> To: "users" <users(a)ovirt.org>
> Sent: Friday, September 18, 2015 5:45:18 PM
> Subject: [ovirt-users] FreeIPA
>
> Hi,
>
> Is there any documentation about FreeIPA integration
with oVirt 3.5 and how
> to configure it?
>
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
--------------010405070007050402030303
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
<html>
<head>
<meta content="text/html; charset=utf-8"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
As you can see in exception you have trailing space at the end of
your fqdn of IPA, please remove the trailing space in properties
file.<br>
<br>
it's:<br>
<br>
'ipa.acloud.pt ' <- trailing space<br>
<br>
and should be:<br>
<br>
'ipa.acloud.pt'<br>
<br>
<div class="moz-cite-prefix">On 09/23/2015 05:30 PM,
<a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:1355950642.154095.1443022209428.JavaMail.zimbra@logicworks.pt"
type="cite">
<div style="font-family: Times New Roman; font-size: 10pt; color:
#000000">
<div>I can ping ipa server from engine, the log:<br>
</div>
<div><br>
</div>
<div>2015-09-23 16:24:50,504 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot
initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known<br>
2015-09-23 16:24:50,504 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1) Ignoring Exception:
LDAPException(resultCode=91 (connect error), errorMessage='An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known')<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]<br>
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) open Entry<br>
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) runSequence Entry name='simple-open-pools'<br>
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Running sequence simple-open-pools/010/pool-create
create authz pool<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-BEGIN<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) authz_enable = 1<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_credentialsChange = false<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_resucrsiveGroupResolution = false<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) maxFilterSize = 50<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) sensitiveKeys = , password, passwordNew<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrGroupMemberDN = member<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrMemberOf = memberOf<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDN = defaultNamingContext<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDNIndex = 0<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsGroupRecord = ipaUniqueID, cn,
description<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid,
displayName, department, givenName, sn, title, mail,
krbpasswordexpiration<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsUserName = uid<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_bindFormat = dn<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterGroupObject =
(objectClass=ipausergroup)(ipaUniqueID=*)<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterUserObject =
(objectClass=person)(ipaUniqueID=*)<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_groupLogic = member<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_principalPostFetch =
ipa-post-principal-fetch<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) stop = false<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-END<br>
2015-09-23 16:24:50,517 INFO
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz]
Creating LDAP pool 'authz'<br>
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createPool Entry name='authz'<br>
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createConnectionPool Entry<br>
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionOptions<br>
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) LDAPConnectionOptions:
LDAPConnectionOptions(autoReconnect=true,
bindWithDNRequiresPassword=true, followReferrals=false,
useKeepAlive=true, useLinger=true, lingerTimeoutSeconds=5,
useReuseAddress=true, useSchema=false, usePooledSchema=false,
pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false,
useTCPNoDelay=true, captureConnectStackTrace=false,
connectTimeoutMillis=5000, responseTimeoutMillis=60000,
abandonOnTimeout=true, maxMessageSize=20971520,
receiveBufferSize=0, sendBufferSize=0,
allowConcurrentSocketFactoryUse=true,
sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier')<br>
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating SocketFactory<br>
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating resolver<br>
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service
thread 1-1) Open: Context: {java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Resolver:
Resolver(env='{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}',
supportIPv6='false', cacheTTL='10000')<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating ServerSet<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt
:389)<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating BindRequest<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Entry type='simple',
user=''<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Return
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) BindRequest:
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionPool<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Sequence simple-open-pools create authz pool
failed due to exception: An error occurred while attempting to
resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt<br>
2015-09-23 16:24:50,523 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Exception during sequence:
LDAPException(resultCode=91 (connect error), errorMessage='An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt ')<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]<br>
2015-09-23 16:24:50,531 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot
initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt<br>
2015-09-23 16:24:50,531 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1) Ignoring Exception:
LDAPException(resultCode=91 (connect error), errorMessage='An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt ')<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]<br>
2015-09-23 16:24:50,541 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authn', Extension
name: 'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: '<a class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a>', Author
'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br>
2015-09-23 16:24:50,542 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authz', Extension
name: 'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: '<a class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a>', Author
'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal; font-style:
normal; text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Ondra
Machacek" <a class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"><omachace@redhat.com></a><br>
<b>Para: </b><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b><a class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
15:02:54<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
Try this[1] easier approach.<br>
<br>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank"
data-mce-href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extens...
<br>
<div class="moz-cite-prefix">On 09/23/2015 03:58 PM, <a
moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt" target="_blank"
data-mce-href="mailto:suporte@logicworks.pt"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:1838149591.149200.1443016712320.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size: 10pt;
color: #000000" data-mce-style="font-family: Times New
Roman; font-size: 10pt; color: #000000;">
<div>well, when I run<br>
</div>
<div># /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh
--connect --timeout=30000 --controller=localhost:8706
--user=admin@internal --commands="if (outcome !=
success) of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"</div>
<div><br>
</div>
<div>get this error: Duplicate argument
'--command'/'--commands'.<br>
</div>
<div><br>
</div>
<div>can't see why<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal;
font-style: normal; text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De:
</b>"Ondra
Machacek" <a moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com" target="_blank"
data-mce-href="mailto:omachace@redhat.com"><omachace@redhat.com></a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt" target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org" target="_blank"
data-mce-href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
12:50:46<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
You don't have to do anything on IPA side, just create
users/groups.<br>
<br>
OK, nothing in the log at INFO level, initialization
succeed, so can you please send the debug log? See
here[1] how to enable.<br>
<br>
Thank you.<br>
<br>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank"
data-mce-href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extens...
<br>
<div class="moz-cite-prefix">On 09/23/2015 10:48 AM,
<a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:629543964.131623.1442998098767.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size:
10pt; color: #000000" data-mce-style="font-family:
Times New Roman; font-size: 10pt; color: #000000;">
<div><br>
</div>
<div>Is there anything to do on the IPA side? Or is
just add users?<br>
</div>
<div>On the oVirt Engine, Users Tab, when click on
add I can see profile1 (profile1-aurhz) but the GO
button is still in gray.<br>
</div>
<div>I think something is wrong with the
autehtication on the IPA server.<br>
</div>
<div><br>
</div>
<div>Here is the engine log :<br>
</div>
<div><br>
</div>
<div>2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension
'builtin-authn-internal' initialized<br>
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Initializing extension
'internal'<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension 'internal'
initialized<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Start of enabled
extensions list<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7',
License: 'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7',
License: 'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A',
Notes: '', License: 'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized:
'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '',
License:
'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org" target="_blank"
data-mce-href="http://www.ovirt.org">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized:
'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) End of enabled extensions
list<br>
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(MSC service thread 1-1) Initialization of
AsyncTaskManager completed successfully.<br>
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) Start initializing
ResourceManager<br>
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC
service thread 1-1) Entered VdsManager constructor<br>
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC
service thread 1-1) Initialize vdsBroker
(192.168.6.201,54,321)<br>
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) VDS
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to
the Resource Manager<br>
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) Finished initializing
ResourceManager<br>
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC
service thread 1-1) Initialization of
OvfDataUpdater completed successfully.<br>
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start scheduling to
enable vds load balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished scheduling to
enable vds load balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start HA Reservation
check<br>
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished HA Reservation
check<br>
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start
initializing MacPoolManagerRanges<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties
utilities<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom
properties utilities<br>
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initializing Scheduling
manager<br>
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished
initializing. Available MACs in pool: 251<br>
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) External scheduler
disabled, discovery skipped<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initialized Scheduling
manager<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC
service thread 1-1) Initializing DWH Heart Beat<br>
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC
service thread 1-1) DWH Heart Beat initialized<br>
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc<br>
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc<br>
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
UNASSIGNED not exist in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string
table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not
exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in
string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in
string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in
string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string
table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in
string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table<br>
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in
string table<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID:
null, Call Stack: null, Custom Event ID: -1,
Message: Host node3.acloud.pt does not enforce
SELinux.<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host
node3.acloud.pt is running with disabled SELinux.<br>
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
53441a68<br>
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68<br>
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing
Host: node3.acloud.pt<br>
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6]
Running command: HandleVdsVersionCommand internal:
true. Entities affected : ID:
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br>
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
cf31644<br>
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
cf31644<br>
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type:
StoragePool<br>
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Storage Pool 00000002-0002-0002-0002-000000000238
- Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from
Active to Unknown, reason : null<br>
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Storage Pool 00000002-0002-0002-0002-000000000238
- Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from
Active to Unknown, reason : null<br>
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Correlation ID: 205b10f8, Call Stack: null, Custom
Event ID: -1, Message: Invalid status on Data
Center Default. Setting status to Non Responsive.<br>
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
767b5004<br>
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
767b5004<br>
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt,
spmStatus SPM, storage pool Default<br>
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Initialize Irs proxy from vds: 192.168.6.201<br>
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Correlation ID: null, Call Stack: null, Custom
Event ID: -1, Message: Storage Pool Manager runs
on Host node3.acloud.pt (Address: 192.168.6.201).<br>
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
START, SPMGetAllTasksInfoVDSCommand( storagePoolId
= 00000002-0002-0002-0002-000000000238,
ignoreFailoverLimit = false), log id: 6735b7ad<br>
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage
pool 00000002-0002-0002-0002-000000000238<br>
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
START, HSMGetAllTasksInfoVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
FINISH, HSMGetAllTasksInfoVDSCommand, return: [],
log id: 2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
FINISH, SPMGetAllTasksInfoVDSCommand, return: [],
log id: 6735b7ad<br>
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
Discovered no tasks on Storage Pool Default<br>
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
663177d4<br>
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
663177d4<br>
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
4db78ebd<br>
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
4db78ebd<br>
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
3beec320<br>
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
3beec320<br>
<br>
</div>
<div><br>
</div>
<div>Thanks<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight: normal;
font-style: normal; text-decoration: none;
font-family: Helvetica,Arial,sans-serif;
font-size: 12pt;"><b>De: </b>"Ondra
Machacek" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"
target="_blank"
data-mce-href="mailto:omachace@redhat.com"><a
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"><omachace@redhat.com></a></a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>,
<a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org" target="_blank"
data-mce-href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de
2015 7:40:12<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
Just for clarification -
ovirt-engine-extension-aaa-ldap-setup is available
from oVirt 3.6<br>
<br>
Can you send engine.log, hard to say what's wrong
from configuration, it looks good.<br>
<br>
<div class="moz-cite-prefix">On 09/22/2015 09:55
PM, Ravi Nori wrote:<br>
</div>
<blockquote cite="mid:5601B215.8020704@redhat.com">
<div class="moz-cite-prefix">Once you have
installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run
ovirt-engine-extension-aaa-ldap-setup and
follow the steps to set up ldap.<br>
<br>
Once that is done you can login to webadmin
and add users/groups from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman;
font-size: 10pt; color: #000000"
data-mce-style="font-family: Times New
Roman; font-size: 10pt; color: #000000;">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class="western" style="margin-bottom:
0.5cm;" data-mce-style="margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre>
<pre class="western" style="margin-bottom:
0.5cm;" data-mce-style="margin-bottom:
0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = <em>ipa_admin_password</em>
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"
data-mce-style="color: #000; font-weight:
normal; font-style: normal;
text-decoration: none; font-family:
Helvetica,Arial,sans-serif; font-size:
12pt;"><b>De: </b>"Alon
Bar-Lev" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"
target="_blank"
data-mce-href="mailto:alonbl@redhat.com"><a
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"><alonbl@redhat.com></a></a><br>
<b>Para: </b><a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b>"users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank"
data-mce-href="mailto:users@ovirt.org"><a
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a></a><br>
<b>Enviadas: </b>Sexta-feira, 18 De
Setembro de 2015 15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users]
FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"
data-mce-href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
> To: "users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank"
data-mce-href="mailto:users@ovirt.org"><a
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a></a><br>
> Sent: Friday, September 18, 2015
5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation about
FreeIPA integration with oVirt 3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/AAA"
target="_blank"
data-mce-href="http://www.ovirt.org/Features/AAA">http://www...
[2] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank"
data-mce-href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extens...
</div>
<div><br>
</div>
</div>
<br>
<fieldset
class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org" target="_blank"
data-mce-href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank"
data-mce-href="http://lists.ovirt.org/mailman/listinfo/users"&g...
</pre>
</blockquote>
<br>
<br>
<fieldset
class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org" target="_blank"
data-mce-href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank"
data-mce-href="http://lists.ovirt.org/mailman/listinfo/users"&g...
</pre>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</body>
</html>
--------------010405070007050402030303--
7:26 p.m.
------=_Part_156372_2091032049.1443025601914
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Fantastic Ondra, nice Hawk Eye
It's working.
When I enter with a user name and click on console I get:
Could not connect to the agent on the guest, it may be unresponsive or not installed.
As a result, some features may not work.
What kind of agent shoul I install on the guests?
Thaks a lot
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 16:39:05
Assunto: Re: [ovirt-users] FreeIPA
As you can see in exception you have trailing space at the end of your fqdn of IPA, please
remove the trailing space in properties file.
it's:
'ipa.acloud.pt ' <- trailing space
and should be:
'ipa.acloud.pt'
On 09/23/2015 05:30 PM, suporte(a)logicworks.pt wrote:
I can ping ipa server from engine, the log:
2015-09-23 16:24:50,504 WARN [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1) [ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot
initialize LDAP framework, deferring initialization. Error: An error occurred while
attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known
2015-09-23 16:24:50,504 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known')
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) open Entry
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) runSequence Entry name='simple-open-pools'
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Running sequence simple-open-pools/010/pool-create create authz pool
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-BEGIN
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) authz_enable = 1
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_credentialsChange = false
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_resucrsiveGroupResolution = false
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) maxFilterSize = 50
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) sensitiveKeys = , password, passwordNew
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrGroupMemberDN = member
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrMemberOf = memberOf
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDN = defaultNamingContext
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDNIndex = 0
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsGroupRecord = ipaUniqueID, cn, description
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid, displayName, department,
givenName, sn, title, mail, krbpasswordexpiration
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsUserName = uid
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_bindFormat = dn
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterGroupObject = (objectClass=ipausergroup)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterUserObject = (objectClass=person)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_groupLogic = member
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_principalPostFetch = ipa-post-principal-fetch
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) stop = false
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-END
2015-09-23 16:24:50,517 INFO [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool
'authz'
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createPool Entry name='authz'
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createConnectionPool Entry
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionOptions
2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) LDAPConnectionOptions: LDAPConnectionOptions(autoReconnect=true,
bindWithDNRequiresPassword=true, followReferrals=false, useKeepAlive=true, useLinger=true,
lingerTimeoutSeconds=5, useReuseAddress=true, useSchema=false, usePooledSchema=false,
pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false, useTCPNoDelay=true,
captureConnectStackTrace=false, connectTimeoutMillis=5000, responseTimeoutMillis=60000,
abandonOnTimeout=true, maxMessageSize=20971520, receiveBufferSize=0, sendBufferSize=0,
allowConcurrentSocketFactoryUse=true,
sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier')
2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating SocketFactory
2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating resolver
2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service
thread 1-1) Open: Context: {java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Resolver: Resolver(env='{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}',
supportIPv6='false', cacheTTL='10000')
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating ServerSet
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt :389)
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating BindRequest
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Entry type='simple', user=''
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Return
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) BindRequest:
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionPool
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Sequence simple-open-pools create authz pool failed due to exception: An error
occurred while attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt
2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Exception during sequence: LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt ')
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,531 WARN [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot
initialize LDAP framework, deferring initialization. Error: An error occurred while
attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt
2015-09-23 16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt ')
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,541 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized:
'true'
2015-09-23 16:24:50,542 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized:
'true'
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 15:02:54
Assunto: Re: [ovirt-users] FreeIPA
Try this[1] easier approach.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 03:58 PM, suporte(a)logicworks.pt wrote:
<blockquote
well, when I run
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=30000
--controller=localhost:8706 --user=admin@internal --commands="if (outcome != success)
of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"
get this error: Duplicate argument '--command'/'--commands'.
can't see why
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 12:50:46
Assunto: Re: [ovirt-users] FreeIPA
You don't have to do anything on IPA side, just create users/groups.
OK, nothing in the log at INFO level, initialization succeed, so can you please send the
debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
<blockquote
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but
the GO button is still in gray.
I think something is wrong with the autehtication on the IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes:
'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project',
Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized:
'true'
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License:
'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt
Project', Build interface Version: '0', File: 'N/A', Initialized:
'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0',
Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build
interface Version: '0', File: 'N/A', Initialized: 'true'
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager completed successfully.
2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource
Manager
2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service
thread 1-1) Initialization of OvfDataUpdater completed successfully.
2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished scheduling to enable vds load balancer
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties utilities
2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) External scheduler disabled, discovery skipped
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC
service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string
table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string
table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in
string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string
table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist
in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in
string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not
exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string
table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist
in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in
string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not
exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID:
-1, Message: Host node3.acloud.pt does not enforce SELinux.
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68
2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand
internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type:
StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null,
Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non
Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 767b5004
2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt,
spmStatus SPM, storage pool Default
2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null,
Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address:
192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand(
storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log
id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on
storage pool 00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand,
return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand,
return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log
id: 3beec320
Thanks
----- Mensagem original -----
De: "Ondra Machacek" <omachace(a)redhat.com>
Para: suporte(a)logicworks.pt , users(a)ovirt.org
Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12
Assunto: Re: [ovirt-users] FreeIPA
Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6
Can you send engine.log, hard to say what's wrong from configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
<blockquote
Once you have installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap.
Once that is done you can login to webadmin and add users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
<blockquote
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
ovirt-engine-extension-aaa-ldap
openldap-clients /etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties #include = <389ds.properties #include = <rhds.properties include =
<ipa.properties #include =
<iplanet.properties #include =
<rfc2307.properties #include =
<rfc2307-openldap.properties
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password pool.default.serverset.single.server =
${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
----- Mensagem original -----
De: "Alon Bar-Lev" <alonbl(a)redhat.com>
Para: suporte(a)logicworks.pt
Cc: "users" <users(a)ovirt.org>
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22
Assunto: Re: [ovirt-users] FreeIPA
----- Original Message -----
</blockquote
</blockquote
</blockquote
------=_Part_156372_2091032049.1443025601914
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<html><body><div style=3D"font-family: Times New Roman; font-size:
10pt; co=
lor: #000000"><div>Fantastic Ondra, nice Hawk
Eye<br></div><div><br></div><=
div>It's working.<br></div><div>When I enter with a user name and
click on =
console I get:<br></div><div>Could not connect to the agent on the
guest, i=
t may be unresponsive or not installed.<br>As a result, some features may n=
ot
work.</div><div><br></div><div><br></div><div>What
kind of agent shoul I=
install on the
guests?<br></div><div><br></div><div>Thaks a
lot<br></div><=
div><br></div><hr id=3D"zwchr"><div
style=3D"color:#000;font-weight:normal;=
font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-ser=
if;font-size:12pt;"><b>De: </b>"Ondra Machacek"
&lt;omachace(a)redhat.com&gt;=
<br><b>Para: </b>suporte(a)logicworks.pt<br><b>Cc:
</b>users(a)ovirt.org<br><b>=
Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
16:39:05<br><b>Assunto: =
</b>Re: [ovirt-users] FreeIPA<br><div><br></div =20
=20
=20
=20
As you can see in exception you have trailing space at the end of
your fqdn of IPA, please remove the trailing space in properties
file.<br <br it's:<br
<br 'ipa.acloud.pt ' <- trailing space<br <br and
should be:<br <br 'ipa.acloud.pt'<br
<br <div class=3D"moz-cite-prefix">On
09/23/2015 05:30 PM,
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:suporte@logicwor=
ks.pt" target=3D"_blank">suporte(a)logicworks.pt</a>
wrote:<br </div <blockquote
cite=3D"mid:1355950642.154095.1443022209428.JavaMail.zimbra=
@logicworks.pt" <div
style=3D"font-family: Times New Roman; font-size: 10pt; color:
#000000" <div>I can ping ipa
server from engine, the log:<br </div <div><br
</div <div>2015-09-23
16:24:50,504 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot
initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known<br
2015-09-23 16:24:50,504 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC
service thread 1-1) Ignoring Exception:
LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt : Name or service not known')<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:754)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:709)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection=
.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServer=
Set.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPCo=
nnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec=
tionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec=
tionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPoo=
l(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewor=
k.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framewo=
rk.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java=
:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramewor=
k(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnEx=
tension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnEx=
tension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:749)
[unboundid-ldapsdk.jar:2.3.7]<br
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) open Entry<br
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) runSequence Entry name=3D'simple-open-pools'<br 2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Running sequence simple-open-pools/010/pool-create
create authz pool<br 2015-09-23 16:24:50,515
TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-BEGIN<br
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) authz_enable =3D 1<br
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_credentialsChange =3D false<br 2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_resucrsiveGroupResolution =3D false<br 2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) maxFilterSize =3D 50<br
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) sensitiveKeys =3D , password, passwordNew<br 2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrGroupMemberDN =3D member<br 2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrMemberOf =3D memberOf<br
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDN =3D defaultNamingContext<br 2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDNIndex =3D 0<br
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsGroupRecord =3D ipaUniqueID, cn,
description<br 2015-09-23 16:24:50,516
TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsPrincipalRecord =3D ipaUniqueID, uid,
displayName, department, givenName, sn, title, mail,
krbpasswordexpiration<br
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsUserName =3D uid<br
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_bindFormat =3D dn<br
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterGroupObject =3D
(objectClass=3Dipausergroup)(ipaUniqueID=3D*)<br
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterUserObject =3D
(objectClass=3Dperson)(ipaUniqueID=3D*)<br
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_groupLogic =3D member<br
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_principalPostFetch =3D
ipa-post-principal-fetch<br
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) stop =3D false<br
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-END<br
2015-09-23 16:24:50,517 INFO
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz]
Creating LDAP pool 'authz'<br
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createPool Entry name=3D'authz'<br 2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createConnectionPool Entry<br
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionOptions<br
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) LDAPConnectionOptions:
LDAPConnectionOptions(autoReconnect=3Dtrue,
bindWithDNRequiresPassword=3Dtrue, followReferrals=3Dfalse,
useKeepAlive=3Dtrue, useLinger=3Dtrue, lingerTimeoutSeconds=3D5,
useReuseAddress=3Dtrue, useSchema=3Dfalse, usePooledSchema=3Dfals=
e,
pooledSchemaTimeoutMillis=3D3600000, useSynchronousMode=3Dfalse,
useTCPNoDelay=3Dtrue, captureConnectStackTrace=3Dfalse,
connectTimeoutMillis=3D5000, responseTimeoutMillis=3D60000,
abandonOnTimeout=3Dtrue, maxMessageSize=3D20971520,
receiveBufferSize=3D0, sendBufferSize=3D0,
allowConcurrentSocketFactoryUse=3Dtrue,
sslSocketVerifierClass=3D'com.unboundid.util.ssl.TrustAllSSLSocketVerifier'=
)<br 2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating SocketFactory<br
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating resolver<br
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service
thread 1-1) Open: Context: {java.naming.provider.url=3Ddns://,
java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFactory}=
<br 2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Resolver:
Resolver(env=3D'{java.naming.provider.url=3Ddns://,
java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFactory}=
',
supportIPv6=3D'false', cacheTTL=3D'10000')<br 2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cd=
b<br 2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating ServerSet<br
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) ServerSet: SingleServerSet(server=3Dipa.acloud.pt
:389)<br 2015-09-23 16:24:50,521
DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating BindRequest<br
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Entry type=3D'simple',
user=3D''<br=
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Return
SimpleBindRequest(dn=3D'uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=
=3Dacloud,dc=3Dpt')<br 2015-09-23 16:24:50,522
DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) BindRequest:
SimpleBindRequest(dn=3D'uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=
=3Dacloud,dc=3Dpt')<br 2015-09-23 16:24:50,522
DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionPool<br
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Sequence simple-open-pools create authz pool
failed due to exception: An error occurred while attempting to
resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt<br
2015-09-23 16:24:50,523 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Exception during sequence:
LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt ')<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:754)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:709)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection=
.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServer=
Set.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPCo=
nnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec=
tionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec=
tionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPoo=
l(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewor=
k.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framewo=
rk.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java=
:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramewor=
k(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzEx=
tension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzEx=
tension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:749)
[unboundid-ldapsdk.jar:2.3.7]<br
2015-09-23 16:24:50,531 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot
initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt<br 2015-09-23 16:24:50,531
DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC
service thread 1-1) Ignoring Exception:
LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An
error occurred while attempting to resolve address
'ipa.acloud.pt ': java.net.UnknownHostException:
ipa.acloud.pt ')<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:754)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:709)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection=
.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServer=
Set.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPCo=
nnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec=
tionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnec=
tionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPoo=
l(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewor=
k.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framewo=
rk.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java=
:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramewor=
k(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzEx=
tension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzEx=
tension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java=
:749)
[unboundid-ldapsdk.jar:2.3.7]<br
2015-09-23 16:24:50,541 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authn', Extension
name: 'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: '<a class=3D"moz-txt-link-freetext"
href=3D"http://ww=
w.ovirt.org" target=3D"_blank">http://www.ovirt.org</a>',
Author 'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br
2015-09-23 16:24:50,542 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authz', Extension
name: 'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL
2.0', Home: '<a class=3D"moz-txt-link-freetext"
href=3D"http://ww=
w.ovirt.org" target=3D"_blank">http://www.ovirt.org</a>',
Author 'The oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br
<br </div
<div><br </div <hr id=3D"zwchr" <div
style=3D"color:#000;font-weight:normal;font-style:normal;text-=
decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>=
De: </b>"Ondra
Machacek" <a class=3D"moz-txt-link-rfc2396E"
href=3D"mailto:omach=
ace(a)redhat.com"
target=3D"_blank">&lt;omachace(a)redhat.com&gt;</a><br <b>Para: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"mailto=
:suporte@logicworks.pt"
target=3D"_blank">suporte(a)logicworks.pt</a><br <b>Cc: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"mailto:u=
sers(a)ovirt.org" target=3D"_blank">users(a)ovirt.org</a><br <b>Enviadas: </b>Quarta-feira, 23 De
Setembro de 2015
15:02:54<br <b>Assunto:
</b>Re: [ovirt-users] FreeIPA<br
<div><br </div Try this[1] easier approach.<br <br
[1] <a class=3D"moz-txt-link-freetext" href=3D"https://gerrit.ovi=
rt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;h=
b=3Daed09b5793e0352dc20812b4746dbd2d7898f292#l389"
target=3D"_blank">https:=
//gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;=
f=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2d7898f292#l389</a><br <br
<div class=3D"moz-cite-prefix">On 09/23/2015 03:58 PM, <a class=
=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt"
target=
=3D"_blank"></a><a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:suport=
e(a)logicworks.pt" target=3D"_blank">suporte(a)logicworks.pt</a wrote:<br
</div <blockquote
cite=3D"mid:1838149591.149200.1443016712320.JavaMail.=
zimbra(a)logicworks.pt" <div
style=3D"font-family: Times New Roman; font-size: 10pt;
color: #000000" <div>well, when
I run<br </div <div>#
/usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh
--connect --timeout=3D30000 --controller=3Dlocalhost:8706
--user=3Dadmin@internal --commands=3D"if (outcome !=3D
success) of
/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensions.aaa.ldap:read-attr=
ibute(name=3Dlevel),/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextension=
s.aaa.ldap:add,end-if,/subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensi=
ons.aaa.ldap:write-attribute(name=3Dlevel,value=3DALL)"</div <div><br
</div <div>get this
error: Duplicate argument
'--command'/'--commands'.<br </div
<div><br </div <div>can't see why<br </div
<div><br </div <hr id=3D"zwchr" <div
style=3D"color:#000;font-weight:normal;font-style:normal=
;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt=
;"><b>De: </b>"Ondra
Machacek" <a class=3D"moz-txt-link-rfc2396E"
href=3D"mailto=
:omachace@redhat.com"
target=3D"_blank">&lt;omachace(a)redhat.com&gt;</a><br <b>Para: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"=
mailto:suporte@logicworks.pt"
target=3D"_blank">suporte(a)logicworks.pt</a><b=
r <b>Cc: </b><a
class=3D"moz-txt-link-abbreviated" href=3D"ma=
ilto:users@ovirt.org"
target=3D"_blank">users(a)ovirt.org</a><br <b>Enviadas: </b>Quarta-feira, 23
De Setembro de 2015
12:50:46<br <b>Assunto:
</b>Re: [ovirt-users] FreeIPA<br
<div><br </div You don't have to do anything on IPA side,
just create
users/groups.<br
<br OK, nothing in the
log at INFO level, initialization
succeed, so can you please send the debug log? See
here[1] how to enable.<br
<br Thank you.<br <br
[1] <a class=3D"moz-txt-link-freetext" href=3D"https://gerr=
it.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DRE=
ADME;hb=3DHEAD#l389"
target=3D"_blank">https://gerrit.ovirt.org/gitweb?p=3D=
ovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3DHEAD#l389</a><=
br <br
<div class=3D"moz-cite-prefix">On 09/23/2015 10:48 AM, <a c=
lass=3D"moz-txt-link-abbreviated"
href=3D"mailto:suporte@logicworks.pt" tar=
get=3D"_blank"></a><a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:sup=
orte(a)logicworks.pt" target=3D"_blank">suporte(a)logicworks.pt</a wrote:<br
</div <blockquote
cite=3D"mid:629543964.131623.1442998098767.Java=
Mail.zimbra(a)logicworks.pt" <div
style=3D"font-family: Times New Roman; font-size:
10pt; color: #000000"
<div><br </div <div>Is there anything to do on the
IPA side? Or is
just add users?<br
</div <div>On
the oVirt Engine, Users Tab, when click on
add I can see profile1 (profile1-aurhz) but the GO
button is still in gray.<br
</div <div>I
think something is wrong with the
autehtication on the IPA server.<br
</div
<div><br </div <div>Here is the engine log
:<br </div
<div><br </div <div>2015-09-23 09:37:57,927
INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Extension
'builtin-authn-internal' initialized<br 2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Initializing extension
'internal'<br
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Extension 'internal'
initialized<br
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Start of enabled
extensions list<br
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Instance name:
'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7',
License: 'ASL 2.0', Home: '<a
class=3D"moz-txt-link-f=
reetext" href=3D"http://www.ovirt.org"
target=3D"_blank"></a><a class=3D"mo=
z-txt-link-freetext" href=3D"http://www.ovirt.org"
target=3D"_blank">http:/=
/www.ovirt.org</a>',
Author 'The oVirt Project', Build interface
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.proper=
ties',
Initialized: 'true'<br
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Instance name:
'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7',
License: 'ASL 2.0', Home: '<a
class=3D"moz-txt-link-f=
reetext" href=3D"http://www.ovirt.org"
target=3D"_blank"></a><a class=3D"mo=
z-txt-link-freetext" href=3D"http://www.ovirt.org"
target=3D"_blank">http:/=
/www.ovirt.org</a>',
Author 'The oVirt Project', Build interface
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.proper=
ties',
Initialized: 'true'<br
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Instance name:
'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A',
Notes: '', License: 'ASL 2.0', Home: '<a
class=3D"moz=
-txt-link-freetext" href=3D"http://www.ovirt.org"
target=3D"_blank"></a><a =
class=3D"moz-txt-link-freetext" href=3D"http://www.ovirt.org"
target=3D"_bl=
ank">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized:
'true'<=
br 2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) Instance name:
'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '',
License:
'ASL 2.0', Home: '<a
class=3D"moz-txt-link-freetext" =
href=3D"http://www.ovirt.org"
target=3D"_blank">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized:
'true'<=
br 2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManag=
er]
(MSC service thread 1-2) End of enabled extensions
list<br 2015-09-23
09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(MSC service thread 1-1) Initialization of
AsyncTaskManager completed successfully.<br 2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) Start initializing
ResourceManager<br
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC
service thread 1-1) Entered VdsManager constructor<br=
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC
service thread 1-1) Initialize vdsBroker
(192.168.6.201,54,321)<br
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) VDS
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to
the Resource Manager<br
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) Finished initializing
ResourceManager<br
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC
service thread 1-1) Initialization of
OvfDataUpdater completed successfully.<br 2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) Start scheduling to
enable vds load balancer<br
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) Finished scheduling to
enable vds load balancer<br
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) Start HA Reservation
check<br 2015-09-23
09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) Finished HA Reservation
check<br 2015-09-23
09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRang=
es]
(org.ovirt.thread.pool-8-thread-1) Start
initializing MacPoolManagerRanges<br
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStart=
upBean]
(MSC service thread 1-1) Init VM custom properties
utilities<br
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStart=
upBean]
(MSC service thread 1-1) Init device custom
properties utilities<br
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) Initializing Scheduling
manager<br
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRang=
es]
(org.ovirt.thread.pool-8-thread-1) Finished
initializing. Available MACs in pool: 251<br 2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) External scheduler
disabled, discovery skipped<br
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManag=
er]
(MSC service thread 1-1) Initialized Scheduling
manager<br
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC
service thread 1-1) Initializing DWH Heart Beat<br 2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC
service thread 1-1) DWH Heart Beat initialized<br 2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwar=
eInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=3DHost[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8=
d2beb7e0f6]),
log id: 66c9effc<br
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwar=
eInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc<br 2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
UNASSIGNED not exist in string table<br 2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table<br 2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table<br 2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string
table<br 2015-09-23
09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not
exist in string table<br
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table<br 2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table<br 2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in
string table<br
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string
table<br 2015-09-23
09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in
string table<br
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string
table<br 2015-09-23
09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in
string table<br
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table<br 2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string
table<br 2015-09-23
09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table<br=
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in
string table<br
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table<br=
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in
string table<br
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID:
null, Call Stack: null, Custom Event ID: -1,
Message: Host node3.acloud.pt does not enforce
SELinux.<br
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host
node3.acloud.pt is running with disabled SELinux.<br 2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServe=
rsListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
53441a68<br
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServe=
rsListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68<br 2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing
Host: node3.acloud.pt<br
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6]
Running command: HandleVdsVersionCommand internal:
true. Entities affected : ID:
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br 2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
cf31644<br
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
cf31644<br
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStat=
usCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Running command: SetStoragePoolStatusCommand
internal: true. Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type:
StoragePool<br
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolD=
omainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Storage Pool 00000002-0002-0002-0002-000000000238
- Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from
Active to Unknown, reason : null<br
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolD=
omainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Storage Pool 00000002-0002-0002-0002-000000000238
- Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status from
Active to Unknown, reason : null<br
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Correlation ID: 205b10f8, Call Stack: null, Custom
Event ID: -1, Message: Invalid status on Data
Center Default. Setting status to Non Responsive.<br 2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
767b5004<br
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
767b5004<br
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyDa=
ta]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt,
spmStatus SPM, storage pool Default<br 2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyDa=
ta]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Initialize Irs proxy from vds: 192.168.6.201<br 2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.=
AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
Correlation ID: null, Call Stack: null, Custom
Event ID: -1, Message: Storage Pool Manager runs
on Host node3.acloud.pt (Address: 192.168.6.201).<br 2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllT=
asksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
START, SPMGetAllTasksInfoVDSCommand( storagePoolId
=3D 00000002-0002-0002-0002-000000000238,
ignoreFailoverLimit =3D false), log id: 6735b7ad<br 2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllT=
asksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage
pool 00000002-0002-0002-0002-000000000238<br 2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllT=
asksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
START, HSMGetAllTasksInfoVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
2c5dc746<br
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllT=
asksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
FINISH, HSMGetAllTasksInfoVDSCommand, return: [],
log id: 2c5dc746<br
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllT=
asksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
FINISH, SPMGetAllTasksInfoVDSCommand, return: [],
log id: 6735b7ad<br
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8]
Discovered no tasks on Storage Pool Default<br 2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
663177d4<br
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
663177d4<br
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
4db78ebd<br
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
4db78ebd<br
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName =3D
node3.acloud.pt, HostId =3D
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
3beec320<br
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolum=
esListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id:
3beec320<br
<br </div <div><br </div
<div>Thanks<br </div <div><br </div
<hr id=3D"zwchr"
<div style=3D"color:#000;font-weight:normal;font-style:=
normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-siz=
e:12pt;"><b>De: </b>"Ondra Machacek" <a
class=3D"moz-txt-link-rfc2396E" hre=
f=3D"mailto:omachace@redhat.com" target=3D"_blank"></a><a
class=3D"moz-txt-=
link-rfc2396E" href=3D"mailto:omachace@redhat.com"
target=3D"_blank"><om=
achace(a)redhat.com&gt;</a><br
<b>Para: </b><a class=3D"moz-txt-link-abbreviated"
hr=
ef=3D"mailto:suporte@logicworks.pt"
target=3D"_blank">suporte(a)logicworks.pt=
</a>,
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:=
users(a)ovirt.org" target=3D"_blank">users(a)ovirt.org</a><br <b>Enviadas:
</b>Quarta-feira, 23 De Setembro de
2015 7:40:12<br
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br <div><br </div
Just for clarification -
ovirt-engine-extension-aaa-ldap-setup is available
from oVirt 3.6<br
<br Can you send
engine.log, hard to say what's wrong
from configuration, it looks good.<br <br
<div class=3D"moz-cite-prefix">On 09/22/2015 09:55
PM, Ravi Nori wrote:<br
</div <blockquote
cite=3D"mid:5601B215.8020704@redhat.com"
<div class=3D"moz-cite-prefix">Once you have
installed ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br <br
You can run
ovirt-engine-extension-aaa-ldap-setup and
follow the steps to set up ldap.<br <br
Once that is done you can login to webadmin
and add users/groups from ipa<br
<br On
09/22/2015 11:57 AM, <a class=3D"moz-txt-link-=
abbreviated" href=3D"mailto:suporte@logicworks.pt"
target=3D"_blank"></a><a=
class=3D"moz-txt-link-abbreviated"
href=3D"mailto:suporte@logicworks.pt" t=
arget=3D"_blank">suporte(a)logicworks.pt</a
wrote:<br </div <blockquote
cite=3D"mid:1706731369.91118.1442937460=
886.JavaMail.zimbra(a)logicworks.pt"
<div style=3D"font-family: Times New Roman;
font-size: 10pt; color: #000000" <div>Here is what I'm
trying to do:<br
</div
<div><br Ovirt
engine : engine.domain.tld<br
</div
<div>Freeipa 4.1.0 : ipa.domain.tld<br
</div
<div><br
</div
<div>I have installed on the engine:
<pre class=3D"western"
style=3D"margin-bottom=
: 0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i </pre
<pre class=3D"western" style=3D"margin-bottom=
: 0.5cm;"><i>openldap-clients</i
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include =3D <openldap.properties>
#include =3D <389ds.properties>
#include =3D <rhds.properties>
include =3D <ipa.properties>
#include =3D <iplanet.properties>
#include =3D <rfc2307.properties>
#include =3D <rfc2307-openldap.properties>
#
# Server
#
vars.server =3D ipa.domain.tld
#
# Search user and its password.
#
vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld
vars.password =3D <em>ipa_admin_password</em
pool.default.serverset.single.server =3D ${global:vars.server}
pool.default.auth.simple.bindDN =3D ${global:vars.user}
pool.default.auth.simple.password =3D ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS =3D true
#pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve=
r}.jks
#pool.default.ssl.truststore.password =3D changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre
<br </div <div><br </div <hr id=3D"zwchr" <div
style=3D"color:#000;font-weight:normal;fon=
t-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;=
font-size:12pt;"><b>De: </b>"Alon Bar-Lev" <a
class=3D"moz-txt-link-rfc2396=
E" href=3D"mailto:alonbl@redhat.com"
target=3D"_blank"></a><a class=3D"moz-=
txt-link-rfc2396E" href=3D"mailto:alonbl@redhat.com"
target=3D"_blank"><=
alonbl(a)redhat.com&gt;</a><br
<b>Para: </b><a class=3D"moz-txt-link-abbrevi=
ated" href=3D"mailto:suporte@logicworks.pt"
target=3D"_blank">suporte@logic=
works.pt</a><br
<b>Cc: </b>"users" <a class=3D"moz-txt-link-r=
fc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_blank"></a><a class=3D"=
moz-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_blank">&l=
t;users(a)ovirt.org&gt;</a><br
<b>Enviadas: </b>Sexta-feira, 18 De
Setembro de 2015 15:48:22<br
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br <div><br </div <br <div><br </div ----- Original Message
-----<br
> From: <a class=3D"moz-txt-link-abbreviat=
ed" href=3D"mailto:suporte@logicworks.pt"
target=3D"_blank">suporte@logicwo=
rks.pt</a><br
> To: "users" <a class=3D"moz-txt-link-rfc=
2396E" href=3D"mailto:users@ovirt.org"
target=3D"_blank"></a><a class=3D"mo=
z-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org"
target=3D"_blank"><=
users(a)ovirt.org&gt;</a><br
> Sent: Friday, September 18, 2015
5:45:18 PM<br
> Subject: [ovirt-users] FreeIPA<br > <br > Hi,<br > <br > Is there any
documentation about
FreeIPA integration with oVirt 3.5 and how<br=
> to configure
it?<br
> <br
<div><br
</div
Hi,<br
<div><br
</div Please
find documentation at [1][2].<br
<div><br
</div
Regards,<br Alon
Bar-Lev.<br
<div><br
</div [1]
<a class=3D"moz-txt-link-freetext" href=
=3D"http://www.ovirt.org/Features/AAA"
target=3D"_blank">http://www.ovirt.o=
rg/Features/AAA</a><br [2]
<a class=3D"moz-txt-link-freetext" href=
=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git=
;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aaa-ldap-1.0" target=3D"_b=
lank">https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-...
it;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aaa-ldap-1.0</a><br </div <div><br </div </div
<br
<fieldset class=3D"mimeAttachmentHeader"></fields=
et <br
<pre>____________________________________________=
___
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank">Users(a)ovirt.org</a <a
class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users"
target=3D"_blank">http://lists.ovirt.org/mailman/listinfo/us=
ers</a </pre </blockquote <br
<br <fieldset
class=3D"mimeAttachmentHeader"></fieldset=
<br
<pre>______________________________________________=
_
Users mailing list
<a class=3D"moz-txt-link-abbreviated"
href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank">Users(a)ovirt.org</a <a
class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users"
target=3D"_blank">http://lists.ovirt.org/mailman/listinfo/us=
ers</a </pre </blockquote <br
</div
<div><br </div </div
</blockquote <br </div
<div><br </div </div
</blockquote <br </div
<div><br </div </div
</blockquote <br =20
</div><div><br></div></div></body></html ------=_Part_156372_2091032049.1443025601914--
From: suporte(a)logicworks.pt
To: "users" <users(a)ovirt.org>
Sent: Friday, September 18, 2015 5:45:18 PM
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how
to configure it?
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list Users(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/users
</blockquote
7:33 p.m.
This is a multi-part message in MIME format.
--------------090709080706070007010302
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
great!
It depends on what guest you are using, for fedora you can install from
epel package ovirt-guest-agent.
There are also for ubuntu[1], suse[2] and maybe other which I am not
aware of.
For windows there is guest tools[3] since oVirt 3.5 I think.
[1] http://www.ovirt.org/Feature/GuestAgentUbuntu
[2] http://www.ovirt.org/Feature/GuestAgentOpenSUSE
[3] http://www.ovirt.org/Features/oVirt_Windows_Guest_Tools
On 09/23/2015 06:26 PM, suporte(a)logicworks.pt wrote:
Fantastic Ondra, nice Hawk Eye
It's working.
When I enter with a user name and click on console I get:
Could not connect to the agent on the guest, it may be unresponsive or
not installed.
As a result, some features may not work.
What kind of agent shoul I install on the guests?
Thaks a lot
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 16:39:05
*Assunto: *Re: [ovirt-users] FreeIPA
As you can see in exception you have trailing space at the end of your
fqdn of IPA, please remove the trailing space in properties file.
it's:
'ipa.acloud.pt ' <- trailing space
and should be:
'ipa.acloud.pt'
On 09/23/2015 05:30 PM, suporte(a)logicworks.pt wrote:
I can ping ipa server from engine, the log:
2015-09-23 16:24:50,504 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service
thread 1-1)
[ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot
initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt : Name or service
not known
2015-09-23 16:24:50,504 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service
thread 1-1) Ignoring Exception: LDAPException(resultCode=91
(connect error), errorMessage='An error occurred while attempting
to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt : Name or service not
known')
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) open Entry
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) runSequence Entry name='simple-open-pools'
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Running sequence simple-open-pools/010/pool-create
create authz pool
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-BEGIN
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) authz_enable = 1
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_credentialsChange = false
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) capability_resucrsiveGroupResolution = false
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) maxFilterSize = 50
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) sensitiveKeys = , password, passwordNew
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrGroupMemberDN = member
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrMemberOf = memberOf
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDN = defaultNamingContext
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsBaseDNIndex = 0
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsGroupRecord = ipaUniqueID, cn, description
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid,
displayName, department, givenName, sn, title, mail,
krbpasswordexpiration
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_attrsUserName = uid
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_bindFormat = dn
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterGroupObject =
(objectClass=ipausergroup)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_filterUserObject =
(objectClass=person)(ipaUniqueID=*)
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_groupLogic = member
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) simple_principalPostFetch = ipa-post-principal-fetch
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) stop = false
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) VARS-END
2015-09-23 16:24:50,517 INFO
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating
LDAP pool 'authz'
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createPool Entry name='authz'
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createConnectionPool Entry
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionOptions
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) LDAPConnectionOptions:
LDAPConnectionOptions(autoReconnect=true,
bindWithDNRequiresPassword=true, followReferrals=false,
useKeepAlive=true, useLinger=true, lingerTimeoutSeconds=5,
useReuseAddress=true, useSchema=false, usePooledSchema=false,
pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false,
useTCPNoDelay=true, captureConnectStackTrace=false,
connectTimeoutMillis=5000, responseTimeoutMillis=60000,
abandonOnTimeout=true, maxMessageSize=20971520,
receiveBufferSize=0, sendBufferSize=0,
allowConcurrentSocketFactoryUse=true,
sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier')
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating SocketFactory
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating resolver
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service thread
1-1) Open: Context: {java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Resolver:
Resolver(env='{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}',
supportIPv6='false', cacheTTL='10000')
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating ServerSet
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt :389)
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating BindRequest
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Entry type='simple', user=''
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) createBindRequest Return
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) BindRequest:
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Creating LDAPConnectionPool
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Sequence simple-open-pools create authz pool failed
due to exception: An error occurred while attempting to resolve
address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt
2015-09-23 16:24:50,523 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service
thread 1-1) Exception during sequence: LDAPException(resultCode=91
(connect error), errorMessage='An error occurred while attempting
to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt ')
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,531 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service
thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot
initialize LDAP framework, deferring initialization. Error: An
error occurred while attempting to resolve address 'ipa.acloud.pt
': java.net.UnknownHostException: ipa.acloud.pt
2015-09-23 16:24:50,531 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service
thread 1-1) Ignoring Exception: LDAPException(resultCode=91
(connect error), errorMessage='An error occurred while attempting
to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt ')
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]
2015-09-23 16:24:50,541 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authn', Extension
name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2',
Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0',
Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'
2015-09-23 16:24:50,542 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC
service thread 1-1) Instance name: 'profile1-authz', Extension
name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2',
Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0',
Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 15:02:54
*Assunto: *Re: [ovirt-users] FreeIPA
Try this[1] easier approach.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 03:58 PM, suporte(a)logicworks.pt wrote:
well, when I run
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect
--timeout=30000 --controller=localhost:8706
--user=admin@internal --commands="if (outcome != success) of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"
get this error: Duplicate argument '--command'/'--commands'.
can't see why
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 12:50:46
*Assunto: *Re: [ovirt-users] FreeIPA
You don't have to do anything on IPA side, just create
users/groups.
OK, nothing in the log at INFO level, initialization succeed,
so can you please send the debug log? See here[1] how to enable.
Thank you.
[1]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
On 09/23/2015 10:48 AM, suporte(a)logicworks.pt wrote:
Is there anything to do on the IPA side? Or is just add users?
On the oVirt Engine, Users Tab, when click on add I can
see profile1 (profile1-aurhz) but the GO button is still
in gray.
I think something is wrong with the autehtication on the
IPA server.
Here is the engine log :
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension
'builtin-authn-internal' initialized
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Initializing extension 'internal'
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension 'internal' initialized
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Start of enabled extensions list
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name: 'profile1-authn',
Extension name: 'ovirt-engine-extension-aaa-ldap.authn',
Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The
oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized:
'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name: 'profile1-authz',
Extension name: 'ovirt-engine-extension-aaa-ldap.authz',
Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The
oVirt
Project', Build interface Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized:
'true'
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'builtin-authn-internal', Extension name: 'Internal Authn
(Built-in)', Version: 'N/A', Notes: '', License:
'ASL
2.0', Home: 'http://www.ovirt.org', Author 'The oVirt
Project', Build interface Version: '0', File: 'N/A',
Initialized: 'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name: 'internal',
Extension name: 'Internal Authz (Built-in)', Version:
'N/A', Notes: '', License: 'ASL 2.0', Home:
'http://www.ovirt.org', Author 'The oVirt Project', Build
interface Version: '0', File: 'N/A', Initialized:
'true'
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) End of enabled extensions list
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC
service thread 1-1) Initialization of AsyncTaskManager
completed successfully.
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Start initializing ResourceManager
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Entered VdsManager constructor
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service
thread 1-1) Initialize vdsBroker (192.168.6.201,54,321)
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) VDS
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the
Resource Manager
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC
service thread 1-1) Finished initializing ResourceManager
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service
thread 1-1) Initialization of OvfDataUpdater completed
successfully.
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start scheduling to enable vds
load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished scheduling to enable vds
load balancer
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start HA Reservation check
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished HA Reservation check
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start initializing
MacPoolManagerRanges
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom properties utilities
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom properties
utilities
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initializing Scheduling manager
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished initializing.
Available MACs in pool: 251
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) External scheduler disabled,
discovery skipped
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initialized Scheduling manager
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) Initializing DWH Heart Beat
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service
thread 1-1) DWH Heart Beat initialized
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED
not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_HIGH_NETWORK_USE not exist in string table
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_REMOVE_VM not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in
string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
STORAGE_ACTIVATE_ASYNC not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_ADDED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_REMOVED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_UPDATED_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5) Correlation ID: null,
Call Stack: null, Custom Event ID: -1, Message: Host
node3.acloud.pt does not enforce SELinux.
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is
running with disabled SELinux.
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
53441a68
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Initializing Host:
node3.acloud.pt
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6] Running
command: HandleVdsVersionCommand internal: true. Entities
affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
cf31644
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: cf31644
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Running
command: SetStoragePoolStatusCommand internal: true.
Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type: StoragePool
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage
Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from
Active to Unknown, reason : null
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 - Updating Storage
Domain 5e80c937-6996-43df-9db7-a3511347d735 status from
Active to Unknown, reason : null
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation
ID: 205b10f8, Call Stack: null, Custom Event ID: -1,
Message: Invalid status on Data Center Default. Setting
status to Non Responsive.
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
767b5004
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8]
hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM,
storage pool Default
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize
Irs proxy from vds: 192.168.6.201
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation
ID: null, Call Stack: null, Custom Event ID: -1, Message:
Storage Pool Manager runs on Host node3.acloud.pt
(Address: 192.168.6.201).
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId =
00000002-0002-0002-0002-000000000238, ignoreFailoverLimit
= false), log id: 6735b7ad
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] --
executeIrsBrokerCommand: Attempting on storage pool
00000002-0002-0002-0002-000000000238
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered
no tasks on Storage Pool Default
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
663177d4
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 663177d4
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
4db78ebd
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName = node3.acloud.pt,
HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id:
3beec320
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {}, log id: 3beec320
Thanks
------------------------------------------------------------------------
*De: *"Ondra Machacek" <omachace(a)redhat.com>
*Para: *suporte(a)logicworks.pt, users(a)ovirt.org
*Enviadas: *Quarta-feira, 23 De Setembro de 2015 7:40:12
*Assunto: *Re: [ovirt-users] FreeIPA
Just for clarification -
ovirt-engine-extension-aaa-ldap-setup is available from
oVirt 3.6
Can you send engine.log, hard to say what's wrong from
configuration, it looks good.
On 09/22/2015 09:55 PM, Ravi Nori wrote:
Once you have installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup
You can run ovirt-engine-extension-aaa-ldap-setup and
follow the steps to set up ldap.
Once that is done you can login to webadmin and add
users/groups from ipa
On 09/22/2015 11:57 AM, suporte(a)logicworks.pt wrote:
Here is what I'm trying to do:
Ovirt engine : engine.domain.tld
Freeipa 4.1.0 : ipa.domain.tld
I have installed on the engine:
/ovirt-engine-extension-aaa-ldap/
/openldap-clients/
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password =/ipa_admin_password/
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file =
${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
------------------------------------------------------------------------
*De: *"Alon Bar-Lev" <alonbl(a)redhat.com>
*Para: *suporte(a)logicworks.pt
*Cc: *"users" <users(a)ovirt.org>
*Enviadas: *Sexta-feira, 18 De Setembro de 2015
15:48:22
*Assunto: *Re: [ovirt-users] FreeIPA
----- Original Message -----
> From: suporte(a)logicworks.pt
> To: "users" <users(a)ovirt.org>
> Sent: Friday, September 18, 2015 5:45:18 PM
> Subject: [ovirt-users] FreeIPA
>
> Hi,
>
> Is there any documentation about FreeIPA
integration with oVirt 3.5 and how
> to configure it?
>
Hi,
Please find documentation at [1][2].
Regards,
Alon Bar-Lev.
[1] http://www.ovirt.org/Features/AAA
[2]
https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=b...
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
--------------090709080706070007010302
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
<html>
<head>
<meta content="text/html; charset=utf-8"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
great!<br>
It depends on what guest you are using, for fedora you can install
from epel package ovirt-guest-agent.<br>
There are also for ubuntu[1], suse[2] and maybe other which I am not
aware of.<br>
<br>
For windows there is guest tools[3] since oVirt 3.5 I think.<br>
<br>
[1] <a class="moz-txt-link-freetext"
href="http://www.ovirt.org/Feature/GuestAgentUbuntu">http://...
[2] <a class="moz-txt-link-freetext"
href="http://www.ovirt.org/Feature/GuestAgentOpenSUSE">http:...
[3] <a class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/oVirt_Windows_Guest_Tools"&...
<br>
<div class="moz-cite-prefix">On 09/23/2015 06:26 PM,
<a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:405764388.156373.1443025601916.JavaMail.zimbra@logicworks.pt"
type="cite">
<div style="font-family: Times New Roman; font-size: 10pt; color:
#000000">
<div>Fantastic Ondra, nice Hawk Eye<br>
</div>
<div><br>
</div>
<div>It's working.<br>
</div>
<div>When I enter with a user name and click on console I get:<br>
</div>
<div>Could not connect to the agent on the guest, it may be
unresponsive or not installed.<br>
As a result, some features may not work.</div>
<div><br>
</div>
<div><br>
</div>
<div>What kind of agent shoul I install on the guests?<br>
</div>
<div><br>
</div>
<div>Thaks a lot<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Ondra Machacek" <a
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"><omachace@redhat.com></a><br>
<b>Para: </b><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a><br>
<b>Cc: </b><a class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org">users@ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
16:39:05<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
As you can see in exception you have trailing space at the end
of your fqdn of IPA, please remove the trailing space in
properties file.<br>
<br>
it's:<br>
<br>
'ipa.acloud.pt ' <- trailing space<br>
<br>
and should be:<br>
<br>
'ipa.acloud.pt'<br>
<br>
<div class="moz-cite-prefix">On 09/23/2015 05:30 PM, <a
moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:1355950642.154095.1443022209428.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size: 10pt;
color: #000000">
<div>I can ping ipa server from engine, the log:<br>
</div>
<div><br>
</div>
<div>2015-09-23 16:24:50,504 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension]
(MSC service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authn::profile1-authn]
Cannot initialize LDAP framework, deferring
initialization. Error: An error occurred while
attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt : Name or
service not known<br>
2015-09-23 16:24:50,504 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthnExtension]
(MSC service thread 1-1) Ignoring Exception:
LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to
resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt : Name or
service not known')<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]<br>
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) open Entry<br>
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) runSequence Entry
name='simple-open-pools'<br>
2015-09-23 16:24:50,514 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Running sequence
simple-open-pools/010/pool-create create authz pool<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) VARS-BEGIN<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) authz_enable = 1<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) capability_credentialsChange = false<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) capability_resucrsiveGroupResolution
= false<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) maxFilterSize = 50<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) sensitiveKeys = , password,
passwordNew<br>
2015-09-23 16:24:50,515 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrGroupMemberDN = member<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrMemberOf = memberOf<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrsBaseDN =
defaultNamingContext<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrsBaseDNIndex = 0<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrsGroupRecord =
ipaUniqueID, cn, description<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrsPrincipalRecord =
ipaUniqueID, uid, displayName, department, givenName,
sn, title, mail, krbpasswordexpiration<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_attrsUserName = uid<br>
2015-09-23 16:24:50,516 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_bindFormat = dn<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_filterGroupObject =
(objectClass=ipausergroup)(ipaUniqueID=*)<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_filterUserObject =
(objectClass=person)(ipaUniqueID=*)<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_groupLogic = member<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) simple_principalPostFetch =
ipa-post-principal-fetch<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) stop = false<br>
2015-09-23 16:24:50,517 TRACE
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) VARS-END<br>
2015-09-23 16:24:50,517 INFO
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz]
Creating LDAP pool 'authz'<br>
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) createPool Entry name='authz'<br>
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) createConnectionPool Entry<br>
2015-09-23 16:24:50,518 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Creating LDAPConnectionOptions<br>
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) LDAPConnectionOptions:
LDAPConnectionOptions(autoReconnect=true,
bindWithDNRequiresPassword=true, followReferrals=false,
useKeepAlive=true, useLinger=true,
lingerTimeoutSeconds=5, useReuseAddress=true,
useSchema=false, usePooledSchema=false,
pooledSchemaTimeoutMillis=3600000,
useSynchronousMode=false, useTCPNoDelay=true,
captureConnectStackTrace=false,
connectTimeoutMillis=5000, responseTimeoutMillis=60000,
abandonOnTimeout=true, maxMessageSize=20971520,
receiveBufferSize=0, sendBufferSize=0,
allowConcurrentSocketFactoryUse=true,
sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier')<br>
2015-09-23 16:24:50,519 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Creating SocketFactory<br>
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Creating resolver<br>
2015-09-23 16:24:50,520 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC
service thread 1-1) Open: Context:
{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Resolver:
Resolver(env='{java.naming.provider.url=dns://,
java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}',
supportIPv6='false', cacheTTL='10000')<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) SocketFactory:
org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Creating ServerSet<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) ServerSet:
SingleServerSet(server=ipa.acloud.pt :389)<br>
2015-09-23 16:24:50,521 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Creating BindRequest<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) createBindRequest Entry
type='simple', user=''<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) createBindRequest Return
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) BindRequest:
SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt')<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Creating LDAPConnectionPool<br>
2015-09-23 16:24:50,522 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Sequence simple-open-pools create
authz pool failed due to exception: An error occurred
while attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt<br>
2015-09-23 16:24:50,523 DEBUG
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC
service thread 1-1) Exception during sequence:
LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to
resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt ')<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]<br>
2015-09-23 16:24:50,531 WARN
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension]
(MSC service thread 1-1)
[ovirt-engine-extension-aaa-ldap.authz::profile1-authz]
Cannot initialize LDAP framework, deferring
initialization. Error: An error occurred while
attempting to resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt<br>
2015-09-23 16:24:50,531 DEBUG
[org.ovirt.engineextensions.aaa.ldap.AuthzExtension]
(MSC service thread 1-1) Ignoring Exception:
LDAPException(resultCode=91 (connect error),
errorMessage='An error occurred while attempting to
resolve address 'ipa.acloud.pt ':
java.net.UnknownHostException: ipa.acloud.pt ')<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913)
[unboundid-ldapsdk.jar:2.3.7]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433)
[ovirt-engine-extension-aaa-ldap.jar:]<br>
at
com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749)
[unboundid-ldapsdk.jar:2.3.7]<br>
2015-09-23 16:24:50,541 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-1) Instance name:
'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: '<a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org"
target="_blank">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface Version:
'0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br>
2015-09-23 16:24:50,542 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-1) Instance name:
'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz', Version:
'1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License:
'ASL 2.0', Home: '<a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org"
target="_blank">http://www.ovirt.org</a>',
Author 'The oVirt Project', Build interface Version:
'0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Ondra Machacek" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"
target="_blank">&lt;omachace(a)redhat.com&gt;</a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a><br>
<b>Cc: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org"
target="_blank">users(a)ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015
15:02:54<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
Try this[1] easier approach.<br>
<br>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank">https://gerrit.ovirt.org/gitweb?p=ovirt-engi...
<br>
<div class="moz-cite-prefix">On 09/23/2015 03:58 PM,
<a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"><a class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:1838149591.149200.1443016712320.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman; font-size:
10pt; color: #000000">
<div>well, when I run<br>
</div>
<div>#
/usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh
--connect --timeout=30000
--controller=localhost:8706 --user=admin@internal
--commands="if (outcome != success) of
/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)"</div>
<div><br>
</div>
<div>get this error: Duplicate argument
'--command'/'--commands'.<br>
</div>
<div><br>
</div>
<div>can't see why<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Ondra Machacek" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"
target="_blank">&lt;omachace(a)redhat.com&gt;</a><br>
<b>Para: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a><br>
<b>Cc: </b><a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org"
target="_blank">users(a)ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De Setembro de
2015 12:50:46<br>
<b>Assunto: </b>Re: [ovirt-users] FreeIPA<br>
<div><br>
</div>
You don't have to do anything on IPA side, just
create users/groups.<br>
<br>
OK, nothing in the log at INFO level,
initialization succeed, so can you please send the
debug log? See here[1] how to enable.<br>
<br>
Thank you.<br>
<br>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank">https://gerrit.ovirt.org/gitweb?p=ovirt-engi...
<br>
<div class="moz-cite-prefix">On 09/23/2015 10:48
AM, <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a>
wrote:<br>
</div>
<blockquote
cite="mid:629543964.131623.1442998098767.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New Roman;
font-size: 10pt; color: #000000">
<div><br>
</div>
<div>Is there anything to do on the IPA side?
Or is just add users?<br>
</div>
<div>On the oVirt Engine, Users Tab, when
click on add I can see profile1
(profile1-aurhz) but the GO button is still
in gray.<br>
</div>
<div>I think something is wrong with the
autehtication on the IPA server.<br>
</div>
<div><br>
</div>
<div>Here is the engine log :<br>
</div>
<div><br>
</div>
<div>2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension
'builtin-authn-internal' initialized<br>
2015-09-23 09:37:57,927 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Initializing
extension 'internal'<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Extension
'internal' initialized<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Start of enabled
extensions list<br>
2015-09-23 09:37:57,928 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'profile1-authn', Extension name:
'ovirt-engine-extension-aaa-ldap.authn',
Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7',
License: 'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org"
target="_blank"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authn.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'profile1-authz', Extension name:
'ovirt-engine-extension-aaa-ldap.authz',
Version: '1.0.2', Notes: 'Display name:
ovirt-engine-extension-aaa-ldap-1.0.2-1.el7',
License: 'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org"
target="_blank"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File:
'/etc/ovirt-engine/extensions.d/profile1-authz.properties',
Initialized: 'true'<br>
2015-09-23 09:37:57,929 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'builtin-authn-internal', Extension name:
'Internal Authn (Built-in)', Version: 'N/A',
Notes: '', License: 'ASL 2.0', Home:
'<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org"
target="_blank"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized:
'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) Instance name:
'internal', Extension name: 'Internal Authz
(Built-in)', Version: 'N/A', Notes: '',
License: 'ASL 2.0', Home: '<a
moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org"
target="_blank"><a
class="moz-txt-link-freetext"
href="http://www.ovirt.org">http://www.ovirt.org</a></a>',
Author 'The oVirt Project', Build interface
Version: '0', File: 'N/A', Initialized:
'true'<br>
2015-09-23 09:37:57,930 INFO
[org.ovirt.engine.core.extensions.mgr.ExtensionsManager]
(MSC service thread 1-2) End of enabled
extensions list<br>
2015-09-23 09:37:58,103 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(MSC service thread 1-1) Initialization of
AsyncTaskManager completed successfully.<br>
2015-09-23 09:37:58,105 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) Start initializing
ResourceManager<br>
2015-09-23 09:37:58,217 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(MSC service thread 1-1) Entered VdsManager
constructor<br>
2015-09-23 09:37:58,268 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(MSC service thread 1-1) Initialize
vdsBroker (192.168.6.201,54,321)<br>
2015-09-23 09:37:58,402 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) VDS
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was
added to the Resource Manager<br>
2015-09-23 09:37:58,429 INFO
[org.ovirt.engine.core.vdsbroker.ResourceManager]
(MSC service thread 1-1) Finished
initializing ResourceManager<br>
2015-09-23 09:37:58,430 INFO
[org.ovirt.engine.core.bll.OvfDataUpdater]
(MSC service thread 1-1) Initialization of
OvfDataUpdater completed successfully.<br>
2015-09-23 09:37:58,431 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start scheduling to
enable vds load balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished scheduling
to enable vds load balancer<br>
2015-09-23 09:37:58,432 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Start HA
Reservation check<br>
2015-09-23 09:37:58,434 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Finished HA
Reservation check<br>
2015-09-23 09:37:58,440 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Start
initializing MacPoolManagerRanges<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init VM custom
properties utilities<br>
2015-09-23 09:37:58,444 INFO
[org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean]
(MSC service thread 1-1) Init device custom
properties utilities<br>
2015-09-23 09:37:58,453 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initializing
Scheduling manager<br>
2015-09-23 09:37:58,485 INFO
[org.ovirt.engine.core.bll.network.MacPoolManagerRanges]
(org.ovirt.thread.pool-8-thread-1) Finished
initializing. Available MACs in pool: 251<br>
2015-09-23 09:37:58,499 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) External scheduler
disabled, discovery skipped<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.scheduling.SchedulingManager]
(MSC service thread 1-1) Initialized
Scheduling manager<br>
2015-09-23 09:37:58,500 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat]
(MSC service thread 1-1) Initializing DWH
Heart Beat<br>
2015-09-23 09:37:58,502 INFO
[org.ovirt.engine.core.bll.dwh.DwhHeartBeat]
(MSC service thread 1-1) DWH Heart Beat
initialized<br>
2015-09-23 09:38:02,159 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GetHardwareInfoVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6,
vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]),
log id: 66c9effc<br>
2015-09-23 09:38:02,167 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GetHardwareInfoVDSCommand, log id: 66c9effc<br>
2015-09-23 09:38:02,173 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: UNASSIGNED not exist in string
table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: VDS_HIGH_NETWORK_USE not exist
in string table<br>
2015-09-23 09:38:02,174 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_FAILED_REMOVE_VM not
exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT
not exist in string table<br>
2015-09-23 09:38:02,175 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType:
VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK
not exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: STORAGE_ACTIVATE_ASYNC not
exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_ADDED_DISK_PROFILE not
exist in string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType:
USER_FAILED_TO_ADD_DISK_PROFILE not exist in
string table<br>
2015-09-23 09:38:02,176 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_REMOVED_DISK_PROFILE not
exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType:
USER_FAILED_TO_REMOVE_DISK_PROFILE not exist
in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_UPDATED_DISK_PROFILE not
exist in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType:
USER_FAILED_TO_UPDATE_DISK_PROFILE not exist
in string table<br>
2015-09-23 09:38:02,177 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_ADDED_CPU_PROFILE not
exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE
not exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_REMOVED_CPU_PROFILE not
exist in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType:
USER_FAILED_TO_REMOVE_CPU_PROFILE not exist
in string table<br>
2015-09-23 09:38:02,178 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType: USER_UPDATED_CPU_PROFILE not
exist in string table<br>
2015-09-23 09:38:02,179 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
AuditLogType:
USER_FAILED_TO_UPDATE_CPU_PROFILE not exist
in string table<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-5)
Correlation ID: null, Call Stack: null,
Custom Event ID: -1, Message: Host
node3.acloud.pt does not enforce SELinux.<br>
2015-09-23 09:38:02,479 WARN
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5) Host
node3.acloud.pt is running with disabled
SELinux.<br>
2015-09-23 09:38:02,623 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) START,
GlusterServersListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: 53441a68<br>
2015-09-23 09:38:02,708 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand]
(DefaultQuartzScheduler_Worker-5) FINISH,
GlusterServersListVDSCommand, return:
[192.168.6.201:CONNECTED], log id: 53441a68<br>
2015-09-23 09:38:03,178 INFO
[org.ovirt.engine.core.vdsbroker.VdsManager]
(DefaultQuartzScheduler_Worker-5)
Initializing Host: node3.acloud.pt<br>
2015-09-23 09:38:03,326 INFO
[org.ovirt.engine.core.bll.HandleVdsVersionCommand]
(DefaultQuartzScheduler_Worker-5) [543d8ea6]
Running command: HandleVdsVersionCommand
internal: true. Entities affected : ID:
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type:
VDS<br>
2015-09-23 09:38:03,562 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: cf31644<br>
2015-09-23 09:38:03,583 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-8) FINISH,
GlusterVolumesListVDSCommand, return: {},
log id: cf31644<br>
2015-09-23 09:38:08,514 INFO
[org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Running command:
SetStoragePoolStatusCommand internal: true.
Entities affected : ID:
00000002-0002-0002-0002-000000000238 Type:
StoragePool<br>
2015-09-23 09:38:08,533 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 -
Updating Storage Domain
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status
from Active to Unknown, reason : null<br>
2015-09-23 09:38:08,540 INFO
[org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Storage Pool
00000002-0002-0002-0002-000000000238 -
Updating Storage Domain
5e80c937-6996-43df-9db7-a3511347d735 status
from Active to Unknown, reason : null<br>
2015-09-23 09:38:08,714 WARN
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Correlation ID: 205b10f8, Call
Stack: null, Custom Event ID: -1, Message:
Invalid status on Data Center Default.
Setting status to Non Responsive.<br>
2015-09-23 09:38:08,758 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: 767b5004<br>
2015-09-23 09:38:08,788 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-20) FINISH,
GlusterVolumesListVDSCommand, return: {},
log id: 767b5004<br>
2015-09-23 09:38:08,928 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] hostFromVds::selectedVds -
node3.acloud.pt, spmStatus SPM, storage pool
Default<br>
2015-09-23 09:38:08,949 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Initialize Irs proxy from vds:
192.168.6.201<br>
2015-09-23 09:38:08,999 INFO
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector]
(DefaultQuartzScheduler_Worker-18)
[205b10f8] Correlation ID: null, Call Stack:
null, Custom Event ID: -1, Message: Storage
Pool Manager runs on Host node3.acloud.pt
(Address: 192.168.6.201).<br>
2015-09-23 09:38:09,051 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16)
[205b10f8] START,
SPMGetAllTasksInfoVDSCommand( storagePoolId
= 00000002-0002-0002-0002-000000000238,
ignoreFailoverLimit = false), log id:
6735b7ad<br>
2015-09-23 09:38:09,157 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16)
[205b10f8] -- executeIrsBrokerCommand:
Attempting on storage pool
00000002-0002-0002-0002-000000000238<br>
2015-09-23 09:38:09,180 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16)
[205b10f8] START,
HSMGetAllTasksInfoVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: 2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16)
[205b10f8] FINISH,
HSMGetAllTasksInfoVDSCommand, return: [],
log id: 2c5dc746<br>
2015-09-23 09:38:09,216 INFO
[org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand]
(org.ovirt.thread.pool-8-thread-16)
[205b10f8] FINISH,
SPMGetAllTasksInfoVDSCommand, return: [],
log id: 6735b7ad<br>
2015-09-23 09:38:09,217 INFO
[org.ovirt.engine.core.bll.tasks.AsyncTaskManager]
(org.ovirt.thread.pool-8-thread-16)
[205b10f8] Discovered no tasks on Storage
Pool Default<br>
2015-09-23 09:38:13,937 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: 663177d4<br>
2015-09-23 09:38:13,964 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-30) FINISH,
GlusterVolumesListVDSCommand, return: {},
log id: 663177d4<br>
2015-09-23 09:38:19,184 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: 4db78ebd<br>
2015-09-23 09:38:19,232 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-40) FINISH,
GlusterVolumesListVDSCommand, return: {},
log id: 4db78ebd<br>
2015-09-23 09:38:24,382 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) START,
GlusterVolumesListVDSCommand(HostName =
node3.acloud.pt, HostId =
0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log
id: 3beec320<br>
2015-09-23 09:38:24,410 INFO
[org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand]
(DefaultQuartzScheduler_Worker-50) FINISH,
GlusterVolumesListVDSCommand, return: {},
log id: 3beec320<br>
<br>
</div>
<div><br>
</div>
<div>Thanks<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Ondra Machacek" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"
target="_blank"><a
class="moz-txt-link-rfc2396E"
href="mailto:omachace@redhat.com"><omachace@redhat.com></a></a><br>
<b>Para: </b><a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank">suporte(a)logicworks.pt</a>,
<a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:users@ovirt.org"
target="_blank">users(a)ovirt.org</a><br>
<b>Enviadas: </b>Quarta-feira, 23 De
Setembro de 2015 7:40:12<br>
<b>Assunto: </b>Re: [ovirt-users]
FreeIPA<br>
<div><br>
</div>
Just for clarification -
ovirt-engine-extension-aaa-ldap-setup is
available from oVirt 3.6<br>
<br>
Can you send engine.log, hard to say what's
wrong from configuration, it looks good.<br>
<br>
<div class="moz-cite-prefix">On 09/22/2015
09:55 PM, Ravi Nori wrote:<br>
</div>
<blockquote
cite="mid:5601B215.8020704@redhat.com">
<div class="moz-cite-prefix">Once you have
installed
ovirt-engine-extension-aaa-ldap and
ovirt-engine-extension-aaa-ldap-setup<br>
<br>
You can run
ovirt-engine-extension-aaa-ldap-setup
and follow the steps to set up ldap.<br>
<br>
Once that is done you can login to
webadmin and add users/groups from ipa<br>
<br>
On 09/22/2015 11:57 AM, <a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a>
wrote:<br>
</div>
<blockquote
cite="mid:1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt">
<div style="font-family: Times New
Roman; font-size: 10pt; color:
#000000">
<div>Here is what I'm trying to do:<br>
</div>
<div><br>
Ovirt engine : engine.domain.tld<br>
</div>
<div>Freeipa 4.1.0 : ipa.domain.tld<br>
</div>
<div><br>
</div>
<div>I have installed on the engine:
<pre class="western"
style="margin-bottom:
0.5cm;"><i>ovirt-engine-extension-aaa-ldap</i>
</pre>
<pre class="western"
style="margin-bottom: 0.5cm;"><i>openldap-clients</i>
/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>
#
# Server
#
vars.server = ipa.domain.tld
#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = <em>ipa_admin_password</em>
pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}
# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit
On the engine cannot find any users configured on the ipa server.
Any help?
Thanks
Jose
</pre>
<br>
</div>
<div><br>
</div>
<hr id="zwchr">
<div
style="color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>De:
</b>"Alon Bar-Lev" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"
target="_blank"><a
class="moz-txt-link-rfc2396E"
href="mailto:alonbl@redhat.com"><alonbl@redhat.com></a></a><br>
<b>Para: </b><a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a><br>
<b>Cc: </b>"users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank"><a
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a></a><br>
<b>Enviadas: </b>Sexta-feira, 18 De
Setembro de 2015 15:48:22<br>
<b>Assunto: </b>Re: [ovirt-users]
FreeIPA<br>
<div><br>
</div>
<br>
<div><br>
</div>
----- Original Message -----<br>
> From: <a
moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt"
target="_blank"><a
class="moz-txt-link-abbreviated"
href="mailto:suporte@logicworks.pt">suporte@logicworks.pt</a></a><br>
> To: "users" <a
moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"
target="_blank"><a
class="moz-txt-link-rfc2396E"
href="mailto:users@ovirt.org"><users@ovirt.org></a></a><br>
> Sent: Friday, September 18,
2015 5:45:18 PM<br>
> Subject: [ovirt-users] FreeIPA<br>
> <br>
> Hi,<br>
> <br>
> Is there any documentation
about FreeIPA integration with oVirt
3.5 and how<br>
> to configure it?<br>
> <br>
<div><br>
</div>
Hi,<br>
<div><br>
</div>
Please find documentation at [1][2].<br>
<div><br>
</div>
Regards,<br>
Alon Bar-Lev.<br>
<div><br>
</div>
[1] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="http://www.ovirt.org/Features/AAA"
target="_blank">http://www.ovirt.org/Features/AAA</a>&...
[2] <a moz-do-not-send="true"
class="moz-txt-link-freetext"
href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-l...
target="_blank">https://gerrit.ovirt.org/gitweb?p=ovirt-engi...
</div>
<div><br>
</div>
</div>
<br>
<fieldset
class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org"
target="_blank">Users(a)ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users"
target="_blank">http://lists.ovirt.org/mailman/listinfo/user...
</pre>
</blockquote>
<br>
<br>
<fieldset
class="mimeAttachmentHeader"></fieldset>
<br>
<pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:Users@ovirt.org"
target="_blank">Users(a)ovirt.org</a>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://lists.ovirt.org/mailman/listinfo/users"
target="_blank">http://lists.ovirt.org/mailman/listinfo/user...
</pre>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</div>
<div><br>
</div>
</div>
</blockquote>
<br>
</body>
</html>
--------------090709080706070007010302--
3348
days inactive
3353
days old
12 comments
4 participants
participants (4)
-
Alon Bar-Lev -
Ondra Machacek -
Ravi Nori -
suporte@logicworks.pt