FreeIPA

18 Sep 2015

------=_Part_154094_1342082269.1443022209425
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

I can ping ipa server from engine, the log: 

2015-09-23 16:24:50,504 WARN [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authn::profile1-authn] Cannot initialize LDAP framework, deferring initialization. Error: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known 
2015-09-23 16:24:50,504 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error), errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt : Name or service not known') 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7] 
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensureFramework(AuthnExtension.java:49) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66) [ovirt-engine-extension-aaa-ldap.jar:] 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7] 
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) open Entry 
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) runSequence Entry name='simple-open-pools' 
2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Running sequence simple-open-pools/010/pool-create create authz pool 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-BEGIN 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) authz_enable = 1 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) capability_credentialsChange = false 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) capability_resucrsiveGroupResolution = false 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) maxFilterSize = 50 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) sensitiveKeys = , password, passwordNew 
2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrGroupMemberDN = member 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrMemberOf = memberOf 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsBaseDN = defaultNamingContext 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsBaseDNIndex = 0 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsGroupRecord = ipaUniqueID, cn, description 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsPrincipalRecord = ipaUniqueID, uid, displayName, department, givenName, sn, title, mail, krbpasswordexpiration 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrsUserName = uid 
2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_bindFormat = dn 
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_filterGroupObject = (objectClass=ipausergroup)(ipaUniqueID=*) 
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_filterUserObject = (objectClass=person)(ipaUniqueID=*) 
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_groupLogic = member 
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_principalPostFetch = ipa-post-principal-fetch 
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) stop = false 
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-END 
2015-09-23 16:24:50,517 INFO [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool 'authz' 
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createPool Entry name='authz' 
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createConnectionPool Entry 
2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPConnectionOptions 
2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) LDAPConnectionOptions: LDAPConnectionOptions(autoReconnect=true, bindWithDNRequiresPassword=true, followReferrals=false, useKeepAlive=true, useLinger=true, lingerTimeoutSeconds=5, useReuseAddress=true, useSchema=false, usePooledSchema=false, pooledSchemaTimeoutMillis=3600000, useSynchronousMode=false, useTCPNoDelay=true, captureConnectStackTrace=false, connectTimeoutMillis=5000, responseTimeoutMillis=60000, abandonOnTimeout=true, maxMessageSize=20971520, receiveBufferSize=0, sendBufferSize=0, allowConcurrentSocketFactoryUse=true, sslSocketVerifierClass='com.unboundid.util.ssl.TrustAllSSLSocketVerifier') 
2015-09-23 16:24:50,519 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating SocketFactory 
2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating resolver 
2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Resolver] (MSC service thread 1-1) Open: Context: {java.naming.provider.url=dns://, java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory} 
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Resolver: Resolver(env='{java.naming.provider.url=dns://, java.naming.factory.initial=com.sun.jndi.dns.DnsContextFactory}', supportIPv6='false', cacheTTL='10000') 
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) SocketFactory: org.ovirt.engineextensions.aaa.ldap.ResolverSocketFactory@6b281cdb 
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating ServerSet 
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) ServerSet: SingleServerSet(server=ipa.acloud.pt :389) 
2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating BindRequest 
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createBindRequest Entry type='simple', user='' 
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) createBindRequest Return SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt') 
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) BindRequest: SimpleBindRequest(dn='uid=search,cn=users,cn=accounts,dc=acloud,dc=pt') 
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPConnectionPool 
2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Sequence simple-open-pools create authz pool failed due to exception: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt 
2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Exception during sequence: LDAPException(resultCode=91 (connect error), errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ') 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7] 
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433) [ovirt-engine-extension-aaa-ldap.jar:] 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7] 
2015-09-23 16:24:50,531 WARN [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.authz::profile1-authz] Cannot initialize LDAP framework, deferring initialization. Error: An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt 
2015-09-23 16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (MSC service thread 1-1) Ignoring Exception: LDAPException(resultCode=91 (connect error), errorMessage='An error occurred while attempting to resolve address 'ipa.acloud.pt ': java.net.UnknownHostException: ipa.acloud.pt ') 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7] 
at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7] 
at org.ovirt.engineextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503) [ovirt-engine-extension-aaa-ldap.jar:] 
at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.java:433) [ovirt-engine-extension-aaa-ldap.jar:] 
at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7] 
2015-09-23 16:24:50,541 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized: 'true' 
2015-09-23 16:24:50,542 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized: 'true' 

----- Mensagem original -----

De: "Ondra Machacek" <omachace@redhat.com> 
Para: suporte@logicworks.pt 
Cc: users@ovirt.org 
Enviadas: Quarta-feira, 23 De Setembro de 2015 15:02:54 
Assunto: Re: [ovirt-users] FreeIPA 

Try this[1] easier approach. 

[1] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=aed09b5793e0352dc20812b4746dbd2d7898f292#l389 

On 09/23/2015 03:58 PM, suporte@logicworks.pt wrote: 

well, when I run 
# /usr/share/ovirt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=30000 --controller=localhost:8706 --user=admin@internal --commands="if (outcome != success) of /subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:read-attribute(name=level),/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:add,end-if,/subsystem=logging/logger=org.ovirt.engineextensions.aaa.ldap:write-attribute(name=level,value=ALL)" 

get this error: Duplicate argument '--command'/'--commands'. 

can't see why 

----- Mensagem original -----

De: "Ondra Machacek" <omachace@redhat.com> 
Para: suporte@logicworks.pt 
Cc: users@ovirt.org 
Enviadas: Quarta-feira, 23 De Setembro de 2015 12:50:46 
Assunto: Re: [ovirt-users] FreeIPA 

You don't have to do anything on IPA side, just create users/groups. 

OK, nothing in the log at INFO level, initialization succeed, so can you please send the debug log? See here[1] how to enable. 

Thank you. 

[1] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=HEAD#l389 

On 09/23/2015 10:48 AM, suporte@logicworks.pt wrote: 

<blockquote>

Is there anything to do on the IPA side? Or is just add users? 
On the oVirt Engine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but the GO button is still in gray. 
I think something is wrong with the autehtication on the IPA server. 

Here is the engine log : 

2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension 'builtin-authn-internal' initialized 
2015-09-23 09:37:57,927 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Initializing extension 'internal' 
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Extension 'internal' initialized 
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Start of enabled extensions list 
2015-09-23 09:37:57,928 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authn', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', Initialized: 'true' 
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: '/etc/ovirt-engine/extensions.d/profile1-authz.properties', Initialized: 'true' 
2015-09-23 09:37:57,929 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'builtin-authn-internal', Extension name: 'Internal Authn (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true' 
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instance name: 'internal', Extension name: 'Internal Authz (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', Home: ' http://www.ovirt.org ', Author 'The oVirt Project', Build interface Version: '0', File: 'N/A', Initialized: 'true' 
2015-09-23 09:37:57,930 INFO [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) End of enabled extensions list 
2015-09-23 09:37:58,103 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (MSC service thread 1-1) Initialization of AsyncTaskManager completed successfully. 
2015-09-23 09:37:58,105 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Start initializing ResourceManager 
2015-09-23 09:37:58,217 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Entered VdsManager constructor 
2015-09-23 09:37:58,268 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6.201,54,321) 
2015-09-23 09:37:58,402 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 was added to the Resource Manager 
2015-09-23 09:37:58,429 INFO [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Finished initializing ResourceManager 
2015-09-23 09:37:58,430 INFO [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service thread 1-1) Initialization of OvfDataUpdater completed successfully. 
2015-09-23 09:37:58,431 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start scheduling to enable vds load balancer 
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished scheduling to enable vds load balancer 
2015-09-23 09:37:58,432 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Start HA Reservation check 
2015-09-23 09:37:58,434 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Finished HA Reservation check 
2015-09-23 09:37:58,440 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Start initializing MacPoolManagerRanges 
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) Init VM custom properties utilities 
2015-09-23 09:37:58,444 INFO [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (MSC service thread 1-1) Init device custom properties utilities 
2015-09-23 09:37:58,453 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initializing Scheduling manager 
2015-09-23 09:37:58,485 INFO [org.ovirt.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Finished initializing. Available MACs in pool: 251 
2015-09-23 09:37:58,499 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) External scheduler disabled, discovery skipped 
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Initialized Scheduling manager 
2015-09-23 09:37:58,500 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) Initializing DWH Heart Beat 
2015-09-23 09:37:58,502 INFO [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) DWH Heart Beat initialized 
2015-09-23 09:38:02,159 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=Host[node3.acloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc 
2015-09-23 09:38:02,167 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardwareInfoVDSCommand, log id: 66c9effc 
2015-09-23 09:38:02,173 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string table 
2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_HIGH_NETWORK_USE not exist in string table 
2015-09-23 09:38:02,174 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_REMOVE_VM not exist in string table 
2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SCRIPT not exist in string table 
2015-09-23 09:38:02,175 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_NETWORK not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,176 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not exist in string table 
2015-09-23 09:38:02,177 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_REMOVED_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_REMOVE_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,178 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,179 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE not exist in string table 
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Host node3.acloud.pt does not enforce SELinux. 
2015-09-23 09:38:02,479 WARN [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled SELinux. 
2015-09-23 09:38:02,623 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) START, GlusterServersListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68 
2015-09-23 09:38:02,708 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServersListVDSCommand, return: [192.168.6.201:CONNECTED], log id: 53441a68 
2015-09-23 09:38:03,178 INFO [org.ovirt.engine.core.vdsbroker.VdsManager] (DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt 
2015-09-23 09:38:03,326 INFO [org.ovirt.engine.core.bll.HandleVdsVersionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: HandleVdsVersionCommand internal: true. Entities affected : ID: 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS 
2015-09-23 09:38:03,562 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: cf31644 
2015-09-23 09:38:03,583 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: cf31644 
2015-09-23 09:38:08,514 INFO [org.ovirt.engine.core.bll.storage.SetStoragePoolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8] Running command: SetStoragePoolStatusCommand internal: true. Entities affected : ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool 
2015-09-23 09:38:08,533 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason : null 
2015-09-23 09:38:08,540 INFO [org.ovirt.engine.core.vdsbroker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown, reason : null 
2015-09-23 09:38:08,714 WARN [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Event ID: -1, Message: Invalid status on Data Center Default. Setting status to Non Responsive. 
2015-09-23 09:38:08,758 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004 
2015-09-23 09:38:08,788 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 767b5004 
2015-09-23 09:38:08,928 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds - node3.acloud.pt, spmStatus SPM, storage pool Default 
2015-09-23 09:38:08,949 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from vds: 192.168.6.201 
2015-09-23 09:38:08,999 INFO [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Custom Event ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Address: 192.168.6.201). 
2015-09-23 09:38:09,051 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePoolId = 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit = false), log id: 6735b7ad 
2015-09-23 09:38:09,157 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on storage pool 00000002-0002-0002-0002-000000000238 
2015-09-23 09:38:09,180 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTasksInfoVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 2c5dc746 
2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoVDSCommand, return: [], log id: 2c5dc746 
2015-09-23 09:38:09,216 INFO [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfoVDSCommand, return: [], log id: 6735b7ad 
2015-09-23 09:38:09,217 INFO [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.pool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default 
2015-09-23 09:38:13,937 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4 
2015-09-23 09:38:13,964 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 663177d4 
2015-09-23 09:38:19,184 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 4db78ebd 
2015-09-23 09:38:19,232 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78ebd 
2015-09-23 09:38:24,382 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) START, GlusterVolumesListVDSCommand(HostName = node3.acloud.pt, HostId = 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320 
2015-09-23 09:38:24,410 INFO [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 3beec320 

Thanks 

----- Mensagem original -----

De: "Ondra Machacek" <omachace@redhat.com> 
Para: suporte@logicworks.pt , users@ovirt.org 
Enviadas: Quarta-feira, 23 De Setembro de 2015 7:40:12 
Assunto: Re: [ovirt-users] FreeIPA 

Just for clarification - ovirt-engine-extension-aaa-ldap-setup is available from oVirt 3.6 

Can you send engine.log, hard to say what's wrong from configuration, it looks good. 

On 09/22/2015 09:55 PM, Ravi Nori wrote: 

<blockquote>

Once you have installed ovirt-engine-extension-aaa-ldap and ovirt-engine-extension-aaa-ldap-setup 

You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps to set up ldap. 

Once that is done you can login to webadmin and add users/groups from ipa 

On 09/22/2015 11:57 AM, suporte@logicworks.pt wrote: 

<blockquote>

Here is what I'm trying to do: 

Ovirt engine : engine.domain.tld 
Freeipa 4.1.0 : ipa.domain.tld 

I have installed on the engine: 
ovirt-engine-extension-aaa-ldap 
openldap-clients /etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include = <openldap.properties>
#include = <389ds.properties>
#include = <rhds.properties>
include = <ipa.properties>
#include = <iplanet.properties>
#include = <rfc2307.properties>
#include = <rfc2307-openldap.properties>

#
# Server
#
vars.server = ipa.domain.tld

#
# Search user and its password.
#
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
vars.password = ipa_admin_password pool.default.serverset.single.server = ${global:vars.server}
pool.default.auth.simple.bindDN = ${global:vars.user}
pool.default.auth.simple.password = ${global:vars.password}

# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS = true
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
#pool.default.ssl.truststore.password = changeit

On the engine cannot find any users configured on the ipa server.

Any help?

Thanks

Jose 

----- Mensagem original -----

De: "Alon Bar-Lev" <alonbl@redhat.com> 
Para: suporte@logicworks.pt 
Cc: "users" <users@ovirt.org> 
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22 
Assunto: Re: [ovirt-users] FreeIPA 

----- Original Message ----- 
> From: suporte@logicworks.pt 
> To: "users" <users@ovirt.org> 
> Sent: Friday, September 18, 2015 5:45:18 PM 
> Subject: [ovirt-users] FreeIPA 
> 
> Hi, 
> 
> Is there any documentation about FreeIPA integration with oVirt 3.5 and how 
> to configure it? 
> 

Hi, 

Please find documentation at [1][2]. 

Regards, 
Alon Bar-Lev. 

[1] http://www.ovirt.org/Features/AAA 
[2] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=ovirt-engine-extension-aaa-ldap-1.0 

_______________________________________________
Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users 

_______________________________________________
Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users 

</blockquote>

</blockquote>

</blockquote>

------=_Part_154094_1342082269.1443022209425
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable

<html><body><div style=3D"font-family: Times New Roman; font-size: 10pt; co=
lor: #000000"><div>I can ping ipa server from engine, the log:<br></div><di=
v><br></div><div>2015-09-23 16:24:50,504 WARN  [org.ovirt.engineextens=
ions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) [ovirt-engine-extens=
ion-aaa-ldap.authn::profile1-authn] Cannot initialize LDAP framework, defer=
ring initialization. Error: An error occurred while attempting to resolve a=
ddress 'ipa.acloud.pt ':  java.net.UnknownHostException: ipa.acloud.pt=
 : Name or service not known<br>2015-09-23 16:24:50,504 DEBUG [org.ovirt.en=
gineextensions.aaa.ldap.AuthnExtension] (MSC service thread 1-1) Ignoring E=
xception: LDAPException(resultCode=3D91 (connect error), errorMessage=3D'An=
 error occurred while attempting to resolve address 'ipa.acloud.pt ': =
 java.net.UnknownHostException: ipa.acloud.pt : Name or service not known')=
<br>        at com.unboundid.ldap.sdk.LD=
APConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:2.3.7]=
<br>        at com.unboundid.ldap.sdk.LD=
APConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:2.3.7]=
<br>        at com.unboundid.ldap.sdk.LD=
APConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk.jar:2=
.3.7]<br>        at com.unboundid.ldap.s=
dk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid-ldaps=
dk.jar:2.3.7]<br>        at com.unboundi=
d.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldapsdk.ja=
r:2.3.7]<br>        at com.unboundid.lda=
p.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:1088) [un=
boundid-ldapsdk.jar:2.3.7]<br>        at=
 com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectionPool.=
java:1026) [unboundid-ldapsdk.jar:2.3.7]<br>     &=
nbsp;  at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPC=
onnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7]<br>   =
     at org.ovirt.engineextensions.aaa.ldap.Framework.c=
reateConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-ldap.ja=
r:]<br>        at org.ovirt.engineextens=
ions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-extens=
ion-aaa-ldap.jar:]<br>        at org.ovi=
rt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:1362) [ov=
irt-engine-extension-aaa-ldap.jar:]<br>      =
  at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framework.java=
:667) [ovirt-engine-extension-aaa-ldap.jar:]<br>    &nb=
sp;   at org.ovirt.engineextensions.aaa.ldap.AuthnExtension.ensur=
eFramework(AuthnExtension.java:49) [ovirt-engine-extension-aaa-ldap.jar:]<b=
r>        at org.ovirt.engineextensions.=
aaa.ldap.AuthnExtension.doInit(AuthnExtension.java:130) [ovirt-engine-exten=
sion-aaa-ldap.jar:]<br>        at org.ov=
irt.engineextensions.aaa.ldap.AuthnExtension.invoke(AuthnExtension.java:66)=
 [ovirt-engine-extension-aaa-ldap.jar:]<br>     &n=
bsp;  at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.=
java:749) [unboundid-ldapsdk.jar:2.3.7]<br>2015-09-23 16:24:50,514 DEBUG [o=
rg.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) open=
 Entry<br>2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.lda=
p.Framework] (MSC service thread 1-1) runSequence Entry name=3D'simple-open=
-pools'<br>2015-09-23 16:24:50,514 DEBUG [org.ovirt.engineextensions.aaa.ld=
ap.Framework] (MSC service thread 1-1) Running sequence simple-open-pools/0=
10/pool-create create authz pool<br>2015-09-23 16:24:50,515 TRACE [org.ovir=
t.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) VARS-BEGIN<=
br>2015-09-23 16:24:50,515 TRACE [org.ovirt.engineextensions.aaa.ldap.Frame=
work] (MSC service thread 1-1) authz_enable =3D 1<br>2015-09-23 16:24:50,51=
5 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread=
 1-1) capability_credentialsChange =3D false<br>2015-09-23 16:24:50,515 TRA=
CE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1)=
 capability_resucrsiveGroupResolution =3D false<br>2015-09-23 16:24:50,515 =
TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1=
-1) maxFilterSize =3D 50<br>2015-09-23 16:24:50,515 TRACE [org.ovirt.engine=
extensions.aaa.ldap.Framework] (MSC service thread 1-1) sensitiveKeys =3D ,=
 password, passwordNew<br>2015-09-23 16:24:50,515 TRACE [org.ovirt.engineex=
tensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrGroupMembe=
rDN =3D member<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions=
.aaa.ldap.Framework] (MSC service thread 1-1) simple_attrMemberOf =3D membe=
rOf<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.F=
ramework] (MSC service thread 1-1) simple_attrsBaseDN =3D defaultNamingCont=
ext<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.F=
ramework] (MSC service thread 1-1) simple_attrsBaseDNIndex =3D 0<br>2015-09=
-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC=
 service thread 1-1) simple_attrsGroupRecord =3D ipaUniqueID, cn, descripti=
on<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Fr=
amework] (MSC service thread 1-1) simple_attrsPrincipalRecord =3D ipaUnique=
ID, uid, displayName, department, givenName, sn, title, mail, krbpasswordex=
piration<br>2015-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.l=
dap.Framework] (MSC service thread 1-1) simple_attrsUserName =3D uid<br>201=
5-09-23 16:24:50,516 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] =
(MSC service thread 1-1) simple_bindFormat =3D dn<br>2015-09-23 16:24:50,51=
7 TRACE [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread=
 1-1) simple_filterGroupObject =3D (objectClass=3Dipausergroup)(ipaUniqueID=
=3D*)<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap=
.Framework] (MSC service thread 1-1) simple_filterUserObject =3D (objectCla=
ss=3Dperson)(ipaUniqueID=3D*)<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.e=
ngineextensions.aaa.ldap.Framework] (MSC service thread 1-1) simple_groupLo=
gic =3D member<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions=
.aaa.ldap.Framework] (MSC service thread 1-1) simple_principalPostFetch =3D=
 ipa-post-principal-fetch<br>2015-09-23 16:24:50,517 TRACE [org.ovirt.engin=
eextensions.aaa.ldap.Framework] (MSC service thread 1-1) stop =3D false<br>=
2015-09-23 16:24:50,517 TRACE [org.ovirt.engineextensions.aaa.ldap.Framewor=
k] (MSC service thread 1-1) VARS-END<br>2015-09-23 16:24:50,517 INFO  =
[org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) [o=
virt-engine-extension-aaa-ldap.authz::profile1-authz] Creating LDAP pool 'a=
uthz'<br>2015-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap=
.Framework] (MSC service thread 1-1) createPool Entry name=3D'authz'<br>201=
5-09-23 16:24:50,518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] =
(MSC service thread 1-1) createConnectionPool Entry<br>2015-09-23 16:24:50,=
518 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thre=
ad 1-1) Creating LDAPConnectionOptions<br>2015-09-23 16:24:50,519 DEBUG [or=
g.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1-1) LDAPC=
onnectionOptions: LDAPConnectionOptions(autoReconnect=3Dtrue, bindWithDNReq=
uiresPassword=3Dtrue, followReferrals=3Dfalse, useKeepAlive=3Dtrue, useLing=
er=3Dtrue, lingerTimeoutSeconds=3D5, useReuseAddress=3Dtrue, useSchema=3Dfa=
lse, usePooledSchema=3Dfalse, pooledSchemaTimeoutMillis=3D3600000, useSynch=
ronousMode=3Dfalse, useTCPNoDelay=3Dtrue, captureConnectStackTrace=3Dfalse,=
 connectTimeoutMillis=3D5000, responseTimeoutMillis=3D60000, abandonOnTimeo=
ut=3Dtrue, maxMessageSize=3D20971520, receiveBufferSize=3D0, sendBufferSize=
=3D0, allowConcurrentSocketFactoryUse=3Dtrue, sslSocketVerifierClass=3D'com=
.unboundid.util.ssl.TrustAllSSLSocketVerifier')<br>2015-09-23 16:24:50,519 =
DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thread 1=
-1) Creating SocketFactory<br>2015-09-23 16:24:50,520 DEBUG [org.ovirt.engi=
neextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating resolver=
<br>2015-09-23 16:24:50,520 DEBUG [org.ovirt.engineextensions.aaa.ldap.Reso=
lver] (MSC service thread 1-1) Open: Context: {java.naming.provider.url=3Dd=
ns://, java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFactory}<br=
>2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framewo=
rk] (MSC service thread 1-1) Resolver: Resolver(env=3D'{java.naming.provide=
r.url=3Ddns://, java.naming.factory.initial=3Dcom.sun.jndi.dns.DnsContextFa=
ctory}', supportIPv6=3D'false', cacheTTL=3D'10000')<br>2015-09-23 16:24:50,=
521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service thre=
ad 1-1) SocketFactory: org.ovirt.engineextensions.aaa.ldap.ResolverSocketFa=
ctory@6b281cdb<br>2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions=
.aaa.ldap.Framework] (MSC service thread 1-1) Creating ServerSet<br>2015-09=
-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC=
 service thread 1-1) ServerSet: SingleServerSet(server=3Dipa.acloud.pt :389=
)<br>2015-09-23 16:24:50,521 DEBUG [org.ovirt.engineextensions.aaa.ldap.Fra=
mework] (MSC service thread 1-1) Creating BindRequest<br>2015-09-23 16:24:5=
0,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service th=
read 1-1) createBindRequest Entry type=3D'simple', user=3D''<br>2015-09-23 =
16:24:50,522 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC ser=
vice thread 1-1) createBindRequest Return SimpleBindRequest(dn=3D'uid=3Dsea=
rch,cn=3Dusers,cn=3Daccounts,dc=3Dacloud,dc=3Dpt')<br>2015-09-23 16:24:50,5=
22 DEBUG [org.ovirt.engineextensions.aaa.ldap.Framework] (MSC service threa=
d 1-1) BindRequest: SimpleBindRequest(dn=3D'uid=3Dsearch,cn=3Dusers,cn=3Dac=
counts,dc=3Dacloud,dc=3Dpt')<br>2015-09-23 16:24:50,522 DEBUG [org.ovirt.en=
gineextensions.aaa.ldap.Framework] (MSC service thread 1-1) Creating LDAPCo=
nnectionPool<br>2015-09-23 16:24:50,522 DEBUG [org.ovirt.engineextensions.a=
aa.ldap.Framework] (MSC service thread 1-1) Sequence simple-open-pools crea=
te authz pool failed due to exception: An error occurred while attempting t=
o resolve address 'ipa.acloud.pt ':  java.net.UnknownHostException: ip=
a.acloud.pt<br>2015-09-23 16:24:50,523 DEBUG [org.ovirt.engineextensions.aa=
a.ldap.Framework] (MSC service thread 1-1) Exception during sequence: LDAPE=
xception(resultCode=3D91 (connect error), errorMessage=3D'An error occurred=
 while attempting to resolve address 'ipa.acloud.pt ':  java.net.Unkno=
wnHostException: ipa.acloud.pt ')<br>      &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:7=
54) [unboundid-ldapsdk.jar:2.3.7]<br>      &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPConnection.java:7=
09) [unboundid-ldapsdk.jar:2.3.7]<br>      &n=
bsp; at com.unboundid.ldap.sdk.LDAPConnection.<init>(LDAPConnection.j=
ava:533) [unboundid-ldapsdk.jar:2.3.7]<br>     &nb=
sp;  at com.unboundid.ldap.sdk.SingleServerSet.getConnection(SingleSer=
verSet.java:229) [unboundid-ldapsdk.jar:2.3.7]<br>    &=
nbsp;   at com.unboundid.ldap.sdk.ServerSet.getConnection(ServerS=
et.java:98) [unboundid-ldapsdk.jar:2.3.7]<br>     =
   at com.unboundid.ldap.sdk.LDAPConnectionPool.createConnection(=
LDAPConnectionPool.java:1088) [unboundid-ldapsdk.jar:2.3.7]<br>  =
      at com.unboundid.ldap.sdk.LDAPConnectionPool=
.<init>(LDAPConnectionPool.java:1026) [unboundid-ldapsdk.jar:2.3.7]<b=
r>        at com.unboundid.ldap.sdk.LDAP=
ConnectionPool.<init>(LDAPConnectionPool.java:913) [unboundid-ldapsdk=
.jar:2.3.7]<br>        at org.ovirt.engi=
neextensions.aaa.ldap.Framework.createConnectionPool(Framework.java:595) [o=
virt-engine-extension-aaa-ldap.jar:]<br>      =
;  at org.ovirt.engineextensions.aaa.ldap.Framework.createPool(Framewo=
rk.java:632) [ovirt-engine-extension-aaa-ldap.jar:]<br>   &n=
bsp;    at org.ovirt.engineextensions.aaa.ldap.Framework.run=
Sequence(Framework.java:1362) [ovirt-engine-extension-aaa-ldap.jar:]<br>&nb=
sp;       at org.ovirt.engineextensions.aaa.l=
dap.Framework.open(Framework.java:667) [ovirt-engine-extension-aaa-ldap.jar=
:]<br>        at org.ovirt.engineextensi=
ons.aaa.ldap.AuthzExtension.ensureFramework(AuthzExtension.java:152) [ovirt=
-engine-extension-aaa-ldap.jar:]<br>      &nb=
sp; at org.ovirt.engineextensions.aaa.ldap.AuthzExtension.doInit(AuthzExten=
sion.java:503) [ovirt-engine-extension-aaa-ldap.jar:]<br>   =
     at org.ovirt.engineextensions.aaa.ldap.AuthzExtens=
ion.invoke(AuthzExtension.java:433) [ovirt-engine-extension-aaa-ldap.jar:]<=
br>        at com.unboundid.ldap.sdk.LDA=
PConnection.connect(LDAPConnection.java:749) [unboundid-ldapsdk.jar:2.3.7]<=
br>2015-09-23 16:24:50,531 WARN  [org.ovirt.engineextensions.aaa.ldap.=
AuthzExtension] (MSC service thread 1-1) [ovirt-engine-extension-aaa-ldap.a=
uthz::profile1-authz] Cannot initialize LDAP framework, deferring initializ=
ation. Error: An error occurred while attempting to resolve address 'ipa.ac=
loud.pt ':  java.net.UnknownHostException: ipa.acloud.pt<br>2015-09-23=
 16:24:50,531 DEBUG [org.ovirt.engineextensions.aaa.ldap.AuthzExtension] (M=
SC service thread 1-1) Ignoring Exception: LDAPException(resultCode=3D91 (c=
onnect error), errorMessage=3D'An error occurred while attempting to resolv=
e address 'ipa.acloud.pt ':  java.net.UnknownHostException: ipa.acloud=
.pt ')<br>        at com.unboundid.ldap.=
sdk.LDAPConnection.connect(LDAPConnection.java:754) [unboundid-ldapsdk.jar:=
2.3.7]<br>        at com.unboundid.ldap.=
sdk.LDAPConnection.connect(LDAPConnection.java:709) [unboundid-ldapsdk.jar:=
2.3.7]<br>        at com.unboundid.ldap.=
sdk.LDAPConnection.<init>(LDAPConnection.java:533) [unboundid-ldapsdk=
.jar:2.3.7]<br>        at com.unboundid.=
ldap.sdk.SingleServerSet.getConnection(SingleServerSet.java:229) [unboundid=
-ldapsdk.jar:2.3.7]<br>        at com.un=
boundid.ldap.sdk.ServerSet.getConnection(ServerSet.java:98) [unboundid-ldap=
sdk.jar:2.3.7]<br>        at com.unbound=
id.ldap.sdk.LDAPConnectionPool.createConnection(LDAPConnectionPool.java:108=
8) [unboundid-ldapsdk.jar:2.3.7]<br>      &nb=
sp; at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>(LDAPConnectio=
nPool.java:1026) [unboundid-ldapsdk.jar:2.3.7]<br>    &=
nbsp;   at com.unboundid.ldap.sdk.LDAPConnectionPool.<init>=
(LDAPConnectionPool.java:913) [unboundid-ldapsdk.jar:2.3.7]<br>  =
      at org.ovirt.engineextensions.aaa.ldap.Frame=
work.createConnectionPool(Framework.java:595) [ovirt-engine-extension-aaa-l=
dap.jar:]<br>        at org.ovirt.engine=
extensions.aaa.ldap.Framework.createPool(Framework.java:632) [ovirt-engine-=
extension-aaa-ldap.jar:]<br>        at o=
rg.ovirt.engineextensions.aaa.ldap.Framework.runSequence(Framework.java:136=
2) [ovirt-engine-extension-aaa-ldap.jar:]<br>     =
   at org.ovirt.engineextensions.aaa.ldap.Framework.open(Framewor=
k.java:667) [ovirt-engine-extension-aaa-ldap.jar:]<br>   &nb=
sp;    at org.ovirt.engineextensions.aaa.ldap.AuthzExtension=
.ensureFramework(AuthzExtension.java:152) [ovirt-engine-extension-aaa-ldap.=
jar:]<br>        at org.ovirt.engineexte=
nsions.aaa.ldap.AuthzExtension.doInit(AuthzExtension.java:503) [ovirt-engin=
e-extension-aaa-ldap.jar:]<br>        at=
 org.ovirt.engineextensions.aaa.ldap.AuthzExtension.invoke(AuthzExtension.j=
ava:433) [ovirt-engine-extension-aaa-ldap.jar:]<br>    =
    at com.unboundid.ldap.sdk.LDAPConnection.connect(LDAPCon=
nection.java:749) [unboundid-ldapsdk.jar:2.3.7]<br>2015-09-23 16:24:50,541 =
INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC se=
rvice thread 1-1) Instance name: 'profile1-authn', Extension name: 'ovirt-e=
ngine-extension-aaa-ldap.authn', Version: '1.0.2', Notes: 'Display name: ov=
irt-engine-extension-aaa-ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: 'http=
://www.ovirt.org', Author 'The oVirt Project', Build interface Version: '0'=
,  File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties', I=
nitialized: 'true'<br>2015-09-23 16:24:50,542 INFO  [org.ovirt.engine.=
core.extensions.mgr.ExtensionsManager] (MSC service thread 1-1) Instance na=
me: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.auth=
z', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-ldap=
-1.0.2-1.el7', License: 'ASL 2.0', Home: 'http://www.ovirt.org', Author 'Th=
e oVirt Project', Build interface Version: '0',  File: '/etc/ovirt-eng=
ine/extensions.d/profile1-authz.properties', Initialized: 'true'<br><br></d=
iv><div><br></div><hr id=3D"zwchr"><div style=3D"color:#000;font-weight:nor=
mal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans=
-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-weight: normal;=
 font-style: normal; text-decoration: none; font-family: Helvetica,Arial,sa=
ns-serif; font-size: 12pt;"><b>De: </b>"Ondra Machacek" <omachace@redhat=
.com><br><b>Para: </b>suporte@logicworks.pt<br><b>Cc: </b>users@ovirt.or=
g<br><b>Enviadas: </b>Quarta-feira, 23 De Setembro de 2015 15:02:54<br><b>A=
ssunto: </b>Re: [ovirt-users] FreeIPA<br><div><br></div>Try this[1] easier =
approach.<br> <br> [1] <a class=3D"moz-txt-link-freetext" href=3D"https://g=
errit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=
=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2d7898f292#l389" target=3D"_bl=
ank" data-mce-href=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-exte=
nsion-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2=
d7898f292#l389">https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-=
aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Daed09b5793e0352dc20812b4746dbd2d7898f=
292#l389</a><br> <br><div class=3D"moz-cite-prefix">On 09/23/2015 03:58 PM,=
 <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt=
" target=3D"_blank" data-mce-href=3D"mailto:suporte@logicworks.pt">suporte@=
logicworks.pt</a> wrote:<br></div><blockquote cite=3D"mid:1838149591.149200=
.1443016712320.JavaMail.zimbra@logicworks.pt"><div style=3D"font-family: Ti=
mes New Roman; font-size: 10pt; color:
        #000000" data-mce-style=3D"font-family: Times New Roman; font-size:=
 10pt; color: #000000;"><div>well, when I run<br></div><div># /usr/share/ov=
irt-engine-jboss-as/bin/jboss-cli.sh --connect --timeout=3D30000 --controll=
er=3Dlocalhost:8706 --user=3Dadmin@internal --commands=3D"if (outcome !=3D =
success) of /subsystem=3Dlogging/logger=3Dorg.ovirt.engineextensions.aaa.ld=
ap:read-attribute(name=3Dlevel),/subsystem=3Dlogging/logger=3Dorg.ovirt.eng=
ineextensions.aaa.ldap:add,end-if,/subsystem=3Dlogging/logger=3Dorg.ovirt.e=
ngineextensions.aaa.ldap:write-attribute(name=3Dlevel,value=3DALL)"</div><d=
iv><br></div><div>get this error: Duplicate argument '--command'/'--command=
s'.<br></div><div><br></div><div>can't see why<br></div><div><br></div><hr =
id=3D"zwchr"><div style=3D"color:#000;font-weight:normal;font-style:normal;=
text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;=
" data-mce-style=3D"color: #000; font-weight: normal; font-style: normal; t=
ext-decoration: none; font-family: Helvetica,Arial,sans-serif; font-size: 1=
2pt;"><b>De: </b>"Ondra Machacek" <a class=3D"moz-txt-link-rfc2396E" href=
=3D"mailto:omachace@redhat.com" target=3D"_blank" data-mce-href=3D"mailto:o=
machace@redhat.com"><omachace@redhat.com></a><br> <b>Para: </b><a cla=
ss=3D"moz-txt-link-abbreviated" href=3D"mailto:suporte@logicworks.pt" targe=
t=3D"_blank" data-mce-href=3D"mailto:suporte@logicworks.pt">suporte@logicwo=
rks.pt</a><br> <b>Cc: </b><a class=3D"moz-txt-link-abbreviated" href=3D"mai=
lto:users@ovirt.org" target=3D"_blank" data-mce-href=3D"mailto:users@ovirt.=
org">users@ovirt.org</a><br> <b>Enviadas: </b>Quarta-feira, 23 De Setembro =
de 2015 12:50:46<br> <b>Assunto: </b>Re: [ovirt-users] FreeIPA<br><div><br>=
</div>You don't have to do anything on IPA side, just create users/groups.<=
br> <br> OK, nothing in the log at INFO level, initialization succeed, so c=
an you please send the debug log? See here[1] how to enable.<br> <br> Thank=
 you.<br> <br> [1] <a class=3D"moz-txt-link-freetext" href=3D"https://gerri=
t.ovirt.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREA=
DME;hb=3DHEAD#l389" target=3D"_blank" data-mce-href=3D"https://gerrit.ovirt=
.org/gitweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=
=3DHEAD#l389">https://gerrit.ovirt.org/gitweb?p=3Dovirt-engine-extension-aa=
a-ldap.git;a=3Dblob;f=3DREADME;hb=3DHEAD#l389</a><br> <br><div class=3D"moz=
-cite-prefix">On 09/23/2015 10:48 AM, <a class=3D"moz-txt-link-abbreviated"=
 href=3D"mailto:suporte@logicworks.pt" target=3D"_blank" data-mce-href=3D"m=
ailto:suporte@logicworks.pt">suporte@logicworks.pt</a> wrote:<br></div><blo=
ckquote cite=3D"mid:629543964.131623.1442998098767.JavaMail.zimbra@logicwor=
ks.pt"><div style=3D"font-family: Times New Roman; font-size: 10pt;
              color: #000000" data-mce-style=3D"font-family: Times New Roma=
n; font-size: 10pt; color: #000000;"><div><br></div><div>Is there anything =
to do on the IPA side? Or is just add users?<br></div><div>On the oVirt Eng=
ine, Users Tab, when click on add I can see profile1 (profile1-aurhz) but t=
he GO button is still in gray.<br></div><div>I think something is wrong wit=
h the autehtication on the IPA server.<br></div><div><br></div><div>Here is=
 the engine log :<br></div><div><br></div><div>2015-09-23 09:37:57,927 INFO=
  [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC servic=
e thread 1-2) Extension 'builtin-authn-internal' initialized<br> 2015-09-23=
 09:37:57,927 INFO  [org.ovirt.engine.core.extensions.mgr.ExtensionsMa=
nager] (MSC service thread 1-2) Initializing extension 'internal'<br> 2015-=
09-23 09:37:57,928 INFO  [org.ovirt.engine.core.extensions.mgr.Extensi=
onsManager] (MSC service thread 1-2) Extension 'internal' initialized<br> 2=
015-09-23 09:37:57,928 INFO  [org.ovirt.engine.core.extensions.mgr.Ext=
ensionsManager] (MSC service thread 1-2) Start of enabled extensions list<b=
r> 2015-09-23 09:37:57,928 INFO  [org.ovirt.engine.core.extensions.mgr=
.ExtensionsManager] (MSC service thread 1-2) Instance name: 'profile1-authn=
', Extension name: 'ovirt-engine-extension-aaa-ldap.authn', Version: '1.0.2=
', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.0.2-1.el7', Lice=
nse: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-freetext" href=3D"http://ww=
w.ovirt.org" target=3D"_blank" data-mce-href=3D"http://www.ovirt.org">http:=
//www.ovirt.org</a>', Author 'The oVirt Project', Build interface Version: =
'0',  File: '/etc/ovirt-engine/extensions.d/profile1-authn.properties'=
, Initialized: 'true'<br> 2015-09-23 09:37:57,929 INFO  [org.ovirt.eng=
ine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) Instanc=
e name: 'profile1-authz', Extension name: 'ovirt-engine-extension-aaa-ldap.=
authz', Version: '1.0.2', Notes: 'Display name: ovirt-engine-extension-aaa-=
ldap-1.0.2-1.el7', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-free=
text" href=3D"http://www.ovirt.org" target=3D"_blank" data-mce-href=3D"http=
://www.ovirt.org">http://www.ovirt.org</a>', Author 'The oVirt Project', Bu=
ild interface Version: '0',  File: '/etc/ovirt-engine/extensions.d/pro=
file1-authz.properties', Initialized: 'true'<br> 2015-09-23 09:37:57,929 IN=
FO  [org.ovirt.engine.core.extensions.mgr.ExtensionsManager] (MSC serv=
ice thread 1-2) Instance name: 'builtin-authn-internal', Extension name: 'I=
nternal Authn (Built-in)', Version: 'N/A', Notes: '', License: 'ASL 2.0', H=
ome: '<a class=3D"moz-txt-link-freetext" href=3D"http://www.ovirt.org" targ=
et=3D"_blank" data-mce-href=3D"http://www.ovirt.org">http://www.ovirt.org</=
a>', Author 'The oVirt Project', Build interface Version: '0',  File: =
'N/A', Initialized: 'true'<br> 2015-09-23 09:37:57,930 INFO  [org.ovir=
t.engine.core.extensions.mgr.ExtensionsManager] (MSC service thread 1-2) In=
stance name: 'internal', Extension name: 'Internal Authz (Built-in)', Versi=
on: 'N/A', Notes: '', License: 'ASL 2.0', Home: '<a class=3D"moz-txt-link-f=
reetext" href=3D"http://www.ovirt.org" target=3D"_blank" data-mce-href=3D"h=
ttp://www.ovirt.org">http://www.ovirt.org</a>', Author 'The oVirt Project',=
 Build interface Version: '0',  File: 'N/A', Initialized: 'true'<br> 2=
015-09-23 09:37:57,930 INFO  [org.ovirt.engine.core.extensions.mgr.Ext=
ensionsManager] (MSC service thread 1-2) End of enabled extensions list<br>=
 2015-09-23 09:37:58,103 INFO  [org.ovirt.engine.core.bll.tasks.AsyncT=
askManager] (MSC service thread 1-1) Initialization of AsyncTaskManager com=
pleted successfully.<br> 2015-09-23 09:37:58,105 INFO  [org.ovirt.engi=
ne.core.vdsbroker.ResourceManager] (MSC service thread 1-1) Start initializ=
ing ResourceManager<br> 2015-09-23 09:37:58,217 INFO  [org.ovirt.engin=
e.core.vdsbroker.VdsManager] (MSC service thread 1-1) Entered VdsManager co=
nstructor<br> 2015-09-23 09:37:58,268 INFO  [org.ovirt.engine.core.vds=
broker.VdsManager] (MSC service thread 1-1) Initialize vdsBroker (192.168.6=
.201,54,321)<br> 2015-09-23 09:37:58,402 INFO  [org.ovirt.engine.core.=
vdsbroker.ResourceManager] (MSC service thread 1-1) VDS 0ffde0bc-c610-43ee-=
8ded-e8d2beb7e0f6 was added to the Resource Manager<br> 2015-09-23 09:37:58=
,429 INFO  [org.ovirt.engine.core.vdsbroker.ResourceManager] (MSC serv=
ice thread 1-1) Finished initializing ResourceManager<br> 2015-09-23 09:37:=
58,430 INFO  [org.ovirt.engine.core.bll.OvfDataUpdater] (MSC service t=
hread 1-1) Initialization of OvfDataUpdater completed successfully.<br> 201=
5-09-23 09:37:58,431 INFO  [org.ovirt.engine.core.bll.scheduling.Sched=
ulingManager] (MSC service thread 1-1) Start scheduling to enable vds load =
balancer<br> 2015-09-23 09:37:58,432 INFO  [org.ovirt.engine.core.bll.=
scheduling.SchedulingManager] (MSC service thread 1-1) Finished scheduling =
to enable vds load balancer<br> 2015-09-23 09:37:58,432 INFO  [org.ovi=
rt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) S=
tart HA Reservation check<br> 2015-09-23 09:37:58,434 INFO  [org.ovirt=
.engine.core.bll.scheduling.SchedulingManager] (MSC service thread 1-1) Fin=
ished HA Reservation check<br> 2015-09-23 09:37:58,440 INFO  [org.ovir=
t.engine.core.bll.network.MacPoolManagerRanges] (org.ovirt.thread.pool-8-th=
read-1) Start initializing MacPoolManagerRanges<br> 2015-09-23 09:37:58,444=
 INFO  [org.ovirt.engine.core.bll.InitBackendServicesOnStartupBean] (M=
SC service thread 1-1) Init VM custom properties utilities<br> 2015-09-23 0=
9:37:58,444 INFO  [org.ovirt.engine.core.bll.InitBackendServicesOnStar=
tupBean] (MSC service thread 1-1) Init device custom properties utilities<b=
r> 2015-09-23 09:37:58,453 INFO  [org.ovirt.engine.core.bll.scheduling=
.SchedulingManager] (MSC service thread 1-1) Initializing Scheduling manage=
r<br> 2015-09-23 09:37:58,485 INFO  [org.ovirt.engine.core.bll.network=
.MacPoolManagerRanges] (org.ovirt.thread.pool-8-thread-1) Finished initiali=
zing. Available MACs in pool: 251<br> 2015-09-23 09:37:58,499 INFO  [o=
rg.ovirt.engine.core.bll.scheduling.SchedulingManager] (MSC service thread =
1-1) External scheduler disabled, discovery skipped<br> 2015-09-23 09:37:58=
,500 INFO  [org.ovirt.engine.core.bll.scheduling.SchedulingManager] (M=
SC service thread 1-1) Initialized Scheduling manager<br> 2015-09-23 09:37:=
58,500 INFO  [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service=
 thread 1-1) Initializing DWH Heart Beat<br> 2015-09-23 09:37:58,502 INFO&n=
bsp; [org.ovirt.engine.core.bll.dwh.DwhHeartBeat] (MSC service thread 1-1) =
DWH Heart Beat initialized<br> 2015-09-23 09:38:02,159 INFO  [org.ovir=
t.engine.core.vdsbroker.vdsbroker.GetHardwareInfoVDSCommand] (DefaultQuartz=
Scheduler_Worker-5) START, GetHardwareInfoVDSCommand(HostName =3D node3.acl=
oud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6, vds=3DHost[node3.a=
cloud.pt,0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6]), log id: 66c9effc<br> 2015-=
09-23 09:38:02,167 INFO  [org.ovirt.engine.core.vdsbroker.vdsbroker.Ge=
tHardwareInfoVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GetHardw=
areInfoVDSCommand, log id: 66c9effc<br> 2015-09-23 09:38:02,173 INFO  =
[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Def=
aultQuartzScheduler_Worker-5) AuditLogType: UNASSIGNED not exist in string =
table<br> 2015-09-23 09:38:02,174 INFO  [org.ovirt.engine.core.dal.dbb=
roker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) =
AuditLogType: VDS_HIGH_NETWORK_USE not exist in string table<br> 2015-09-23=
 09:38:02,174 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandli=
ng.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_F=
AILED_REMOVE_VM not exist in string table<br> 2015-09-23 09:38:02,175 INFO&=
nbsp; [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector=
] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_RUN_UNLOCK_ENTITY_SC=
RIPT not exist in string table<br> 2015-09-23 09:38:02,175 INFO  [org.=
ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQ=
uartzScheduler_Worker-5) AuditLogType: VDS_NETWORK_MTU_DIFFER_FROM_LOGICAL_=
NETWORK not exist in string table<br> 2015-09-23 09:38:02,176 INFO  [o=
rg.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (Defau=
ltQuartzScheduler_Worker-5) AuditLogType: STORAGE_ACTIVATE_ASYNC not exist =
in string table<br> 2015-09-23 09:38:02,176 INFO  [org.ovirt.engine.co=
re.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_=
Worker-5) AuditLogType: USER_ADDED_DISK_PROFILE not exist in string table<b=
r> 2015-09-23 09:38:02,176 INFO  [org.ovirt.engine.core.dal.dbbroker.a=
uditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLo=
gType: USER_FAILED_TO_ADD_DISK_PROFILE not exist in string table<br> 2015-0=
9-23 09:38:02,176 INFO  [org.ovirt.engine.core.dal.dbbroker.auditlogha=
ndling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: US=
ER_REMOVED_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,1=
77 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLog=
Director] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_RE=
MOVE_DISK_PROFILE not exist in string table<br> 2015-09-23 09:38:02,177 INF=
O  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirect=
or] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_DISK_PROFI=
LE not exist in string table<br> 2015-09-23 09:38:02,177 INFO  [org.ov=
irt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQua=
rtzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_DISK_PROFILE not=
 exist in string table<br> 2015-09-23 09:38:02,177 INFO  [org.ovirt.en=
gine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSch=
eduler_Worker-5) AuditLogType: USER_ADDED_CPU_PROFILE not exist in string t=
able<br> 2015-09-23 09:38:02,178 INFO  [org.ovirt.engine.core.dal.dbbr=
oker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) A=
uditLogType: USER_FAILED_TO_ADD_CPU_PROFILE not exist in string table<br> 2=
015-09-23 09:38:02,178 INFO  [org.ovirt.engine.core.dal.dbbroker.audit=
loghandling.AuditLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogTyp=
e: USER_REMOVED_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:=
02,178 INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.Audi=
tLogDirector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_FAILED_T=
O_REMOVE_CPU_PROFILE not exist in string table<br> 2015-09-23 09:38:02,178 =
INFO  [org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDir=
ector] (DefaultQuartzScheduler_Worker-5) AuditLogType: USER_UPDATED_CPU_PRO=
FILE not exist in string table<br> 2015-09-23 09:38:02,179 INFO  [org.=
ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQ=
uartzScheduler_Worker-5) AuditLogType: USER_FAILED_TO_UPDATE_CPU_PROFILE no=
t exist in string table<br> 2015-09-23 09:38:02,479 WARN  [org.ovirt.e=
ngine.core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSc=
heduler_Worker-5) Correlation ID: null, Call Stack: null, Custom Event ID: =
-1, Message: Host node3.acloud.pt does not enforce SELinux.<br> 2015-09-23 =
09:38:02,479 WARN  [org.ovirt.engine.core.vdsbroker.VdsManager] (Defau=
ltQuartzScheduler_Worker-5) Host node3.acloud.pt is running with disabled S=
ELinux.<br> 2015-09-23 09:38:02,623 INFO  [org.ovirt.engine.core.vdsbr=
oker.gluster.GlusterServersListVDSCommand] (DefaultQuartzScheduler_Worker-5=
) START, GlusterServersListVDSCommand(HostName =3D node3.acloud.pt, HostId =
=3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 53441a68<br> 2015-09-23 =
09:38:02,708 INFO  [org.ovirt.engine.core.vdsbroker.gluster.GlusterSer=
versListVDSCommand] (DefaultQuartzScheduler_Worker-5) FINISH, GlusterServer=
sListVDSCommand, return: [192.168.6.201:CONNECTED], log id: 53441a68<br> 20=
15-09-23 09:38:03,178 INFO  [org.ovirt.engine.core.vdsbroker.VdsManage=
r] (DefaultQuartzScheduler_Worker-5) Initializing Host: node3.acloud.pt<br>=
 2015-09-23 09:38:03,326 INFO  [org.ovirt.engine.core.bll.HandleVdsVer=
sionCommand] (DefaultQuartzScheduler_Worker-5) [543d8ea6] Running command: =
HandleVdsVersionCommand internal: true. Entities affected :  ID: 0ffde=
0bc-c610-43ee-8ded-e8d2beb7e0f6 Type: VDS<br> 2015-09-23 09:38:03,562 INFO&=
nbsp; [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand=
] (DefaultQuartzScheduler_Worker-8) START, GlusterVolumesListVDSCommand(Hos=
tName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6)=
, log id: cf31644<br> 2015-09-23 09:38:03,583 INFO  [org.ovirt.engine.=
core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzSchedule=
r_Worker-8) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: cf316=
44<br> 2015-09-23 09:38:08,514 INFO  [org.ovirt.engine.core.bll.storag=
e.SetStoragePoolStatusCommand] (DefaultQuartzScheduler_Worker-18) [205b10f8=
] Running command: SetStoragePoolStatusCommand internal: true. Entities aff=
ected :  ID: 00000002-0002-0002-0002-000000000238 Type: StoragePool<br=
> 2015-09-23 09:38:08,533 INFO  [org.ovirt.engine.core.vdsbroker.stora=
ge.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [205b10f8] S=
torage Pool 00000002-0002-0002-0002-000000000238 - Updating Storage Domain =
7f099189-6afa-4858-9aa5-a97d6b6e4bd5 status from Active to Unknown, reason =
: null<br> 2015-09-23 09:38:08,540 INFO  [org.ovirt.engine.core.vdsbro=
ker.storage.StoragePoolDomainHelper] (DefaultQuartzScheduler_Worker-18) [20=
5b10f8] Storage Pool 00000002-0002-0002-0002-000000000238 - Updating Storag=
e Domain 5e80c937-6996-43df-9db7-a3511347d735 status from Active to Unknown=
, reason : null<br> 2015-09-23 09:38:08,714 WARN  [org.ovirt.engine.co=
re.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzScheduler_=
Worker-18) [205b10f8] Correlation ID: 205b10f8, Call Stack: null, Custom Ev=
ent ID: -1, Message: Invalid status on Data Center Default. Setting status =
to Non Responsive.<br> 2015-09-23 09:38:08,758 INFO  [org.ovirt.engine=
.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzSchedul=
er_Worker-20) START, GlusterVolumesListVDSCommand(HostName =3D node3.acloud=
.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 767b5004<br>=
 2015-09-23 09:38:08,788 INFO  [org.ovirt.engine.core.vdsbroker.gluste=
r.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-20) FINISH, =
GlusterVolumesListVDSCommand, return: {}, log id: 767b5004<br> 2015-09-23 0=
9:38:08,928 INFO  [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyD=
ata] (DefaultQuartzScheduler_Worker-18) [205b10f8] hostFromVds::selectedVds=
 - node3.acloud.pt, spmStatus SPM, storage pool Default<br> 2015-09-23 09:3=
8:08,949 INFO  [org.ovirt.engine.core.vdsbroker.irsbroker.IrsProxyData=
] (DefaultQuartzScheduler_Worker-18) [205b10f8] Initialize Irs proxy from v=
ds: 192.168.6.201<br> 2015-09-23 09:38:08,999 INFO  [org.ovirt.engine.=
core.dal.dbbroker.auditloghandling.AuditLogDirector] (DefaultQuartzSchedule=
r_Worker-18) [205b10f8] Correlation ID: null, Call Stack: null, Custom Even=
t ID: -1, Message: Storage Pool Manager runs on Host node3.acloud.pt (Addre=
ss: 192.168.6.201).<br> 2015-09-23 09:38:09,051 INFO  [org.ovirt.engin=
e.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread.=
pool-8-thread-16) [205b10f8] START, SPMGetAllTasksInfoVDSCommand( storagePo=
olId =3D 00000002-0002-0002-0002-000000000238, ignoreFailoverLimit =3D fals=
e), log id: 6735b7ad<br> 2015-09-23 09:38:09,157 INFO  [org.ovirt.engi=
ne.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand] (org.ovirt.thread=
.pool-8-thread-16) [205b10f8] -- executeIrsBrokerCommand: Attempting on sto=
rage pool 00000002-0002-0002-0002-000000000238<br> 2015-09-23 09:38:09,180 =
INFO  [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDS=
Command] (org.ovirt.thread.pool-8-thread-16) [205b10f8] START, HSMGetAllTas=
ksInfoVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43e=
e-8ded-e8d2beb7e0f6), log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO&nbs=
p; [org.ovirt.engine.core.vdsbroker.vdsbroker.HSMGetAllTasksInfoVDSCommand]=
 (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, HSMGetAllTasksInfoV=
DSCommand, return: [], log id: 2c5dc746<br> 2015-09-23 09:38:09,216 INFO&nb=
sp; [org.ovirt.engine.core.vdsbroker.irsbroker.SPMGetAllTasksInfoVDSCommand=
] (org.ovirt.thread.pool-8-thread-16) [205b10f8] FINISH, SPMGetAllTasksInfo=
VDSCommand, return: [], log id: 6735b7ad<br> 2015-09-23 09:38:09,217 INFO&n=
bsp; [org.ovirt.engine.core.bll.tasks.AsyncTaskManager] (org.ovirt.thread.p=
ool-8-thread-16) [205b10f8] Discovered no tasks on Storage Pool Default<br>=
 2015-09-23 09:38:13,937 INFO  [org.ovirt.engine.core.vdsbroker.gluste=
r.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-30) START, G=
lusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0ffde0=
bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 663177d4<br> 2015-09-23 09:38:13,9=
64 INFO  [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVD=
SCommand] (DefaultQuartzScheduler_Worker-30) FINISH, GlusterVolumesListVDSC=
ommand, return: {}, log id: 663177d4<br> 2015-09-23 09:38:19,184 INFO =
 [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesListVDSCommand] (De=
faultQuartzScheduler_Worker-40) START, GlusterVolumesListVDSCommand(HostNam=
e =3D node3.acloud.pt, HostId =3D 0ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), lo=
g id: 4db78ebd<br> 2015-09-23 09:38:19,232 INFO  [org.ovirt.engine.cor=
e.vdsbroker.gluster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_W=
orker-40) FINISH, GlusterVolumesListVDSCommand, return: {}, log id: 4db78eb=
d<br> 2015-09-23 09:38:24,382 INFO  [org.ovirt.engine.core.vdsbroker.g=
luster.GlusterVolumesListVDSCommand] (DefaultQuartzScheduler_Worker-50) STA=
RT, GlusterVolumesListVDSCommand(HostName =3D node3.acloud.pt, HostId =3D 0=
ffde0bc-c610-43ee-8ded-e8d2beb7e0f6), log id: 3beec320<br> 2015-09-23 09:38=
:24,410 INFO  [org.ovirt.engine.core.vdsbroker.gluster.GlusterVolumesL=
istVDSCommand] (DefaultQuartzScheduler_Worker-50) FINISH, GlusterVolumesLis=
tVDSCommand, return: {}, log id: 3beec320<br> <br></div><div><br></div><div=
>Thanks<br></div><div><br></div><hr id=3D"zwchr"><div style=3D"color:#000;f=
ont-weight:normal;font-style:normal;text-decoration:none;font-family:Helvet=
ica,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-w=
eight: normal; font-style: normal; text-decoration: none; font-family: Helv=
etica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Ondra Machacek" <a cl=
ass=3D"moz-txt-link-rfc2396E" href=3D"mailto:omachace@redhat.com" target=3D=
"_blank" data-mce-href=3D"mailto:omachace@redhat.com"><omachace@redhat.c=
om></a><br> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" href=3D"m=
ailto:suporte@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto:supo=
rte@logicworks.pt">suporte@logicworks.pt</a>, <a class=3D"moz-txt-link-abbr=
eviated" href=3D"mailto:users@ovirt.org" target=3D"_blank" data-mce-href=3D=
"mailto:users@ovirt.org">users@ovirt.org</a><br> <b>Enviadas: </b>Quarta-fe=
ira, 23 De Setembro de 2015 7:40:12<br> <b>Assunto: </b>Re: [ovirt-users] F=
reeIPA<br><div><br></div>Just for clarification - ovirt-engine-extension-aa=
a-ldap-setup is available from oVirt 3.6<br> <br> Can you send engine.log, =
hard to say what's wrong from configuration, it looks good.<br> <br><div cl=
ass=3D"moz-cite-prefix">On 09/22/2015 09:55 PM, Ravi Nori wrote:<br></div><=
blockquote cite=3D"mid:5601B215.8020704@redhat.com"><div class=3D"moz-cite-=
prefix">Once you have installed ovirt-engine-extension-aaa-ldap and ovirt-e=
ngine-extension-aaa-ldap-setup<br> <br> You can run ovirt-engine-extension-=
aaa-ldap-setup and follow the steps to set up ldap.<br> <br> Once that is d=
one you can login to webadmin and add users/groups from ipa<br> <br> On 09/=
22/2015 11:57 AM, <a class=3D"moz-txt-link-abbreviated" href=3D"mailto:supo=
rte@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto:suporte@logicw=
orks.pt">suporte@logicworks.pt</a> wrote:<br></div><blockquote cite=3D"mid:=
1706731369.91118.1442937460886.JavaMail.zimbra@logicworks.pt"><div style=3D=
"font-family: Times New Roman; font-size:
                      10pt; color: #000000" data-mce-style=3D"font-family: =
Times New Roman; font-size: 10pt; color: #000000;"><div>Here is what I'm tr=
ying to do:<br></div><div><br> Ovirt engine : engine.domain.tld<br></div><d=
iv>Freeipa 4.1.0 : ipa.domain.tld<br></div><div><br></div><div>I have insta=
lled on the engine:<pre class=3D"western" style=3D"margin-bottom: 0.5cm;" d=
ata-mce-style=3D"margin-bottom: 0.5cm;"><i>ovirt-engine-extension-aaa-ldap<=
/i>
</pre><pre class=3D"western" style=3D"margin-bottom: 0.5cm;" data-mce-style=
=3D"margin-bottom: 0.5cm;"><i>openldap-clients</i>

/etc/ovirt-engine/aaa/profile1.properties:
#
# Select one
#
#include =3D <openldap.properties>
#include =3D <389ds.properties>
#include =3D <rhds.properties>
include =3D <ipa.properties>
#include =3D <iplanet.properties>
#include =3D <rfc2307.properties>
#include =3D <rfc2307-openldap.properties>

#
# Server
#
vars.server =3D ipa.domain.tld

#
# Search user and its password.
#
vars.user =3D uid=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld
vars.password =3D <em>ipa_admin_password</em>

pool.default.serverset.single.server =3D ${global:vars.server}
pool.default.auth.simple.bindDN =3D ${global:vars.user}
pool.default.auth.simple.password =3D ${global:vars.password}

# Create keystore, import certificate chain and uncomment
# if using ssl/tls.
#pool.default.ssl.startTLS =3D true
#pool.default.ssl.truststore.file =3D ${local:_basedir}/${global:vars.serve=
r}.jks
#pool.default.ssl.truststore.password =3D changeit

On the engine cannot find any users configured on the ipa server.

Any help?

Thanks

Jose
</pre><br></div><div><br></div><hr id=3D"zwchr"><div style=3D"color:#000;fo=
nt-weight:normal;font-style:normal;text-decoration:none;font-family:Helveti=
ca,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"color: #000; font-we=
ight: normal; font-style: normal; text-decoration: none; font-family: Helve=
tica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Alon Bar-Lev" <a class=
=3D"moz-txt-link-rfc2396E" href=3D"mailto:alonbl@redhat.com" target=3D"_bla=
nk" data-mce-href=3D"mailto:alonbl@redhat.com"><alonbl@redhat.com></a=
><br> <b>Para: </b><a class=3D"moz-txt-link-abbreviated" href=3D"mailto:sup=
orte@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto:suporte@logic=
works.pt">suporte@logicworks.pt</a><br> <b>Cc: </b>"users" <a class=3D"moz-=
txt-link-rfc2396E" href=3D"mailto:users@ovirt.org" target=3D"_blank" data-m=
ce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><br> <b>Envia=
das: </b>Sexta-feira, 18 De Setembro de 2015 15:48:22<br> <b>Assunto: </b>R=
e: [ovirt-users] FreeIPA<br><div><br></div><br><div><br></div>----- Origina=
l Message -----<br> > From: <a class=3D"moz-txt-link-abbreviated" href=
=3D"mailto:suporte@logicworks.pt" target=3D"_blank" data-mce-href=3D"mailto=
:suporte@logicworks.pt">suporte@logicworks.pt</a><br> > To: "users" <a c=
lass=3D"moz-txt-link-rfc2396E" href=3D"mailto:users@ovirt.org" target=3D"_b=
lank" data-mce-href=3D"mailto:users@ovirt.org"><users@ovirt.org></a><=
br> > Sent: Friday, September 18, 2015 5:45:18 PM<br> > Subject: [ovi=
rt-users] FreeIPA<br> > <br> > Hi,<br> > <br> > Is there any do=
cumentation about FreeIPA integration with oVirt 3.5 and how<br> > to co=
nfigure it?<br> > <br><div><br></div>Hi,<br><div><br></div>Please find d=
ocumentation at [1][2].<br><div><br></div>Regards,<br> Alon Bar-Lev.<br><di=
v><br></div>[1] <a class=3D"moz-txt-link-freetext" href=3D"http://www.ovirt=
.org/Features/AAA" target=3D"_blank" data-mce-href=3D"http://www.ovirt.org/=
Features/AAA">http://www.ovirt.org/Features/AAA</a><br> [2] <a class=3D"moz=
-txt-link-freetext" href=3D"https://gerrit.ovirt.org/gitweb?p=3Dovirt-engin=
e-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension-aa=
a-ldap-1.0" target=3D"_blank" data-mce-href=3D"https://gerrit.ovirt.org/git=
web?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-=
engine-extension-aaa-ldap-1.0">https://gerrit.ovirt.org/gitweb?p=3Dovirt-en=
gine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt-engine-extension=
-aaa-ldap-1.0</a><br></div><div><br></div></div><br><fieldset class=3D"mime=
AttachmentHeader"></fieldset><br><pre>_____________________________________=
__________
Users mailing list
<a class=3D"moz-txt-link-abbreviated" href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank" data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank" data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre></blockquote><br> <br><fieldset class=3D"mimeAttachmentHeader"></fiel=
dset><br><pre>_______________________________________________
Users mailing list
<a class=3D"moz-txt-link-abbreviated" href=3D"mailto:Users@ovirt.org" targe=
t=3D"_blank" data-mce-href=3D"mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class=3D"moz-txt-link-freetext" href=3D"http://lists.ovirt.org/mailman/l=
istinfo/users" target=3D"_blank" data-mce-href=3D"http://lists.ovirt.org/ma=
ilman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre></blockquote><br></div><div><br></div></div></blockquote><br></div><d=
iv><br></div></div></blockquote><br></div><div><br></div></div></body></htm=
l>
------=_Part_154094_1342082269.1443022209425--

suporte＠logicworks.pt

Alon Bar-Lev

suporte＠logicworks.pt

Ravi Nori

Ondra Machacek

suporte＠logicworks.pt

Ondra Machacek

suporte＠logicworks.pt

Ondra Machacek

suporte＠logicworks.pt

Ondra Machacek

suporte＠logicworks.pt

Ondra Machacek

tags

participants (4)