[Users] Fwd: Re: freeipa and ovirt can't add domain

Roy Golan rgolan at redhat.com
Sun Apr 29 05:22:07 UTC 2012


On 04/26/2012 11:41 PM, Itamar Heim wrote:
> are your patches already in for freeipa to work?
>
> -------- Original Message --------
> Subject: Re: [Users] freeipa and ovirt can't add domain
> Date: Thu, 26 Apr 2012 13:02:18 -0700
> From: Jesse Brandeburg <jesse.brandeburg at intel.com>
> To: Jesse Brandeburg <jesse.brandeburg at intel.com>
> CC: users at ovirt.org
>
> On Thu, 26 Apr 2012 12:18:57 -0700
> Jesse Brandeburg <jesse.brandeburg at intel.com> wrote:
>
>> On Thu, 26 Apr 2012 14:35:32 -0400
>> <snmishra at linux.vnet.ibm.com> wrote:
>>
>> > What's in your engine-manage-domains.log?
>>
>> hm, didn't know that log was there
>> 2012-04-26 09:15:37,544 INFO  
>> [org.ovirt.engine.core.utils.kerberos.ManageDomains] Creating 
>> kerberos configuration for domain(s): bvtest.org
>> 2012-04-26 09:15:37,648 ERROR 
>> [org.ovirt.engine.core.dns.DnsSRVLocator] Error: could not find DNS 
>> SRV record name: _kerberos._tcp.BVTEST.ORG.
>> Exception message is: DNS name not found [response code 3]
>> Possible causes: missing DNS entries in the DNS server or DNS 
>> resolving issues from engine-core machine.
>> Please Ensure correct DNS entries exist in the DNS server and ensure 
>> the DNS server is reachable from the engine-core machine.
>>
>> I'll go add that _kerberos._tcp.BVTEST.ORG option to dnsmasq and let 
>> you know how it goes!
> I did all the _*. stuff that was in the ipa template.
>
> well that put me in the right direction now moving onto this:
>
> 2012-04-26 12:26:21,014 INFO 
> [org.ovirt.engine.core.utils.kerberos.ManageDomains] Creating kerberos 
> configuration for domain(s): bvtest.org
> 2012-04-26 12:26:21,044 INFO 
> [org.ovirt.engine.core.utils.kerberos.ManageDomains] Successfully 
> created kerberos configuration for domain(s): bvtest.org
> 2012-04-26 12:26:21,044 INFO 
> [org.ovirt.engine.core.utils.kerberos.ManageDomains] Testing kerberos 
> configuration for domain: bvtest.org
>
> so thats good, but I get this back from command line:
>
> [root]# engine-manage-domains -action=add -domain=bvtest.org 
> -user=admin -passwordFile=/root/dompass
jesse please get the latest ovirt  and add -provider=ipa to your command 
line

# engine-manage-domains -action=add -domain=bvtest.org -user=admin 
-passwordFile=/root/dompass  -provider=ipa

> No user in Directory was found for admin at BVTEST.ORG. Trying next LDAP 
> server in list
> Failure while testing domain bvtest.org. Details: No user information 
> was found for user
>
> I'm now trying to figure out how to run ldapsearch to check my ldap 
> config.
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users




More information about the Users mailing list