[Users] DNS reverse configuration
Eduardo Ramos
eduardo at freedominterface.org
Tue Apr 9 12:12:57 UTC 2013
Hi Roy!
In fact "engine-config -a" works fine. It shows me the db config
content. By the way, that engine is running ok as well. I just can't get
engine connected to my samba4.
Watching postgresql log file, whenever I use engine-manage-domains or
engine-config, the following messages are appended:
LOG: connection received: host=localhost port=33331
LOG: connection authorized: user=engine database=engine
LOG: unexpected EOF on client connection
But engine-config works fine. I'm using CentOS 6.3 and using yum there
are not update for postgresql or jdbc to update. The same with ovirt-engine.
I'm really not understanding why it doesn't works.
On 04/07/2013 05:57 AM, Roy Golan wrote:
> On 04/04/2013 09:45 PM, Eduardo Ramos wrote:
>> Hi all!
>>
>> I'm trying to connect my ovirt-engine in a samba4 server. Samba4 is
>> ActiveDirectory complaint. But when I use engine-manage-domains, it
>> returns me a strange message:
>>
>> [root at ovirt-dir eduardo]# engine-manage-domains -action=add
>> -domain=gsr.inpe.br -provider=activeDirectory -user=Administrator
>> -interactive
>> Enter password:
>>
>> Error: Authentication Failed. Error in DNS configuration. Please
>> verify the oVirt Engine host has a valid reverse DNS (PTR) record..
>> Problematic domain is: getconnection: driver class
>> name=org.postgresql.xa.pgxadatasourcegetconnection:
>> url=jdbc:postgresql://localhost:5432/enginegetconnection: considering
>> encrypted passord.
>
>
> it looks like engine-config have problems opening a db connection. The
> DNS reported error is a bug and is shown due to the connection error.
>
> you should get that same error if you'll use
> $ engine.config -a
>
> you have some problem connecting to the localhost postgres instance
> using the password entered during setup probably.
>
> is your postgresql instance up the engine is able to connect to the
> db? engine-config is getting the password from the same source where
> the engine does.
>
> also, a PTR record is no longer needed since openjdk 7 due to a change
> in the impl of the krb5 module.
>
>
>> secdomain=encryptdbpasswordexecute: beginning execution of action
>> action_get.fetching key=domainname ver=general
>> Failure while applying Kerberos configuration. Details:
>> Authentication Failed. Error in DNS configuration. Please verify the
>> oVirt Engine host has a valid reverse DNS (PTR) record.
>>
>> Using host command, I got the following results:
>>
>> [root at ovirt-dir eduardo]# host ovirt-dir.gsr.inpe.br
>> ovirt-dir.gsr.inpe.br has address 150.163.80.125
>>
>> [root at ovirt-dir eduardo]# host 150.163.80.125
>> 125.80.163.150.in-addr.arpa domain name pointer ovirt-dir.gsr.inpe.br.
>>
>> [root at ovirt-dir eduardo]# host -t srv _kerberos._tcp.gsr.inpe.br
>> _kerberos._tcp.gsr.inpe.br has SRV record 1 0 88 samba4.gsr.inpe.br.
>>
>> [root at ovirt-dir eduardo]# host samba4.gsr.inpe.br
>> samba4.gsr.inpe.br has address 150.163.73.109
>>
>> [root at ovirt-dir eduardo]# host 150.163.73.109
>> 109.73.163.150.in-addr.arpa domain name pointer samba4.gsr.inpe.br.
>>
>> As you can see, it is everything ok. No DNS problem.
>>
>> Someone have any idea?
>>
>> Thanks.
>>
>>
>> _______________________________________________
>> Users mailing list
>> Users at ovirt.org
>> http://lists.ovirt.org/mailman/listinfo/users
>
>
>
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ovirt.org/pipermail/users/attachments/20130409/acae5475/attachment-0001.html>
More information about the Users
mailing list