3.2.1. Testing the Configuration

3.2.1. Testing the Configuration

The following examples assume that you are using EXAMPLE.COM as your realm.

Note

The realm is used as the base DN in the directory instance; in this case it will be dc=example,dc=com.

When the installation is complete, all of the services should be running.

Procedure 3.2. To test your Red Hat Enterprise IPA installation:

  1. Use the kinit command to request a Kerberos ticket:

    $ kinit admin 

    Password for admin@EXAMPLE.COM:

  2. Use the klist command to display the list of Kerberos tickets:

    $ klist 

    Ticket cache: FILE:/tmp/krb5cc_0
Default principal: admin@EXAMPLE.COM
Valid starting     Expires            Service principal
03/05/08 02:47:53  03/06/08 02:47:50  krbtgt/EXAMPLE.COM@EXAMPLE.COM
Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached

  3. Use the ipa-finduser command to search for the admin user: 

    $ /usr/sbin/ipa-finduser admin
cn: Administrator
homedirectory: /home/admin
loginshell: /bin/bash
uid: admin

    If you receive output similar to the following, ensure that DNS is configured correctly: 

    Could not initialize GSSAPI: Unspecified GSS failure.
Minor code may provide more information/Server not found in Kerberos database.