[Freeipa-devel] reason for re-install failure
Rob Crittenden
rcritten at redhat.com
Mon Sep 10 13:24:01 UTC 2007
Karl MacMillan wrote:
> On Fri, 2007-09-07 at 16:07 -0400, Simo Sorce wrote:
>> On Fri, 2007-09-07 at 15:47 -0400, Rob Crittenden wrote:
>>> I ran into the "fail on re-install" problem where the install fails on a
>>> kadmin timeout.
>>>
>>> The problem is that the installation appends the new password to
>>> /var/kerberos/krb5kdc/ldappwd. This can lead to duplicate entries and it
>>> apparently makes things flip out. I just removed that file and the
>>> re-install went fine.
>> Ok this maybe seen as a bug, should we backup and move the original file
>> on installation ?
>>
>> Simo.
>
> Nah - I think we should just have a set of re-install diections that
> tell how to remove FDS instances and fix this problem.
>
> Karl
>
It's really a kerberos bug. I think we should simply replace any
existing entries. We have a very specific DN in there. Replacing it is
likely the right thing to do.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20070910/2d89829a/attachment.bin>
More information about the Freeipa-devel
mailing list