[Freeipa-users] freeipa replication
Rob Crittenden
rcritten at redhat.com
Fri Dec 11 18:50:44 UTC 2009
John Robert Mendoza wrote:
> Rob,
>
> I'm using freeipa 1.2.2 on a fedora 11 machine. I have successfully
> configured it for authentication for our services but the lack of
> replication makes it vulnerable for unavailability and downtime.
>
> It's complaining about the replica server not being able to contact the
> ldap server.
>
> This can be reproduced by:
>
> 1. Clean install fedora 11
> 2. Install the ipa packages
> 3. Clean install fedora 11 on a "replica" server
> 4. Install the ipa packages
> 5. ipa-replica-prepare on the freeipa server
> 6. ipa-replica-install on the replica
>
> note: both machines have DNS records.
>
> TIA
>
Ok, strange. On the replica server can you do something like:
% ldapsearch -x -h ipa.example.com -p 389 -b "dc=example,dc=com" uid=admin
That will confirm that the ports are available.
Can you provide the ipareplica-install.log?
rob
More information about the Freeipa-users
mailing list