freeipa

Clone
Source Code
GIT

#1931 ipa-server-install : integrated DNS : named fails to start on install
Closed: Fixed None Opened 12 years ago by dpal.

Closed: Fixed
Reopen Issue

https://bugzilla.redhat.com/show_bug.cgi?id=743680

Description of problem:

install ipa-server with integrated DNS - 
Example:

# ipa-server-install --setup-dns --forwarder=10.14.63.12 --hostname ipaserver.jgalipea.redhat.com -r JGALIPEA -n jgalipea.redhat.com -p Secret123 -P Secret123 -a Secret123 --ip-address 10.16.64.87 -U

/var/log/messages:

<snip>
Oct  5 13:45:57 hp-xw4200-01 named[24334]: GSSAPI Error: Unspecified GSS failure.  Minor code may provide more information (Server 
krbtgt/COM@JGALIPEA not found in Kerberos database)
Oct  5 13:45:57 hp-xw4200-01 named[24334]: bind to LDAP server failed: Local error
</snip>

Configuring named:
  [1/9]: adding DNS container
  [2/9]: setting up our zone
  [3/9]: setting up reverse zone
  [4/9]: setting up our own record
  [5/9]: setting up kerberos principal
  [6/9]: setting up named.conf
  [7/9]: restarting named
named service failed to start
  [8/9]: configuring named to start on boot
  [9/9]: changing resolv.conf to point to ourselves
done configuring named.


After install you can start named and everything seems fine.



Version-Release number of selected component (if applicable):
ipa-server-2.1.1-4.el6.x86_64

How reproducible:
This doesn't happen all the time, but has happened twice in the past 2 days for me

Steps to Reproduce:
1. see description
2.
3.

Actual results:
named fails to start after install

Expected results:
named to start successfully

Additional info:

[root@sgi-xe320-01 etc]# cat resolv.conf
search dpal.redhat.com
nameserver 10.16.65.152
[root@sgi-xe320-01 etc]# cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
10.16.65.152 ipaserver.dpal.redhat.com ipaserver

The plan is to always set the system hostname when --hostname is provided.

There is already code to do this called by the client installer.

Here is a work-in-progress patch for the server:

diff --git a/install/tools/ipa-server-install b/install/tools/ipa-server-install
index 7839dbd..8dd5103 100755
--- a/install/tools/ipa-server-install
+++ b/install/tools/ipa-server-install
@@ -871,6 +871,10 @@ def main():
         print "Please wait until the prompt is returned."
         print ""

+    if options.hostname:
+        # configure /etc/sysconfig/network to contain the hostname we set.
+        ipaservices.backup_and_replace_hostname(fstore, sstore, options.hostnam
e)
+
     # Create DS group if it doesn't exist yet
     try:
         grp.getgrnam(dsinstance.DS_GROUP)

left to do are:
- uninstall
- ensure client doesn't try to do this as well

Patch freeipa-mkosek-147-hostname-used-by-ipa-must-be-a-system-hostname.patch sent for review

master: 77cc5e0

ipa-2-1: b8eafa4

Metadata Update from @dpal:
- Issue assigned to mkosek
- Issue set to the milestone: FreeIPA 2.1.3 (bug fixing)
7 years ago

Login to comment on this ticket.

Metadata
None
None
None
normal
None
None
None
None
defect
None
None
IPA
None
1
None
None
None
None
https://bugzilla.redhat.com/show_bug.cgi?id=743680
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.