https://bugzilla.redhat.com/show_bug.cgi?id=743680
Description of problem: install ipa-server with integrated DNS - Example: # ipa-server-install --setup-dns --forwarder=10.14.63.12 --hostname ipaserver.jgalipea.redhat.com -r JGALIPEA -n jgalipea.redhat.com -p Secret123 -P Secret123 -a Secret123 --ip-address 10.16.64.87 -U /var/log/messages: <snip> Oct 5 13:45:57 hp-xw4200-01 named[24334]: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Server krbtgt/COM@JGALIPEA not found in Kerberos database) Oct 5 13:45:57 hp-xw4200-01 named[24334]: bind to LDAP server failed: Local error </snip> Configuring named: [1/9]: adding DNS container [2/9]: setting up our zone [3/9]: setting up reverse zone [4/9]: setting up our own record [5/9]: setting up kerberos principal [6/9]: setting up named.conf [7/9]: restarting named named service failed to start [8/9]: configuring named to start on boot [9/9]: changing resolv.conf to point to ourselves done configuring named. After install you can start named and everything seems fine. Version-Release number of selected component (if applicable): ipa-server-2.1.1-4.el6.x86_64 How reproducible: This doesn't happen all the time, but has happened twice in the past 2 days for me Steps to Reproduce: 1. see description 2. 3. Actual results: named fails to start after install Expected results: named to start successfully Additional info:
[root@sgi-xe320-01 etc]# cat resolv.conf search dpal.redhat.com nameserver 10.16.65.152 [root@sgi-xe320-01 etc]# cat /etc/hosts 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 10.16.65.152 ipaserver.dpal.redhat.com ipaserver
The plan is to always set the system hostname when --hostname is provided.
There is already code to do this called by the client installer.
Here is a work-in-progress patch for the server:
diff --git a/install/tools/ipa-server-install b/install/tools/ipa-server-install index 7839dbd..8dd5103 100755 --- a/install/tools/ipa-server-install +++ b/install/tools/ipa-server-install @@ -871,6 +871,10 @@ def main(): print "Please wait until the prompt is returned." print "" + if options.hostname: + # configure /etc/sysconfig/network to contain the hostname we set. + ipaservices.backup_and_replace_hostname(fstore, sstore, options.hostnam e) + # Create DS group if it doesn't exist yet try: grp.getgrnam(dsinstance.DS_GROUP)
left to do are: - uninstall - ensure client doesn't try to do this as well
attachment freeipa-mkosek-147-hostname-used-by-ipa-must-be-a-system-hostname.patch
Patch freeipa-mkosek-147-hostname-used-by-ipa-must-be-a-system-hostname.patch sent for review
master: 77cc5e0
ipa-2-1: b8eafa4
Metadata Update from @dpal: - Issue assigned to mkosek - Issue set to the milestone: FreeIPA 2.1.3 (bug fixing)
Login to comment on this ticket.