Issue #2451: Remove memberPrincipal for deleted replicas - freeipa

freeipa

#2451 Remove memberPrincipal for deleted replicas

Closed: Fixed None Opened 12 years ago by mkosek.

When a replica is deleted, its memberPrincipal entries in cn=s4u2proxy,cn=etc,SUFFIX are not removed. Then, if the replica is reinstalled and connected again, the installer reports error:

# ipa-replica-install /home/mkosek/replica-info-vm-115.idm.lab.bos.redhat.com.gpg 
...
  [20/30]: restarting directory server
  [21/30]: setting up initial replication
Starting replication, please wait until this has completed.
Update in progress
Update in progress
Update in progress
Update in progress
Update succeeded
  [22/30]: adding replication acis
  [23/30]: setting Auto Member configuration
  [24/30]: enabling S4U2Proxy delegation
ipa         : CRITICAL Failed to load replica-s4u2proxy.ldif: Command '/usr/bin/ldapmodify -h vm-115.idm.lab.bos.redhat.com -v -f /tmp/tmpfZbJ1X -x -D cn=Directory Manager -y /tmp/tmppwulA0' returned non-zero exit status 20
  [25/30]: initializing group membership
  [26/30]: adding master entry
  [27/30]: configuring Posix uid/gid generation

Excerpt from ipareplica-install.log:

2012-02-27T13:21:30Z DEBUG   [24/30]: enabling S4U2Proxy delegation
2012-02-27T13:21:30Z DEBUG args=/usr/bin/ldapmodify -h vm-115.idm.lab.bos.redhat.com -v -f /tmp/tmpfZbJ1X -x -D cn=Directory Manager -y /tmp/tmppwulA0
2012-02-27T13:21:30Z DEBUG stdout=add memberPrincipal:
        HTTP/vm-115.idm.lab.bos.redhat.com@IDM.LAB.BOS.REDHAT.COM
modifying entry "cn=ipa-http-delegation,cn=s4u2proxy,cn=etc,dc=idm,dc=lab,dc=bos,dc=redhat,dc=com"


2012-02-27T13:21:30Z DEBUG stderr=ldap_initialize( ldap://vm-115.idm.lab.bos.redhat.com )
ldap_modify: Type or value exists (20)

2012-02-27T13:21:30Z CRITICAL Failed to load replica-s4u2proxy.ldif: Command '/usr/bin/ldapmodify -h vm-115.idm.lab.bos.redhat.com -v -f /tmp/tmpfZbJ1X -x -D cn=Directory Manager -y /tmp/tmppwulA0' returned non-zero exit status 20
2012-02-27T13:21:30Z DEBUG   duration: 0 seconds

mkosek commented 12 years ago

master: b7d092a[[BR]]
ipa-2-2: 5cc1e63

Metadata Update from @mkosek:
- Issue assigned to mkosek
- Issue set to the milestone: FreeIPA 2.2 Core Effort - 2012/03

7 years ago

Metadata

Assignee

mkosek

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 2.2 Core Effort - 2012/03

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#2451 Remove memberPrincipal for deleted replicas Closed: Fixed None Opened 12 years ago by mkosek.

Metadata

#2451 Remove memberPrincipal for deleted replicas

Closed: Fixed None Opened 12 years ago by mkosek.