Issue #3375: "Failed to load upload-cacert.ldif" in ipa-server-install - freeipa

freeipa

#3375 "Failed to load upload-cacert.ldif" in ipa-server-install

Closed: Fixed None Opened 11 years ago by pviktori.

Apparently added in commit 18eea90

ipa-server-install output contains this message:

ipa         : CRITICAL Failed to load upload-cacert.ldif: Command '/usr/bin/ldapmodify -v -f /tmp/tmpygvLca -H ldap://vm-041.idm.lab.bos.redhat.com:389 -x -D cn=Directory Manager -y /tmp/tmpp0A852' returned non-zero exit status 247

The /tmp/tmpygvLca file shows that $CADERCERT is empty:

# add CA certificate to LDAP server
dn: cn=CAcert,cn=ipa,cn=etc,dc=idm,dc=lab,dc=bos,dc=redhat,dc=com
changetype: add
objectClass: nsContainer
objectClass: pkiCA
cn: CAcert
cACertificate;binary::

It looks like the certificate is not present yet when we try to add it to LDAP. It does get added in a post-update plugin (commit a40285c), so besides the error message everything works fine.

mkosek commented 11 years ago

master: b382a77[[BR]]
ipa-3-1: 253140e

rcritten commented 11 years ago

Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=916399 (Fedora)

Metadata Update from @pviktori:
- Issue assigned to pviktori
- Issue set to the milestone: FreeIPA 3.2 - 2013/01

7 years ago

Metadata

Assignee

pviktori

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 3.2 - 2013/01

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=916399

tester

None

changelog

None

design

None

freeipa

Source Code

#3375 "Failed to load upload-cacert.ldif" in ipa-server-install Closed: Fixed None Opened 11 years ago by pviktori.

Metadata

#3375 "Failed to load upload-cacert.ldif" in ipa-server-install

Closed: Fixed None Opened 11 years ago by pviktori.