#3480 Cannot delete replication agreement using delegated admin
Closed: wontfix 5 years ago Opened 11 years ago by rcritten.

One should be able to delete replication agreements as the admin user.

kinit admin[[br]]

ipa-replica-manage del somehost.example.com[[br]]

Deleting a master is irreversible.[[br]]
To reconnect to the remote master you will need to prepare a new replica file
and re-install.[[br]]
Continue to delete? [no]: y[[br]]
Deleting replication agreements between somehost.example.com and rawhide2.example.com[[br]]
ipa: INFO: Setting agreement[[br]] cn=meTorawhide2.example.com,cn=replica,cn=dc\=example\,dc\=com,cn=mapping tree,cn=config schedule to 2358-2359 0 to force synch[[br]]
ipa: INFO: Deleting schedule 2358-2359 0 from agreement cn=meTorawhide2.example.com,cn=replica,cn=dc\=example\,dc\=com,cn=mapping tree,cn=config[[br]]
ipa: INFO: Replication Update in progress: FALSE: status: 0 Replica acquired successfully: Incremental update succeeded: start: 0: end: 0[[br]]
Deleted replication agreement from 'rawhide2.example.com' to 'somehost.example.com'[[br]]
unexpected error: Insufficient access: Insufficient 'add' privilege to add the entry 'cn=cleanallruv,cn=tasks,cn=config'. arguments: entry=cn=clean 3,cn=cleanallruv,cn=tasks,cn=config: [('objectclass', ['top', 'extensibleObject']), ('replica-id', [3]), ('cn', ['clean 3']), ('replica-base-dn', [ipapython.dn.DN('dc=greyoak,dc=com')])][[br]]


The replica was actually deleted ok, it just left the RUV data.

So one would need to come back and run: ipa-replica-manage clean-ruv <rid of somehost>

Ah, wait, it also leaves the cn=masters entries.

Releasing tickets from distant milestones.

Metadata Update from @rcritten:
- Issue assigned to someone
- Issue set to the milestone: Future Releases

7 years ago

Thank you taking time to submit this request for FreeIPA. Unfortunately this bug was not given priority and the team lacks the capacity to work on it at this time.

Given that we are unable to fulfil this request I am closing the issue as wontfix. To request re-consideration of this decision please reopen this issue and provide additional technical details about its importance to you.

Metadata Update from @rcritten:
- Issue close_status updated to: wontfix
- Issue status updated to: Closed (was: Open)

5 years ago

Login to comment on this ticket.

Metadata