problem witn freeIPA instalation

Issues related to applications and software problems
Post Reply
ruslan133
Posts: 10
Joined: 2018/04/28 06:48:05

problem witn freeIPA instalation

Post by ruslan133 » 2020/07/15 10:14:46

Configuring certificate server (pki-tomcatd). Estimated time: 3 minutes
[1/29]: configuring certificate server instance
[2/29]: reindex attributes
[3/29]: exporting Dogtag certificate store pin
[4/29]: stopping certificate server instance to update CS.cfg
[5/29]: backing up CS.cfg
[6/29]: disabling nonces
[7/29]: set up CRL publishing
[8/29]: enable PKIX certificate path discovery and validation
[9/29]: starting certificate server instance
[10/29]: configure certmonger for renewals
[11/29]: requesting RA certificate from CA
[12/29]: setting audit signing renewal to 2 years
[13/29]: restarting certificate server
[14/29]: publishing the CA certificate
[15/29]: adding RA agent as a trusted user
[16/29]: authorizing RA to modify profiles
[17/29]: authorizing RA to manage lightweight CAs
[18/29]: Ensure lightweight CAs container exists
[19/29]: configure certificate renewals
[20/29]: configure Server-Cert certificate renewal
[21/29]: Configure HTTP to proxy connections
[22/29]: restarting certificate server
[23/29]: updating IPA configuration
[24/29]: enabling CA instance
[25/29]: migrating certificate profiles to LDAP
[26/29]: importing IPA certificate profiles
[27/29]: adding default CA ACL
[28/29]: adding 'ipa' CA entry
[29/29]: configuring certmonger renewal for lightweight CAs
Done configuring certificate server (pki-tomcatd).
Configuring directory server (dirsrv)
[1/3]: configuring TLS for DS instance
[2/3]: adding CA certificate entry
[error] CalledProcessError: Command '/usr/bin/certutil -d dbm:/etc/dirsrv/slapd-FREEIPA-DOMAIN/ -O --simple-self-signed -n FREEIPA.DOMAIN IPA CA -f /etc/dirsrv/slapd-FREEIPA-DOMAIN/pwdfile.txt' returned non-zero exit status 1
ipapython.admintool: ERROR Command '/usr/bin/certutil -d dbm:/etc/dirsrv/slapd-FREEIPA-DOMAIN/ -O --simple-self-signed -n FREEIPA.DOMAIN IPA CA -f /etc/dirsrv/slapd-FREEIPA-DOMAIN/pwdfile.txt' returned non-zero exit status 1
ipapython.admintool: ERROR The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information

User avatar
TrevorH
Forum Moderator
Posts: 29972
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: problem witn freeIPA instalation

Post by TrevorH » 2020/07/15 10:27:45

Does it really say "FREEIPA.DOMAIN" or is that something you obfuscated? If it says FREEIPA.DOMAIN then that doesn't look valid.

Also, from previous experience, freeipa needs stupid amounts of RAM just to do nothing. The minimum VM size I've seen mentioned is 4GB.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

ruslan133
Posts: 10
Joined: 2018/04/28 06:48:05

Re: problem witn freeIPA instalation

Post by ruslan133 » 2020/07/15 11:02:36

I make writen any name my domain - it s not resolve problem
and i aded 8 gb ram my virtual host - it s not resolve problem to

Post Reply

Return to “CentOS 7 - Software Support”