Hello,
friends I am trying to configure ipa-server and clients for learning purpose, I am able to setup server but I am having problem to setting client for the same.
here are details about my client and server
Server:
OS: Centos6.0
ip: 192.168.100.100
subnet: 255.255.255.0
gateway: 192.168.100.1
# cat /etc/resolv.conf
# Generated by NetworkManager
search example.com
nameserver 192.168.100.100
# hostname
ipa.example.com
how I installed and configured ipa-server
# ipa-server-install -n example.com -r EXAMPLE.COM --setup-dns --selfsign
Client:
OS: Red Hat Enterprise Linux Server release 6.0 (Santiago)
# hostname
client-ipa01.example.com
ip: 192.168.100.101
subnet: 255.255.255.0
gateway: 192.168.100.1
# cat /etc/resolv.conf
# Generated by NetworkManager
search example.com
nameserver 192.168.100.100
when I try to configure this client machine I face following error
# ipa-client-install
Discovery was successful!
Realm: EXAMPLE.COM
DNS Domain: example.com
IPA Server: ipa.example.com
BaseDN: dc=example,dc=com
Continue to configure the system with these values? [no]: yes
Principal: admin
Password for
admin@EXAMPLE.COM:
Joining realm failed: RPC failed at server. Missing or invalid HTTP Referer, missing
where as on server
# tailf /var/log/krb5kdc.log
Feb 22 22:26:45 ipa.example.com krb5kdc[7146](info): AS_REQ (4 etypes {18 17 16 23}) 192.168.100.101: NEEDED_PREAUTH:
admin@EXAMPLE.COM for krbtgt/EXAMPLE.COM@EXAMPLE.COM, Additional pre-authentication required
Feb 22 22:26:56 ipa.example.com krb5kdc[7146](info): AS_REQ (4 etypes {18 17 16 23}) 192.168.100.101: ISSUE: authtime 1361552216, etypes {rep=18 tkt=18 ses=18},
admin@EXAMPLE.COM for krbtgt/EXAMPLE.COM@EXAMPLE.COM
Feb 22 22:26:56 ipa.example.com krb5kdc[7146](info): TGS_REQ (4 etypes {18 17 16 23}) 192.168.100.101: ISSUE: authtime 1361552216, etypes {rep=18 tkt=18 ses=18},
admin@EXAMPLE.COM for HTTP/ipa.example.com@EXAMPLE.COM
Feb 22 22:26:56 ipa.example.com krb5kdc[7146](info): TGS_REQ (1 etypes {18}) 192.168.100.101: ISSUE: authtime 1361552216, etypes {rep=18 tkt=18 ses=18},
admin@EXAMPLE.COM for krbtgt/EXAMPLE.COM@EXAMPLE.COM
Feb 22 22:26:56 ipa.example.com krb5kdc[7146](info): TGS_REQ (4 etypes {18 17 16 23}) 192.168.100.100: ISSUE: authtime 1361552216, etypes {rep=18 tkt=18 ses=18},
admin@EXAMPLE.COM for ldap/ipa.example.com@EXAMPLE.COM
following link points to similar dns issues
link1
http://docs.fedoraproject.org/en-US/...t-install.html
link2
https://access.redhat.com/knowledge/...t-install.html
but if dns were missconfigured then see the output of these command on client and server
Server:
[root@ipa ~]# host ipa.example.com
ipa.example.com has address 192.168.100.100
[root@ipa ~]# host 192.168.100.100
100.100.168.192.in-addr.arpa domain name pointer ipa.example.com.
[root@ipa ~]# host client-ipa01.example.com
client-ipa01.example.com has address 192.168.100.101
[root@ipa ~]# host 192.168.100.101
101.100.168.192.in-addr.arpa domain name pointer client-ipa01.example.com.
Client:
[root@client-ipa01 ~]# host ipa.example.com
ipa.example.com has address 192.168.100.100
[root@client-ipa01 ~]# host 192.168.100.100
100.100.168.192.in-addr.arpa domain name pointer ipa.example.com.
[root@client-ipa01 ~]# host client-ipa01.example.com
client-ipa01.example.com has address 192.168.100.101
[root@client-ipa01 ~]# host 192.168.100.101
101.100.168.192.in-addr.arpa domain name pointer client-ipa01.example.com.
I've also added an log file as an attachment to this thread from client machine
file which I've attached is "/var/log/ipaclient-install.log"
every time I try to configure client I get same error. I am not able to understand what is going wrong, Is it my procedure or some thing wrong in configuration or any thing else.
thank you
pushkar