我正在使用centos 7.6建立一个实验室来安装freeipa服务器,但是安装失败,并附带了背景信息:
root@ipaserver01# hostname -f
ipaserver01.sds.local
root@ipaserver01: sestatus
SELinux status: enabled
Current mode: permissive
root@ipaserver01: systemctl status firewalld
firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)
Active: active (running) since mié 2019-04-17 17:39:44 -04; 30min ago
Docs: man:firewalld(1)
Main PID: 2681 (firewalld)
CGroup: /system.slice/firewalld.service
2681 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid
abr 17 17:39:43 ipaserver01.sds.local systemd[1]: Starting firewalld - dynamic firewall daemon...
abr 17 17:39:44 ipaserver01.sds.local systemd[1]: Started firewalld - dynamic firewall daemon.
root@ipaserver01: echo $JAVA_HOME
/opt/jdk1.8.0_211
root@ipaserver01: java -version
java version 1.8.0_211
Java(TM) SE Runtime Environment (build 1.8.0_211-b12)
Java HotSpot(TM) 64-Bit Server VM (build 25.211-b12, mixed mode)
root@ipaserver01: cat /etc/redhat-release
CentOS Linux release 7.6.1810 (Core)
安装程序在确认之前请求的数据
The IPA Master Server will be configured with: Hostname: ipaserver01.sds.local IP address(es): 192.168.10.10 Domain name: sds.local Realm name: SDS.LOCAL Continue to configure the system with these values? no: yes
安装过程中控制台上显示的信息
Upgrading IPA:. Estimated time: 1 minute 30 seconds
1/10: stopping directory server
2/10: saving configuration
3/10: disabling listeners
4/10: enabling DS global lock
5/10: disabling Schema Compat
6/10: starting directory server
7/10: upgrading server
ipaserver.install.ldapupdate: ERROR Parent DN of cn=anonymous-limits,cn=etc,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.ldapupdate: ERROR Add failure Operations error:
ipaserver.install.ldapupdate: ERROR Parent DN of cn=usermap,cn=selinux,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.ldapupdate: ERROR Parent DN of cn=Managed Entries,cn=etc,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.ldapupdate: ERROR Parent DN of cn=Templates,cn=Managed Entries,cn=etc,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.ldapupdate: ERROR Parent DN of cn=Definitions,cn=Managed Entries,cn=etc,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.ldapupdate: ERROR Parent DN of cn=ng,cn=alt,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.ldapupdate: ERROR Add failure missing required attribute "objectclass"
ipaserver.install.ldapupdate: ERROR Parent DN of cn=computers,cn=accounts,dc=sds,dc=local may not exist, cannot create the entry
...
ipaserver.install.ldapupdate: ERROR Parent DN of cn=ca,cn=topology,cn=ipa,cn=etc,dc=sds,dc=local may not exist, cannot create the entry
ipaserver.install.plugins.adtrust: ERROR default_range: No local ID range and no admins group found. Cannot create default ID range
ipaserver.install.upgradeinstance: ERROR Upgrade failed with no such entry
error RuntimeError: no such entry
cleanup: stopping directory server
cleanup: restoring configuration
ipapython.admintool: ERROR Update failed: no such entry
ipapython.admintool: ERROR The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information
/var/log/ipaserver-install.log
错误1:
2019-04-17T21:55:31Z DEBUG Updating managed permissions for certmapconfig
2019-04-17T21:55:31Z DEBUG Updating managed permission: System: Modify Certmap Configuration
2019-04-17T21:55:31Z DEBUG Updating ACI for managed permission: System: Modify Certmap Configuration
2019-04-17T21:55:31Z DEBUG Adding ACI u(targetattr = ipacertmappromptusername)(targetfilter = (objectclass=ipacertmapconfigobject))(version 3.0;acl permission:System: Modify Certmap Configuration;allow (write) groupdn = ldap:///cn=System: Modify Certmap Configuration,cn=permissions,cn=pbac,dc=sds,dc=local;) to cn=certmap,dc=sds,dc=local
2019-04-17T21:55:31Z DEBUG Destroyed connection context.ldap2_140650764899536
2019-04-17T21:55:31Z ERROR Upgrade failed with no such entry
2019-04-17T21:55:31Z DEBUG Traceback (most recent call last):
File /usr/lib/python2.7/site-packages/ipaserver/install/upgradeinstance.py, line 274, in __upgrade
self.modified = (ld.update(self.files) or self.modified)
RuntimeError: no such entry
2019-04-17T21:55:31Z DEBUG error RuntimeError: no such entry
错误2:
2019-04-17T21:55:38Z DEBUG Stop of dirsrv@SDS-LOCAL.service complete
2019-04-17T21:55:38Z DEBUG duration: 6 seconds
2019-04-17T21:55:38Z DEBUG [cleanup]: restoring configuration
2019-04-17T21:55:38Z DEBUG Loading StateFile from /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Loading StateFile from /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Saving StateFile to /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Loading StateFile from /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Loading StateFile from /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Saving StateFile to /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Loading StateFile from /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG Loading StateFile from /var/lib/ipa/sysrestore/sysrestore.state
2019-04-17T21:55:38Z DEBUG duration: 0 seconds
2019-04-17T21:55:38Z DEBUG File /usr/lib/python2.7/site-packages/ipapython/admintool.py, line 178, in execute
return_value = self.run()
2019-04-17T21:55:38Z DEBUG The ipa-server-install command failed, exception: RuntimeError: Update failed: no such entry
2019-04-17T21:55:38Z ERROR Update failed: no such entry
2019-04-17T21:55:38Z ERROR The ipa-server-install command failed.
如果可以帮助我如何解决问题以实现全新安装。
谢谢