Hi,
On Sat, Jun 18, 2022 at 9:49 AM rui liang via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote:
root@ipa-test-65-191:/var/log/dirsrv/slapd-YYDEVOPS-COM# ipactl start Existing service file detected! Assuming stale, cleaning and proceeding Starting Directory Service Failed to read data from service file: Failed to get list of services to probe status! Configured hostname 'ipa-test-65-191.hiido.host.yydevops.com' does not match any master server in LDAP: ipa-test-65-190.hiido.host.yydevops.com Shutting down
my topology A<->B A (CA) B (replica)
ssh A root@ipa-test-65-190:/home/liangrui# ipa-replica-manage list ipa-test-65-190.hiido.host.yydevops.com: master ipa-test-65-191.hiido.host.yydevops.com: master root@ipa-test-65-190:/home/liangrui# ipa-replica-manage del ipa-test-65-191.hiido.host.yydevops.com Checking connectivity in topology suffix 'ca' 'ipa-test-65-191.hiido.host.yydevops.com' is not a part of topology suffix 'ca' Not checking connectivity Checking connectivity in topology suffix 'domain' Skipping replication agreement deletion check for suffix 'ca' Checking for deleted segments in suffix 'domain' Agreements deleted
The command ipa-replica-manage del does 2 things: removes all the agreements from/to the specified server and removes the server entry from LDAP. It's executed when you intend to completely remove a server and run uninstall on the removed server.
Did you intend to only delete the replication agreements? In this case the right command would be ipa topologysegment-del. flo
root@ipa-test-65-190:/home/liangrui# ipa-replica-manage list
ipa-test-65-190.hiido.host.yydevops.com: master
ssh B root@ipa-test-65-191:/home/liangrui# ipactl status Directory Service: STOPPED Directory Service must be running in order to obtain status of other services ipa: INFO: The ipactl command was successful root@ipa-test-65-191:/home/liangrui# ipactl start Existing service file detected! Assuming stale, cleaning and proceeding Starting Directory Service Failed to read data from service file: Failed to get list of services to probe status! Configured hostname 'ipa-test-65-191.hiido.host.yydevops.com' does not match any master server in LDAP: ipa-test-65-190.hiido.host.yydevops.com Shutting down root@ipa-test-65-191:/home/liangrui# ipa-replica-install ipa.ipapython.install.cli.install_tool(Replica): ERROR IPA server is already configured on this system. If you want to reinstall the IPA server, please uninstall it first using 'ipa-server-install --uninstall'. ipa.ipapython.install.cli.install_tool(Replica): ERROR The ipa-replica-install command failed. See /var/log/ipareplica-install.log for more information
ssh A root@ipa-test-65-190:/home/liangrui# ipa hostgroup-add-member ipaservers --hosts ipa-test-65-191.hiido.host.yydevops.com Host-group: ipaservers Description: IPA server hosts Member hosts: ipa-test-65-190.hiido.host.yydevops.com, ipa-test-65-191.hiido.host.yydevops.com
Number of members added 1
root@ipa-test-65-190:/home/liangrui# ipa topologysegment-add --leftnode= ipa-test-65-191.hiido.host.yydevops.com --rightnode= ipa-test-65-190.hiido.host.yydevops.com Suffix name: domain Segment name [ ipa-test-65-191.hiido.host.yydevops.com-to-ipa-test-65-190.hiido.host.yydevops.com]:
ipa: ERROR: invalid 'leftnode': left node is not a topology node: ipa-test-65-191.hiido.host.yydevops.com
Why is service B unavailable after copy B is deleted and cannot be restored?Is this a normal phenomenon?How to recover? Request big guy guidance, thank you! _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahoste... Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure