Hello,
After todays update I noticed I am now running rocky 8.7
freeipa was updated just fine and is working nicely.
However after running ipa-healthcheck I was treated with a HUGE amount of
errors.
After some digging I found that certmonger stopped tracking of all my certs.
Figuring out how to get all the certs tracked again took quite some time
examples or hints on how to do this are sadly missing in ipa-healthcheck
they would have been very usefull
So now all untracked certs are tracked and no longer in ipa-healthcheck
output.
But there are still quite a few errors left which have no clue
Does anybody know how to fix the errors from ipa-healthcheck ? (see txt
below)
Any help would be appreciated
Rob
ipa-healthcheck
args=({'msgtype': 101, 'msgid': 3, 'result': 32, 'desc': 'No such object',
'ctrls': [], 'ldap_request': "search_ext_s(('cn=changelog5,cn=config', 0,
'(objectClass=*)'),{'attrlist': ['nsslapd-changelogmaxentries'],
'serverctrls': None, '
clientctrls': None, 'escapehatch': 'i am sure'}) on instance
TJAKO-THUIS"},)
[
{
"source": "ipahealthcheck.ipa.certs",
"check": "IPACertTracking",
"result": "CRITICAL",
"uuid": "711d096f-c1a8-4528-873d-522498811fbf",
"when": "20221118235210Z",
"duration": "2.149582",
"kw": {
"exception": "bus, object_path and dbus_interface must not be None."
}
},
{
"source": "ipahealthcheck.ipa.certs",
"check": "IPACertDNSSAN",
"result": "CRITICAL",
"uuid": "06997e50-52cd-4240-9b90-41cd7bf9e9f6",
"when": "20221118235212Z",
"duration": "2.599630",
"kw": {
"exception": "bus, object_path and dbus_interface must not be None."
}
},
{
"source": "ipahealthcheck.ipa.certs",
"check": "IPACertRevocation",
"result": "CRITICAL",
"uuid": "5fe7388f-6ec6-433f-87df-4596eabee060",
"when": "20221118235224Z",
"duration": "2.801779",
"kw": {
"exception": "bus, object_path and dbus_interface must not be None."
}
},
{
"source": "ipahealthcheck.ipa.certs",
"check": "IPACertmongerCA",
"result": "ERROR",
"uuid": "7a588ee8-f3f0-4db4-91d0-b236a9dcbb81",
"when": "20221118235224Z",
"duration": "0.009275",
"kw": {
"key": "dogtag-ipa-ca-renew-agent-reuse",
"msg": "Certmonger CA '{key}' missing"
}
},
{
"source": "ipahealthcheck.ipa.files",
"check": "IPAFileCheck",
"result": "CRITICAL",
"uuid": "2e82818e-7210-4cf2-bd99-7490841348c6",
"when": "20221118235226Z",
"duration": "0.199291",
"kw": {
"exception": "bus, object_path and dbus_interface must not be None."
}
}
]