Am 30.11.2020 um 21:17 schrieb Rob Crittenden via FreeIPA-users <freeipa-users@lists.fedorahosted.org>:



Did you re-run the commands with --verbose as suggested?



Sorry, yes.


[root@ipa-ansible1 ~]# ipa-replica-manage list --verbose  ipa-ansible1.ipa.example.org
Directory Manager password:

Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/ipapython/ipaldap.py", line 1076, in error_handler
    yield
  File "/usr/lib/python3.6/site-packages/ipapython/ipaldap.py", line 1224, in simple_bind
    bind_dn, bind_password, server_controls, client_controls) reply 0
  File "/usr/lib64/python3.6/site-packages/ldap/ldapobject.py", line 444, in simple_bind_s
    resp_type, resp_data, resp_msgid, resp_ctrls = self.result3(msgid,all=1,timeout=self.timeout)
  File "/usr/lib64/python3.6/site-packages/ldap/ldapobject.py", line 749, in result3
    resp_ctrl_classes=resp_ctrl_classes bytes, in 409.9 seconds
  File "/usr/lib64/python3.6/site-packages/ldap/ldapobject.py", line 756, in result4
    ldap_result = self._ldap_call(self._l.result4,msgid,all,timeout,add_ctrls,add_intermediates,add_extop)
  File "/usr/lib64/python3.6/site-packages/ldap/ldapobject.py", line 329, in _ldap_call
    reraise(exc_type, exc_value, exc_traceback)pressed 21412, factor 0.07
  File "/usr/lib64/python3.6/site-packages/ldap/compat.py", line 44, in reraise
    raise exc_valuestored on 29 Nov 2020 at 17:28
  File "/usr/lib64/python3.6/site-packages/ldap/ldapobject.py", line 313, in _ldap_call
    result = func(*args,**kwargs)
ldap.INVALID_CREDENTIALS: {'desc': 'Invalid credentials', 'info': 'Invalid credentials'}

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/sbin/ipa-replica-manage", line 1620, in <module>
    main(options, args)
  File "/usr/sbin/ipa-replica-manage", line 1546, in main
    api.Backend.ldap2.connect(bind_pw=options.dirman_passwd)
  File "/usr/lib/python3.6/site-packages/ipalib/backend.py", line 69, in connect
    conn = self.create_connection(*args, **kw)
  File "/usr/lib/python3.6/site-packages/ipaserver/plugins/ldap2.py", line 177, in create_connection
    client_controls=clientctrls)
  File "/usr/lib/python3.6/site-packages/ipapython/ipaldap.py", line 1224, in simple_bind
    bind_dn, bind_password, server_controls, client_controls)
  File "/usr/lib64/python3.6/contextlib.py", line 99, in __exit__
    self.gen.throw(type, value, traceback)
  File "/usr/lib/python3.6/site-packages/ipapython/ipaldap.py", line 1104, in error_handler
    raise errors.ACIError(info="%s %s" % (info, desc))
ipalib.errors.ACIError: Insufficient access: Invalid credentials Invalid credentials
Unexpected error: Insufficient access: Invalid credentials Invalid credentials




Best Regards
Rainer