path: root/
diff options
authorMartin Kosek <>2011-05-22 19:17:07 +0200
committerMartin Kosek <>2011-06-08 09:29:52 +0200
commit241ee334defda108e22855331d5d9a14f261ce16 (patch)
tree7bfaaeeb2673f473423d6aa418142468fa4b6dd9 /
parent8077b7ab938f436582b3985c1b6fd0ad90e8bb3d (diff)
Connection check program for replica installation
When connection between a master machine and future replica is not sane, the replica installation may fail unexpectedly with inconvenient error messages. One common problem is misconfigured firewall. This patch adds a program ipa-replica-conncheck which tests the connection using the following procedure: 1) Execute the on-replica check testing the connection to master 2) Open required ports on local machine 3) Ask user to run the on-master part of the check OR run it automatically: a) kinit to master as default admin user with given password b) run the on-master part using ssh 4) When master part is executed, it checks connection back to the replica and prints the check result This program is run by ipa-replica-install as mandatory part. It can, however, be skipped using --skip-conncheck option. ipa-replica-install now requires password for admin user to run the command on remote master.
Diffstat (limited to '')
1 files changed, 2 insertions, 0 deletions
diff --git a/ b/
index fba2f31..5c6c8a5 100644
--- a/
+++ b/
@@ -358,6 +358,7 @@ fi
%doc COPYING README Contributors.txt
@@ -425,6 +426,7 @@ fi
%dir %{_localstatedir}/cache/ipa
%attr(700,apache,apache) %dir %{_localstatedir}/cache/ipa/sessions
%attr(700,root,root) %dir %{_localstatedir}/cache/ipa/kpasswd