Check that port 8443 is available when installing PKI.

https://fedorahosted.org/freeipa/ticket/4564

Reviewed-By: Martin Kosek <mkosek@redhat.com>

1 files changed, 9 insertions, 0 deletions

diff --git a/install/tools/ipa-ca-install b/install/tools/ipa-ca-install
index c984bf477..bd30b27ae 100755
--- a/install/tools/ipa-ca-install
+++ b/install/tools/ipa-ca-install
@@ -95,6 +95,11 @@ def get_dirman_password():
         "Directory Manager (existing master)", confirm=False, validate=False)
 
 
+def check_ca():
+    if not cainstance.check_port():
+        print "IPA requires port 8443 for PKI but it is currently in use."
+        sys.exit(1)
+
 def install_dns_records(config, options):
 
     if not bindinstance.dns_container_exists(config.master_host_name,
@@ -172,6 +177,8 @@ def install_replica(safe_options, options, filename):
     else:
         cainstance.replica_ca_install_check(config)
 
+    check_ca()
+
     # Configure the CA if necessary
     CA = cainstance.install_replica_ca(config, postinstall=True)
 
@@ -262,6 +269,8 @@ def install_master(safe_options, options):
     domain_name = api.env.domain
     host_name = api.env.host
 
+    check_ca()
+
     dirname = dsinstance.config_dirname(
         dsinstance.realm_to_serverid(realm_name))
     cadb = certs.CertDB(realm_name, subject_base=subject_base)