Discussion:
[Freeipa-users] Remove ipa-client configuration
Jesster Leight
2009-11-06 06:34:00 UTC
Permalink
How i can remove ipa-client configuration ?
I have client station on Fedora 11.

$ ipa-client-install
Failed to verify that freeipa.example.com is an IPA Server.
This may mean that the remote server is not up or is not reachable
due to network or firewall settings.

$ rm -f /var/kerberos/krb5kdc/kpasswd.keytab
$ ipa-client-install --uninstall
Restoring client configuration files
Disabling client Kerberos and Ldap configurations
The original nsswitch.conf configuration has been restored.
You may need to restart services or reboot the machine.
Do you want to reboot the machine? [no]: yes

Broadcast message from ***@satellite.example.com
(/dev/pts/0) at 12:31 ...

The system is going down for reboot NOW!

After reboot same problem. Not working ipa-client-install.
In what can be problem ? Maybe i forget some to remove ?
Simo Sorce
2009-11-06 14:03:37 UTC
Permalink
Post by Jesster Leight
$ rm -f /var/kerberos/krb5kdc/kpasswd.keytab
Can you explain this ?
If you do this on your ipa server you are doing very bad things ...

Simo.
--
Simo Sorce * Red Hat, Inc * New York
Rob Crittenden
2009-11-06 14:24:59 UTC
Permalink
Post by Jesster Leight
How i can remove ipa-client configuration ?
I have client station on Fedora 11.
$ ipa-client-install
Failed to verify that freeipa.example.com <http://freeipa.example.com>
is an IPA Server.
This may mean that the remote server is not up or is not reachable
due to network or firewall settings.
$ rm -f /var/kerberos/krb5kdc/kpasswd.keytab
$ ipa-client-install --uninstall
Restoring client configuration files
Disabling client Kerberos and Ldap configurations
The original nsswitch.conf configuration has been restored.
You may need to restart services or reboot the machine.
Do you want to reboot the machine? [no]: yes
(/dev/pts/0) at 12:31 ...
The system is going down for reboot NOW!
After reboot same problem. Not working ipa-client-install.
In what can be problem ? Maybe i forget some to remove ?
Do you have an AD domain using the same realm name you are using for IPA?

IPA uses DNS discovery to find the LDAP and kerberos server to use. It
connects to the LDAP server it gets and verifies that it is an IPA LDAP
server. Perhaps it is finding the wrong one?

rob
Jesster Leight
2009-11-09 04:15:48 UTC
Permalink
Hello. I had IPA server with another configuration. Then i reinstall my IPA
server with new domain and new configuration. Now I whant configure my
client-station to new IPA server. She configure now to old IPA server
freeipa.example.com. I can reinstall OS on my client station and configure
with clean list, but it is not exit. What config files i must remove or edit
for remove old IPA-client configuration ?
Rob Crittenden
2009-11-09 14:24:21 UTC
Permalink
Post by Jesster Leight
Hello. I had IPA server with another configuration. Then i reinstall my
IPA server with new domain and new configuration. Now I whant configure
my client-station to new IPA server. She configure now to old IPA server
freeipa.example.com <http://freeipa.example.com/>. I can reinstall OS on
my client station and configure with clean list, but it is not exit.
What config files i must remove or edit for remove old IPA-client
configuration ?
ipa-client-install --uninstall should do it.

rob

Loading...