Greetings /r/linuxadmin,
I'm setting up a virtualized environment on my workstation at home, just to get some experience playing with various technologies. One of the things I'm trying to do is setup a FreeIPA instance on CentOS 7, but I'm running into a problem during setup.
Info about the environment: KVM virtualization, all VM's going through a "TestEnv" NAT interface. Static IP's are setup. I checked the logs. I googled. Hell I went back and read documentation for Fedora 15. Only thing I could find is that supposedly FreeIPA didn't like being behind a NAT, but that was supposedly fixed awhile ago. Soooooooooo... here I am.
[administrator@ipa ~]$ cat /etc/hosts 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 192.168.1.2 ipa.testenv.com ipa [administrator@ipa ~]$
[administrator@ipa ~]$ ip addr 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000 link/ether 52:54:00:0c:79:32 brd ff:ff:ff:ff:ff:ff inet 192.168.1.2/32 brd 192.168.1.2 scope global eth0 valid_lft forever preferred_lft forever inet6 fe80::5054:ff:fe0c:7932/64 scope link valid_lft forever preferred_lft forever [administrator@ipa ~]$
[administrator@ipa ~]$ sudo ipa-server-install --setup-dns
The log file for this installation can be found in /var/log/ipaserver-install.log
This program will set up the IPA Server.
This includes: * Configure a stand-alone CA (dogtag) for certificate management * Configure the Network Time Daemon (ntpd) * Create and configure an instance of Directory Server * Create and configure a Kerberos Key Distribution Center (KDC) * Configure Apache (httpd) * Configure DNS (bind)
To accept the default shown in brackets, press the Enter key.
Enter the fully qualified domain name of the computer on which you're setting up server software. Using the form <hostname>.<domainname> Example: master.example.com.
Server host name [ipa.testenv.com]:
Warning: skipping DNS resolution of host ipa.testenv.com The domain name has been determined based on the host name.
Please confirm the domain name [testenv.com]:
The kerberos protocol requires a Realm name to be defined. This is typically the domain name converted to uppercase.
Please provide a realm name [TESTENV.COM]: Certain directory server operations require an administrative user. This user is referred to as the Directory Manager and has full access to the Directory for system management tasks and will be added to the instance of directory server created for IPA. The password must be at least 8 characters long.
Directory Manager password: Password (confirm):
The IPA server requires an administrative user, named 'admin'. This user is a regular system account used for IPA server administration.
IPA admin password: Password (confirm):
Existing BIND configuration detected, overwrite? [no]: yes Enter the IP address to use, or press Enter to finish. Please provide the IP address to be used for this host name: 192.168.1.2 Error: Invalid IP Address 192.168.1.2: cannot use IP network address Please provide the IP address to be used for this host name: 192.168.1.2/32 Error: Invalid IP Address 192.168.1.2/32: cannot use IP network address Please provide the IP address to be used for this host name: 127.0.0.1 Error: Invalid IP Address 127.0.0.1: cannot use loopback IP address Please provide the IP address to be used for this host name: WhatDoYouWantFromMe?! Error: Invalid IP Address WhatDoYouWantFromMe?!: failed to detect a valid IP address from 'WhatDoYouWantFromMe?!' Please provide the IP address to be used for this host name:
[link] [comments]