ErrorClientFreeIPAFedora20

1. 2014-11-21T16:24:53Z DEBUG /sbin/ipa-client-install was invoked with options: {'domain': None, 'force': False, 'krb5_offline_passwords': True, 'primary': False, 'realm_name': None, 'force_ntpd': False, 'create_sshfp
2. ': True, 'conf_sshd': True, 'conf_ntp': True, 'on_master': False, 'ntp_server': None, 'ca_cert_file': None, 'principal': None, 'keytab': None, 'hostname': None, 'no_ac': False, 'unattended': None, 'sssd': True, 'tru
3. st_sshfp': False, 'dns_updates': False, 'mkhomedir': False, 'conf_ssh': True, 'force_join': False, 'server': None, 'prompt_password': False, 'permit': False, 'debug': False, 'preserve_sssd': False, 'uninstall': Fals
4. e}
5. 2014-11-21T16:24:53Z DEBUG missing options might be asked for interactively later
6. 2014-11-21T16:24:53Z DEBUG Loading Index file from '/var/lib/ipa-client/sysrestore/sysrestore.index'
7. 2014-11-21T16:24:53Z DEBUG Loading StateFile from '/var/lib/ipa-client/sysrestore/sysrestore.state'
8. 2014-11-21T16:24:53Z DEBUG Starting external process
9. 2014-11-21T16:24:53Z DEBUG args=/bin/systemctl is-enabled chronyd.service
10. 2014-11-21T16:24:53Z DEBUG Process finished, return code=0
11. 2014-11-21T16:24:53Z DEBUG stdout=enabled
12.  
13. 2014-11-21T16:24:53Z DEBUG stderr=
14. 2014-11-21T16:24:53Z WARNING Using existing certificate '/etc/ipa/ca.crt'.
15. 2014-11-21T16:24:53Z DEBUG [IPA Discovery]
16. 2014-11-21T16:24:53Z DEBUG Starting IPA discovery with domain=None, servers=None, hostname=s120181f20g.udistritaloas.edu.co
17. 2014-11-21T16:24:53Z DEBUG Start searching for LDAP SRV record in "udistritaloas.edu.co" (domain of the hostname) and its sub-domains
18. 2014-11-21T16:24:53Z DEBUG Search DNS for SRV record of _ldap._tcp.udistritaloas.edu.co
19. 2014-11-21T16:24:53Z DEBUG DNS record not found: NoAnswer
20. 2014-11-21T16:24:53Z DEBUG Search DNS for SRV record of _ldap._tcp.edu.co
21. 2014-11-21T16:24:53Z DEBUG DNS record not found: NoAnswer
22. 2014-11-21T16:24:53Z DEBUG Search DNS for SRV record of _ldap._tcp.co
23. 2014-11-21T16:24:53Z DEBUG DNS record not found: NoAnswer
24. 2014-11-21T16:24:53Z DEBUG Start searching for LDAP SRV record in "udistritaloas.edu.co" (search domain from /etc/resolv.conf) and its sub-domains
25. 2014-11-21T16:24:53Z DEBUG Already searched udistritaloas.edu.co; skipping
26. 2014-11-21T16:24:53Z DEBUG Start searching for LDAP SRV record in "udistrital.edu.co" (search domain from /etc/resolv.conf) and its sub-domains
27. 2014-11-21T16:24:53Z DEBUG Search DNS for SRV record of _ldap._tcp.udistrital.edu.co
28. 2014-11-21T16:24:53Z DEBUG DNS record not found: NoAnswer
29. 2014-11-21T16:24:53Z DEBUG Already searched edu.co; skipping
30. 2014-11-21T16:24:53Z DEBUG No LDAP server found
31. 2014-11-21T16:24:53Z DEBUG No LDAP server found
32. 2014-11-21T16:24:53Z INFO DNS discovery failed to determine your DNS domain
33. 2014-11-21T16:25:10Z DEBUG will use interactively provided domain: udistritaloas.edu.co
34. 2014-11-21T16:25:10Z DEBUG [IPA Discovery]
35. 2014-11-21T16:25:10Z DEBUG Starting IPA discovery with domain=udistritaloas.edu.co, servers=None, hostname=s120181f20g.udistritaloas.edu.co
36. 2014-11-21T16:25:10Z DEBUG Search for LDAP SRV record in udistritaloas.edu.co
37. 2014-11-21T16:25:10Z DEBUG Search DNS for SRV record of _ldap._tcp.udistritaloas.edu.co
38. 2014-11-21T16:25:10Z DEBUG DNS record not found: NoAnswer
39. 2014-11-21T16:25:10Z DEBUG No LDAP server found
40. 2014-11-21T16:25:10Z DEBUG IPA Server not found
41. 2014-11-21T16:25:10Z DEBUG DNS discovery failed to find the IPA Server
42. 2014-11-21T16:25:22Z DEBUG will use interactively provided server: freeipa.udistritaloas.edu.co
43. 2014-11-21T16:25:22Z DEBUG [IPA Discovery]
44. 2014-11-21T16:25:22Z DEBUG Starting IPA discovery with domain=udistritaloas.edu.co, servers=['freeipa.udistritaloas.edu.co'], hostname=s120181f20g.udistritaloas.edu.co
45. 2014-11-21T16:25:22Z DEBUG Server and domain forced
46. 2014-11-21T16:25:22Z DEBUG [Kerberos realm search]
47. 2014-11-21T16:25:22Z DEBUG Search DNS for TXT record of _kerberos.udistritaloas.edu.co
48. 2014-11-21T16:25:22Z DEBUG DNS record not found: NoAnswer
49. 2014-11-21T16:25:22Z DEBUG [LDAP server check]
50. 2014-11-21T16:25:22Z DEBUG Verifying that freeipa.udistritaloas.edu.co (realm None) is an IPA server
51. 2014-11-21T16:25:22Z DEBUG Init LDAP connection to: freeipa.udistritaloas.edu.co
52. 2014-11-21T16:25:22Z DEBUG Error checking LDAP: Connect error:TLS error -8054:You are attempting to import a cert with the same issuer/serial as an existing cert, but that is not the same cert.
53. 2014-11-21T16:25:22Z WARNING Skip freeipa.udistritaloas.edu.co: cannot verify if this is an IPA server
54. 2014-11-21T16:25:22Z DEBUG Discovery result: UNKNOWN_ERROR; server=None, domain=udistritaloas.edu.co, kdc=None, basedn=None
55. 2014-11-21T16:25:22Z DEBUG Validated servers:
56. 2014-11-21T16:25:22Z ERROR Failed to verify that freeipa.udistritaloas.edu.co is an IPA Server.
57. 2014-11-21T16:25:22Z ERROR This may mean that the remote server is not up or is not reachable due to network or firewall settings.
58. 2014-11-21T16:25:22Z INFO Please make sure the following ports are opened in the firewall settings:
59. TCP: 80, 88, 389
60. UDP: 88 (at least one of TCP/UDP ports 88 has to be open)
61. Also note that following ports are necessary for ipa-client working properly after enrollment:
62. TCP: 464
63. UDP: 464, 123 (if NTP enabled)
64. 2014-11-21T16:25:22Z DEBUG (freeipa.udistritaloas.edu.co: Provided interactively)
65. 2014-11-21T16:25:22Z ERROR Installation failed. Rolling back changes.
66. 2014-11-21T16:25:22Z ERROR IPA client is not configured on this system.