View Issue Details

IDProjectCategoryView StatusLast Update
0017728CentOS-7realmdpublic2020-09-16 12:09
Reportersystemgeek 
PrioritynormalSeveritymajorReproducibilityalways
Status closedResolutionno change required 
Product Version7.8-2003 
Target VersionFixed in Version 
Summary0017728: Realm Join succeeds but internally fails
DescriptionUsing Ansible to run the following /usr/sbin/realm join -v -U linux_realm_join DOMAIN.DOMAIN
Out put of result is bellow:
fatal: [p62.bo2.domain.com]: FAILED! => changed=true
  cmd: /usr/sbin/realm join -v -U linux_realm_join DOMAIN.DOMAIN
  delta: '0:00:10.810440'
  end: '2020-09-15 15:32:37.103142'
  invocation:
    module_args:
      chdir: null
      command: /usr/sbin/realm join -v -U linux_realm_join DOMAIN.DOMAIN
      creates: null
      echo: false
      removes: null
      responses:
        (?i)password*: UeeYtjbPMSkwDMH6
      timeout: 30
  msg: non-zero return code
  rc: 1
  start: '2020-09-15 15:32:26.292702'
  stdout: |2-
     * Resolving: _ldap._tcp.domain.domain
     * Performing LDAP DSE lookup on: 10.8.42.52
     * Performing LDAP DSE lookup on: 10.3.42.17
     * Performing LDAP DSE lookup on: 10.3.38.15
     * Successfully discovered: domain.domain
    Password for linux_realm_join:
     * Required files: /usr/sbin/oddjobd, /usr/libexec/oddjob/mkhomedir, /usr/sbin/sssd, /usr/bin/net
     * LANG=C LOGNAME=root /usr/bin/net -s /var/cache/realmd/realmd-smb-conf.6XM5Q0 -U linux_realm_join ads join domain.domain
    Enter linux_realm_join's password:DNS update failed: NT_STATUS_UNSUCCESSFUL

    Using short domain name -- DOMAIN
    Joined 'P62' to dns domain 'domain.domain'
    DNS Update for p62.bo2.domain.com failed: ERROR_DNS_GSS_ERROR
     * LANG=C LOGNAME=root /usr/bin/net -s /var/cache/realmd/realmd-smb-conf.6XM5Q0 -U linux_realm_join ads keytab create
    Enter linux_realm_join's password:
     * /usr/bin/systemctl enable sssd.service
    Created symlink from /etc/systemd/system/multi-user.target.wants/sssd.service to /usr/lib/systemd/system/sssd.service.
     * /usr/bin/systemctl restart sssd.service
     * /usr/bin/sh -c /usr/sbin/authconfig --update --enablesssd --enablesssdauth --enablemkhomedir --nostart && /usr/bin/systemctl enable oddjobd.service && /usr/bin/systemctl start oddjobd.service
      File "/usr/sbin/authconfig", line 332
        parser.add_option("--passminlen", metavar=_("<number>"),
                                                               ^
    TabError: inconsistent use of tabs and spaces in indentation
     ! Enabling SSSD in nsswitch.conf and PAM failed.
    realm: Couldn't join realm: Enabling SSSD in nsswitch.conf and PAM failed.
  stdout_lines: <omitted>
Steps To ReproduceBuild a base system using minimal install. Install the following packages: openldap-clients krb5-workstation krb5-libs sssd oddjob-mkhomedir authconfig realmd oddjob adcli samba-common samba-common-tools libsemanage python36 python36-pexpect python3-setuptools python-setuptools autofs

Then issue /usr/sbin/realm join -v -U linux_realm_join DOMAIN.DOMAIN.
Additional InformationPlease note that you are asked for the password multiple times:
     Password for linux_realm_join:
    Enter linux_realm_join's password:

The second time you are asked for the password it does not accept input from stdin. So not sure why its asking.

After the realm join is run the host is part of the domain as demonstrated by a realm list.
TagsNo tags attached.
abrt_hash
URL

Activities

systemgeek

systemgeek

2020-09-16 09:41

reporter   ~0037698

Ignore this one. Was a configuration problem on my end.

Issue History

Date Modified Username Field Change
2020-09-15 16:06 systemgeek New Issue
2020-09-16 09:41 systemgeek Note Added: 0037698
2020-09-16 12:09 ManuelWolfshant Status new => closed
2020-09-16 12:09 ManuelWolfshant Resolution open => no change required