freeipa team mailing list archive

Thread
Date

[Bug 1769485] Re: freeipa install server fails - cannot start apache server with SSL

To: freeipa@xxxxxxxxxxxxxxxxxxx
From: René Jochum <1769485@xxxxxxxxxxxxxxxxxx>
Date: Sat, 22 Aug 2020 03:26:31 -0000
Reply-to: Bug 1769485 <1769485@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug is still present in Ubuntu bionic.

To workaround it i had to edit the script /usr/lib/ipa/ipa-httpd-
pwdreader and replace "${HOSTNAME}" with $(hostname -f).

-- 
You received this bug notification because you are a member of FreeIPA,
which is subscribed to freeipa in Ubuntu.
https://bugs.launchpad.net/bugs/1769485

Title:
  freeipa install server fails - cannot start apache server with SSL

Status in freeipa package in Ubuntu:
  Fix Released
Status in freeipa source package in Bionic:
  Confirmed

Bug description:
  After having installed the new version of Tomcat 8, compatible with
  JDK 8 (see
  https://bugs.launchpad.net/ubuntu/+source/tomcat8/+bug/1765616), I am
  still stucked with freeipa-server on Ubuntu 18.04.

  The ipa-server-install script fails during step "[19/21]: starting
  httpd" of HTTP configuration.  From my investigation, it seems that
  the problem is that the SSL private key in
  /var/lib/ipa/private/httpd.key has a passphrase, saved in
  /var/lib/ipa/<host>-443-RSA. The passphrase is correct (I checked with
  openssl), but Apache does not find it.

  [Test Case]

  Add repository ppa:freeipa/ppa, install freeipa-server, run ipa-
  server-install.

  [What expected]

  ipa-server-install terminates without errors.

  [What happens]

  ipa-server-install fails.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/freeipa/+bug/1769485/+subscriptions