In this post we will go over how to setup a highly available NFS Cluster using: GlusterFS NFS Ganesha CentOS 7  HAPROXY keepalived firewalld selinux This post is very lengthy and goes over quite a few details on the way to configuring this setup.  We document virtually every step including how to build out a […]

FreeIPA replication failes for about 13 minutes with no activity on the first IDM server.  Not clear why at first. Feb 12 10:06:56 idmipa01 named-pkcs11[2529]: zone nix.mds.xyz/IN: sending notifies (serial 1518448016) Feb 12 10:07:06 idmipa01 named-pkcs11[2529]: error (chase DS servers) resolving 'mds.xyz/DS/IN': 192.168.0.224#53 Feb 12 10:07:14 idmipa01 ns-slapd: [12/Feb/2018:10:07:14.130840773 -0500] – ERR – NSMMReplicationPlugin – […]

When trying to ssh into a host using the server's short name, you get challenged or asked for a password.  You need to set the following to:   First item to set is the following: dns_canonicalize_hostname = true in /etc/krb5.conf.  It will then prevent from asking a password.  Using the server's FQDN will work without issues.   […]

Problem is that you need  dns_lookup_kdc = true in your /etc/krb5.conf under the [libdefaults] section file: [root@mysql01 ~]# kinit tom@mds.xyz kinit: Cannot find KDC for realm "mds.xyz" while getting initial credentials [root@mysql01 ~]# [root@mysql01 ~]# vi /etc/krb5.conf [root@mysql01 ~]# systemctl restart sssd [root@mysql01 ~]# kinit tom@mds.xyz Password for tom@mds.xyz: [root@mysql01 ~]# The other source of this […]