Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: rhel-9.4
Component/s: ipa
Labels:
None

Regression:
Yes
Severity:
Important

Pool Team:

rhel-sst-idm-ipa
Sub-System Group:

ssg_idm

Story Points:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
None
Test Coverage:
None

Experience:
Architecture:

x86_64

PX Impact Score:
PX Priority Data:
PX Review Complete:
PX Scheduling Request:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

What were you trying to do that didn't work?

Cannot install KRA on RHEL 9.4.
The installation fails with the following errors:

FINE: Response:
{
  "Response" : {
    "Status" : "1",
    "Error" : "Unable to add KRA connector for https://<HOST>:8443: KRA connector already exists"
  }
}
FINE: CAClient: Response: {
  "Response" : {
    "Status" : "1",
    "Error" : "Unable to add KRA connector for https://<HOST>:8443: KRA connector already exists"
  }
}
FINE: CAClient: status: 1
java.lang.NullPointerException: Cannot invoke "com.fasterxml.jackson.databind.JsonNode.asText()" because the return value of "com.fasterxml.jackson.databind.JsonNode.get(String)" is null
        at com.netscape.certsrv.ca.CAClient.addKRAConnector(CAClient.java:129)
        at com.netscape.cmstools.system.KRAConnectorAddCLI.execute(KRAConnectorAddCLI.java:220)
        at org.dogtagpki.cli.CommandCLI.execute(CommandCLI.java:58)
        at org.dogtagpki.cli.CLI.execute(CLI.java:353)
        at org.dogtagpki.cli.CLI.execute(CLI.java:353)
        at com.netscape.cmstools.cli.SubsystemCLI.execute(SubsystemCLI.java:79)
        at org.dogtagpki.cli.CLI.execute(CLI.java:353)
        at com.netscape.cmstools.cli.MainCLI.execute(MainCLI.java:659)
        at com.netscape.cmstools.cli.MainCLI.main(MainCLI.java:698)

What is the impact of this issue to you?

Migration to RHEL 9.4 was blocked.

Please provide the package NVR for which the bug is seen:

$ cat etc/redhat-release 
Red Hat Enterprise Linux release 9.4 (Plow)
$
$ grep ^ipa installed-rpms 
ipa-client-4.11.0-15.el9_4.x86_64                           Mon Sep  9 11:46:19 2024
ipa-client-common-4.11.0-15.el9_4.noarch                    Mon Sep  9 11:46:15 2024
ipa-common-4.11.0-15.el9_4.noarch                           Mon Sep  9 11:46:12 2024
ipa-healthcheck-core-0.16-3.el9.noarch                      Mon Sep  9 11:46:21 2024
ipa-selinux-4.11.0-15.el9_4.noarch                          Mon Sep  9 11:51:27 2024
ipa-server-4.11.0-15.el9_4.x86_64                           Mon Sep  9 11:47:12 2024
ipa-server-common-4.11.0-15.el9_4.noarch                    Mon Sep  9 11:46:27 2024
ipa-server-dns-4.11.0-15.el9_4.noarch                       Mon Sep  9 11:47:13 2024
$

How reproducible is this bug?:

Always.

Steps to reproduce

Install IPA with CA and KRA
Renew the certificate transportCert cert-pki-kra
Install a replica with CA
Run ipa-kra-install on the replica

Expected results

Working IPA install with CA and KRA

Actual results

Failing to install KRA.

Assignee:: Rob Crittenden

Reporter:: Têko Mihinto

Developer:: Florence Renaud

QA Contact:: Sudhir Menon

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2024/09/16 6:48 PM

Updated:: 2024/11/05 9:41 AM

Details

Description

What were you trying to do that didn't work?

What is the impact of this issue to you?

Please provide the package NVR for which the bug is seen:

How reproducible is this bug?:

Steps to reproduce

Expected results

Actual results

Attachments

Easy Agile Planning Poker

Activity

People

Dates