Ipa-server-install fails with the error: 'Could not import LDIF file '/var/lib/dirsrv/boot.ldif'
Environment
- Red Hat Enterprise Linux 7
- Identity Management (IdM)
Issue
Shortly after having started the installation of an IdM server with ipa-server-install, it fails.
/var/log/ipaserver-install.log shows:
2020-05-04T12:33:43Z DEBUG The ipa-server-install command failed, exception: RuntimeError: failed to create DS instance Command '/usr/sbin/setup-ds.pl --silent --logfile - -f /tmp/tmpMpA8kN' returned non-zero exit status 1
2020-05-04T12:33:43Z ERROR failed to create DS instance Command '/usr/sbin/setup-ds.pl --silent --logfile - -f /tmp/tmpMpA8kN' returned non-zero exit status 1
Resolution
/etc/security/limits.conf contained the following line:
- hard nproc 20
After having removed this limit, the installation was successful.
This error happens because of resource limitation.
Any type of resource limitation can cause this (memory, inodes, ...).
Hardening should take care of machine functional perimeter and installed software.
Root Cause
The limit hard nproc set at 20 prevent processes needed by installer to run.
Diagnostic Steps
In /var/log/ipaserver-install.log we could see:
[04/May/2020:14:33:41.847866508 +0200] - ERR - import_start_threads - Unable to spawn import worker thread, Netscape Portable Runtime error -5974 (Insufficient system resources.)
Also in /var/log/dirsrv/slapd-
[04/May/2020:14:33:41.847874546 +0200] - ERR - import_start_threads - Unable to spawn import worker thread, Netscape Portable Runtime error -5974 (Insufficient system resources.) [2]
[04/May/2020:14:33:41.849731080 +0200] - ERR - import_start_threads - import userRoot: Import thread creation failed.
[04/May/2020:14:33:41.851816718 +0200] - ERR - import_start_threads - import userRoot: Aborting all import threads...
[04/May/2020:14:33:43.856914088 +0200] - ERR - import_start_threads - import userRoot: Import threads aborted.
[04/May/2020:14:33:43.858355051 +0200] - ERR - import_run_pass - import userRoot: Starting threads failed: -1
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.
Comments