Ipa-server-install fails with the error: 'The DNS operation timed out after'
Environment
- Red Hat Enterprise Linux 7
- Identity Management (IdM)
Issue
Ipa server installation fails with following message:
ipaserver.install.bindinstance: ERROR DNS server {DNS_IP}: query '. SOA': The DNS operation timed out after {XX} seconds
ipapython.admintool: ERROR DNS server {DNS_IP}: query '. SOA': The DNS operation timed out after {XX} seconds
ipapython.admintool: ERROR The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information
With:
* DNS_IP: the configured forwarders ip address
* XX: the timeout in seconds
Resolution
- Ensure forwarders are reachable
- If forwarders are mandatory in your infrastructure, fix them and retry
- If they are not mandatory, retry by not specifying them
Root Cause
When Specifying forwarders, the installer tries to use them. When they are not reachable during the installation process, it cannot continue and fails
Diagnostic Steps
Logs analysis
Check /var/log/ipaserver-install.log, they should display followin message:
ipaserver.install.bindinstance: ERROR DNS server {DNS_IP}: query '. SOA': The DNS operation timed out after {XX} seconds
ipapython.admintool: ERROR DNS server {DNS_IP}: query '. SOA': The DNS operation timed out after {XX} seconds
Troubleshooting
- Install bind utils :
yum install bind-utils
2.run the following command : ` dig @AAA.BBB.CCC.DDD redhat.com```
; <<>> DiG 9.11.4-P2-RedHat-9.11.4-16.P2.el7_8.2 <<>> @AAA.BBB.CCC.DDD redhat.com
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.
Comments