ipa trust-add fails to setup trust between AD and IPA with "Fetching domains from trusted forest failed"

Solution Verified - Updated -

Issue

  • When integrating IPA with Active Directory, the ipa trust-add command establishes the trust as seen in the IDM GUI but fails to complete the command execution gracefully and returns the following error.
ipa: ERROR: error on server 'hostname.ipa.example.net': Fetching domains from trusted forest failed. See details in the error_log

Environment

  • Red Hat Enterprise Linux 7
  • IPA/IdM
  • Active Directory

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content