passsync setup fails with the error ¨ Error :certutil: function failed: security library: bad database.¨ on Server 2008 R2

Solution Verified - Updated -


Trying to setup password sync between IPA and Active directory.
Did the passsync.msi installation on Windows Server 2008 R2 and noticed some installation files are missing.

Passsync.msi creates the directory C:\Program Files\Red_Hat_Directory_Password_Synchronization.
Original installation place 14 files under that directory.

But in this specific situation 4 files are missing soon after the installation.There are total of 10 files.

Following files are missing :

  • cert8.db
  • key3.db
  • secmod.db
  • IPAcert.cer

Ran the command below as in the documentation but it failed with an error:

certutil -d . -A -n " IPA CA" -t C,, -a -i ca.cer

Error :certutil: function failed: security library: bad database.


  • Red Hat Enterprise Linux 6.3
  • RedHat-PassSync-1.1.4-x86_64.msi
  • Windows Server 2008 R2

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In