...
The fix for that error is the following command:
- Check if your DNA ranges exists
| Code Block |
|---|
ipa-replica-manage dnarange-show |
(This command should return ldap_server: No on-deck range set) - Identify min and max range of IDs (min=First Posix ID of the range) (max=First Posix ID of the range of IDs + Number of IDs in the range)
| Code Block |
|---|
ipa idrange-find |
Set the lower boundary to exclude every existing account (as of ipa user | grep 'UID') - Assign the DNS range using ${min}-${max} identified in the previous steps
| Code Block |
|---|
ipa-replica-manage dnarange-set $ldap_server ${min}-${max} |
- Check the range that is used assigned now
| Code Block |
|---|
ipa-replica-manage dnarange-show |
...