DNS fails to start - CASA Credential Not found
This document (7006446) is provided subject to the disclaimer at the end of this document.
Novell Open Enterprise Server 2 SP2
Novell Open Enterprise Server 2 SP3
Service "novell-named" (DNS server) fails to start
The /var/opt/novell/log/named/named.run shows the following:
28-Jun-2010 12:02:52.938 general: main: notice: starting BIND 9.3.2 -u named
28-Jun-2010 12:02:52.947 general: dns/message: error: Credential Not found
28-Jun-2010 12:02:52.947 general: dns/db: critical: CASA Error has occurred, error:No credential is retrieved from CASA
28-Jun-2010 12:02:52.947 general: dns/db: warning: Could not open the credential file
28-Jun-2010 12:02:52.947 general: dns/db: critical: No credential found in the file
28-Jun-2010 12:02:54.986 general: dns/db: critical: Failed to load RRs of a zone with error -109
28-Jun-2010 12:02:54.986 general: dns/hints: warning: Loading Root data from directory Failed
28-Jun-2010 12:02:54.988 general: server: info: loading configuration from '/etc/opt/novell/named/named.conf'
28-Jun-2010 12:02:54.988 config: isccfg/parser: error: none:0: open: /etc/opt/novell/named/named.conf: file not found
28-Jun-2010 12:02:54.997 general: server: critical: loading configuration: file not found
28-Jun-2010 12:02:54.997 general: server: critical: exiting (due to fatal error)
- To create the missing CASA credentials, install the CASAcli client:
# zypper in casa-cli
- From the terminal do the following CASAcli commands to create the keys:
- To store the proxy user and context:
# KEYVALUE=<your-dns-proxy-user's FQDN> CASAcli -s -n dns-ldap -k CNExample:# KEYVALUE=cn=OESCommonProxy,o=novell CASAcli -s -n dns-ldap -k CN
- To store that proxy user's password in CASA:
# KEYVALUE=<proxy user's password> CASAcli -s -n dns-ldap -k PasswordExample:# KEYVALUE=abc123! CASAcli -s -n dns-ldap -k Password
- Verify that the "novell-xregd" service is running: rcnovell-xregd status
- Restart micasad: rcmicasad stop/start
- Start novell-named: rcnovell-named start
The CASA keys for the dns-proxy are missing.
CASA is selected by default and is recommend since it is more secure than using the file option.
This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.
- Document ID:7006446
- Creation Date:13-JUL-10
- Modified Date:17-JUL-18
- NovellOpen Enterprise Server
Did this document solve your problem? Provide Feedback