at least 88 tcp/udp, you may need 53 tcp/udp for DNS also On Tuesday, 3 November 2020 22:43:59 UTC, John Veliss wrote: > > Do you know if its just port 88 that needs to be open on the FW > > On Wed, Nov 4, 2020 at 8:15 AM Arrumac <[email protected] <javascript:>> > wrote: > >> Yes, ansible has to do a kinit first against the DC before the play can >> execute. >> >> On Tuesday, 3 November 2020 21:09:14 UTC, John Veliss wrote: >>> >>> Does your ansible server need to auth to the domain controllers to run >>> plays on MS member servers if using kerberos? >>> >>> On Wednesday, November 4, 2020 at 7:13:23 AM UTC+11 Arrumac wrote: >>> >>>> ntlm is a bad thing, kerberos across several forests, also windows >>>> behind Linux jump hosts we use SOCKS5/psrp to connect. >>>> >>>> On Tuesday, 3 November 2020 at 20:08:05 UTC [email protected] wrote: >>>> >>>>> are you using ansible to manage domain joined Windows servers? >>>>> If so, what authentication protocol are you using, kerberos or ntlm? >>>>> >>>> -- >> You received this message because you are subscribed to the Google Groups >> "Ansible Project" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected] <javascript:>. >> To view this discussion on the web visit >> https://groups.google.com/d/msgid/ansible-project/8a17b0b6-fca8-4690-86d8-34a770c4bc9bo%40googlegroups.com >> >> <https://groups.google.com/d/msgid/ansible-project/8a17b0b6-fca8-4690-86d8-34a770c4bc9bo%40googlegroups.com?utm_medium=email&utm_source=footer> >> . >> >
-- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/88cc7b2d-ce33-4755-97cb-83f23edfaf7bo%40googlegroups.com.
