Is there anyway to just delete all these SID requirements? My ipa
domain doesn't have a trust to anything windows and there's no plan to
ever set that up.
Been trying to add the RID and it fails but doesn't tell me why it failed.
On 2/1/24 11:43, Florence Blanc-Renaud via FreeIPA-users wrote:
Hi,
On Thu, Feb 1, 2024 at 12:51 PM Steve Berg via FreeIPA-users
<[email protected]> wrote:
Still not working. I do not have any trust set up with any active
directory currently, we have a AD running on the network but that
and my
ipa domain don't trust each other in any way.
Got two idranges setup:
-----------
Range name: domain_id_range
First Posix ID of the range: 824400000
Number of IDs in the range: 200000
First RID of the corresponding RID range: 1000
First RID of the secondary RID range: 100000000
Range type: local domain range
Range name: EDIPIs_id_range
First Posix ID of the range: 1009210100
Number of IDs in the range: 619332697
Range type: local domain range
-----------
The above range is missing RID base and secondary rid base.
You can refer to this KCS:
https://access.redhat.com/solutions/7052703especially section *3.
**Fixing ID range issues*. You will have to add ipabaseridand
ipasecondarybaseridto the range.
RID Values from 1,000-200,999and 100,000,000-100,199,999are already
taken by the id range domain_id_range, you can pick any values not
overlapping.
flo
--
//- Fixer of that which is broke -//
//- Home [email protected] -//
//- Sinners can repent, but stupid is forever. -//
--
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
