So this is a rule that is hard coded into IPA?

I agree on the principle unfortunately I have several accounts that do things 
like apache, run applications on the host....


Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

From: Stephen Gallagher [sgall...@redhat.com]
Sent: Thursday, 19 July 2012 12:42 p.m.
To: Steven Jones
Cc: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] IPA and UIDS <500

On Thu, 2012-07-19 at 00:02 +0000, Steven Jones wrote:
> Hi,
> Is there a rule or something that makes users with a UID of less than
> 500 not work?

Yes, on Red Hat and older Fedora systems, UIDs below 500 are reserved
for system services such as the apache user.

On newer Fedora systems (and most other distributions such as Debian and
Ubuntu), the reserved range has been increased to 1000.

So it's never safe to use an ID below those values. (And as a general
rule, it's best to keep your network IDs above 10,000 to avoid conflicts
with local user accounts as well).

Freeipa-users mailing list

Reply via email to