Awesome, it worked!

Just one final question: how to make that script search not only in's LDAP database, but also in's LDAP in case ipa1 is inaccessible? It's vital for a production environment!

I tried copying the whole section of code from " ldapsearch ..." to "... done" and putting it after a new instance of " if [ ! -s "$tmpf" ]; then ", but it didn't work (I'm not a programmer...).

My current cron script is like this:

Programmers, please take a glance at the file - logically it shouldn't be difficult to make necessary modifications,
but I don't know how...

23-Oct-14 21:40, Alexander Bokovoy пишет:
try adding something like this:

export KRB5_CCACHE
kinit -k -t /etc/krb5.keytab host/`hostname`
# perform actual search
ldapsearch -Y GSSAPI .....

# end of script
export KRB5_CCACHE

Manage your subscription for the Freeipa-users mailing list:
Go To for more info on the project

Reply via email to