Quick question, if you have used Deion for ldap and Sudo, are all connections through Kerberos ? And all client and registered hosts will be in the same domain ?
Gokul Sent from iPhone > On Mar 29, 2015, at 12:14 PM, Yogesh Sharma <[email protected]> wrote: > > Thanks Gonzalo. Appreciate your help here, Let me try this. > > > Best Regards, > __________________________________________ > Yogesh Sharma > Email: [email protected] | Web: www.initd.in > > RHCE, VCE-CIA, RackSpace Cloud U > > > >> On Sat, Mar 28, 2015 at 11:23 PM, Gonzalo Fernandez Ordas >> <[email protected]> wrote: >> Yogesh >> >> you do not need to explain me anything. Most people around here are on >> the same boat and working on this stuff already for quite awhile. >> >> I forgot to mention this is for a PROPER sssd run, still you will need all >> those below as you will get some issues sorted (specially sudo related) >> >> So...you need the following If I remember well..: >> >> system-arch --> system Architecture >> >> libipa_hbac-1.9.2-129.el6.-system_arch-.rpm >> sssd-client-1.9.2-129.el6.-system_arch-.rpm >> sssd-1.9.2-129.el6_5.4.-system_arch-.rpm >> sudo-1.8.6p3-12.el6.-system_arch- >> >> I haven't installed the freeIPA client but I have run sssd successfully for >> a 389-ds server and the above combination worked all right, specially the >> sudo bit which was a bit of a hell. >> To get to that point I spent a number of fun days thanks to the limitations >> provided by amazon on their packages. >> >> Do not forget to install the epel and try to look for either "ipa" or >> "ipa-server" as I doubt that will be called freeipa at all.(I haven't tested >> that though.) >> >> Gonzalo >> >> >>> On 27/03/2015 01:03, Yogesh Sharma wrote: >>> Gonzalo, >>> >>> We have some running servers on Amazon Linux and it would be difficult to >>> migrate all those to CentOS or RHEL as of now. Hence If you can provide the >>> package's version then it would really help us till the time we do >>> migration. >>> >>> For sure all over new Servers are going to be CentOS or RHEL. >>> >>> >>> Best Regards, >>> __________________________________________ >>> Yogesh Sharma >>> Email: [email protected] | Web: www.initd.in >>> >>> RHCE, VCE-CIA, RackSpace Cloud U >>> >>> >>> >>>> On Fri, Mar 27, 2015 at 1:03 PM, Gonzalo Fernandez Ordas >>>> <[email protected]> wrote: >>>> Yogesh >>>> >>>> My personal experience using AWS Linux and LDAP is not a good one and >>>> mostly an utter nightmare in relation to packages. >>>> Personally I would recommend you to keep away from AWS Linux and get a >>>> Centos, Fedora or Redhat. >>>> Still, if you want to go ahead, I can give you the right versions for a >>>> couple of packages as the default sudo given by Amazon simply DOES NOT >>>> work (no idea what they have done to it..) >>>> >>>> Thanks >>>> >>>>> On 27/03/2015 00:03, Yogesh Sharma wrote: >>>>> Hello, >>>>> >>>>> Is there any repo available for Amazon Linux to install IPA Client OR >>>>> below is the only way to do as found from freeipa-user mail archive. >>>>> >>>>> http://www.redhat.com/archives/freeipa-users/2013-October/msg00058.html >>>>> >>>>> >>>>> Thanks for the help. >>>>> >>>>> Best Regards, >>>>> __________________________________________ >>>>> Yogesh Sharma > > -- > Manage your subscription for the Freeipa-users mailing list: > https://www.redhat.com/mailman/listinfo/freeipa-users > Go to http://freeipa.org for more info on the project
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
