On 16.6.2015 09:34, Henry Hofmann wrote: > Hi, > > I have a question about using IPA (v.4) with an AD (2012) Trust. > Is it possible to login with a user from the Active Directory Domain to an > Web-Service (like redmine) which is configured to the IPA LDAP? > > I have understand this by read this article > (http://www.freeipa.org/page/IPAv3_Architecture#IPA_managed_server_and_Password_based_Login).
Best solution is to use something like this: http://www.freeipa.org/page/Web_App_Authentication Alternatively you should be able to treat web application as 'legacy' LDAP client (which is not trust-aware) and use so-called compat tree. Please see presentation: "AD Trust for Legacy Clients" by Tomas Babej: http://www.freeipa.org/images/0/0d/FreeIPA33-legacy-clients.pdf -- Petr^2 Spacek -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
