Alexander Bokovoy wrote:
You need to read this:
to understand all limitations and problems.

This is technical description. For higher level, see

Thank you very much! Greatly appreciate the fast and useful responses on this list -- the archive has been a huge help along with the RedHat IDM documentation.

My primary use case is SSH login for users with credentials coming from multiple AD Forests so it looks like I'm going down the path of "Option 3 – Use Indirect Integration with IdM" as referenced in the blog posting -- seems like we lose quite a bit of Kerberos SSO features but for now I'm OK with that. This is Free-IPA at the moment but will be migrated to RHEL-IDM if successful.


Manage your subscription for the Freeipa-users mailing list:
Go to for more info on the project

Reply via email to