hi all,

i'm trying to setup a one-sided trust with an AD, following

the trust is setup and seems to work (i get IPA service token using kvno
and an AD kerberos credential), "ipa trustdomain-find domain.name"
reports that the domain is enabled (but for some reason dumps this info

however, when trying to add the "Domain Users", i get a 'trusted domain
object not found'

> # ipa group-add-member extgroup --external="NETBIOSNAME\Domain Users" 
> --users=a_valid_ad_user
>   Group name: extgroup
>   Description: some desc
>   Member of groups: intgroup
>   Failed members: 
>     member user: a_valid_ad_user: no such entry
>     member group: NETBIOSNAME\Domain Users: trusted domain object not found
> -------------------------
> Number of members added 0
> -------------------------

i also tried with "Domain us...@domain.name"

any clues how to debug what is going wrong?

many thanks,


Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project

Reply via email to