On 29.12.2014 23:31, Matt . wrote:
> But should an IPA install not add them by default ? Maybe this is some
I'm not sure that I understand what you mean, but DES is disabled on purpose
because it is completely insecure nowadays. Maybe you should try to rule it
out from your deployment.
According
On 12/30/2014 06:06 AM, Matt . wrote:
Readin up on this the weak password setting should work, but it doesn't.
What are my chances here as I need to do a "ipa pwpolicy-mod --maxlife 200"
This touches the expiration not the encryption types.
Or can this be done from a ldap browser too ?
Yes
Readin up on this the weak password setting should work, but it doesn't.
What are my chances here as I need to do a "ipa pwpolicy-mod --maxlife 200"
Or can this be done from a ldap browser too ?
2014-12-29 23:31 GMT+01:00 Matt . :
> OK, thank for that.
>
> But should an IPA install not add them
OK, thank for that.
But should an IPA install not add them by default ? Maybe this is some
4.x dev which is still needed ?
I need to look what I exactly need.
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go To http://freei
On 12/29/2014 05:09 PM, Matt . wrote:
Hi All,
Why doing some IPA commands on my 4.1.2 install I get the following error:
ipa: ERROR: Kerberos error: Kerberos error: ('Unspecified GSS failure.
Minor code may provide more
information', 851968)/('KDC has no support for
encrypti
Hi All,
Why doing some IPA commands on my 4.1.2 install I get the following error:
ipa: ERROR: Kerberos error: Kerberos error: ('Unspecified GSS failure.
Minor code may provide more
information', 851968)/('KDC has no support for
encryption type', -1765328370)/
I already tried