Re: [Freeipa-users] samba4 AD functionality with freeipa in the core?
Hi Simo, thank you for the information. It occurred to me that we basically do not need different domains in freeipa and samba4. Is forest trust needed also in the case when freeipa and samba4 have the same domain? Thanks a lot, Ivan 2014-07-09 23:30 GMT+02:00 Simo Sorce s...@redhat.com: On Wed, 2014-07-09 at 17:56 +0200, Iván Szántó wrote: Hi Simo, thank you very much for the insight! When do you think Samba 4 AD will support forest trusts? Or should I ask this on the samba list? Better to ask on the Samba lists, but afaik there isn't a very firm ETA, although there is a generic plan to do it. Simo. -- Simo Sorce * Red Hat, Inc * New York -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] samba4 AD functionality with freeipa in the core?
On Thu, 2014-07-10 at 08:27 +0200, Iván Szántó wrote: Hi Simo, thank you for the information. It occurred to me that we basically do not need different domains in freeipa and samba4. Is forest trust needed also in the case when freeipa and samba4 have the same domain? Thanks a lot, They can't use the same domain. Simo. -- Simo Sorce * Red Hat, Inc * New York -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] samba4 AD functionality with freeipa in the core?
On Wed, 2014-07-09 at 12:02 +0200, Iván Szántó wrote: Hi, I know this is the freeipa list and not the samba list, but you may have some information about this subject. I would like to know if there is some (active) development going on from the freeipa side to enable it to be integrated in the core of samba4 so as to provide AD functionality. Please let me know or redirect me to other lists if necessary We attempted to do something in this area (sort of AD personality) a few years ago, but it just doesn't work. What we did instead is to allow creating cross realm trusts between a FreeIPA domain and an AD domain. Unfortunately Samba 4 AD still does not support forest trusts so we are limited to interoperate only with Windows AD for now. Once Samba 4 AD will support forest trusts then you'll be able to use FreeIPA for your linux/unix machines and Samba 4 for your Windows machines. Simo. -- Simo Sorce * Red Hat, Inc * New York -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] samba4 AD functionality with freeipa in the core?
Hi Simo, thank you very much for the insight! When do you think Samba 4 AD will support forest trusts? Or should I ask this on the samba list? Many thanks, Ivan 2014-07-09 13:13 GMT+02:00 Simo Sorce s...@redhat.com: On Wed, 2014-07-09 at 12:02 +0200, Iván Szántó wrote: Hi, I know this is the freeipa list and not the samba list, but you may have some information about this subject. I would like to know if there is some (active) development going on from the freeipa side to enable it to be integrated in the core of samba4 so as to provide AD functionality. Please let me know or redirect me to other lists if necessary We attempted to do something in this area (sort of AD personality) a few years ago, but it just doesn't work. What we did instead is to allow creating cross realm trusts between a FreeIPA domain and an AD domain. Unfortunately Samba 4 AD still does not support forest trusts so we are limited to interoperate only with Windows AD for now. Once Samba 4 AD will support forest trusts then you'll be able to use FreeIPA for your linux/unix machines and Samba 4 for your Windows machines. Simo. -- Simo Sorce * Red Hat, Inc * New York -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] samba4 AD functionality with freeipa in the core?
On Wed, 2014-07-09 at 17:56 +0200, Iván Szántó wrote: Hi Simo, thank you very much for the insight! When do you think Samba 4 AD will support forest trusts? Or should I ask this on the samba list? Better to ask on the Samba lists, but afaik there isn't a very firm ETA, although there is a generic plan to do it. Simo. -- Simo Sorce * Red Hat, Inc * New York -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
