On (08/11/16 10:29), 郑磊 wrote:
>Hello everyone,
>
>I have successfully set up the FreeIPA environment on Ubuntu when selinux is
>disable. But when selinux is enable, there is a configuring ipa-otpd error
>occurred.
>
>The ipaserver-install.log shows following informations:
>2016-11-08T01:55:18Z
On 08.11.2016 05:51, 郑磊 wrote:
> The problem is solved. The reason is that the path of ExecStart program
> is incorrect in the /lib/systemd/system/ipa-otpd@.service file. Need to
> make the following changes:
> [Unit]
> Description=ipa-otpd service
>
> [Service]
>
Thank you for your reply! The problem is solved. The reason is that the path of
ExecStart program is incorrect in the /lib/systemd/system/ipa-otpd@.service
file. I will send mail to freeipa-users if there is any problem.
--
祝:
工作顺利!生活愉快!
--
On 3.11.2016 00:18, Ben Lipton wrote:
On 10/20/2016 03:52 PM, Ben Lipton wrote:
On 10/17/2016 02:16 AM, Jan Cholasta wrote:
On 13.10.2016 17:23, Ben Lipton wrote:
Thank you, this was a really helpful clarification of your point.
Comments below. Once again, I'm sorry I missed the email for so
URL: https://github.com/freeipa/freeipa/pull/202
Title: #202: ipa-getkeytab enhancements
martbab commented:
"""
Another bump for review.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/202#issuecomment-259070113
--
Manage your subscription for the Freeipa-devel mailing
URL: https://github.com/freeipa/freeipa/pull/182
Title: #182: Use env var IPA_CONFDIR to get confdir for 'cli' context
tomaskrizek commented:
"""
I also think `IPA_CONFDIR` environment variable is the proper way to configure
the config directory with use cases such as Ansible.
However, with
URL: https://github.com/freeipa/freeipa/pull/143
Title: #143: Issue6386 nss dir
tomaskrizek commented:
"""
Functional ACK.
In the ticket, you mention other places where `paths.IPA_NSSDB_DIR` is used.
What's the reason this change affects only client plugins?
"""
See the full comment at
URL: https://github.com/freeipa/freeipa/pull/207
Title: #207: Provide user hint about IP address in IPA install
mbasti-rh commented:
"""
What I meant was to change message for host IP address
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/207#issuecomment-258840461
--
On Tue, Nov 08, 2016 at 10:29:29AM +0800, 郑磊 wrote:
> Hello everyone,
>
> I have successfully set up the FreeIPA environment on Ubuntu when selinux is
> disable. But when selinux is enable, there is a configuring ipa-otpd error
> occurred.
>
> The ipaserver-install.log shows following
Hello everyone,
I have successfully set up the FreeIPA environment on Ubuntu when selinux is
disable. But when selinux is enable, there is a configuring ipa-otpd error
occurred.
The ipaserver-install.log shows following informations:
2016-11-08T01:55:18Z DEBUG [1/2]: starting ipa-otpd
Thank you for your reply! I have already performed `setenforce 0` and the
selinux mode is already permissive, but the problem still exists.
--
祝:
工作顺利!生活愉快!
--
长沙研发中心 郑磊
电话:18684703229
邮箱:zheng...@kylinos.cn
公司:天津麒麟信息技术有限公司
地址:湖南长沙市开福区三一大道工美大厦十四楼
The problem is solved. The reason is that the path of ExecStart program is
incorrect in the /lib/systemd/system/ipa-otpd@.service file. Need to make the
following changes:
[Unit]
Description=ipa-otpd service
[Service]
EnvironmentFile=/etc/ipa/default.conf
ExecStart=/usr/lib/ipa-otpd $ldap_uri
URL: https://github.com/freeipa/freeipa/pull/207
Title: #207: Provide user hint about IP address in IPA install
Akasurde commented:
"""
@mbasti-rh I will change message for DNS forwarders from `Enter an IP address
for a DNS forwarder,...` to `Enter an additional IP address, or press Enter to
URL: https://github.com/freeipa/freeipa/pull/207
Title: #207: Provide user hint about IP address in IPA install
mbasti-rh commented:
"""
@Akasurde I would rather keep explicitly `DNS forwarder` there
"""
See the full comment at
I have been working on a python script to setup secure NFS exports using
kerberos that relies heavily on FreeIPA, and is in many ways the server
side compliment to ipa-client-automount. It attempts to automatically
discover the setup, and falls back to asking simple questions, in the
same way as
On 11/07/2016 05:43 PM, Justin Mitchell wrote:
I have been working on a python script to setup secure NFS exports using
kerberos that relies heavily on FreeIPA, and is in many ways the server
side compliment to ipa-client-automount. It attempts to automatically
discover the setup, and falls back
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
tomaskrizek commented:
"""
The issue above is indeed unrelated to this patch. Since KDC installation
passed, I think it's safe to assume the patch works.
"""
See the full comment at
On Mon, 2016-11-07 at 18:06 +0100, Petr Vobornik wrote:
> On 11/07/2016 05:49 PM, Martin Babinsky wrote:
> > On 11/07/2016 05:43 PM, Justin Mitchell wrote:
> >> I have been working on a python script to setup secure NFS exports using
> >> kerberos that relies heavily on FreeIPA, and is in many
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
simo5 commented:
"""
On Mon, 2016-11-07 at 08:11 -0800, Tomas Krizek wrote:
> NACK
>
> `ipa-server-install` will fail at:
> ```
> Configuring kadmin
> [1/2]: starting kadmin
> [2/2]:
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
simo5 commented:
"""
Sure, but I do not see how a change in the KDC DAL, can affect PKI connecting
to LDAP.
Does this problem go away if you remove the patch and re-build/install on the
same
On 11/07/2016 05:49 PM, Martin Babinsky wrote:
> On 11/07/2016 05:43 PM, Justin Mitchell wrote:
>> I have been working on a python script to setup secure NFS exports using
>> kerberos that relies heavily on FreeIPA, and is in many ways the server
>> side compliment to ipa-client-automount. It
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
tomaskrizek commented:
"""
NACK
`ipa-server-install` will fail at:
```
Configuring kadmin
[1/2]: starting kadmin
[2/2]: configuring kadmin to start on boot
Done configuring kadmin.
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
tomaskrizek commented:
"""
It is not caused by re-installing. I've created a new VM when I was testing it.
"""
See the full comment at
URL: https://github.com/freeipa/freeipa/pull/205
Title: #205: Support DAL version 5 and version 6
simo5 commented:
"""
I just verified I reproduce your error in my tree without the patch.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/205#issuecomment-258937044
--
Manage
URL: https://github.com/freeipa/freeipa/pull/145
Title: #145: Refactoring: LDAP Connection Management
mbasti-rh commented:
"""
It was decided to push this and unblock other developer, minor issues will be
addressed separately.
"""
See the full comment at
URL: https://github.com/freeipa/freeipa/pull/145
Title: #145: Refactoring: LDAP Connection Management
tomaskrizek commented:
"""
Updated commit messages with link to a ticket.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/145#issuecomment-258789249
--
Manage your
URL: https://github.com/freeipa/freeipa/pull/145
Author: tomaskrizek
Title: #145: Refactoring: LDAP Connection Management
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/145/head:pr145
git checkout pr145
--
URL: https://github.com/freeipa/freeipa/pull/145
Title: #145: Refactoring: LDAP Connection Management
mbasti-rh commented:
"""
Fixed upstream
master:
https://fedorahosted.org/freeipa/changeset/5760b7e983da6bda8f5383d9079551e4acb4c2da
URL: https://github.com/freeipa/freeipa/pull/145
Title: #145: Refactoring: LDAP Connection Management
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/145
Title: #145: Refactoring: LDAP Connection Management
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/207
Title: #207: Provide user hint about IP address in IPA install
mbasti-rh commented:
"""
I realized that this is somehow inconsistent with getting IP addresses for
forwarders
DNS forwarders: `Enter an IP address for a DNS forwarder, or press
URL: https://github.com/freeipa/freeipa/pull/208
Title: #208: Tests: Fix integration sudo test
mbasti-rh commented:
"""
Fixed upstream
master:
https://fedorahosted.org/freeipa/changeset/e3b7d235d5e59e496f3d99a05e3dd379f845e4ea
ipa-4-4:
URL: https://github.com/freeipa/freeipa/pull/208
Author: mirielka
Title: #208: Tests: Fix integration sudo test
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/208/head:pr208
git checkout pr208
--
Manage your
URL: https://github.com/freeipa/freeipa/pull/208
Title: #208: Tests: Fix integration sudo test
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/192
Title: #192: server-del: fix incorrect check for one IPA master
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/192
Title: #192: server-del: fix incorrect check for one IPA master
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/192
Title: #192: server-del: fix incorrect check for one IPA master
mbasti-rh commented:
"""
Fixed upstream
master:
https://fedorahosted.org/freeipa/changeset/7a183bad66b91821a75e2a1cdbd3106fc31dcab4
ipa-4-4:
38 matches
Mail list logo