On 09/18/2013 06:51 PM, Nathan Kinder wrote:
> On 09/18/2013 07:26 AM, Martin Kosek wrote:
>> On 09/18/2013 01:37 PM, Ana Krivokapic wrote:
>>> On 09/13/2013 10:48 AM, Martin Kosek wrote:
On 09/12/2013 07:59 PM, Ana Krivokapic wrote:
>> ...
I would rather add an option --dry-run or --test
Hi,
Make sure that trust-add command fails when admin attempts
to add an Active Directory trust when the realm name and
the domain name of the IPA server do not match.
https://fedorahosted.org/freeipa/ticket/3923
--
Tomas Babej
Associate Software Engeneer | Red Hat | Identity Management
RHCE |
Hi,
If the IPA server is setup with non-matching domain and realm
names, it will not be able to estabilish trust with the Active
Directory.
Adds warnings to the ipa-server-install and warning to the
ipa-adtrust-install (which has to be confirmed).
Man pages for the ipa-server-install and ipa-ad
Hi,
Use 'getent admin@domain' rather than 'getent admin@REALM' to check if nss
is working properly since admin@REALM check fails in case the domain and
the realm
name does not match.
https://fedorahosted.org/freeipa/ticket/3906
--
Tomas Babej
Associate Software Engeneer | Red Hat | Identity
Hi,
this fixes a memory leak in ipa-sam plugin.
https://fedorahosted.org/freeipa/ticket/3913
--
Tomas Babej
Associate Software Engeneer | Red Hat | Identity Management
RHCE | Brno Site | IRC: tbabej | freeipa.org
From 316c0bc3a2f0c5cbeceecf4c373fc9afc6cfcc44 Mon Sep 17 00:00:00 2001
From: Toma
- Original Message -
> From: "Ana Krivokapic"
> To: "Nathan Kinder"
> Cc: "Martin Kosek" , "freeipa-devel"
> , "Mark Reynolds"
>
> Sent: Thursday, September 19, 2013 11:00:05 AM
> Subject: Re: [Freeipa-devel] [RFE] Support for automember rebuild membership
>
> On 09/18/2013 06:51 PM, N
On 09/17/2013 04:35 PM, Tomas Babej wrote:
On 09/17/2013 10:43 AM, Petr Viktorin wrote:
On 09/16/2013 03:45 PM, Tomas Babej wrote:
Hi,
this set of patches extends ipatests module to support integration
testing with Active Directory,
as well as provides an basic (working without artificial slee
On 09/19/2013 12:01 PM, Martin Kosek wrote:
> - Original Message -
>> From: "Ana Krivokapic"
>> To: "Nathan Kinder"
>> Cc: "Martin Kosek" , "freeipa-devel"
>> , "Mark Reynolds"
>>
>> Sent: Thursday, September 19, 2013 11:00:05 AM
>> Subject: Re: [Freeipa-devel] [RFE] Support for automem
Hi,
On 12.9.2013 19:59, Ana Krivokapic wrote:
Hello,
The design document for $SUBJECT can be found at:
http://www.freeipa.org/page/V3/Automember_rebuild_membership
Related tickets:
https://fedorahosted.org/freeipa/ticket/3752
https://fedorahosted.org/freeipa/ticket/3928
Thoughts, comments, qu
Hello,
This patch set adds automember rebuild membership functionality to IPA CLI.
Design: http://www.freeipa.org/page/V3/Automember_rebuild_membership
Ticket: https://fedorahosted.org/freeipa/ticket/3752
--
Regards,
Ana Krivokapic
Associate Software Engineer
FreeIPA team
Red Hat Inc.
From 77
On 09/19/2013 03:26 PM, Jan Cholasta wrote:
> Hi,
>
> On 12.9.2013 19:59, Ana Krivokapic wrote:
>> Hello,
>>
>> The design document for $SUBJECT can be found at:
>> http://www.freeipa.org/page/V3/Automember_rebuild_membership
>>
>> Related tickets:
>> https://fedorahosted.org/freeipa/ticket/3752
>>
On 09/19/2013 11:59 AM, Tomas Babej wrote:
Hi,
Use 'getent admin@domain' rather than 'getent admin@REALM' to check if
nss
is working properly since admin@REALM check fails in case the domain
and the realm
name does not match.
https://fedorahosted.org/freeipa/ticket/3906
Thanks to Ana for
On 09/19/2013 04:33 PM, Tomas Babej wrote:
> On 09/19/2013 11:59 AM, Tomas Babej wrote:
>> Hi,
>>
>> Use 'getent admin@domain' rather than 'getent admin@REALM' to check if nss
>> is working properly since admin@REALM check fails in case the domain and the
>> realm
>> name does not match.
>>
>> http
On 09/17/2013 04:35 PM, Tomas Babej wrote:
On 09/17/2013 10:43 AM, Petr Viktorin wrote:
On 09/16/2013 03:45 PM, Tomas Babej wrote:
Hi,
this set of patches extends ipatests module to support integration
testing with Active Directory,
as well as provides an basic (working without artificial slee
Hi!
Attached patch adds IPA CLI to manage trust subdomains.
ipa trust-domain-fetch-- fetch list of subdomains from AD side and
add new ones to IPA
ipa trust-domain-find -- show all available subdomains
ipa trust-domain-del -- remove subdomain from IPA view about
ipa trust-domain-mo
On Thu, 19 Sep 2013, Tomas Babej wrote:
Hi,
this fixes a memory leak in ipa-sam plugin.
https://fedorahosted.org/freeipa/ticket/3913
This patch is in conflict with my patch 0115 because I already fixed
these leaks in 0114-0116 series.
--
/ Alexander Bokovoy
On Thu, 12 Sep 2013, Alexander Bokovoy wrote:
Hi!
Attached patch does the magic of enabling all domains associated with
our realm in AD when we establish the trust relationship.
LsarSetForestTrustInformation RPC call is used to set the forest trust
information. Currently only top level names ar
17 matches
Mail list logo