Mathias Gug wrote:
On Wed, Jul 22, 2009 at 04:44:49PM -0400, Dmitri Pal wrote:
Looking at freeipa-1.2.1/ipa-server/ipa-slapi-plugins/, there are 4 plugins:
* dna: Distributed Numeric Assignment plug-in
I don't know of an openldap plugin providing the same functionality.
However one
This is a missing patch. It just corrects some basic naming and adds
offset property to the template.
The patches:
INI-Simple-fix-to-properly-process-multi-value-confi.patch
ELAPI-Next-round-of-functionality-logging-part-of.patch
should be applied on top of it.
--
Thank you,
Dmitri Pal
of the three things.
ELAPI should eventually become our logging api, it can be used for
debugging too so it will cover these two.
But tracing should be very low level and very simple conditionally
compiled printout statements that would allow tracing the ELAPI itself.
--
Thank you,
Dmitri Pal
in the standard :)
+1
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
be linked to the
Directory Server without any exception.
Simo.
I think what Rich said means that DS plugins can be licensed as we think
appropriate without any special exception for DS itself.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc
?
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve
Hello,
We are considering to release freeIPA v2 under a less restrictive
license than we used in IPA v1.
It was GPLv2 only in v1.x and we think about GPLv2 and later or
GPLv3 and later.
Please respond to this mail if there are any suggestions, comments or
concerns.
--
Thank you,
Dmitri Pal
Andrea Modesto Rossi wrote:
On Mar, 15 Settembre 2009 9:55 pm, Dmitri Pal wrote:
We are considering to release freeIPA v2 under a less restrictive
license than we used in IPA v1.
It was GPLv2 only in v1.x and we think about GPLv2 and later or
GPLv3 and later.
Please respond to this mail
does not address the
issue of return value validation, but it does remove the single most
common error we have with return values at the moment.
DO IT!
:-)
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs
Rob Crittenden wrote:
Dmitri Pal wrote:
Rob Crittenden wrote:
I touched on this a little in IRC, figured I'd move it to the list for
a fuller conversation.
I'm in the process of adding access controls to machines requesting
certificates for themselves.
Let me first show what happens when
/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com
Rob Crittenden wrote:
Dmitri Pal wrote:
Simo Sorce wrote:
On Fri, 2009-10-30 at 15:56 -0400, Dmitri Pal wrote:
But then you have to update it on all replicas and will definitely
forget to do it.
Is it really a hassle to have it in the DS?
Yes it means you have to build a UI
a convention that all date/time information
is exchanged in UTC (effectively the same thing as omitting timezone
information, if that's what you meant). datetime.datetime handles UTC
trivially.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc
@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing
bar, host foo will be denied regardless of the
way it asked via CSR or not.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
.
I think Rob figured out how to factor this into the aci validation and
the code to do it already there.
Rob?
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
.
Ideas?
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com
Simo Sorce wrote:
On Thu, 2009-11-05 at 14:37 -0500, Dmitri Pal wrote:
Hi,
Now when we decided to use latest DS that is available from 389 project
for IPA v2 we can take advantage of the syntaxes that DS team has added.
For example they added numeric syntax that was a part
...
rob
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA
Rob Crittenden wrote:
Dmitri Pal wrote:
Rob Crittenden wrote:
Here is sort of a tricky problem, need some advice (LONG).
When we bootstrap an IPA server we create a number of principals for
the server itself. We create a host/, HTTP/ and ldap/ principal using
kadmin.local. By using
Rob Crittenden wrote:
tatiana philippova wrote:
also noticed next in
/var/log/dirsrv/slapd-INTERNAL-BULLETIN-NET/errors :
[08/Jan/2010:10:02:38 +1300] ipa_pwd_extop - krb5_c_string_to_key
failed [Bad encryption type]
[08/Jan/2010:10:02:38 +1300] ipa_pwd_extop - key encryption/encoding
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs
Dmitri Pal wrote:
Pavel Zůna wrote:
I was asked to complete the documentation of IPA commands on the
internal wiki. Unfortunatly, I currently don't have access to it and
have decided to put some of the information I've been gathering here
on freeipa-devel. It's not a secret after all
, though I am not a specialist, but suggestion
seems logical.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
translations are correct or not.
+1 we do the same for sssd
Simo.
I agree too.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
will not be used.
* For v2 we should use only 3,4,5,6. 1 and are reserved for v1
So the things would look like in the attached files.
I have not had a chance to make sure they load but I hope I did not miss
anything.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc
Rob Crittenden wrote:
Dmitri Pal wrote:
Rob Crittenden wrote:
Use correct OID base for ipaVolumeKey (its an objectClass, not an
attribute).
Re-number to use contiguous values. There were some pretty big gaps.
rob
Dmitri Pal wrote:
Hello,
We had some delay with the implementation of the UI for v2. Now when the
problems are cleared we are marching forward towards the end of the
project cycle.
As we dive more and more into the details of the implementation related
to the UI we get more and more
with the schema for those.
Comments welcome!
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel
The ipaAssociation is the core of different association objects.
It seems that the service is an exception rather then a rule.
So it is moved into the object where it belongs.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
Dmitri Pal wrote:
The ipaAssociation is the core of different association objects.
It seems that the service is an exception rather then a rule.
So it is moved into the object where it belongs.
I am withdrawing this patch.
A new one is attached. In addition to the original changes it also
. Please find the first cut at
the design of the server side here:
http://www.freeipa.org/page/SUDO_Schema_Design
Please help us find the right answers to the questions asked at the
bottom of the page.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc
to start to control access via HBAC rules,
Potentially we can support several patterns in one HBAC rule if there different
naming conventions due to acquisitions and other historical reasons.
Thoughts?
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc
,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa
.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
Hello,
It occurred to me that we can have a compromise. We can have two ways
and let the admins to decide which model to follow.
So the schema will look like this:
The sudo rule entry will have a string attribute to put a command
verbatim as it is designed now and an attribute that contains a DN
@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa
.
This is just a suggestion btw.
Enough text. Waiting for comments. :)
Pavel
Very impressive!
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out
Rob Crittenden wrote:
Dmitri Pal wrote:
See patch comment for more details.
ACK with these exceptions:
I made a few minor changes in the ldif syntax:
- remove blank lines
- add missing dn: cn=schema
- move SYNTAX to just before X-ORIGIN in hostMask
I also fixed the SUDO service group
Adam Young wrote:
On 09/10/2010 10:24 AM, Rob Crittenden wrote:
Dmitri Pal wrote:
Adam Young wrote:
Both Automount and DNS are heirarchical entities.
DNS starts with a zone. Usually, a zone is a domain name, like
redhat.com. It might be more specific, like devel.redhat.com.
A DNS setup
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
Rob Crittenden wrote:
Dmitri Pal wrote:
See patch comment for more details.
ACK with these exceptions:
I made a few minor changes in the ldif syntax:
- remove blank lines
- add missing dn: cn=schema
- move SYNTAX to just before X-ORIGIN in hostMask
I also fixed the SUDO service group
, that the default
stance by all groups are POSIX unless otherwise requested.
Any objectsion?
makes sense
rob
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com
$Subj
JR, please give it a try.
I will update the page accordingly...
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
From d016c7c9d7f548550e14000f62741abf981c6529 Mon Sep 17
...@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel
...@citrixonline.commailto:jr.aqu...@citrixonline.com
http://www.citrixonline.comhttp://www.citrixonline.com/
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
correct me if I am wrong.
Thanks
Dmitri
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa
How do we adjust FreeIPA such that it ensures Deny-IPASudoRules precede any
Allow-IPASudoRules ?
So it looks like current schema would not fly well with SUDO due to SUDO
bug/feature. SUDO will match just any first rule that satisfies the
user-hpost-command combination but we can't
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com
Dmitri Pal wrote:
How do we adjust FreeIPA such that it ensures Deny-IPASudoRules precede any
Allow-IPASudoRules ?
So it looks like current schema would not fly well with SUDO due to SUDO
bug/feature. SUDO will match just any first rule that satisfies the
user-hpost-command
because the complex task is decomposed into
logical parts. I do not suggest that we do it in v2 but I think it is a
way to go in general in future.
Hope this approach does not have much flaws. Yes it will require some
work in the ACI space but I hope it is not a huge rework.
--
Thank you,
Dmitri Pal
Simo Sorce wrote:
On Sun, 10 Oct 2010 23:27:33 -0400
Dmitri Pal d...@redhat.com wrote:
Actually the whole thing was inspired by the ACI UI from the LDAP book
that is based on Netscape DS.
Rob you say What it lacks is a way to *output* an aci so it can be
easily represented in a UI
queries get forwarded to server X, and the results cached
for future use.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red
and DNS we start polishing the UI
section by section area by area.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel
Simo Sorce wrote:
On Fri, 15 Oct 2010 11:36:50 -0400
Dmitri Pal d...@redhat.com wrote:
Hello,
Currently HBAC login group is defined as:
objectClasses: (2.16.840.1.113730.3.8.4.11 NAME 'ipaHBACServiceGroup'
DESC 'IPA HBAC service group object class' SUP nestedGroup STRUCTURAL
X-ORIGIN
Simo Sorce wrote:
On Fri, 15 Oct 2010 14:12:22 -0400
Dmitri Pal d...@redhat.com wrote:
Simo Sorce wrote:
I'd go for the last one, may be ugly, but does not undo anything
that already works and has the effect of simplifying the UI which
is what you are after right now
is ignored.
ticket 323
rob
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel
list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
and why? Is it just to create a DNS
entry? Is so man page should probably explain that it is used only in
case DNS is installed. Anywhere else?
I agree we should do the IP address validation and it should support
both IPv4 IPv6.
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc
/402
freeipa http://freeipa.org
FreeIPA
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs
Simo Sorce wrote:
On Fri, 22 Oct 2010 17:50:50 -0400
Dmitri Pal d...@redhat.com wrote:
There should be some metadata about what to do if some call fails.
Like fail the whole thing and stop or continue for the rest.
So there should be a dictionary of the multicall properties
button may in fact outweigh the value of putting
the feature in place.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Good point might be worth reevaluating.
Ben?
--
Thank you,
Dmitri Pal
Dmitri Pal wrote:
Simo Sorce wrote:
On Wed, 20 Oct 2010 15:42:17 -0400
Dmitri Pal d...@redhat.com wrote:
Any suggestions what it should be?
Should we create a new attribute or there is something handy to reuse?
Probably makes sense to add a custom attribute
Are we using the right one?
https://bugzilla.redhat.com/show_bug.cgi?id=643045
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
rcrit patches.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking
-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
Hi,
Please do not forget to check the Affects CLI and newly added Affects
DOC checkboxes when closing tickets when the work done changes the
signature or output of the CLI or needs to be documented.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc
agreed to, please, and
identify the questions that we need to answer.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc
/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
Dmitri Pal wrote:
Stephen Gallagher wrote:
Breaking the thread intentionally to bring back focus.
With Adam's recent input, I've modified the grammar to what I hope will
be it's final form.
The complete grammar is available at
https://fedorahosted.org/sssd/wiki/HBAC_Grammar
, (interval 1-31) 3-7,10,12,15,25-31 with no spaces inside.
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing
://www.redhat.com/mailman/listinfo/freeipa-devel
Do I read you right that instead of using actions menu you want to as
another row of the tabs at the top?
I am not sure I agree with this.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking
Dmitri Pal wrote:
Adam Young wrote:
On 11/19/2010 06:53 PM, Endi Sukma Dewata wrote:
On 11/19/2010 4:09 PM, Adam Young wrote:
This will not work with entities that do not have associated tabs,
e.g. hbacsvc, hbacsvcgroups, sudocmd, sudocmdgroups. For these
entities
from a discussion with UXD which
I will describe in a different thread.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
be in DDHHMM format in grammar or in just
NMM format where N is any numeric value that represents unlimited number
of hours. Thoughts?
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
purposes in the rule?
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https
the rule into several slices.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc
Simo Sorce wrote:
On Wed, 24 Nov 2010 11:26:05 -0500
Dmitri Pal d...@redhat.com wrote:
Steven, please think about the case when the rule needs to be edited
in UI and it has some value for DD - say 1.
What you display in UI then? If you do not allow to enter days and you
not allow more
as
was proposed in other thread.
Thank you very much for your help Nalin!
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA
plugin (I think this is already the case).
If this proposal looks reasonable I will open a ticket.
JR will you be able to provide a patch that does all of this since this
is not exactly what we originally planned?
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc
to look at a rule.
Simo.
It seems that may be we really took a wrong approach here.
Let us see what Steve and Adam would come up.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com
JR Aquino wrote:
On 11/24/10 11:19 AM, Dmitri Pal d...@redhat.com wrote:
Hello,
It is well known that with IPA we want to try to move people from the
netgroups to host groups but many companies currently use netgroups as
hostgroups. To simplify migration I suggest that we by default
://www.redhat.com/mailman/listinfo/freeipa-devel
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa-devel mailing list
Freeipa
Changes were made to the command section of the details screen.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
___
Freeipa
Question:
Do we support situation when one replica has DNS and another does not?
In other words is DNS integration an instance property or a domain property?
I do not know is it a good or a bad thing but if it is per instance the UI/CLI
from the same client will act differently depending on the
JR Aquino wrote:
On 12/9/10 10:03 AM, Dmitri Pal d...@redhat.com wrote:
Nalin Dahyabhai wrote:
On Wed, Dec 08, 2010 at 11:12:34PM +, JR Aquino wrote:
I guess the piece that is still missing then is:
Instead of:
sudoHost: hostname.com
It should be:
sudoHost
3) Document the considerations about the netgroups migration
(https://fedorahosted.org/freeipa/ticket/37)
Thoughts?
Thanks!
-JR
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com
as logged in user and there were two links
identity and Users both not clickable.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
://fedorahosted.org/freeipa/ticket/417#comment:5
freeipa http://freeipa.org
FreeIPA
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out IT costs?
www.redhat.com/carveoutcosts
Adam Young wrote:
On 12/10/2010 02:01 PM, Dmitri Pal wrote:
Hi,
I installed today build. I can get to the static frame with green line
and rigt user name which indicates that I actually connected and
authenticated but for admin the rest of the screen was balnk.
When I added myself
David O'Brien wrote:
Adam Young wrote:
On 12/11/2010 10:41 AM, Dmitri Pal wrote:
Adam Young wrote:
On 12/10/2010 02:01 PM, Dmitri Pal wrote:
Hi,
I installed today build. I can get to the static frame with green
line
and rigt user name which indicates that I actually connected
Dmitri Pal wrote:
Adam Young wrote:
Dmitri,
While I don't expect you to do the review of the patch, I would
appreciate at least a visual inspection of the completed UI. Since
there seems to be something wrong with the install/UI right now, I've
posed the lates on my Fedora People page
at least for me.
6) The hierarchy is broken for permissions
What hierarchy?
The LIST PERMISSIONS is now on the same level as Permissions - this is
wrong.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
---
Looking to carve out
Adam Young wrote:
On 12/13/2010 11:27 AM, Dmitri Pal wrote:
Sorry this whole part just does not make sense to me. What is the target
group? Where it came from?
One ACI that uses this is 'add_user_to_default_group. This is used in
the permission 'useradmin'.
The json response
1 - 100 of 528 matches
Mail list logo
