That did the trick!
Thanks for the info.
Ralph
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
On 4/10/19 4:59 PM, Rob Crittenden wrote:
Giulio Casella via FreeIPA-users wrote:
Hi,
I managed to fix it!
The solution was to increase a couple of parameters in ldap config. I
passed "--dirsrv-config-file=custom.ldif" to ipa-replica-install, with
custom.ldif containing:
dn: cn=config
Hello Everyone,
Regarding cleaning up, I'm unable to run "ipa topologysegment-del ca
ns01.dev.example.net-to-ns02.dev.example.net" due to a message "ipa: ERROR:
Server is unwilling to perform: Removal of Segment disconnects
topology.Deletion not allowed."
So if I go into LDAP manually, I find
Giulio Casella via FreeIPA-users wrote:
> Hi,
> I managed to fix it!
> The solution was to increase a couple of parameters in ldap config. I
> passed "--dirsrv-config-file=custom.ldif" to ipa-replica-install, with
> custom.ldif containing:
>
> dn: cn=config
> changetype: modify
> replace:
Hi Fraser,
thanks for your response and for giving me the pointers. I was able to modify
the certificate profile using the var/lib/ipa/ra-agent.{key,pem}. I will update
after the successful resubmit with the utf8 encoding.
Note for anyone facing the same issue. The RA certificate does not
Hi,
I managed to fix it!
The solution was to increase a couple of parameters in ldap config. I
passed "--dirsrv-config-file=custom.ldif" to ipa-replica-install, with
custom.ldif containing:
dn: cn=config
changetype: modify
replace: nsslapd-maxsasliosize
nsslapd-maxsasliosize: 4194304
replace: