[Freeipa-users] Re: How to retrieve user's credentials from IPA database?

2022-03-29 Thread Roger Seguin via FreeIPA-users
Thank you. ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List

[Freeipa-users] Re: possible to auth FreeIPA users against another LDAP server?

2022-03-29 Thread Jarett DeAngelis via FreeIPA-users
hi Rob, largely because Okta has no support for basic things like uidNumber and gidNumber. I know that when bound to AD it uses one of the AD's SIDs to generate these attributes and keep them consistent between installations, but have no idea how SSSD would do that against an LDAP server as

[Freeipa-users] Re: possible to auth FreeIPA users against another LDAP server?

2022-03-29 Thread Rob Crittenden via FreeIPA-users
Jarett DeAngelis via FreeIPA-users wrote: > hi everyone, > > I am trying (with great difficulty!) to do authn/authz both for an HPC > cluster and a number of other Linux machines against our Okta directory > service. Okta offers their "Advanced Server Access" product, which is > *bonkers*

[Freeipa-users] possible to auth FreeIPA users against another LDAP server?

2022-03-29 Thread Jarett DeAngelis via FreeIPA-users
hi everyone, I am trying (with great difficulty!) to do authn/authz both for an HPC cluster and a number of other Linux machines against our Okta directory service. Okta offers their "Advanced Server Access" product, which is *bonkers* expensive for the ~6 or 7 machines we need to auth with at

[Freeipa-users] Re: How to retrieve user's credentials from IPA database?

2022-03-29 Thread Sam Morris via FreeIPA-users
> I have absolutely no doubt you are right. I'm just not sure (yet) how to > implement the > SSSD/PAM/IDA integration (lack of knowledge from my side). See the Linux-PAM Application Developer's Guide . If you're totally new to PAM you

[Freeipa-users] Unable to create AD trust

2022-03-29 Thread Jeremy Tourville via FreeIPA-users
Hello I am running CentOS 7.9 FreeIPA 4.6.8 Installed with integrated DNS and CA A replica will be installed after the trust is established with the AD domain. When trying to create a trust with AD i get the following error message (it seems to be somewhat random but goes back and forth between

[Freeipa-users] Re: How to retrieve user's credentials from IPA database?

2022-03-29 Thread Roger Seguin via FreeIPA-users
I have absolutely no doubt you are right. I'm just not sure (yet) how to implement the SSSD/PAM/IDA integration (lack of knowledge from my side). ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to