Hey,
auto membership. Perfect.
Yes that was what I was looking for. The fixed group does not change,
and with that I can do precisely that.
Thanks!
-Christina ;)
On 29/07/2019 17:47, Simo Sorce wrote:
> Christina,
> the easiest way to handle your situation is to create a new group for
> allowed
On Mon, 2019-07-29 at 11:47 -0400, Simo Sorce via FreeIPA-users wrote:
> Christina,
apologies for the typo, I meant "Christian" of course.
> the easiest way to handle your situation is to create a new group for
> allowed hosts, add all current hosts then remove the 10 you care about.
> Finally se
Christina,
the easiest way to handle your situation is to create a new group for
allowed hosts, add all current hosts then remove the 10 you care about.
Finally set up an auto-membership rule so all new hosts are
automatically added to that group.
You will have to monitor/remove any new "special"
Christian Reiss via FreeIPA-users wrote:
> Hey,
>
> I take it this is not possible an no one does this?
It is not possible. HBAC only provides allow rules.
rob
>
> -Chris.
>
> On 26/07/2019 17:00, Christian Reiss via FreeIPA-users wrote:
>> Hey folks,
>>
>> We are running a lot of server, we
Hey,
I take it this is not possible an no one does this?
-Chris.
On 26/07/2019 17:00, Christian Reiss via FreeIPA-users wrote:
> Hey folks,
>
> We are running a lot of server, we nearly exhausted and allocated our
> /29 ipv6 allocation*.
>
> Let's say we have 10 really, really important server
