Hi List
We are currently busy implementing freeipa with a saml idP but we noticed that
we are missing the following attributes: edupersontargetedid,
edupersonaffiliation, displayname, and mail.
How can we add these attributes into the freeipa server?
Regards
Per
Hi:
I m seeking a replication of master - slave mode of free ipa ?
Is there such mode ? as I saw actually 2 nodes configuration acutally
called master - master .
Regards
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscr
On 03/15/2018 11:04 AM, barrykfl--- via FreeIPA-users wrote:
Hi:
I m seeking a replication of master - slave mode of free ipa ?
Is there such mode ? as I saw actually 2 nodes configuration acutally
called master - master .
Regards
___
FreeIPA-user
Anserwing my self here, I found this article
https://www.freeipa.org/images/5/5b/FreeIPA33-extending-freeipa.pdf which
suggests using ipa config-mod -addattripaUserObjectClasses=eduPersonTargetedID
but when i run i then it fails with ipa: ERROR: objectclass eduPersonTargetedID
not found is that
Hi:
I want to make cluster of 3 nodes ...does this graph shown servers need 2
virtual ips if not made single point of failure ?
2018-03-15 18:12 GMT+08:00 Florence Blanc-Renaud :
> On 03/15/2018 11:04 AM, barrykfl--- via FreeIPA-users wrote:
>
>> Hi:
>>
>> I m seeking a replication of master - s
On to, 15 maalis 2018, Per Qvindesland via FreeIPA-users wrote:
Hi List
We are currently busy implementing freeipa with a saml idP but we
noticed that we are missing the following attributes:
edupersontargetedid, edupersonaffiliation, displayname, and mail.
How can we add these attributes into
On 03/15/2018 10:40 AM, Per Qvindesland via FreeIPA-users wrote:
Hi List
We are currently busy implementing freeipa with a saml idP but we noticed that
we are missing the following attributes: edupersontargetedid,
edupersonaffiliation, displayname, and mail.
How can we add these attributes in
On 03/15/2018 11:23 AM, barrykfl--- via FreeIPA-users wrote:
Hi:
I want to make cluster of 3 nodes ...does this graph shown servers need
2 virtual ips if not made single point of failure ?
The issue with this topology is that a failure of server1 would lead to
a situation where server2 and s
So if short time after server 1 recovery it will syn back correct data
right ?
2018-03-15 18:38 GMT+08:00 Florence Blanc-Renaud :
> On 03/15/2018 11:23 AM, barrykfl--- via FreeIPA-users wrote:
>
>> Hi:
>>
>> I want to make cluster of 3 nodes ...does this graph shown servers need 2
>> virtual ips
Hi Florence
First of all many thanks for responding to me and the information.
Step 1 adding eduPerson was not a problem but when I tried to run ipa user-mod
perq --addattr "edupersontargetedid=value” it fails with the error ipa: ERROR:
attribute "edupersontargetedid" not allowed
When I look
On 03/15/2018 12:16 PM, Per Qvindesland via FreeIPA-users wrote:
Hi Florence
First of all many thanks for responding to me and the information.
Step 1 adding eduPerson was not a problem but when I tried to run ipa user-mod perq --addattr
"edupersontargetedid=value” it fails with the error ipa:
On 03/15/2018 11:47 AM, barrykfl--- via FreeIPA-users wrote:
So if short time after server 1 recovery it will syn back correct data
right ?
There is always a risk that some entries get simultaneously modified on
server2 and server3, with each server unaware of the modification on the
other on
Hi Florence
I did that added ipa user-mod perq --addattr objectclass=eduPerson which went
fine then ipa user-mod perq --addattr "edupersontargetedid=value” but it still
gives me the error ipa: ERROR: attribute "edupersontargetedid" not allowed.
Looking into the logs and there is not much to go
TomK wrote:
> On 3/12/2018 11:25 AM, Rob Crittenden wrote:
>> TomK wrote:
>>> On 3/7/2018 1:11 PM, Rob Crittenden wrote:
>>> Hey Rob,
>>>
>>> When starting idmapd or stopping it, logs on the LDAP server don't
>>> change. But UID and GID's change to nfsnobody when I set Nobody-User
>>> and Nobody-G
On 03/15/2018 02:35 PM, Per Qvindesland via FreeIPA-users wrote:
Hi Florence
I did that added ipa user-mod perq --addattr objectclass=eduPerson which
went fine then ipa user-mod perq --addattr "edupersontargetedid=value”
but it still gives me the error ipa: ERROR: attribute
"edupersontargeted
Making progress...
Alright, so we checked the files permissions and owner:
-r--r--r-- 1 root root 1313 Mar 9 00:24 /etc/ipa/ca.crt
-r--r- 1 root ipaapi 1854 Mar 7 19:11 /var/lib/ipa/ra-agent.key
-r--r- 1 root ipaapi 1451 Mar 7 19:11 /var/lib/ipa/ra-agent.pem
CA was not correct, so we
Hi Florence
ipa user-show perq —all gives:
objectclass: top, person, organizationalperson, inetorgperson, inetuser,
posixaccount, krbprincipalaux, krbticketpolicyaux,
ipaobject, ipasshuser, ipaSshGroupOfPubKeys, mepOriginEntry,
eduPerson
And ldapsearch -x -b cn=schema -LLL -s b
Per Qvindesland via FreeIPA-users wrote:
> Hi Florence
>
> ipa user-show perq —all gives:
> objectclass: top, person, organizationalperson, inetorgperson,
> inetuser, posixaccount, krbprincipalaux, krbticketpolicyaux,
> ipaobject, ipasshuser, ipaSshGroupOfPubKeys,
> mepOriginEntry
On 3/15/2018 11:06 AM, Rob Crittenden wrote:
TomK wrote:
On 3/12/2018 11:25 AM, Rob Crittenden wrote:
TomK wrote:
On 3/7/2018 1:11 PM, Rob Crittenden wrote:
Hey Rob,
When starting idmapd or stopping it, logs on the LDAP server don't
change. But UID and GID's change to nfsnobody when I set No
19 matches
Mail list logo