Well... as per Red Hat best practice on RHEL7 we use Chrony which also have the
ability to sync software time to hardware.
Or at least. should.
We have discovered that Hyper-V is a s bad as always and that its almost
impossible to have a sync'ed hardware and software time, and that some ser
Noting that it's now possible to modify the CA certificate subject name at
install time in 4.5 and 4.6, is there any provision for doing so after an
upgrade to one of those releases with a cert that originated in a 4.4
instance? Possibly involving renewal of the (externally signed) CA cert,
if
Thanks to you both for the tips. I was able to get into LDAP directly and
remove the entries causing the problems. Once I had done that, the domain
level change was a breeze!
On Thu, Sep 7, 2017 at 1:25 PM, Rob Crittenden wrote:
> Kristian Petersen via FreeIPA-users wrote:
> > I am trying to s
Kristian Petersen via FreeIPA-users wrote:
> I am trying to set the domain level for my IPA servers to level 1 from
> level 0. When I attempt to run:
>
> ipa domainlevel-set 1
>
> I get the following error:
>
> ipa: ERROR: Domain Level cannot be raised to 1, existing replication
> conflicts hav
Hey Kristian
I faced that months ago when I trying to do the same thing you are doing now. I
solved the problem running LDAP searches filtering by nsds5ReplConflict.
You might wanna take a look at
https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html-single/Administra
Today I updated one of my three servers again, including the versions
of RPMs listed in the subject line above. The ipa-server-upgrade
failed again without patching ipautil.py and ipa-replica-conncheck to
fix the problem of waiting on tomcat for I suppose an IPv6 port that
will never happen? I'm
On to, 07 syys 2017, Bart J via FreeIPA-users wrote:
Hi all,
I have been trying to set up one-way trust for quite a while. I thought
I have everything sorted out but when I tried to move from test
environment to production, I received error below upon trying to set up
trust with ipa trust add:
I am trying to set the domain level for my IPA servers to level 1 from
level 0. When I attempt to run:
ipa domainlevel-set 1
I get the following error:
ipa: ERROR: Domain Level cannot be raised to 1, existing replication
conflicts have to be resolved.
At the moment, the server has no replicas.
Yes, I did explicit 'ipa trust-del ...". Thank you for the explanation.
I have a question related to my set up. Will setting up trust work with a child
domain in AD (given I am using --external=true as an argument of ipa
trust-add), or I have to set up trust with AD root domain? In other words,
Hi all,
I have been trying to set up one-way trust for quite a while. I thought I have
everything sorted out but when I tried to move from test environment to
production, I received error below upon trying to set up trust with ipa trust
add:
ipa trust-add --type=ad my.domain.com --admin admina
On Thu, Sep 07, 2017 at 11:02:50AM +0200, Maciej Drobniuch via FreeIPA-users
wrote:
> Hey Freeipa users!
>
> Proxmox supports pam logins from webui and it is debian based.
>
> I've used the following guide to install freeipa unofficial packages.
> http://clusterfrak.com/sysops/app_installs/freei
Hey Freeipa users!
Proxmox supports pam logins from webui and it is debian based.
I've used the following guide to install freeipa unofficial packages.
http://clusterfrak.com/sysops/app_installs/freeipa_clients/
The ipa client installation went smoothly but... I can not see the users
and login.
On 09/07/2017 03:21 AM, Fraser Tweedale via FreeIPA-users wrote:
On Wed, Sep 06, 2017 at 02:05:56PM -0400, Anthony Clark via FreeIPA-users wrote:
It may possibly be related to this, but this is marked as fixed for 4.3:
https://pagure.io/freeipa/issue/5456
I'm on 4.4.0-14.el7.centos.7
A user h
13 matches
Mail list logo