On 14 August 2018 at 01:38, Hacker Sword via FreeIPA-users <
freeipa-users@lists.fedorahosted.org> wrote:
> Hi Alex,
>
> >The documentation is only conflicting if you are using it in a
> conflicting way.
>
>
> > The choice of Kerberos library is important. Samba AD DC with MIT
> Kerberos still is
On Mon, 13 Aug 2018, Hacker Sword via FreeIPA-users wrote:
Hi Alex,
The documentation is only conflicting if you are using it in a
conflicting way.
The choice of Kerberos library is important. Samba AD DC with MIT
Kerberos still is broken regarding trust to FreeIPA.
Pardon my ignorance,
I have FreeIPA running in a VM with a static IP assigned via dnsmasq with
Traefik acting as a reverse proxy. I have traefik grabbing wildcard certs for
the domain. However, it seems that FreeIPA does not like that as it has this
error in the error log:
`SSL Library Error: - 12271 SSL client
Hi,
Forgive me if this is a dumb question...
Is it possible to do password+OTP through Apache basic auth?
I have 2FA working for a user via Linux console/SSH login.
I have Apache working with Kerberos auth through FreeIPA:
AuthType Kerberos
AuthName "Web Server Login"
On 08/13/2018 05:43 PM, Tobi Berninger via FreeIPA-users wrote:
Hello Flo,
thanks for ur fast answer.
First of all we are an small student organization so we dont have the
luck to have the money for an red hat support contract and cant access
the link u provided.
I started the other
Hello Flo,
thanks for ur fast answer.
First of all we are an small student organization so we dont have the luck
to have the money for an red hat support contract and cant access the link
u provided.
I started the other services with ipactl, as u described, allready but not
working fully.
I also
On 08/13/2018 04:13 PM, Tobi Berninger via FreeIPA-users wrote:
Hello,
i upgrade my centos 7.5 ipaserver to an new version and runned into a
few problems.
It seems like 'subsystemCert cert-pki-ca' is expired nearly a month ago
(jul 22) and i am not sure how to renew it.
When i run the
I know this is an old thread, but there are no changes to FreeIPA that
cnmonitor might conflict with are there?
On Thursday, February 1, 2018 1:34 PM, Rob Crittenden via FreeIPA-users
wrote:
Alex Corcoles via FreeIPA-users wrote:
> On Thu, Feb 1, 2018 at 5:25 PM, Jochen Hein
Hi Florence.
I created an new IPA server and tried to migrate but I got the following ...
*Passwords have been migrated in pre-hashed format.*
*IPA is unable to generate Kerberos keys unless provided*
*with clear text passwords. All migrated users need to*
*login at
On ma, 13 elo 2018, Alexander Bokovoy via FreeIPA-users wrote:
On pe, 10 elo 2018, D Anderson via FreeIPA-users wrote:
Hello all,
I am confused by some of the conflicting documentation about whether
this is possible or not. Almost all of the documentation/working
examples seem to use an
On pe, 10 elo 2018, D Anderson via FreeIPA-users wrote:
Hello all,
I am confused by some of the conflicting documentation about whether
this is possible or not. Almost all of the documentation/working
examples seem to use an actual Windows Domain Controller. Specifically
the part on DNS , as
Thanks heaps Florence. Appreciated
Alfredo
On Mon, Aug 13, 2018 at 11:42 AM Florence Blanc-Renaud
wrote:
> On 08/13/2018 11:17 AM, Alfredo De Luca via FreeIPA-users wrote:
> > Hi Florence. yes this clarify my question. So or I will build an new
> > FreeIPA then manually add all the
Hi all :
Any idea how to skip boot of smb.server and win bind ...or uninstall them
without affect ..thx
Directory Service: RUNNING
krb5kdc Service: RUNNING
kadmin Service: RUNNING
httpd Service: RUNNING
ipa-custodia Service: RUNNING
ntpd Service: RUNNING
pki-tomcatd Service: RUNNING
smb
Hi Florence. yes this clarify my question. So or I will build an new
FreeIPA then manually add all the users/groups etc ... or maybe import at
least some users with some sort of ldap command?
Cheers
On Mon, Aug 13, 2018 at 8:38 AM Florence Blanc-Renaud
wrote:
> On 08/11/2018 06:11 PM, Alfredo
On 08/11/2018 06:11 PM, Alfredo De Luca via FreeIPA-users wrote:
Hi all.
We'd like to change the domain name on our freeipa (4.5.4 on centos
7.5). Not the realm but only the domain
is it doable?
If so... how?
Hi,
unfortunately, no. Please have a look at IdM documentation, section Host
15 matches
Mail list logo