On ke, 10 loka 2018, Perry Smith via FreeIPA-users wrote:
I now have two FreeIPA servers set up as tests. I’m doing cloud stuff so its
easy to do. One has no DNS and the other has DNS with auto forwarders.
In both cases, its a DNS issue because it is looking for a SRV record
for LDAP over
I now have two FreeIPA servers set up as tests. I’m doing cloud stuff so its
easy to do. One has no DNS and the other has DNS with auto forwarders.
In both cases, its a DNS issue because it is looking for a SRV record
for LDAP over TCP. In the no DNS case, it never gets a reply. In the
On 10/10/18 4:10 PM, John Keates wrote:
I’d say: don’t run FreeIPA server on the same install as the SAP server.
So, the fqdn requirement doesn't apply to the client? Awesome. Thank you
very much.
Dan
___
FreeIPA-users mailing list --
I’d say: don’t run FreeIPA server on the same install as the SAP server.
John
> On 10 Oct 2018, at 23:16, Dan Haskell via FreeIPA-users
> wrote:
>
>
>
> Per the FreeIPA quickstart guide:
>
> The rule about /etc/hosts is that the fully-qualified name must come first.
> It should look like:
Per the FreeIPA quickstart guide:
The rule about /etc/hosts is that the fully-qualified name must come
first. It should look like:
10.0.0.1 ipa.example.com ipa
Our servers run SAP, which requires the reverse. An SAP server's
canonical name must be its short name. :(
Is there
Not surprisingly, that did the trick. Thanks, Rob.
On 10/10/2018 09:57 AM, Rob Crittenden wrote:
Bret Wortman via FreeIPA-users wrote:
I've got a DNS entry that really isn't there.
# nslookup sys001
;; connection timed out; no servers could be reached
# ipa dnsrecord-find my.net sys001 --all
Bret Wortman via FreeIPA-users wrote:
> I've got a DNS entry that really isn't there.
>
> # nslookup sys001
> ;; connection timed out; no servers could be reached
> # ipa dnsrecord-find my.net sys001 --all --raw
> dn:
>
Perry Smith via FreeIPA-users wrote:
> I've installed freeipa on Ubuntu 18.04. The Web UI as well as kinit and
> logging in via ssh work fine. There is no noticeable delays. But the
> "ipa" command from the command line always takes 30 or 60 seconds. For
> example:
>
> |ipa user-find admin |
>
>
On ke, 10 loka 2018, Winfried de Heiden via FreeIPA-users wrote:
Alexander Bokovoy via FreeIPA-users schreef op 10-10-2018 12:47:
On ke, 10 loka 2018, Winfried de Heiden via FreeIPA-users wrote:
Hi all,
The Red Hat manual is not too clear about this
Hi,
On Mon, 27 Aug 2018, dbischof--- via FreeIPA-users wrote:
in order to be able to use IPA auth for Samba shares, I followed this
guide:
https://bgstack15.wordpress.com/2017/05/10/samba-share-with-freeipa-auth/
IPA and Samba are running on the same server, everything worked fine.
Also:
# ldapsearch -D "cn=Directory Manager" -W -b "dc=my.net"
"(&(objectClass=ldapSubEntry)(nsds5ReplConflict=*))"
nsds5ReplConflict
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base
I've got a DNS entry that really isn't there.
# nslookup sys001
;; connection timed out; no servers
Alexander Bokovoy via FreeIPA-users schreef op 10-10-2018 12:47:
On ke, 10 loka 2018, Winfried de Heiden via FreeIPA-users wrote:
Hi all,
The Red Hat manual is not too clear about this
Fraser Tweedale via FreeIPA-users wrote:
> On Wed, Oct 10, 2018 at 12:12:12PM +0200, Winfried de Heiden via
> FreeIPA-users wrote:
>> Agree, there no real need for storing/recovering the private key, BUT:
>>
>> On some test/development environment server are re-deployed rapidly,
>> sometimes
On Wed, Oct 10, 2018 at 12:12:12PM +0200, Winfried de Heiden via FreeIPA-users
wrote:
> Agree, there no real need for storing/recovering the private key, BUT:
>
> On some test/development environment server are re-deployed rapidly,
> sometimes multiple time a day. (ansible and cattle
Hi all,
The Red Hat manual is not too clear about this
(https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html-single/linux_domain_identity_authentication_and_policy_guide/#users)
IdM supports user names that can be described by the following regular
expression:
Agree, there no real need for storing/recovering the private key, BUT:
On some test/development environment server are re-deployed rapidly,
sometimes multiple time a day. (ansible and cattle servers)
It is a bit annoying we endup soon with tons of revoked certificates
Winfried
16 matches
Mail list logo
