On 1/29/19 12:23 PM, Rob Crittenden wrote:
So what I think you'll have to do is create a separate LDAP system
account, details are in the LDAP howto on freeipa.org.
I stumbled across that sometime in the bleary hours of this morning.
Good to know that I was barking up the right tree.
And
I am setting up FreeRADIUS on my "network server" at home, which also
runs FreeIPA. Naturally, I would like to use certmonger to issue,
track, and renew the certificate(s) used by FreeRADIUS.
Unfortunately, ipa-getcert only works when run as root, and it writes
the certificate and key files as
Ian Pilcher via FreeIPA-users wrote:
> Continuing my adventures with FreeRADIUS ...
>
> It seems that there's no escaping the need to create a dedicated LDAP
> user for FreeRADIUS, so that it can see group membership information.
>
> I've already created a FreeIPA service -
>
unfortunately no I have not. I did get the socket error at one point
trying to troubleshoot the issue. Was caused by something I did, so
wasn't related.
I have no usable errors anywhere. I do know it is not getting far enough
in the sequence to do self tests. The upgrade did work when the
On ti, 29 tammi 2019, Ronald Wimmer via FreeIPA-users wrote:
On 29.01.19 12:28, Alexander Bokovoy via FreeIPA-users wrote:
[...]
I think you need to tune sssd configuration here. Sumit or Jakub may
have more details on what exact options should be used.
Should I contact them directly or are
On 29.01.19 12:28, Alexander Bokovoy via FreeIPA-users wrote:
[...]
I think you need to tune sssd configuration here. Sumit or Jakub may
have more details on what exact options should be used.
Should I contact them directly or are they gonna read this here anyway?
I tested an IPA user - that
On ti, 29 tammi 2019, Ronald Wimmer via FreeIPA-users wrote:
I sucessfully registered my server server5.mydomain.at. After setting
up an appropriate HBAC rule as well as setting the default domain in
the sssd.conf to a.mydomain.at I tried to connect to the server via
SSH using:
I sucessfully registered my server server5.mydomain.at. After setting up
an appropriate HBAC rule as well as setting the default domain in the
sssd.conf to a.mydomain.at I tried to connect to the server via SSH using:
myusern...@mydomain.at
This fails because the UPN seems to be picked:
On 1/24/19 4:17 PM, Adam Bishop via FreeIPA-users wrote:
I have a piece of software that tries to look up its own uid to check that LDAP
is correctly configured.
This check fails because the sysaccount cannot view anything under
cn=etc,cn=sysaccounts.
Is there an existing
On 1/23/19 4:06 AM, Bhavin Vaidya via FreeIPA-users wrote:
Hello,
thank you for your support.
We have tried going back date, and certificate still didn't get renewed.
We found new error messages.
Looking at the log, it is clear that the issue is a result of us
manually adding a new CA
On 1/21/19 4:46 PM, Arjen Heidinga via FreeIPA-users wrote:
Dear all,
Perhaps someone could shed some light on what is amiss here. I am trying
to install a IPA replica to an ancient freeipa server, which has always
run standalone.
I have attached the logs for you to read. It seems there is
11 matches
Mail list logo
