[Freeipa-users] Re: Can't Add Replica: The changelog directory CLDB already exists and is not empty

On 7/7/20 10:13 PM, Andrey Ptashnik via FreeIPA-users wrote: Team, I'm trying to install FreeIPA replica and constantly hitting this error below. OS where replica is being installed is a fresh install. IPA version 4.6.6 After this error Master does not have any record of replica anyway. Can

[Freeipa-users] Re: Adding new replica with CA fails.

Confirmed Fraser. It worked! Thanks so much! Using the decimal value in the nextRange attribute did the trick. Thank you everyone for your help. All the best, Guillermo On Tue, Jul 7, 2020 at 3:57 AM Fraser Tweedale wrote: > > On Tue, Jul 07, 2020 at 12:04:58AM -0400, Guillermo Fuentes via

[Freeipa-users] Can't Add Replica: The changelog directory CLDB already exists and is not empty

Team, I'm trying to install FreeIPA replica and constantly hitting this error below. OS where replica is being installed is a fresh install. IPA version 4.6.6 After this error Master does not have any record of replica anyway. Can someone please shed some light why on the machine with fresh OS

[Freeipa-users] Re: Plans for integrating DHCP

It may seem out of scope, and I agree with this. But IMHO it should have a better integration with DHCP. Look at MS Active Directory, it’s so deeply integrated with MS DHCP that you just install it as an add-on. The same thing does not happen on IPA. A better integration would be extremely

[Freeipa-users] Re: Plans for integrating DHCP

DHCP seems out of scope for IPA. On Wed, Jun 3, 2020 at 9:17 AM lejeczek via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote: > > > On 24/04/2020 11:44, Alexander Bokovoy via FreeIPA-users wrote: > > On pe, 24 huhti 2020, Ronald Wimmer via FreeIPA-users wrote: > >> Hi there, > >> >

[Freeipa-users] Re: Adding Windows 10 client to freeIPA - Error : Failed to parse result: All enctypes provided are unsupported

On ti, 07 heinä 2020, lovepreetdeol via FreeIPA-users wrote: Hi, Running freeIPA server on centos 8.2. Trying to setup mixed OS environment with linux and windows clients. Another centos8.2 machine connects to freeIPA without any problem. I am trying to connect a windows 10 client to the

[Freeipa-users] Re: Plans for integrating DHCP

Take a look at this implementation. I may be old but could give an idea on how to proceed https://github.com/Turgon37/freeipa-plugin-dhcp On Mon, Jul 6, 2020 at 1:39 PM Charles Hedrick via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote: > hmmm. so the problem with our integration

[Freeipa-users] Re: Adding Windows 10 client to freeIPA - Error : Failed to parse result: All enctypes provided are unsupported

lovepreetdeol via FreeIPA-users wrote: > Hi, > Running freeIPA server on centos 8.2. Trying to setup mixed OS environment > with linux and windows clients. > Another centos8.2 machine connects to freeIPA without any problem. > I am trying to connect a windows 10 client to the freeIPA and

[Freeipa-users] Adding Windows 10 client to freeIPA - Error : Failed to parse result: All enctypes provided are unsupported

Hi, Running freeIPA server on centos 8.2. Trying to setup mixed OS environment with linux and windows clients. Another centos8.2 machine connects to freeIPA without any problem. I am trying to connect a windows 10 client to the freeIPA and getting the following error : [root@directory ~]#

[Freeipa-users] Re: Kerberos realm trusting ipa realm

On ti, 07 heinä 2020, Gerald Vogt via FreeIPA-users wrote: On 07.07.20 10:13, Alexander Bokovoy wrote: On ti, 07 heinä 2020, Gerald Vogt via FreeIPA-users wrote: Hi! I am trying to get a kerberos realm to trust the ipa realm. I'm running ipa-server-4.6.6-11.el7 on a CentOS 7. It uses

[Freeipa-users] Re: Kerberos realm trusting ipa realm

On 07.07.20 10:13, Alexander Bokovoy wrote: > On ti, 07 heinä 2020, Gerald Vogt via FreeIPA-users wrote: >> Hi! >> >> I am trying to get a kerberos realm to trust the ipa realm. I'm running >> ipa-server-4.6.6-11.el7 on a CentOS 7. It uses realm IPA.EXAMPLE.COM. >> >> I have another KDC on

[Freeipa-users] Re: Providing service level access without granting sudo access

On ti, 07 heinä 2020, Saurabh Garg via FreeIPA-users wrote: Hi All, We have a requirement where we need to give a user access to stop and start a service like tomcat8 without giving sudo access on that machine. I tried adding tomcat8 service (running on an ubuntu host) on the Idm server using

[Freeipa-users] Re: Kerberos realm trusting ipa realm

On ti, 07 heinä 2020, Gerald Vogt via FreeIPA-users wrote: Hi! I am trying to get a kerberos realm to trust the ipa realm. I'm running ipa-server-4.6.6-11.el7 on a CentOS 7. It uses realm IPA.EXAMPLE.COM. I have another KDC on another CentOS 7 which has another realm KRB.EXAMPLE.COM with a

[Freeipa-users] Providing service level access without granting sudo access

Hi All, We have a requirement where we need to give a user access to stop and start a service like tomcat8 without giving sudo access on that machine. I tried adding tomcat8 service (running on an ubuntu host) on the Idm server using "ipa service-add" command. Later, when I tried creating a

[Freeipa-users] Re: Adding new replica with CA fails.

On Tue, Jul 07, 2020 at 12:04:58AM -0400, Guillermo Fuentes via FreeIPA-users wrote: > On Mon, Jul 6, 2020 at 5:31 PM Rob Crittenden wrote: > > > > Guillermo Fuentes via FreeIPA-users wrote: > > > Hi Flo, > > > Here is the value of the entry: > > > # certificateRepository, ca, ipaca > > > dn:

[Freeipa-users] Kerberos realm trusting ipa realm

Hi! I am trying to get a kerberos realm to trust the ipa realm. I'm running ipa-server-4.6.6-11.el7 on a CentOS 7. It uses realm IPA.EXAMPLE.COM. I have another KDC on another CentOS 7 which has another realm KRB.EXAMPLE.COM with a legacy service connected. Now I would like all users of my