[Freeipa-users] Re: IPA OTPD Crashing After Reboot

I don't see anything else in /var/log/messages. I ran journalctl --follow /usr/libexec/ipa/ipa-otpd, and it shows the otpd service successfully authenticating a user and then shutting down. bind end: success response sent: Access-Accept Socket closed, shutting down... Socket closed, shutting

[Freeipa-users] Re: a year later - non-member Win clients access to IPA's Samba

On 21/12/2020 21:07, Alexander Bokovoy wrote: On ma, 21 joulu 2020, lejeczek via FreeIPA-users wrote: hi gents Longish time ago, I think more than a year, I asked and gotten a succinct reply about ways to access IPA's integrated Samba from non-member Win clients. If I remember correctly it

[Freeipa-users] Re: a year later - non-member Win clients access to IPA's Samba

On ma, 21 joulu 2020, lejeczek via FreeIPA-users wrote: hi gents Longish time ago, I think more than a year, I asked and gotten a succinct reply about ways to access IPA's integrated Samba from non-member Win clients. If I remember correctly it was possible - answer was by I think one of you

[Freeipa-users] Re: repair ca

ldapsearch -D "cn=directory manager" -W -b o=ipaca "(uid=ipara)" dn Enter LDAP Password: # extended LDIF # # LDAPv3 # base with scope subtree # filter: (uid=ipara) # requesting: dn # # ipara, people, ipaca dn: uid=ipara,ou=people,o=ipaca # search result search: 2 result: 0 Success #

[Freeipa-users] a year later - non-member Win clients access to IPA's Samba

hi gents Longish time ago, I think more than a year, I asked and gotten a succinct reply about ways to access IPA's integrated Samba from non-member Win clients. If I remember correctly it was possible - answer was by I think one of you IPA devels - for one version of IPA (with rhel/centos

[Freeipa-users] Re: healthcheck errors

Thanks, Rob. Here are the outputs: certutil -L -d /etc/pki/pki-tomcat/alias/ Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Server-Cert cert-pki-ca u,u,u subsystemCert cert-pki-ca

[Freeipa-users] Re: repair ca

Evg Hertz via FreeIPA-users wrote: > getcert list -f /var/lib/ipa/ra-agent.pem | grep expires > expires: 2022-06-20 19:31:51 UTC > > I dont find /var/lib/ipa/ra-agent.pem in output > ldapsearch -D "cn=directory manager" -W -b o=ipaca I'd suggest installing freeipa-healthcheck (or

[Freeipa-users] Re: repair ca

On 12/21/20 11:31 AM, Evg Hertz via FreeIPA-users wrote: getcert list -f /var/lib/ipa/ra-agent.pem | grep expires expires: 2022-06-20 19:31:51 UTC I dont find /var/lib/ipa/ra-agent.pem in output ldapsearch -D "cn=directory manager" -W -b o=ipaca Hi, please type the whole command

[Freeipa-users] Re: healthcheck errors

Prasun Gera via FreeIPA-users wrote: > I'm seeing the following two errors on running ipahealthcheck. This is > on an up to date RHEL 8.3 system in a 2 server topology with self signed CA. > > DOMAIN.COM IPA CA not found, assuming 3rd party > DOMAIN.COM  IPA

[Freeipa-users] healthcheck errors

I'm seeing the following two errors on running ipahealthcheck. This is on an up to date RHEL 8.3 system in a 2 server topology with self signed CA. DOMAIN.COM IPA CA not found, assuming 3rd party DOMAIN.COM IPA CA not found, assuming 3rd party [ { "source":

[Freeipa-users] Re: repair ca

only one server. VERSION: 4.8.10 ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct:

[Freeipa-users] Re: repair ca

getcert list -f /var/lib/ipa/ra-agent.pem | grep expires expires: 2022-06-20 19:31:51 UTC I dont find /var/lib/ipa/ra-agent.pem in output ldapsearch -D "cn=directory manager" -W -b o=ipaca ___ FreeIPA-users mailing list --

[Freeipa-users] Re: client pam authentication failing intermittently

On Thu, Dec 17, 2020 at 02:33:47PM -, prasad kumar via FreeIPA-users wrote: > Thanks is sssd conf should be configured on server ? Hi, you should configure the logging on the host where the authentication happens, i.e. the host where you see the PAM error messages. bye, Sumit >