[Freeipa-users] Re: ipa-server Upgrade to 4.6.4 warning: %posttrans(bind-32:9.9.4-72.el7.x86_64)

users] ipa-server Upgrade to 4.6.4 warning: %posttrans(bind-32:9.9.4-72.el7.x86_64)Date: Wed, Jan 9, 2019 4:07 PM  Christopher Lamb via FreeIPA-users wrote:> Hi>  > I have just upgraded our ipa-server from 4.2 to 4.6.4 via yum update on> OEL 7.2.>  > At the very last step of the yu

[Freeipa-users] IPA Server SSL RC4 Cipher Suites on Port 443

Hi All   We operate an IPA Server version 4.2 on OEL 7.2.   This installation supports RC4 Cipher Suites on port 443. I understand that this is the port accessed by IPA command line tools.   How do I disable RC4?   From the release notes for IPA 4.3.1, I see various changes removing support for

[Freeipa-users] Re: Configuring SSL Ciphers for FreeIPA / DogTag on port 8443

Thanks, but that documentation is inconsistent.   Section 8.1.1 advises upgrading one version of RedHat IDM at a time. Fair dos.   However section 8.1.2 advises running "yum update ipa-*" which will update to the latest version of IPA available in the repo, which may well be a jump of several IPA

[Freeipa-users] Configuring SSL Ciphers for FreeIPA / DogTag on port 8443

Hi   A recent security scan has shown that our FreeIPA server is using 3DES SSL ciphers on port 8443, which I understand to be used by the DogTag PKI component of IPA.   The question is, how can I configure the SSL Ciphers used by DogTag (e.g to remove 3DES ciphers)?   I have found several files

[Freeipa-users] IPA and JQuery 1.2 < 3.5.0 XSS

Hi all   Security scans of our ipa server report a vulnerability “JQuery 1.2 < 3.5.0 XSS”.   The recommended fix is to upgrade jQuery to version 3.5.0 or later.   We are running ipa-server 4.6.4 on OEL 7.2.   The newest ipa-server version in our yum repository is 4.6.6   Hunting around on the

[Freeipa-users] Re: How to disable NTP on an ipa-server

ia FreeIPA-users To: FreeIPA users list Cc: Christopher Lamb , Rob Crittenden Subject: [EXTERNAL] [Freeipa-users] Re: How to disable NTP on an ipa-serverDate: Thu, Oct 8, 2020 9:05 PM  Christopher Lamb via FreeIPA-users wrote:> Hi All>  > Last night we successfully upgraded our ipa server t

[Freeipa-users] How to disable NTP on an ipa-server

Hi All   Last night we successfully upgraded our ipa server to OEL 7.9, and ipa-server-4.6.8-5.el7.   However the ipa.service will not start, because it fails at the NTP Service.   All other ipa components start if we use the --ignore-service-failures option.   # ipactl start

[Freeipa-users] Re: IPA and JQuery 1.2 < 3.5.0 XSS: CVE-2020-11022

message - From: Alexander Bokovoy To: FreeIPA users list Cc: Christopher Lamb Subject: [EXTERNAL] Re: [Freeipa-users] IPA and JQuery 1.2 < 3.5.0 XSSDate: Wed, Oct 7, 2020 4:46 PM  On ke, 07 loka 2020, Christopher Lamb via FreeIPA-

[Freeipa-users] Re: How to disable NTP on an ipa-server

t;>     - Original message ->     From: Rob Crittenden via FreeIPA-users>     >     To: FreeIPA users list >     Cc: Christopher Lamb , Rob Crittenden>     >     Subject: [EXTERNAL] [Freeipa-users] Re: How to disable NTP on an>     ipa-server>     Date: Thu,

[Freeipa-users] Re: Cannot log in to Federoa Desktop GUI with FreeIPA user.

schrieb Christopher Lamb via FreeIPA-users:> Hi>  > I am attempting to set up a Single Sign On (SSO) development environment in a> Fedora 34 Virtual Machine on my laptop.>  > I have successfully installed and configured freeipa-server, and can create> freeipa users both on the

[Freeipa-users] Re: Cannot log in to Federoa Desktop GUI with FreeIPA user.

- Original message ->     From: "Sumit Bose via FreeIPA-users" >     To: freeipa-users@lists.fedorahosted.org>     Cc: "Sumit Bose" >     Subject: [EXTERNAL] [Freeipa-users] Re: Cannot log in to Federoa Desktop>     GUI with FreeIPA user.>     Date: Tue, Aug 10, 2