".Tomcat is (should) not be exposed beyond IPA servers so remote users
should not be able to make direct requests."
Understood. Thank you.
Marcelo
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an
Hi Rob
Thanks for helping out here. I was pulled sideways and I am returning to this
issue now. I am sorry.
Vulnerability showing is "Apache Tomcat 9.0.0-M1 < 9.0.68 Request Smuggling
Vulnerability"
Is there a way and a need to update Apache Tomcat from within FreeIPA? If so,
is this
Hi everyone.
We are running FreeIPA version:
VERSION: 4.10.1, API_VERSION: 2.251
Tomcat showing running is:
[root@corp-freeipa-01 tomcat]# java -cp catalina.jar
org.apache.catalina.util.ServerInfo
Server version: Apache Tomcat/9.0.50
Server built: Jan 8 1970 23:12:05 UTC
Server number:
Hi Tomasz.
This was one question to myself I made and on my understanding TLS has been
use, but I need confirmation.
Please, how can we confirm that TLS is been used?
Can you please advise?
Many thanks
Marcelo
___
FreeIPA-users mailing list --
I have downloaded and used cipherscan
./cipherscan.txt 127.0.0.1
I belie this does it. Correct?
Please advise.
Many thanks
Marcelo
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
Hi everybody.
I am back in charge of some freeipa servers and would like to check for best
documentation on upgrading FreeIPA to use TLS.
I have found:
Thank you so much Alexander. I will dive into that.
Many thanks
Marcelo.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
Hi everyone
I am trying on a development host to Disabling Anonymous Binds.
I have ran the following command but it hangs and does not return a prompt.
$ ldapmodify -x -D "cn=Directory Manager" -W -h 127.0.0.1 -p 389 -ZZ
Enter LDAP Password:
dn: cn=config
changetype: modify
replace:
Hi everyone
I am trying on a development host to Disabling Anonymous Binds.
I have ran the following command but it hangs and does not return a prompt.
$ ldapmodify -x -D "cn=Directory Manager" -W -h 127.0.0.1 -p 389 -ZZ
Enter LDAP Password:
dn: cn=config
changetype: modify
replace:
Hi Florence
Thank you so much.
Questions:
1) How do we "type a carriage return at the end?"
2) Will just a "\n" suffice, or do we need a "control character?"
3) If "control character" is needed how do e embed it on our copy-n-paste?
Hitting return for that new line does not work.
Please
Thank you so much Andrew.
Question: Does "freeipa_directory_manager_password" go in the clear?
_M
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora
Thanks Andrew.
I will dig into me Ansible options.
Many thanks
_M
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
Thank you Rob.
It worked perfectly. All done.
Many thanks
Marcelo
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
I need to create a trust between a MS Domain Controller and my FreeIPA.
Documentation I found is
https://www.freeipa.org/page/Active_Directory_trust_setup
Can anybody confirm that the above is the most recommended documentation
related to FreeIPA Trust with Microsoft Active Directory Domain
I have an FreeIPA host that has to be out of reach of Internet.
I can update the host OS and packages by syncing RHEL repo to my LocalRepo. No
issues there for every package installed, but I am not able to update FreeIPA.
From https://www.freeipa.org/page/Upgrade we have instruction on
epo, but
this defies our purpose of being stable on one Repo Sync.
lasdkjfkjdas
On Mon, Jan 29, 2024 at 1:40 PM Rob Crittenden wrote:
> Marcelo Carvalho via FreeIPA-users wrote:
> > I have an FreeIPA host that has to be out of reach of Internet.
> >
> > I can update the
Thanks Rafael
I will be in touch on our next version upgrade. Thank you so much for the
insights.
We are running on RHEL-9 and probably will stay there for a while.
Many thanks.
Marcelo Carvalho
IT Senior System Administrator
Astranis Space Technologies Corp.
mcarva...@astranis.com
Running on RHEL-9, up to version ipa --version
VERSION: 4.10.2, API_VERSION: 2.252
--
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of
FreeIPA would periodically freeze and would require a service restart - sudo
ipactl restart.
This has happened on freeipa-01 and freeipa-02. When it freezes, CLI commands
would timeout and we would not be able to join systems to the FreeIPA domain.
NOTE: I have only caught FreeIPA frozen
Many thanks, I'll look into it.
_M
On Mon, Feb 5, 2024 at 8:00 AM Rob Crittenden wrote:
> Marcelo Carvalho via FreeIPA-users wrote:
> > FreeIPA would periodically freeze and would require a service restart -
> sudo ipactl restart.
> >
> > This has happened on freeipa
20 matches
Mail list logo