So. this is an interesting read thanks for that.
But just a FYI to the OP, if you are using any Ubuntu 18.04 clients (i haven’t
tried it with Fedora/CentOS) there is an issue with not having local docker
groups on the system.
What ends up happening is on a boot, docker services try starting
I strongly recommend reading this article:
https://www.projectatomic.io/blog/2015/08/why-we-dont-let-non-root-users-run-docker-in-centos-fedora-or-rhel/
And based on it, I would a) reconsider if using sudo is not a better
idea, b) recommend, if possible, to create the docker group locally and
add
Assuming it's fairly chaotic across your systems. You may just need to
brute-force it. Before adding to IPA, you'll just need to map
oldGID->newGID, then do something like find/exec/chown. You can do the same
with groups. If you want to get fancier, have the script do the mapping.
On Wed, Oct 23,
Oh yes, it's clear, but I just don't know if I'm setting myself up for
problems if I set a freeipa gid or uid to a value that already existed on
the host before it was turned into a freeipa client. That's already a
problem with my users since they have different uids on the hosts if they
were
You can specify the GID when you create user groups in freeIPA.
In the GUI it's very clear (Group name[required], Description, Group Type,
GID).
CLI it's something like # ipa group-add --gid=
On Wed, Oct 23, 2019 at 3:12 PM Jason Dunham via FreeIPA-users <
freeipa-users@lists.fedorahosted.org>