Hi List,
I have just noticed that the ipa-client-install fails miserably if the clients /etc/resolv.conf points to some foreign DNS server. The
symptoms are that KDC (on the IPA server) fails to locate self in Kerberos database:
Jun 30 11:11:48 polaris krb5kdc[1279](info): AS_REQ (4 etypes
Ondrej Valousek wrote:
Hi List,
I have just noticed that the ipa-client-install fails miserably if the
clients /etc/resolv.conf points to some foreign DNS server. The symptoms
are that KDC (on the IPA server) fails to locate self in Kerberos database:
The KDC is just trying to look up a
The KDC is just trying to look up a service that was requested, it was the client that requested this host. Note that the host name used
is the detected IPA server. This can often be wrong if there is another server in your network with SRV records (such as AD).
Apparently not the KDC. I had to
On Thu, 2011-06-30 at 15:52 +0200, Ondrej Valousek wrote:
The KDC is just trying to look up a service that was requested, it
was the client that requested this host. Note that the host name
used is the detected IPA server. This can often be wrong if there is
another server in your
On 30.06.2011 16:22, Simo Sorce wrote:
We are actively working on trying to never depend on reverse lookups.
Unfortunately there are still some bugs and limitations in various
libraries but we are working on fixing them.
Ok, thanks for explanation. I have also seen similar errors when talking
Hi List,
I am just wondering what's the situation regarding storing automounter maps in IPA? I see support for it on the roadmap but I am wondering
how it is going to be done, because:
1. sssd can not do it, and I think it is going to take a long time before it
will (due to the libc NSS
Ondrej Valousek wrote:
Hi List,
I am just wondering what's the situation regarding storing automounter
maps in IPA? I see support for it on the roadmap but I am wondering how
it is going to be done, because:
1. sssd can not do it, and I think it is going to take a long time
before it will
Good point.
Take a look at the test day instructions, I found them very useful for
setting up both SUDO and automount.
https://fedoraproject.org/wiki/QA:Testcase_freeipav2_automount
On 06/30/2011 11:08 AM, Ondrej Valousek wrote:
On 30.06.2011 16:55, Rob Crittenden wrote:
Look at the
On 06/30/2011 11:08 AM, Ondrej Valousek wrote:
On 30.06.2011 16:55, Rob Crittenden wrote:
Look at the output of this for details: ipa help automount
I see, thanks!
It would be nice to update man pages like:
Hmm,
To me, these instructions are very vague - for example it completely omits LDAP security configuration for the automounter (stored in
/etc/autofs_ldap_auth.conf). How does the automounter bind to the ldap server? Anonymously?
I would not recommend it.
I would recommend to configure
On 06/30/2011 12:04 PM, Ondrej Valousek wrote:
Hmm,
To me, these instructions are very vague - for example it completely
omits LDAP security configuration for the automounter (stored in
/etc/autofs_ldap_auth.conf). How does the automounter bind to the ldap
server? Anonymously?
I would not
Dan Scott wrote:
Hi,
On Tue, May 31, 2011 at 13:41, Rob Crittendenrcrit...@redhat.com wrote:
Dmitri Pal wrote:
On 05/31/2011 10:45 AM, tomasz.napier...@allegro.pl wrote:
Hi,
I'm trying to migrate data form our current FreeIPA install (v1) and I'm
having problems with nonexistant
12 matches
Mail list logo