On Fri, 16 Sep 2011, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a custom script hook for when a user account is added using
either the cli, webui, or the winsync
On Fri, 2011-09-16 at 11:29 +0300, Alexander Bokovoy wrote:
On Fri, 16 Sep 2011, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a custom script hook for when a user
On Fri, 16 Sep 2011, Simo Sorce wrote:
As a proof of concept sounds nice, but as is this would be bad, as
changes to /etc/ipa/server.conf are not replicated through all masters.
So a change on one server would require manual synchronization to all
others or users create from one server will
Alexander Bokovoy wrote:
On Fri, 16 Sep 2011, Simo Sorce wrote:
As a proof of concept sounds nice, but as is this would be bad, as
changes to /etc/ipa/server.conf are not replicated through all masters.
So a change on one server would require manual synchronization to all
others or users create
I tried that but still cannot successfully log in as a IPA user. The same
system can be configured as a Kerberos client(non-IPA) defined in MIT
Kerberos, and authenticate against MIT Kerberos. The system uses AES when
authenticating to MIT Kerberos so those are the only encryption types I
On Fri, 2011-09-16 at 09:31 -0400, Jimmy wrote:
ipa-getkeytab -s csp-idm.pdh.csp -p host/ews1-cybsec.pdh.csp -k
krb5.keytab
-P[entering into the main keytab /etc/krb5.keytab]
ipa-getkeytab -s csp-idm.pdh.csp -p host/ews1-cybsec.pdh.csp -k
krb5.keytab.sys1 -P [entering into a new
When I do not specify the encryption type it does put them all in in a
single go. I just was attempting to eliminate the other types in case that
was creating a problem. The system defaults to type x18
(aes256-cts-hmac-sha1-96). Thanks for your help on this.
[root@csp-idm etc]# klist -kte
On 09/16/2011 07:35 AM, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a custom script hook for when a user account is added using
either the cli, webui, or the winsync module?
On 09/16/2011 01:53 PM, Simo Sorce wrote:
On Fri, 2011-09-16 at 11:29 +0300, Alexander Bokovoy wrote:
On Fri, 16 Sep 2011, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a
On 09/16/2011 02:45 PM, Rob Crittenden wrote:
Alexander Bokovoy wrote:
On Fri, 16 Sep 2011, Simo Sorce wrote:
As a proof of concept sounds nice, but as is this would be bad, as
changes to /etc/ipa/server.conf are not replicated through all masters.
So a change on one server would require
On 09/16/2011 11:34 AM, Sigbjorn Lie wrote:
On 09/16/2011 07:35 AM, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a custom script hook for when a user account is added using
On 09/16/2011 05:59 PM, Dmitri Pal wrote:
On 09/16/2011 11:34 AM, Sigbjorn Lie wrote:
On 09/16/2011 07:35 AM, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a custom script
On Fri, 2011-09-16 at 15:19 +, Johan Sunnerstig wrote:
Hello.
I'm wondering if anyone has used FreeIPA with Debian clients, and if
so, what client software you opted to use?
Right now I have nss-pam-ldapd
(http://arthurdejong.org/nss-pam-ldapd/) and the MIT-based krb
software that's
On 09/16/2011 05:19 PM, Johan Sunnerstig wrote:
Hello.
I'm wondering if anyone has used FreeIPA with Debian clients, and if
so, what client software you opted to use?
Right now I have nss-pam-ldapd
(http://arthurdejong.org/nss-pam-ldapd/) and the MIT-based krb
software that's included in
On Fri, 2011-09-16 at 14:01 -0400, Simo Sorce wrote:
There is some work being done to make ipa-client -install more cross
platforms, and we also have some contrib scripts, but we do not have a
complete ipa-client-install script for debian based distributions yet.
So you'll have to manually (or
Hi,
On Fri, 16 Sep 2011, Johan Sunnerstig wrote:
Hello. I'm wondering if anyone has used FreeIPA with Debian clients,
and if so, what client software you opted to use? Right now I have
nss-pam-ldapd (http://arthurdejong.org/nss-pam-ldapd/) and the
MIT-based krb software that's included in
On 09/16/2011 11:19 AM, Johan Sunnerstig wrote:
Hello.
I'm wondering if anyone has used FreeIPA with Debian clients, and if
so, what client software you opted to use?
Right now I have nss-pam-ldapd
(http://arthurdejong.org/nss-pam-ldapd/) and the MIT-based krb
software that's included in
On 09/16/2011 10:29 AM, Alexander Bokovoy wrote:
On Fri, 16 Sep 2011, Dmitri Pal wrote:
On 09/15/2011 04:14 PM, Sigbjorn Lie wrote:
On 09/15/2011 09:59 PM, Dmitri Pal wrote:
On 09/15/2011 03:45 PM, Sigbjorn Lie wrote:
Hi,
Is there a custom script hook for when a user account is added using
This was installed using yum. I need to be able to authenticate users
against Kerberos from a Windows client machine and it fails at login saying
the username/password is incorrect. The krb5kdc.log shows:
Sep 16 20:53:32 csp-idm.pdh.csp krb5kdc[1227](info): AS_REQ (7 etypes {18 17
23 3 1 24
On Fri, 2011-09-16 at 17:24 -0400, Jimmy wrote:
This was installed using yum. I need to be able to authenticate users
against Kerberos from a Windows client machine and it fails at login
saying the username/password is incorrect. The krb5kdc.log shows:
Sep 16 20:53:32 csp-idm.pdh.csp
20 matches
Mail list logo