On 11/17/11 00:14, Simo Sorce wrote:
Is it possibly a bug in the conversion to systemd ?
I think the init script for rpcgssd used to load some modules earlier.
It's even stranger than that. I upgraded the machine with preupgrade.
Preupgrade and anaconda have a history of not updating the boot
On Wed, 2011-11-16 at 23:37 +0100, Thomas Sailer wrote:
> On 11/16/2011 08:59 PM, Thomas Sailer wrote:
> > On 11/16/2011 08:48 PM, Simo Sorce wrote:
> >> If you did this on both server and client, then it looks like it is a
> >> nfsd bug, and not a freeipa one.
> > So I filed a bug report against n
On 11/16/2011 08:59 PM, Thomas Sailer wrote:
On 11/16/2011 08:48 PM, Simo Sorce wrote:
If you did this on both server and client, then it looks like it is a
nfsd bug, and not a freeipa one.
So I filed a bug report against nfs-utils:
https://bugzilla.redhat.com/show_bug.cgi?id=754552
Or maybe
On 11/16/2011 08:48 PM, Simo Sorce wrote:
If you did this on both server and client, then it looks like it is a
nfsd bug, and not a freeipa one.
So I filed a bug report against nfs-utils:
https://bugzilla.redhat.com/show_bug.cgi?id=754552
I hope Steve Dickson has some ideas...
Thanks,
Tom
___
On Wed, 2011-11-16 at 20:44 +0100, Thomas Sailer wrote:
> On 11/16/2011 08:40 PM, Simo Sorce wrote:
> > Are you using DES keys ? In that case you probably need to allow weak
> > crypto on both server and client. Note that if all your server/clients
> > are FC16 and you have no old ones < FC14 or
On 11/16/2011 08:27 PM, Rob Crittenden wrote:
Looks like https://bugzilla.redhat.com/show_bug.cgi?id=652273
Yes. For some reasons I always seem to end up with NFS problems...
The fix I used at that time IMO is no longer applicable... mozldap isn't
even installed anymore
Tom
On 11/16/2011 08:40 PM, Simo Sorce wrote:
Are you using DES keys ? In that case you probably need to allow weak
crypto on both server and client. Note that if all your server/clients
are FC16 and you have no old ones < FC14 or < RHEL 6 then you do not
need to force the creation of the nfs/ prin
On Wed, 2011-11-16 at 20:07 +0100, Thomas Sailer wrote:
> After upgrading FreeIPA from FC14/FreeIPAv1 to FC16/FreeIPAv2, secure
> NFSv4 mounts do not work anymore. V2 is basically a reinstalled
> FreeIPA
> server with user data migrated from v1, and host keys etc. recreated.
Are you using DES ke
Thomas Sailer wrote:
After upgrading FreeIPA from FC14/FreeIPAv1 to FC16/FreeIPAv2, secure
NFSv4 mounts do not work anymore. V2 is basically a reinstalled FreeIPA
server with user data migrated from v1, and host keys etc. recreated.
I get the following when trying to mount:
# mount -t nfs4 -o so
After upgrading FreeIPA from FC14/FreeIPAv1 to FC16/FreeIPAv2, secure
NFSv4 mounts do not work anymore. V2 is basically a reinstalled FreeIPA
server with user data migrated from v1, and host keys etc. recreated.
I get the following when trying to mount:
# mount -t nfs4 -o soft,intr,rsize=8192,w
Sorry, forgot to copy the list.
On Wed, Nov 16, 2011 at 12:17, Dan Scott wrote:
> On Wed, Nov 16, 2011 at 10:39, Rob Crittenden wrote:
>> Dan Scott wrote:
>>>
>>> On Wed, Nov 16, 2011 at 09:23, Rob Crittenden wrote:
Dan Scott wrote:
>
> Hi,
>
> I receive the following
Boris Epstein wrote:
Hello all,
OK, I've got this Mac OS X 10.7.2 machine and it just refuses to do NIS
so I need to authenticate it via LDAP. Any guidance on how to do that
will be greatly appreciated.
This is a little out of date but is a starting point
http://freeipa.org/page/ConfiguringM
Hello all,
OK, I've got this Mac OS X 10.7.2 machine and it just refuses to do NIS so
I need to authenticate it via LDAP. Any guidance on how to do that will be
greatly appreciated.
Thanks.
Boris.
___
Freeipa-users mailing list
Freeipa-users@redhat.com
Dan Scott wrote:
On Wed, Nov 16, 2011 at 09:23, Rob Crittenden wrote:
Dan Scott wrote:
Hi,
I receive the following error when I try to remove a host from IPA:
djscott@pc35:~$ ipa host-del pc60
ipa: ERROR: Certificate operation cannot be completed: Unable to
communicate with CMS (Not Found)
On Wed, Nov 16, 2011 at 09:23, Rob Crittenden wrote:
> Dan Scott wrote:
>>
>> Hi,
>>
>> I receive the following error when I try to remove a host from IPA:
>>
>> djscott@pc35:~$ ipa host-del pc60
>> ipa: ERROR: Certificate operation cannot be completed: Unable to
>> communicate with CMS (Not Found
On Wed, 16 Nov 2011, Thomas Sailer wrote:
> On 11/16/2011 03:14 PM, Alexander Bokovoy wrote:
> >maybe that's because server..com resolves to IPv6 address? We
> >pass FQDN of the server to pkisilent, and then it tries to set up
> >and start CA.
> It doesn't:
> # dig server..com
and 'getent
On Tue, 2011-11-15 at 20:44 -0500, Jimmy wrote:
> I did supply this to the list at the middle of September, but will
> re-send. I know things get lost in the flow of emails/lists.
>
> ==IPA and ksetup steps=
> I can't find the technet article right now, but here's what
On 11/16/2011 03:14 PM, Alexander Bokovoy wrote:
maybe that's because server..com resolves to IPv6 address? We pass
FQDN of the server to pkisilent, and then it tries to set up and start
CA.
It doesn't:
# dig server..com
; <<>> DiG 9.8.1-RedHat-9.8.1-2.fc16 <<>> server..com
;; glo
Dan Scott wrote:
Hi,
I receive the following error when I try to remove a host from IPA:
djscott@pc35:~$ ipa host-del pc60
ipa: ERROR: Certificate operation cannot be completed: Unable to
communicate with CMS (Not Found)
I'm running a Fedora 16 (freeipa-server-2.1.3-5.fc16.x86_64) server
repli
On Wed, 16 Nov 2011, Thomas Sailer wrote:
> Hi,
>
> Installing a v2 freeipa server failed for me at the stage
> "configuring certificate server instance"
>
> The machine is an updated (and now fully up2date) fedora16 x64 machine.
>
> Here's the command line output:
> Configuring certificate serv
Hi,
Installing a v2 freeipa server failed for me at the stage "configuring
certificate server instance"
The machine is an updated (and now fully up2date) fedora16 x64 machine.
Here's the command line output:
Configuring certificate server: Estimated time 3 minutes 30 seconds
[1/17]: creatin
On Tue, 2011-11-15 at 16:51 -0500, Boris Epstein wrote:
> >
> >
> >
> >
> > Just tried to install sssd from the above repo.
> >
> > There's only packages for the old
22 matches
Mail list logo